Content-Transfer-Encoding: 7bit
Content-Type: multipart/mixed; boundary="_----------=_148076036960990"
MIME-Version: 1.0
Date: Sat, 3 Dec 2016 10:19:29 +0000
From: "Ryo ONODERA" <ryoon@netbsd.org>
Subject: CVS commit: pkgsrc/www/firefox45
To: pkgsrc-changes@NetBSD.org
Reply-To: ryoon@netbsd.org
Message-Id: <20161203101929.EEFD4FBA6@cvs.NetBSD.org>
Sender: pkgsrc-changes-owner@NetBSD.org
Precedence: bulk

This is a multi-part message in MIME format.

--_----------=_148076036960990
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
Content-Type: text/plain; charset="US-ASCII"

Module Name:	pkgsrc
Committed By:	ryoon
Date:		Sat Dec  3 10:19:29 UTC 2016

Modified Files:
	pkgsrc/www/firefox45: Makefile distinfo

Log Message:
Update to 45.5.1

Changelog:
45.5.1:
 #CVE-2016-9079: Use-after-free in SVG Animation

45.5.0:
 #CVE-2016-5296: Heap-buffer-overflow WRITE in rasterize_edges_1
 #CVE-2016-5293: Write to arbitrary file with Mozilla Updater and Maintenance Service using updater.log hardlink
 #CVE-2016-5294: Arbitrary target directory for result files of update process
 #CVE-2016-5297: Incorrect argument length checking in JavaScript
 #CVE-2016-9064: Add-ons update must verify IDs match between current and new versions
 #CVE-2016-9066: Integer overflow leading to a buffer overflow in nsScriptLoadHandler
 #CVE-2016-5291: Same-origin policy violation using local HTML file and saved shortcut file
 #CVE-2016-9074: Insufficient timing side-channel resistance in divSpoiler
 #CVE-2016-5290: Memory safety bugs fixed in Firefox 50 and Firefox ESR 45.5


To generate a diff of this commit:
cvs rdiff -u -r1.11 -r1.12 pkgsrc/www/firefox45/Makefile
cvs rdiff -u -r1.7 -r1.8 pkgsrc/www/firefox45/distinfo

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.


--_----------=_148076036960990
Content-Disposition: inline
Content-Length: 2026
Content-Transfer-Encoding: binary
Content-Type: text/x-diff; charset=us-ascii

Modified files:

Index: pkgsrc/www/firefox45/Makefile
diff -u pkgsrc/www/firefox45/Makefile:1.11 pkgsrc/www/firefox45/Makefile:1.12
--- pkgsrc/www/firefox45/Makefile:1.11	Wed Sep 21 11:51:14 2016
+++ pkgsrc/www/firefox45/Makefile	Sat Dec  3 10:19:29 2016
@@ -1,9 +1,9 @@
-# $NetBSD: Makefile,v 1.11 2016/09/21 11:51:14 ryoon Exp $
+# $NetBSD: Makefile,v 1.12 2016/12/03 10:19:29 ryoon Exp $
 
 MOZILLA_PKG_NAME=	firefox45
 FIREFOX_VER=	${MOZ_BRANCH}${MOZ_BRANCH_MINOR}
-MOZ_BRANCH=	45.4
-MOZ_BRANCH_MINOR=	.0esr
+MOZ_BRANCH=	45.5
+MOZ_BRANCH_MINOR=	.1esr
 
 DISTNAME=	firefox-${FIREFOX_VER}.source
 PKGNAME=	${MOZILLA_PKG_NAME}-${MOZ_BRANCH}${MOZ_BRANCH_MINOR:S/b/beta/:S/esr//}

Index: pkgsrc/www/firefox45/distinfo
diff -u pkgsrc/www/firefox45/distinfo:1.7 pkgsrc/www/firefox45/distinfo:1.8
--- pkgsrc/www/firefox45/distinfo:1.7	Wed Sep 21 11:51:14 2016
+++ pkgsrc/www/firefox45/distinfo	Sat Dec  3 10:19:29 2016
@@ -1,9 +1,9 @@
-$NetBSD: distinfo,v 1.7 2016/09/21 11:51:14 ryoon Exp $
+$NetBSD: distinfo,v 1.8 2016/12/03 10:19:29 ryoon Exp $
 
-SHA1 (firefox-45.4.0esr.source.tar.xz) = 3892aa3ecadfd5fc0533f7847cd959baef3be10e
-RMD160 (firefox-45.4.0esr.source.tar.xz) = 6f1b10e51f15225b812db73335698311947ccdda
-SHA512 (firefox-45.4.0esr.source.tar.xz) = 2955e02f829a10186a8b22320fb97d4b0fc2b45721fcffa6295653fd760d516ae72b5656547685ba1e0699b381e28044996d9ee12a8738842b4e6b8acd296715
-Size (firefox-45.4.0esr.source.tar.xz) = 185182396 bytes
+SHA1 (firefox-45.5.1esr.source.tar.xz) = 5cb8fadef4a42aa49b6e210ff9172c666f4495a9
+RMD160 (firefox-45.5.1esr.source.tar.xz) = 9424e07bdc2e42f6666fb0cc6fc2da8c1aca3ae9
+SHA512 (firefox-45.5.1esr.source.tar.xz) = 36c56e1486a6a35f71526bd81d01fb4fc2b9df852eb2feb39b77c902fcf90d713d8fcdcd6113978630345e1ed36fa5cf0df6da7b6bf7e85a84fe014cb11f9a03
+Size (firefox-45.5.1esr.source.tar.xz) = 185542224 bytes
 SHA1 (patch-aa) = c97ef4b107ea917c2a10d1a1fdaf524d794612a0
 SHA1 (patch-ao) = f4244b8e3d89743cb97395913e8916f7121c172e
 SHA1 (patch-as) = d5d7f8250a9cd462f25d529c2a79c59a1bba9db2


--_----------=_148076036960990--