./www/firefox, Web browser with support for extensions (version 46)

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]

Branch: CURRENT, Version: 46.0, Package name: firefox-46.0, Maintainer: ryoon

Mozilla Firefox is a free, open-source and cross-platform web browser
for Windows, Linux, MacOS X and many other operating systems.

It is fast and easy to use, and offers many advantages over other web
browsers, such as tabbed browsing and the ability to block pop-up

Firefox also offers excellent bookmark and history management, and it
can be extended by developers using industry standards such as XML,
CSS, JavaScript, C++, etc. Many extensions are available.

Required to run:
[sysutils/desktop-file-utils] [textproc/icu] [graphics/MesaLib] [graphics/cairo] [graphics/jpeg] [net/libIDL] [devel/nspr] [devel/libffi] [devel/nss] [x11/gtk2] [textproc/hunspell] [x11/pixman] [audio/pulseaudio] [multimedia/libvpx] [lang/gcc48-libs] [graphics/graphite2]

Required to build:
[databases/py-sqlite2] [pkgtools/x11-links] [devel/yasm] [x11/compositeproto] [x11/glproto] [x11/renderproto] [x11/xproto] [x11/xf86vidmodeproto] [x11/recordproto] [x11/xf86driproto] [x11/damageproto] [x11/inputproto] [x11/xextproto] [x11/randrproto] [x11/dri2proto] [x11/xcb-proto] [x11/fixesproto4] [lang/python27] [lang/gcc48]

Package options: pulseaudio

Master sites: (Expand)

SHA1: 95c5673b4449e8d694c50aea23d8160509d6a85b
RMD160: 333ab663beceeed102a90e0c5c3f17610b9895d8
Filesize: 182948.211 KB

Version history: (Expand)

CVS history: (Expand)

   2016-04-27 18:22:40 by Ryo ONODERA | Files touched by this commit (23) | Package updated
Log message:
Update to 46.0

* Drop buildlink to gstreamer1

    Improved security of the JavaScript Just In Time (JIT) Compiler
    GTK3 integration (GNU/Linux only)

    Correct rendering for scaled SVGs that use a clip and a mask
    Various security fixes
    Screen reader behavior with blank spaces in Google Docs corrected

    WebRTC fixes to improve performance and stability

    Display dominator trees in Memory tool
    Allocation and garbage collection pause profiling in the performance panel
    Launch responsive mode from the Style Editor @media sidebar

    Added support for document.elementsFromPoint
    Added HKDF support for Web Crypto API

Fixed in Firefox 46
    2016-48 Firefox Health Reports could accept events from untrusted domains
    2016-47 Write to invalid HashMap entry through JavaScript.watch()
    2016-46 Elevation of privilege with chrome.tabs.update API in web extensions
    2016-45 CSP not applied to pages sent with multipart/x-mixed-replace
    2016-44 Buffer overflow in libstagefright with CENC offsets
    2016-43 Disclosure of user actions through JavaScript with motion and \ 
orientation sensors
    2016-42 Use-after-free and buffer overflow in Service Workers
    2016-41 Content provider permission bypass allows malicious application to \ 
access data
    2016-40 Privilege escalation through file deletion by Maintenance Service updater
    2016-39 Miscellaneous memory safety hazards (rv:46.0 / rv:45.1 / rv:38.8)
   2016-04-13 22:37:33 by Ryo ONODERA | Files touched by this commit (3) | Package updated
Log message:
Update to 45.0.2

    Fix an issue impacting the cookie header when third-party cookies are \ 
blocked (1257861)
    Fix a web compatibility regression impacting the srcset attribute of the \ 
image tag (1259482)
    Fix a regression with the copy and paste with some old versions of some \ 
Gecko applications like Thunderbird (1254980)
    Fix a crash impacting the video playback with Media Source Extension (1258562)
    Fix a regression impacting some specific uploads (1255735)
   2016-04-11 21:02:08 by Ryo ONODERA | Files touched by this commit (527)
Log message:
Recursive revbump from textproc/icu 57.1
   2016-03-19 23:57:50 by Ryo ONODERA | Files touched by this commit (2) | Package updated
Log message:
Update to 45.0.1

    Fix a potential performance regression (Youtube for example) (1220502)
    Fix a regression causing search engine settings to be lost in some context \ 
    Bring back non-standard jar: URIs to fix a regression in IBM iNotes (1255139)
    XSLTProcessor.importStylesheet was failing when <import> was used (1249572)
    Fix an issue which could cause the list of search provider to be empty (1255605)
    Fix a regression when using the location bar (1254503)
    Fix some loading issues when Accept third-party cookies: was set to Never \ 

    Disabled Graphite font shaping library
   2016-03-09 08:12:25 by Tobias Nygren | Files touched by this commit (2)
Log message:
Disable the SPS profiler. It makes extra files appear on Linux in the PLIST
and is only useful for Gecko developers.
   2016-03-08 22:32:52 by Ryo ONODERA | Files touched by this commit (22) | Package updated
Log message:
Update to 45.0

    Instant browser tab sharing through Hello

    Tabs synced via Firefox Accounts from other devices are now shown in \ 
dropdown area of Awesome Bar when searching

    Synced Tabs button in button bar

    Introduce a new preference (network.dns.blockDotOnion) to allow blocking \ 
.onion at the DNS level

    Guarani [gn] locale added

    URLs containing a Unicode-format Internationalized Domain Name (IDN) are now \ 
properly redirected

    Various security fixes

Fixed in Firefox 45
    2016-37 Font vulnerabilities in the Graphite 2 library
    2016-36 Use-after-free during processing of DER encoded keys in NSS
    2016-35 Buffer overflow during ASN.1 decoding in NSS
    2016-34 Out-of-bounds read in HTML parser following a failed allocation
    2016-33 Use-after-free in GetStaticInstance in WebRTC
    2016-32 WebRTC and LibVPX vulnerabilities found through code inspection
    2016-31 Memory corruption with malicious NPAPI plugin
    2016-30 Buffer overflow in Brotli decompression
    2016-29 Same-origin policy violation using perfomance.getEntries and history \ 
navigation with session restore
    2016-28 Addressbar spoofing though history navigation and Location protocol \ 
    2016-27 Use-after-free during XML transformations
    2016-26 Memory corruption when modifying a file being read by FileReader
    2016-25 Use-after-free when using multiple WebRTC data channels
    2016-24 Use-after-free in SetBody
    2016-23 Use-after-free in HTML5 string parser
    2016-22 Service Worker Manager out-of-bounds read in Service Worker Manager
    2016-21 Displayed page address can be overridden
    2016-20 Memory leak in libstagefright when deleting an array during MP4 \ 
    2016-19 Linux video memory DOS with Intel drivers
    2016-18 CSP reports fail to strip location information for embedded iframe pages
    2016-17 Local file overwriting and potential privilege escalation through \ 
CSP reports
    2016-16 Miscellaneous memory safety hazards (rv:45.0 / rv:38.7)
   2016-03-05 12:29:49 by Jonathan Perkin | Files touched by this commit (1813) | Package updated
Log message:
Bump PKGREVISION for security/openssl ABI bump.
   2016-02-26 11:57:47 by Jonathan Perkin | Files touched by this commit (21)
Log message: