Subject: CVS commit: pkgsrc/www/firefox60
From: Ryo ONODERA
Date: 2018-12-16 08:38:47
Message id: 20181216073848.00262FB16@cvs.NetBSD.org
Log Message:
Update to 60.4.0

Changelog:
New
  Updated list of currency codes to include Unidad Previsional (UYW) (Bug 1499028)

Fixed
  Various security fixes

Security fixes:
#CVE-2018-17466: Buffer overflow and out-of-bounds read in ANGLE library with \ 
TextureStorage11
#CVE-2018-18492: Use-after-free with select element
#CVE-2018-18493: Buffer overflow in accelerated 2D canvas with Skia
#CVE-2018-18494: Same-origin policy violation using location attribute and \ 
performance.getEntries to steal cross-origin URLs
#CVE-2018-18498: Integer overflow when calculating buffer sizes for images
#CVE-2018-12405: Memory safety bugs fixed in Firefox 64 and Firefox ESR 60.4
Files:
RevisionActionfile
1.12modifypkgsrc/www/firefox60/Makefile
1.4modifypkgsrc/www/firefox60/distinfo