Content-Transfer-Encoding: 7bit
Content-Type: multipart/mixed; boundary="_----------=_154494592764240"
MIME-Version: 1.0
Date: Sun, 16 Dec 2018 07:38:47 +0000
From: "Ryo ONODERA" <ryoon@netbsd.org>
Subject: CVS commit: pkgsrc/www/firefox60
To: pkgsrc-changes@NetBSD.org
Reply-To: ryoon@netbsd.org
Message-Id: <20181216073848.00262FB16@cvs.NetBSD.org>
Sender: pkgsrc-changes-owner@NetBSD.org
Precedence: bulk

This is a multi-part message in MIME format.

--_----------=_154494592764240
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
Content-Type: text/plain; charset="US-ASCII"

Module Name:	pkgsrc
Committed By:	ryoon
Date:		Sun Dec 16 07:38:47 UTC 2018

Modified Files:
	pkgsrc/www/firefox60: Makefile distinfo

Log Message:
Update to 60.4.0

Changelog:
New
  Updated list of currency codes to include Unidad Previsional (UYW) (Bug 1499028)

Fixed
  Various security fixes

Security fixes:
#CVE-2018-17466: Buffer overflow and out-of-bounds read in ANGLE library with TextureStorage11
#CVE-2018-18492: Use-after-free with select element
#CVE-2018-18493: Buffer overflow in accelerated 2D canvas with Skia
#CVE-2018-18494: Same-origin policy violation using location attribute and performance.getEntries to steal cross-origin URLs
#CVE-2018-18498: Integer overflow when calculating buffer sizes for images
#CVE-2018-12405: Memory safety bugs fixed in Firefox 64 and Firefox ESR 60.4


To generate a diff of this commit:
cvs rdiff -u -r1.11 -r1.12 pkgsrc/www/firefox60/Makefile
cvs rdiff -u -r1.3 -r1.4 pkgsrc/www/firefox60/distinfo

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.


--_----------=_154494592764240
Content-Disposition: inline
Content-Length: 2164
Content-Transfer-Encoding: binary
Content-Type: text/x-diff; charset=us-ascii

Modified files:

Index: pkgsrc/www/firefox60/Makefile
diff -u pkgsrc/www/firefox60/Makefile:1.11 pkgsrc/www/firefox60/Makefile:1.12
--- pkgsrc/www/firefox60/Makefile:1.11	Sun Dec  9 18:52:49 2018
+++ pkgsrc/www/firefox60/Makefile	Sun Dec 16 07:38:47 2018
@@ -1,12 +1,11 @@
-# $NetBSD: Makefile,v 1.11 2018/12/09 18:52:49 adam Exp $
+# $NetBSD: Makefile,v 1.12 2018/12/16 07:38:47 ryoon Exp $
 
 FIREFOX_VER=		${MOZ_BRANCH}${MOZ_BRANCH_MINOR}
-MOZ_BRANCH=		60.3
+MOZ_BRANCH=		60.4
 MOZ_BRANCH_MINOR=	.0esr
 
 DISTNAME=	firefox-${FIREFOX_VER}.source
 PKGNAME=	${DISTNAME:S/firefox-/firefox60-/:S/.source//:S/b/beta/:S/esr//}
-PKGREVISION=	4
 CATEGORIES=	www
 MASTER_SITES+=	${MASTER_SITE_MOZILLA:=firefox/releases/${FIREFOX_VER}/source/}
 EXTRACT_SUFX=	.tar.xz

Index: pkgsrc/www/firefox60/distinfo
diff -u pkgsrc/www/firefox60/distinfo:1.3 pkgsrc/www/firefox60/distinfo:1.4
--- pkgsrc/www/firefox60/distinfo:1.3	Mon Oct 29 01:16:58 2018
+++ pkgsrc/www/firefox60/distinfo	Sun Dec 16 07:38:47 2018
@@ -1,9 +1,9 @@
-$NetBSD: distinfo,v 1.3 2018/10/29 01:16:58 maya Exp $
+$NetBSD: distinfo,v 1.4 2018/12/16 07:38:47 ryoon Exp $
 
-SHA1 (firefox-60.3.0esr.source.tar.xz) = bac0745b6abdd5887ec0a46041a8252c344cdc64
-RMD160 (firefox-60.3.0esr.source.tar.xz) = ff553704aad2911adbce4e4590d87861d1a1e188
-SHA512 (firefox-60.3.0esr.source.tar.xz) = 7ded25a38835fbd73a58085e24ad83308afee1784a3bf853d75093c1500ad46988f5865c106abdae938cfbd1fb10746cc1795ece7994fd7eba8a002158cf1bcd
-Size (firefox-60.3.0esr.source.tar.xz) = 268340600 bytes
+SHA1 (firefox-60.4.0esr.source.tar.xz) = 0fa5a71ce2cb90ea4be719a92645aa09dff3721f
+RMD160 (firefox-60.4.0esr.source.tar.xz) = f0b67654864aadb454923cd1ac9abffe0ac20c7c
+SHA512 (firefox-60.4.0esr.source.tar.xz) = 8119f52b2fc06f76868bf0781fec9d46c8551f0a3ca832ac9bdef6aa6d77c1d785e50d35059f0df5e3586f3396b912af06e448d65e7f5d1f468338eebe8b2cd4
+Size (firefox-60.4.0esr.source.tar.xz) = 268425148 bytes
 SHA1 (patch-aa) = fdabcc9b055f6439fdbda9b38ab7cec08ff3e231
 SHA1 (patch-browser_app_profile_firefox.js) = 9a43095d94f83f315b9a3ce4a7b0a4301e9c40e6
 SHA1 (patch-build_moz.configure_old.configure) = 1df6867eaf73a350fbe8fcd5bd34e1fcab09d707


--_----------=_154494592764240--