Sat Oct 13 10:16:23 2012 UTC ()
Update to 10.0.9

Changelog:
Fixed in Firefox ESR 10.0.9
MFSA 2012-89 defaultValue security checks not applied

Fixed in Firefox ESR 10.0.8
MFSA 2012-87 Use-after-free in the IME State Manager
MFSA 2012-86 Heap memory corruption issues found using Address Sanitizer
MFSA 2012-85 Use-after-free, buffer overflow, and out of bounds read issues found using Address Sanitizer
MFSA 2012-84 Spoofing and script injection through location.hash
MFSA 2012-83 Chrome Object Wrapper (COW) does not disallow acces to privileged functions or properties
MFSA 2012-82 top object and location property accessible by plugins
MFSA 2012-81 GetProperty function can bypass security checks
MFSA 2012-79 DOS and crash with full screen and history navigation
MFSA 2012-77 Some DOMWindowUtils methods bypass security checks
MFSA 2012-74 Miscellaneous memory safety hazards (rv:16.0/ rv:10.0.8)
MFSA 2012-59 Location object can be shadowed using Object.defineProperty


(ryoon)
diff -r1.8 -r1.9 pkgsrc/devel/xulrunner10/Makefile
diff -r1.7 -r1.8 pkgsrc/devel/xulrunner10/dist.mk
diff -r1.5 -r1.6 pkgsrc/devel/xulrunner10/distinfo
diff -r1.9 -r1.10 pkgsrc/www/firefox10/Makefile
cvs diff -r1.8 -r1.9 pkgsrc/devel/xulrunner10/Attic/Makefile (expand / switch to unified diff)

--- pkgsrc/devel/xulrunner10/Attic/Makefile 2012/10/08 23:00:57 1.8
+++ pkgsrc/devel/xulrunner10/Attic/Makefile 2012/10/13 10:16:23 1.9
@@ -1,18 +1,17 @@ @@ -1,18 +1,17 @@
1# $NetBSD: Makefile,v 1.8 2012/10/08 23:00:57 adam Exp $ 1# $NetBSD: Makefile,v 1.9 2012/10/13 10:16:23 ryoon Exp $
2 2
3.include "dist.mk" 3.include "dist.mk"
4PKGNAME= xulrunner10-${MOZ_BRANCH}${MOZ_BRANCH_MINOR} 4PKGNAME= xulrunner10-${MOZ_BRANCH}${MOZ_BRANCH_MINOR}
5PKGREVISION= 5 
6CATEGORIES= devel www 5CATEGORIES= devel www
7 6
8MAINTAINER= tnn@NetBSD.org 7MAINTAINER= tnn@NetBSD.org
9HOMEPAGE= http://developer.mozilla.org/en/docs/XULRunner 8HOMEPAGE= http://developer.mozilla.org/en/docs/XULRunner
10COMMENT= XML User Interface Language runtime environment 9COMMENT= XML User Interface Language runtime environment
11LICENSE= mpl-1.1 10LICENSE= mpl-1.1
12 11
13MOZILLA_DIR= # empty 12MOZILLA_DIR= # empty
14 13
15PKGCONFIG_OVERRIDE+= xulrunner/installer/libxul-embedding.pc.in 14PKGCONFIG_OVERRIDE+= xulrunner/installer/libxul-embedding.pc.in
16PKGCONFIG_OVERRIDE+= xulrunner/installer/libxul.pc.in 15PKGCONFIG_OVERRIDE+= xulrunner/installer/libxul.pc.in
17PKGCONFIG_OVERRIDE+= xulrunner/installer/mozilla-gtkmozembed-embedding.pc.in 16PKGCONFIG_OVERRIDE+= xulrunner/installer/mozilla-gtkmozembed-embedding.pc.in
18PKGCONFIG_OVERRIDE+= xulrunner/installer/mozilla-gtkmozembed.pc.in 17PKGCONFIG_OVERRIDE+= xulrunner/installer/mozilla-gtkmozembed.pc.in
cvs diff -r1.7 -r1.8 pkgsrc/devel/xulrunner10/Attic/dist.mk (expand / switch to unified diff)

--- pkgsrc/devel/xulrunner10/Attic/dist.mk 2012/09/06 17:24:59 1.7
+++ pkgsrc/devel/xulrunner10/Attic/dist.mk 2012/10/13 10:16:23 1.8
@@ -1,16 +1,16 @@ @@ -1,16 +1,16 @@
1# $NetBSD: dist.mk,v 1.7 2012/09/06 17:24:59 ryoon Exp $ 1# $NetBSD: dist.mk,v 1.8 2012/10/13 10:16:23 ryoon Exp $
2# 2#
3# used by devel/xulrunner10/Makefile 3# used by devel/xulrunner10/Makefile
4# used by www/firefox10/Makefile 4# used by www/firefox10/Makefile
5 5
6DISTNAME= firefox-${FIREFOX_VER}esr.source 6DISTNAME= firefox-${FIREFOX_VER}esr.source
7FIREFOX_VER= ${MOZ_BRANCH}${MOZ_BRANCH_MINOR} 7FIREFOX_VER= ${MOZ_BRANCH}${MOZ_BRANCH_MINOR}
8MOZ_BRANCH= 10.0 8MOZ_BRANCH= 10.0
9MOZ_BRANCH_MINOR= .7 9MOZ_BRANCH_MINOR= .9
10MASTER_SITES= ${MASTER_SITE_MOZILLA_ESR:=firefox/releases/${FIREFOX_VER}esr/source/} 10MASTER_SITES= ${MASTER_SITE_MOZILLA_ESR:=firefox/releases/${FIREFOX_VER}esr/source/}
11EXTRACT_SUFX= .tar.bz2 11EXTRACT_SUFX= .tar.bz2
12 12
13DISTINFO_FILE= ${.CURDIR}/../../devel/xulrunner10/distinfo 13DISTINFO_FILE= ${.CURDIR}/../../devel/xulrunner10/distinfo
14PATCHDIR= ${.CURDIR}/../../devel/xulrunner10/patches 14PATCHDIR= ${.CURDIR}/../../devel/xulrunner10/patches
15 15
16WRKSRC= ${WRKDIR}/mozilla-esr10 16WRKSRC= ${WRKDIR}/mozilla-esr10
cvs diff -r1.5 -r1.6 pkgsrc/devel/xulrunner10/Attic/distinfo (expand / switch to unified diff)

--- pkgsrc/devel/xulrunner10/Attic/distinfo 2012/09/06 17:24:59 1.5
+++ pkgsrc/devel/xulrunner10/Attic/distinfo 2012/10/13 10:16:23 1.6
@@ -1,18 +1,18 @@ @@ -1,18 +1,18 @@
1$NetBSD: distinfo,v 1.5 2012/09/06 17:24:59 ryoon Exp $ 1$NetBSD: distinfo,v 1.6 2012/10/13 10:16:23 ryoon Exp $
2 2
3SHA1 (firefox-10.0.7esr.source.tar.bz2) = 51f782bab9eb83ba77c86284a5656f8d20d50093 3SHA1 (firefox-10.0.9esr.source.tar.bz2) = 86bb6ff7385a5d98c616c8f817d5ca2d8b01fbf3
4RMD160 (firefox-10.0.7esr.source.tar.bz2) = 5bfbd6c8cbbe5d56ea0e7f20071a43d4ddb47f86 4RMD160 (firefox-10.0.9esr.source.tar.bz2) = bd8309cde3a374790a1560ad1ece21207332497f
5Size (firefox-10.0.7esr.source.tar.bz2) = 75624327 bytes 5Size (firefox-10.0.9esr.source.tar.bz2) = 75634700 bytes
6SHA1 (patch-aa) = 27261c9d6696cd609dd019fa7588f356df7c5ce5 6SHA1 (patch-aa) = 27261c9d6696cd609dd019fa7588f356df7c5ce5
7SHA1 (patch-ab) = b1efa63d3f9e0dca0247037696839dbce756f88c 7SHA1 (patch-ab) = b1efa63d3f9e0dca0247037696839dbce756f88c
8SHA1 (patch-ac) = 4da7049472449bb05590ca434c09a1e08423d2eb 8SHA1 (patch-ac) = 4da7049472449bb05590ca434c09a1e08423d2eb
9SHA1 (patch-ad) = c5589daa0a2ec33bab17e1b6994b43313e3ba8e3 9SHA1 (patch-ad) = c5589daa0a2ec33bab17e1b6994b43313e3ba8e3
10SHA1 (patch-ae) = ca217066945938eece33a6ee41ca8b8d2ccbf6f0 10SHA1 (patch-ae) = ca217066945938eece33a6ee41ca8b8d2ccbf6f0
11SHA1 (patch-af) = 57bb4796db6e039ece84641c07f18b27e372f650 11SHA1 (patch-af) = 57bb4796db6e039ece84641c07f18b27e372f650
12SHA1 (patch-ag) = 588c45ed234065f86b047e2a794d979d4bad71fb 12SHA1 (patch-ag) = 588c45ed234065f86b047e2a794d979d4bad71fb
13SHA1 (patch-ai) = aa72079de6e9baf601858ab55d7300c1ed280156 13SHA1 (patch-ai) = aa72079de6e9baf601858ab55d7300c1ed280156
14SHA1 (patch-aj) = 66c1ef5c3c7d9535852de2c22e792999a6a5f0a7 14SHA1 (patch-aj) = 66c1ef5c3c7d9535852de2c22e792999a6a5f0a7
15SHA1 (patch-ak) = f62c0a24a73c6846ff970509ff3cf78c361bb877 15SHA1 (patch-ak) = f62c0a24a73c6846ff970509ff3cf78c361bb877
16SHA1 (patch-al) = b6c3ba5a629497792fb44e90194f31d58328ac53 16SHA1 (patch-al) = b6c3ba5a629497792fb44e90194f31d58328ac53
17SHA1 (patch-am) = b9f661c03254d15a4f9b83eb355d3b3b6b92dd65 17SHA1 (patch-am) = b9f661c03254d15a4f9b83eb355d3b3b6b92dd65
18SHA1 (patch-an) = 46118ebe923396152ce1ca61d160fbddf1052d2a 18SHA1 (patch-an) = 46118ebe923396152ce1ca61d160fbddf1052d2a
cvs diff -r1.9 -r1.10 pkgsrc/www/firefox10/Attic/Makefile (expand / switch to unified diff)

--- pkgsrc/www/firefox10/Attic/Makefile 2012/10/08 23:02:32 1.9
+++ pkgsrc/www/firefox10/Attic/Makefile 2012/10/13 10:16:23 1.10
@@ -1,18 +1,17 @@ @@ -1,18 +1,17 @@
1# $NetBSD: Makefile,v 1.9 2012/10/08 23:02:32 adam Exp $ 1# $NetBSD: Makefile,v 1.10 2012/10/13 10:16:23 ryoon Exp $
2 2
3.include "../../devel/xulrunner10/dist.mk" 3.include "../../devel/xulrunner10/dist.mk"
4PKGNAME= firefox10-${FIREFOX_VER} 4PKGNAME= firefox10-${FIREFOX_VER}
5PKGREVISION= 4 
6CATEGORIES= www 5CATEGORIES= www
7 6
8MAINTAINER= tnn@NetBSD.org 7MAINTAINER= tnn@NetBSD.org
9HOMEPAGE= http://www.mozilla.org/en-US/firefox/organizations/ 8HOMEPAGE= http://www.mozilla.org/en-US/firefox/organizations/
10COMMENT= Web browser with support for extensions 9COMMENT= Web browser with support for extensions
11LICENSE= mpl-1.1 10LICENSE= mpl-1.1
12 11
13MOZILLA_DIR= # empty 12MOZILLA_DIR= # empty
14 13
15CONFIGURE_ARGS+= --enable-application=browser 14CONFIGURE_ARGS+= --enable-application=browser
16CONFIGURE_ARGS+= --with-libxul-sdk=${PREFIX}/lib/xulrunner10-sdk 15CONFIGURE_ARGS+= --with-libxul-sdk=${PREFIX}/lib/xulrunner10-sdk
17CONFIGURE_ARGS+= --with-system-libxul 16CONFIGURE_ARGS+= --with-system-libxul
18 17