./www/firefox, Web browser with support for extensions (version 40)

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]

Branch: CURRENT, Version: 40.0.3nb1, Package name: firefox-40.0.3nb1, Maintainer: ryoon

Mozilla Firefox is a free, open-source and cross-platform web browser
for Windows, Linux, MacOS X and many other operating systems.

It is fast and easy to use, and offers many advantages over other web
browsers, such as tabbed browsing and the ability to block pop-up

Firefox also offers excellent bookmark and history management, and it
can be extended by developers using industry standards such as XML,
CSS, JavaScript, C++, etc. Many extensions are available.

Required to run:
[sysutils/desktop-file-utils] [textproc/icu] [graphics/MesaLib] [graphics/cairo] [graphics/jpeg] [databases/sqlite3] [net/libIDL] [devel/nspr] [devel/libffi] [devel/nss] [x11/gtk2] [textproc/hunspell] [x11/pixman] [audio/pulseaudio] [multimedia/libvpx] [multimedia/gstreamer1] [multimedia/gst-plugins1-base] [lang/gcc48-libs] [graphics/graphite2]

Required to build:
[databases/py-sqlite2] [pkgtools/x11-links] [x11/compositeproto] [x11/glproto] [x11/renderproto] [x11/xproto] [x11/xf86vidmodeproto] [x11/recordproto] [x11/xf86driproto] [x11/damageproto] [x11/inputproto] [x11/xextproto] [x11/randrproto] [x11/dri2proto] [x11/xcb-proto] [x11/fixesproto4] [lang/python27] [lang/gcc48]

Package options: pulseaudio

Master sites: (Expand)

SHA1: 6ddda46bd6540ab3ae932fbb5ffec8e9a85cab13
RMD160: 640b728067690744fc979093018f19d3b1fd546c
Filesize: 174083.479 KB

Version history: (Expand)

CVS history: (Expand)

   2015-08-30 11:29:15 by Ryo ONODERA | Files touched by this commit (3) | Package updated
Log message:

* Set layers.offmainthreadcomposition.enabled=false by default.
  Improve stability.
   2015-08-29 14:11:22 by Ryo ONODERA | Files touched by this commit (3) | Package updated
Log message:
Update to 40.0.3

* Enable PIE.

Changed Disable the asynchronous plugin initialization (1198590)
Fixed Fix a segmentation fault in the GStreamer support (GNU/Linux) (1145230)
Fixed Fix a startup crash when using DisplayLink (Windows Only) (1195844)
Fixed Fix a regression with some Japanese fonts used in the <input> field \ 
Fixed On some sites, the selection in a select combox box using the mouse could \ 
be broken (1194733)
Fixed Some search partner codes were missing (1195683)
Fixed Various security fixes

Fixed in Firefox 40.0.3
    2015-95 Add-on notification bypass through data URLs
    2015-94 Use-after-free when resizing canvas element during restyling
   2015-08-19 13:37:04 by Ryo ONODERA | Files touched by this commit (3) | Package updated
Log message:
Update to 40.0.2

* Disable OSS support explicitly under NetBSD.

New Enabled API allowing Windows 10 users to open settings dialog (1193196)
Fixed mozalloc.lib was missing from the xulrunner package (1168291)
Fixed Fix a startup crash with some combination of hardware and drivers (1160295)
   2015-08-12 07:41:30 by Ryo ONODERA | Files touched by this commit (3) | Package updated
Log message:

* Fix merge mistake.
   2015-08-12 01:48:18 by Ryo ONODERA | Files touched by this commit (23) | Package updated
Log message:
Update to 40.0

    New Support for Windows 10
    New Added protection against unwanted software downloads
    New User can receive suggested tiles in the new tab page based on categories \ 
Firefox matches to browsing history (en-US only).
    New Hello allows adding a link to conversations to provide context on what \ 
the conversation will be about
    New New style for add-on manager based on the in-content preferences style
    New Improved scrolling, graphics, and video playback performance with off \ 
main thread compositing (GNU/Linux only)
    New Graphic blocklist mechanism improved: Firefox version ranges can be \ 
specified, limiting the number of devices blocked
    Changed Add-on extensions that are not signed by Mozilla will display a warning
    Changed NPAPI Plug-in performance improved via asynchronous initialization
    Changed Smoother animation and scrolling with hardware vsync (Windows only)
    Changed JPEG images use less memory when scaled and can be painted faster
    Changed Sub-resources can no longer request HTTP authentication, thus \ 
protecting users from inadvertently disclosing login data
    HTML5 IndexedDB transactions are now non-durable by default
    HTML5 Implemented AudioBufferSourceNode.detune to modulate playback rate in \ 
cents, a logarithmic unit of measure used for musical intervals
    Developer Improved Performance tools in the developer tools: Waterfall view, \ 
Call Tree view and a Flame Chart view
    Developer New rules view tooltip in the Inspector to tweak CSS Filter values
    Developer Console API messages from SharedWorker and ServiceWorker are now \ 
displayed in web console
    Developer New page ruler highlighting tool that displays lightweight \ 
horizontal and vertical rules on a page
    Developer Inspector now searches across all content frames in a page
    Fixed Kannada text does not display properly in built-in pdf viewer
    Fixed Various security fixes

Known Issues
    unresolved If Firefox is restarted from an add-on install notification, \ 
on-going private browsing downloads might be canceled without warning (1185294)

Fixed in Firefox 40
    2015-92 Use-after-free in XMLHttpRequest with shared workers
    2015-91 Mozilla Content Security Policy allows for asterisk wildcards in \ 
violation of CSP specification
    2015-90 Vulnerabilities found through code inspection
    2015-89 Buffer overflows on Libvpx when decoding WebM video
    2015-88 Heap overflow in gdk-pixbuf when scaling bitmap images
    2015-87 Crash when using shared memory in JavaScript
    2015-86 Feed protocol with POST bypasses mixed content protections
    2015-85 Out-of-bounds write with Updater and malicious MAR file
    2015-84 Arbitrary file overwriting through Mozilla Maintenance Service with \ 
hard links
    2015-83 Overflow issues in libstagefright
    2015-82 Redefinition of non-configurable JavaScript object properties
    2015-81 Use-after-free in MediaStream playback
    2015-80 Out-of-bounds read with malformed MP3 file
    2015-79 Miscellaneous memory safety hazards (rv:40.0 / rv:38.2)
   2015-08-09 18:21:49 by Havard Eidnes | Files touched by this commit (1)
Log message:
Hm, actually get rid of the PKGREVISION now that we bumped the version.
   2015-08-09 18:20:39 by Havard Eidnes | Files touched by this commit (2) | Package updated
Log message:
Update to version 39.0.3.

Fixes Mozilla Foundation Security Advisory 2015-78:
Same origin violation and local file stealing via PDF reader

 * Fixes CVE-2015-4495 -  It's possible to read local files or
   perform privilege escalation by using a native setter, bug 1178058.
 * Remove PlayPreview registration from PDF viewer, bug 1179262.
   2015-07-17 00:05:31 by Ryo ONODERA | Files touched by this commit (1)
Log message:
Recent firefox does not support external xulrunner build.
Remove commented out lines.