Sun Mar 26 03:53:34 2017 UTC ()
Update to 45.8.0

Changelog:
 #CVE-2017-5400: asm.js JIT-spray bypass of ASLR and DEP
 #CVE-2017-5401: Memory Corruption when handling ErrorResult
 #CVE-2017-5402: Use-after-free working with events in FontFace objects
 #CVE-2017-5404: Use-after-free working with ranges in selections
 #CVE-2017-5407: Pixel and history stealing via floating-point timing side channel with SVG filters
 #CVE-2017-5410: Memory corruption during JavaScript garbage collection incremental sweeping
 #CVE-2017-5409: File deletion via callback parameter in Mozilla Windows Updater and Maintenance Service
 #CVE-2017-5408: Cross-origin reading of video captions in violation of CORS
 #CVE-2017-5405: FTP response codes can cause use of uninitialized values for ports
 #CVE-2017-5398: Memory safety bugs fixed in Firefox 52 and Firefox ESR 45.8


(ryoon)
diff -r1.21 -r1.22 pkgsrc/www/firefox45/Makefile
diff -r1.12 -r1.13 pkgsrc/www/firefox45/distinfo
diff -r1.5 -r1.6 pkgsrc/www/firefox45/mozilla-common.mk
diff -r1.1 -r1.2 pkgsrc/www/firefox45/patches/patch-ipc_chromium_src_base_message__pump__libevent.cc
cvs diff -r1.21 -r1.22 pkgsrc/www/firefox45/Attic/Makefile (expand / switch to unified diff)

--- pkgsrc/www/firefox45/Attic/Makefile 2017/02/12 06:26:08 1.21
+++ pkgsrc/www/firefox45/Attic/Makefile 2017/03/26 03:53:34 1.22
@@ -1,18 +1,18 @@ @@ -1,18 +1,18 @@
1# $NetBSD: Makefile,v 1.21 2017/02/12 06:26:08 ryoon Exp $ 1# $NetBSD: Makefile,v 1.22 2017/03/26 03:53:34 ryoon Exp $
2 2
3MOZILLA_PKG_NAME= firefox45 3MOZILLA_PKG_NAME= firefox45
4FIREFOX_VER= ${MOZ_BRANCH}${MOZ_BRANCH_MINOR} 4FIREFOX_VER= ${MOZ_BRANCH}${MOZ_BRANCH_MINOR}
5MOZ_BRANCH= 45.7 5MOZ_BRANCH= 45.8
6MOZ_BRANCH_MINOR= .0esr 6MOZ_BRANCH_MINOR= .0esr
7 7
8DISTNAME= firefox-${FIREFOX_VER}.source 8DISTNAME= firefox-${FIREFOX_VER}.source
9PKGNAME= ${MOZILLA_PKG_NAME}-${MOZ_BRANCH}${MOZ_BRANCH_MINOR:S/b/beta/:S/esr//} 9PKGNAME= ${MOZILLA_PKG_NAME}-${MOZ_BRANCH}${MOZ_BRANCH_MINOR:S/b/beta/:S/esr//}
10PKGREVISION= 3 10PKGREVISION= 3
11CATEGORIES= www 11CATEGORIES= www
12MASTER_SITES+= ${MASTER_SITE_MOZILLA:=firefox/releases/${FIREFOX_VER}/source/} 12MASTER_SITES+= ${MASTER_SITE_MOZILLA:=firefox/releases/${FIREFOX_VER}/source/}
13MASTER_SITES+= ${MASTER_SITE_MOZILLA_ALL:=firefox/releases/${FIREFOX_VER}/source/} 13MASTER_SITES+= ${MASTER_SITE_MOZILLA_ALL:=firefox/releases/${FIREFOX_VER}/source/}
14EXTRACT_SUFX= .tar.xz 14EXTRACT_SUFX= .tar.xz
15 15
16WRKSRC= ${WRKDIR}/${DISTNAME:S/.source//} 16WRKSRC= ${WRKDIR}/${DISTNAME:S/.source//}
17 17
18MAINTAINER= ryoon@NetBSD.org 18MAINTAINER= ryoon@NetBSD.org
cvs diff -r1.12 -r1.13 pkgsrc/www/firefox45/Attic/distinfo (expand / switch to unified diff)

--- pkgsrc/www/firefox45/Attic/distinfo 2017/02/08 07:32:01 1.12
+++ pkgsrc/www/firefox45/Attic/distinfo 2017/03/26 03:53:34 1.13
@@ -1,19 +1,19 @@ @@ -1,19 +1,19 @@
1$NetBSD: distinfo,v 1.12 2017/02/08 07:32:01 maya Exp $ 1$NetBSD: distinfo,v 1.13 2017/03/26 03:53:34 ryoon Exp $
2 2
3SHA1 (firefox-45.7.0esr.source.tar.xz) = d995e19d45fe7fbb404f2bbba87f0eb1d6da3b2b 3SHA1 (firefox-45.8.0esr.source.tar.xz) = 7b1eb51634f9127ecf5855b487948851b9cc3323
4RMD160 (firefox-45.7.0esr.source.tar.xz) = 2731601efc07ad538e292d9bfb0de3532fc052dd 4RMD160 (firefox-45.8.0esr.source.tar.xz) = 5040a829dd9f83e7c120249a8b8ebecb8bc8ed54
5SHA512 (firefox-45.7.0esr.source.tar.xz) = 6424101b6958191ce654d0619950dfbf98d4aa6bdd979306a2df8d6d30d3fecf1ab44638061a2b4fb1af85fe972f5ff49400e8eeda30cdcb9087c4b110b97a7d 5SHA512 (firefox-45.8.0esr.source.tar.xz) = f7b5e0c659b2e824cee7f3784e2d72c562915af91c7e316ec1519305755d2126d91b74c47f96c8b4fc7377710f295545c58b2f989c65c268fc23677ef8cf5c85
6Size (firefox-45.7.0esr.source.tar.xz) = 184131284 bytes 6Size (firefox-45.8.0esr.source.tar.xz) = 185229628 bytes
7SHA1 (patch-aa) = c97ef4b107ea917c2a10d1a1fdaf524d794612a0 7SHA1 (patch-aa) = c97ef4b107ea917c2a10d1a1fdaf524d794612a0
8SHA1 (patch-ao) = f4244b8e3d89743cb97395913e8916f7121c172e 8SHA1 (patch-ao) = f4244b8e3d89743cb97395913e8916f7121c172e
9SHA1 (patch-as) = d5d7f8250a9cd462f25d529c2a79c59a1bba9db2 9SHA1 (patch-as) = d5d7f8250a9cd462f25d529c2a79c59a1bba9db2
10SHA1 (patch-bf) = 75c971043e9f693203d6bd670b2c20c4952a7756 10SHA1 (patch-bf) = 75c971043e9f693203d6bd670b2c20c4952a7756
11SHA1 (patch-browser_installer_package-manifest.in) = 7c4f1822cd78a5ed465b954f4b62514c64ad7b84 11SHA1 (patch-browser_installer_package-manifest.in) = 7c4f1822cd78a5ed465b954f4b62514c64ad7b84
12SHA1 (patch-build_autoconf_compiler-opts.m4) = ccdc06a2b07b7664f9cb91bcc4fb29052dda8b07 12SHA1 (patch-build_autoconf_compiler-opts.m4) = ccdc06a2b07b7664f9cb91bcc4fb29052dda8b07
13SHA1 (patch-build_autoconf_nss.m4) = 970fcd9aeede2347651c516d5211c4555dd28a4d 13SHA1 (patch-build_autoconf_nss.m4) = 970fcd9aeede2347651c516d5211c4555dd28a4d
14SHA1 (patch-build_gyp.mozbuild) = 201715e30e20090e9a9ef54cb981d283c9aabf8f 14SHA1 (patch-build_gyp.mozbuild) = 201715e30e20090e9a9ef54cb981d283c9aabf8f
15SHA1 (patch-build_pgo_profileserver.py) = 8666187258e47c037f2065a19a5b38946fdc0f6c 15SHA1 (patch-build_pgo_profileserver.py) = 8666187258e47c037f2065a19a5b38946fdc0f6c
16SHA1 (patch-config_Makefile.in) = 0a072de112e0e5cc4b929a7094498fcf003e27b3 16SHA1 (patch-config_Makefile.in) = 0a072de112e0e5cc4b929a7094498fcf003e27b3
17SHA1 (patch-config_baseconfig.mk) = b8e8d46be72d381f7b95b62b9c0778e98954a888 17SHA1 (patch-config_baseconfig.mk) = b8e8d46be72d381f7b95b62b9c0778e98954a888
18SHA1 (patch-config_external_moz.build) = fa4f350b077f5c4a1d7a07d123c635bd9c7f1f75 18SHA1 (patch-config_external_moz.build) = fa4f350b077f5c4a1d7a07d123c635bd9c7f1f75
19SHA1 (patch-config_rules.mk) = d7f7060b246092eae3d7a792e43b14e462a37abd 19SHA1 (patch-config_rules.mk) = d7f7060b246092eae3d7a792e43b14e462a37abd
@@ -37,27 +37,27 @@ SHA1 (patch-gfx_moz.build) = a98bda47275 @@ -37,27 +37,27 @@ SHA1 (patch-gfx_moz.build) = a98bda47275
37SHA1 (patch-gfx_skia_generate__mozbuild.py) = 68d690afd9092f11e17b7ec7db0987e8b6778cc5 37SHA1 (patch-gfx_skia_generate__mozbuild.py) = 68d690afd9092f11e17b7ec7db0987e8b6778cc5
38SHA1 (patch-gfx_skia_moz.build) = 019f502ee236c67ab3cba8c0e31591899c2c857c 38SHA1 (patch-gfx_skia_moz.build) = 019f502ee236c67ab3cba8c0e31591899c2c857c
39SHA1 (patch-gfx_skia_skia_src_core_SkUtilsArm.cpp) = 80283dd702be199ec7d038f4b2bb3385e0c4b482 39SHA1 (patch-gfx_skia_skia_src_core_SkUtilsArm.cpp) = 80283dd702be199ec7d038f4b2bb3385e0c4b482
40SHA1 (patch-gfx_skia_skia_src_opts_SkBitmapProcState__opts__arm.cpp) = 99fad319f00a72754f3596791f353b8ab1359d2b 40SHA1 (patch-gfx_skia_skia_src_opts_SkBitmapProcState__opts__arm.cpp) = 99fad319f00a72754f3596791f353b8ab1359d2b
41SHA1 (patch-gfx_skia_skia_src_opts_memset.arm.S) = a7ecacb40b482b2713ec71af197528bbe4bea00d 41SHA1 (patch-gfx_skia_skia_src_opts_memset.arm.S) = a7ecacb40b482b2713ec71af197528bbe4bea00d
42SHA1 (patch-gfx_thebes_moz.build) = bbc67642604042c8d63e6de1a02d2c62fcf16d83 42SHA1 (patch-gfx_thebes_moz.build) = bbc67642604042c8d63e6de1a02d2c62fcf16d83
43SHA1 (patch-gfx_ycbcr_moz.build) = 121386ef62ff7425e6f93bc624555199f2ac3485 43SHA1 (patch-gfx_ycbcr_moz.build) = 121386ef62ff7425e6f93bc624555199f2ac3485
44SHA1 (patch-gfx_ycbcr_yuv__row__arm.S) = dc136475637d808055e710a17b16899380b59068 44SHA1 (patch-gfx_ycbcr_yuv__row__arm.S) = dc136475637d808055e710a17b16899380b59068
45SHA1 (patch-image_decoders_nsJPEGDecoder.cpp) = 522c46732d44be15411d39e16c89bc848d5c6f7a 45SHA1 (patch-image_decoders_nsJPEGDecoder.cpp) = 522c46732d44be15411d39e16c89bc848d5c6f7a
46SHA1 (patch-intl_hyphenation_glue_hnjalloc.h) = 4d5e1ff0b7b7da4755fb1dbab1fd671478c0335c 46SHA1 (patch-intl_hyphenation_glue_hnjalloc.h) = 4d5e1ff0b7b7da4755fb1dbab1fd671478c0335c
47SHA1 (patch-ipc_chromium_src_base_atomicops.h) = 24b63a6e51d9ab27f2788ee02f2ffa7e1c36f29a 47SHA1 (patch-ipc_chromium_src_base_atomicops.h) = 24b63a6e51d9ab27f2788ee02f2ffa7e1c36f29a
48SHA1 (patch-ipc_chromium_src_base_file__util__posix.cc) = 70772ab2a474b7d3d15cf401c636ca843cfe2034 48SHA1 (patch-ipc_chromium_src_base_file__util__posix.cc) = 70772ab2a474b7d3d15cf401c636ca843cfe2034
49SHA1 (patch-ipc_chromium_src_base_message__loop.cc) = 16158489773bbcba35e224d30bebace0c93599ae 49SHA1 (patch-ipc_chromium_src_base_message__loop.cc) = 16158489773bbcba35e224d30bebace0c93599ae
50SHA1 (patch-ipc_chromium_src_base_message__pump__libevent.cc) = 2c5ce6290760e0435365dac788d283f9bb78acd9 50SHA1 (patch-ipc_chromium_src_base_message__pump__libevent.cc) = 8c3d2604df0e05d259e3c2b5d39fb2855ffdf449
51SHA1 (patch-ipc_chromium_src_base_platform__thread.h) = e6d7ac39a8b2a1b232638f7671e8530acfed0b97 51SHA1 (patch-ipc_chromium_src_base_platform__thread.h) = e6d7ac39a8b2a1b232638f7671e8530acfed0b97
52SHA1 (patch-ipc_chromium_src_base_platform__thread__posix.cc) = 6c98bbecde21b8571c71477f351488d9a3da45f3 52SHA1 (patch-ipc_chromium_src_base_platform__thread__posix.cc) = 6c98bbecde21b8571c71477f351488d9a3da45f3
53SHA1 (patch-ipc_chromium_src_base_process__util.h) = 4b24c3467866a601d68bb83f44e5fd38fb27188d 53SHA1 (patch-ipc_chromium_src_base_process__util.h) = 4b24c3467866a601d68bb83f44e5fd38fb27188d
54SHA1 (patch-ipc_chromium_src_base_process__util__bsd.cc) = 9ffe81c7c4485bef53c4e0846b1d4499f4b5b23c 54SHA1 (patch-ipc_chromium_src_base_process__util__bsd.cc) = 9ffe81c7c4485bef53c4e0846b1d4499f4b5b23c
55SHA1 (patch-ipc_chromium_src_base_process__util__posix.cc) = 6b2611cc902f17e726aabcf4fb5fff2c71852408 55SHA1 (patch-ipc_chromium_src_base_process__util__posix.cc) = 6b2611cc902f17e726aabcf4fb5fff2c71852408
56SHA1 (patch-ipc_chromium_src_base_scoped__nsautorelease__pool.h) = 8c61a35e99e7f54e4b2bf5931c59eb2b7a04127a 56SHA1 (patch-ipc_chromium_src_base_scoped__nsautorelease__pool.h) = 8c61a35e99e7f54e4b2bf5931c59eb2b7a04127a
57SHA1 (patch-ipc_chromium_src_base_sys__info__posix.cc) = 927f1f700c917f6f6b531aa4c10aba0fdd181195 57SHA1 (patch-ipc_chromium_src_base_sys__info__posix.cc) = 927f1f700c917f6f6b531aa4c10aba0fdd181195
58SHA1 (patch-ipc_chromium_src_base_time__posix.cc) = 337a0b4a5d51d68c7699b79c7591b953ea23ca67 58SHA1 (patch-ipc_chromium_src_base_time__posix.cc) = 337a0b4a5d51d68c7699b79c7591b953ea23ca67
59SHA1 (patch-ipc_chromium_src_build_build__config.h) = af5a10df7d8fe9715f0e43cd6be14f8f20c53517 59SHA1 (patch-ipc_chromium_src_build_build__config.h) = af5a10df7d8fe9715f0e43cd6be14f8f20c53517
60SHA1 (patch-ipc_chromium_src_chrome_common_transport__dib.h) = 7af18973c005d7b144a225bacf41833e059cb400 60SHA1 (patch-ipc_chromium_src_chrome_common_transport__dib.h) = 7af18973c005d7b144a225bacf41833e059cb400
61SHA1 (patch-ipc_glue_GeckoChildProcessHost.cpp) = 45f2f22b4f567ffddd4458f635179b5201e87e64 61SHA1 (patch-ipc_glue_GeckoChildProcessHost.cpp) = 45f2f22b4f567ffddd4458f635179b5201e87e64
62SHA1 (patch-ipc_glue_StringUtil.cpp) = f238adebb5bdf57f7109a781c6f3fb195763f3c0 62SHA1 (patch-ipc_glue_StringUtil.cpp) = f238adebb5bdf57f7109a781c6f3fb195763f3c0
63SHA1 (patch-ipc_glue_moz.build) = 5c3f99ede7ab2d8ad58e92b31576971de87cb528 63SHA1 (patch-ipc_glue_moz.build) = 5c3f99ede7ab2d8ad58e92b31576971de87cb528
cvs diff -r1.5 -r1.6 pkgsrc/www/firefox45/Attic/mozilla-common.mk (expand / switch to unified diff)

--- pkgsrc/www/firefox45/Attic/mozilla-common.mk 2017/01/01 14:44:03 1.5
+++ pkgsrc/www/firefox45/Attic/mozilla-common.mk 2017/03/26 03:53:34 1.6
@@ -1,14 +1,14 @@ @@ -1,14 +1,14 @@
1# $NetBSD: mozilla-common.mk,v 1.5 2017/01/01 14:44:03 wiz Exp $ 1# $NetBSD: mozilla-common.mk,v 1.6 2017/03/26 03:53:34 ryoon Exp $
2# 2#
3# common Makefile fragment for mozilla packages based on gecko 2.0. 3# common Makefile fragment for mozilla packages based on gecko 2.0.
4# 4#
5# used by www/firefox/Makefile 5# used by www/firefox/Makefile
6# used by www/seamonkey/Makefile 6# used by www/seamonkey/Makefile
7 7
8.include "../../mk/bsd.prefs.mk" 8.include "../../mk/bsd.prefs.mk"
9 9
10.if ${MACHINE_ARCH} == "i386" || ${MACHINE_ARCH} == "x86_64" 10.if ${MACHINE_ARCH} == "i386" || ${MACHINE_ARCH} == "x86_64"
11BUILD_DEPENDS+= yasm>=1.1:../../devel/yasm 11BUILD_DEPENDS+= yasm>=1.1:../../devel/yasm
12.endif 12.endif
13 13
14GNU_CONFIGURE= yes 14GNU_CONFIGURE= yes
@@ -170,27 +170,27 @@ CONFIGURE_ARGS.Darwin+= --disable-sandbo @@ -170,27 +170,27 @@ CONFIGURE_ARGS.Darwin+= --disable-sandbo
170# default, which is not always possible. 170# default, which is not always possible.
171.if !empty(MACHINE_PLATFORM:MDarwin-8.*-*) 171.if !empty(MACHINE_PLATFORM:MDarwin-8.*-*)
172CONFIGURE_ARGS+= --enable-macos-target=10.4 172CONFIGURE_ARGS+= --enable-macos-target=10.4
173.elif !empty(MACHINE_PLATFORM:MDarwin-9.*-*) 173.elif !empty(MACHINE_PLATFORM:MDarwin-9.*-*)
174CONFIGURE_ARGS+= --enable-macos-target=10.5 174CONFIGURE_ARGS+= --enable-macos-target=10.5
175.endif 175.endif
176 176
177# 177#
178# pysqlite2 is used by xulrunner's Python virtualenv. If pysqlite2 isn't 178# pysqlite2 is used by xulrunner's Python virtualenv. If pysqlite2 isn't
179# installed at build time it will attempt to download it instead, so the 179# installed at build time it will attempt to download it instead, so the
180# problem is stealthy in a networked environment, and obvious in an 180# problem is stealthy in a networked environment, and obvious in an
181# offline environment. 181# offline environment.
182# 182#
183BUILD_DEPENDS+= ${PYPKGPREFIX}-sqlite2-[0-9]*:../../databases/py-sqlite2 183#BUILD_DEPENDS+= ${PYPKGPREFIX}-sqlite2-[0-9]*:../../databases/py-sqlite2
184 184
185# Makefiles sometimes call "rm -f" without more arguments. Kludge around ... 185# Makefiles sometimes call "rm -f" without more arguments. Kludge around ...
186.PHONY: create-rm-wrapper 186.PHONY: create-rm-wrapper
187pre-configure: create-rm-wrapper 187pre-configure: create-rm-wrapper
188create-rm-wrapper: 188create-rm-wrapper:
189 printf '#!/bin/sh\n[ "$$*" = "-f" ] && exit 0\nexec /bin/rm $$@\n' > \ 189 printf '#!/bin/sh\n[ "$$*" = "-f" ] && exit 0\nexec /bin/rm $$@\n' > \
190 ${WRAPPER_DIR}/bin/rm 190 ${WRAPPER_DIR}/bin/rm
191 chmod +x ${WRAPPER_DIR}/bin/rm 191 chmod +x ${WRAPPER_DIR}/bin/rm
192 192
193# The configure test for __thread succeeds, but later we end up with: 193# The configure test for __thread succeeds, but later we end up with:
194# dist/bin/libxul.so: undefined reference to `__tls_get_addr' 194# dist/bin/libxul.so: undefined reference to `__tls_get_addr'
195CONFIGURE_ENV.NetBSD+= ac_cv_thread_keyword=no 195CONFIGURE_ENV.NetBSD+= ac_cv_thread_keyword=no
196 196
cvs diff -r1.1 -r1.2 pkgsrc/www/firefox45/patches/Attic/patch-ipc_chromium_src_base_message__pump__libevent.cc (expand / switch to unified diff)

--- pkgsrc/www/firefox45/patches/Attic/patch-ipc_chromium_src_base_message__pump__libevent.cc 2016/04/27 16:36:50 1.1
+++ pkgsrc/www/firefox45/patches/Attic/patch-ipc_chromium_src_base_message__pump__libevent.cc 2017/03/26 03:53:34 1.2
@@ -1,22 +1,20 @@ @@ -1,22 +1,20 @@
1$NetBSD: patch-ipc_chromium_src_base_message__pump__libevent.cc,v 1.1 2016/04/27 16:36:50 ryoon Exp $ 1$NetBSD: patch-ipc_chromium_src_base_message__pump__libevent.cc,v 1.2 2017/03/26 03:53:34 ryoon Exp $
2 2
3Allow older libevent 3--- ipc/chromium/src/base/message_pump_libevent.cc.orig 2017-02-24 16:14:48.000000000 +0000
4 
5--- ipc/chromium/src/base/message_pump_libevent.cc.orig 2016-01-23 23:23:38.000000000 +0000 
6+++ ipc/chromium/src/base/message_pump_libevent.cc 4+++ ipc/chromium/src/base/message_pump_libevent.cc
7@@ -20,6 +20,7 @@ 5@@ -20,6 +20,7 @@
8  6
9 // This macro checks that the _EVENT_SIZEOF_* constants defined in 7 // This macro checks that the _EVENT_SIZEOF_* constants defined in
10 // ipc/chromiume/src/third_party/<platform>/event2/event-config.h are correct. 8 // ipc/chromiume/src/third_party/<platform>/event2/event-config.h are correct.
11+#if 0 9+#if 0
 10 #if defined(_EVENT_SIZEOF_SHORT)
12 #define CHECK_EVENT_SIZEOF(TYPE, type) \ 11 #define CHECK_EVENT_SIZEOF(TYPE, type) \
13 static_assert(_EVENT_SIZEOF_##TYPE == sizeof(type), \ 12 static_assert(_EVENT_SIZEOF_##TYPE == sizeof(type), \
14 "bad _EVENT_SIZEOF_"#TYPE); 13@@ -38,6 +39,7 @@ CHECK_EVENT_SIZEOF(PTHREAD_T, pthread_t)
15@@ -30,6 +31,7 @@ CHECK_EVENT_SIZEOF(PTHREAD_T, pthread_t) 
16 CHECK_EVENT_SIZEOF(SHORT, short); 14 CHECK_EVENT_SIZEOF(SHORT, short);
17 CHECK_EVENT_SIZEOF(SIZE_T, size_t); 15 CHECK_EVENT_SIZEOF(SIZE_T, size_t);
18 CHECK_EVENT_SIZEOF(VOID_P, void*); 16 CHECK_EVENT_SIZEOF(VOID_P, void*);
19+#endif 17+#endif
20  18
21 // Lifecycle of struct event 19 // Lifecycle of struct event
22 // Libevent uses two main data structures: 20 // Libevent uses two main data structures: