./www/firefox60, Web browser with support for extensions (version 60)

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]

Branch: CURRENT, Version: 60.2.0, Package name: firefox60-60.2.0, Maintainer: ryoon

Mozilla Firefox is a free, open-source and cross-platform web browser
for Windows, Linux, MacOS X and many other operating systems.

It is fast and easy to use, and offers many advantages over other web
browsers, such as tabbed browsing and the ability to block pop-up
windows.

Firefox also offers excellent bookmark and history management, and it
can be extended by developers using industry standards such as XML,
CSS, JavaScript, C++, etc. Many extensions are available.

This package provides Firefox 60 ESR.


Required to run:
[sysutils/desktop-file-utils] [sysutils/dbus-glib] [textproc/icu] [graphics/MesaLib] [graphics/jpeg] [net/libIDL] [devel/nspr] [devel/libffi] [devel/nss] [x11/gtk2] [x11/pixman] [multimedia/libvpx] [x11/gtk3] [lang/gcc49-libs] [multimedia/ffmpeg3]

Required to build:
[pkgtools/x11-links] [devel/yasm] [x11/xcb-proto] [lang/clang] [x11/fixesproto4] [lang/gcc49] [pkgtools/cwrappers] [lang/rust] [x11/xorgproto]

Package options: dbus, oss

Master sites: (Expand)

SHA1: 62f542bea08ba39965fe5179404a2a8b336e6358
RMD160: e5cac1a241279e6a4dadcd7ea860ebe2e2983626
Filesize: 260872.008 KB

Version history: (Expand)

CVS history: (Expand)


   2018-09-15 08:04:04 by Ryo ONODERA | Files touched by this commit (3) | Package updated
Log message:
Update to 60.2.0

Changelog:
#CVE-2018-12377: Use-after-free in refresh driver timers
#CVE-2018-12378: Use-after-free in IndexedDB
#CVE-2018-12379: Out-of-bounds write with malicious MAR file
#CVE-2017-16541: Proxy bypass using automount and autofs
#CVE-2018-12381: Dragging and dropping Outlook email message results in page \ 
navigation
#CVE-2018-12376: Memory safety bugs fixed in Firefox 62 and Firefox ESR 60.2
   2018-08-22 11:48:07 by Thomas Klausner | Files touched by this commit (3558) 
Log message:
Recursive bump for perl5-5.28.0
   2018-07-20 05:34:33 by Ryo ONODERA | Files touched by this commit (705) 
Log message:
Recursive revbump from textproc/icu-62.1
   2018-07-06 17:06:52 by Ryo ONODERA | Files touched by this commit (136) 
Log message:
Recursive revbump from audio/pulseaudio
   2018-06-28 16:04:10 by Ryo ONODERA | Files touched by this commit (50) 
Log message:
www/firefox60: import firefox60-60.1.0

Mozilla Firefox is a free, open-source and cross-platform web browser
for Windows, Linux, MacOS X and many other operating systems.

It is fast and easy to use, and offers many advantages over other web
browsers, such as tabbed browsing and the ability to block pop-up
windows.

Firefox also offers excellent bookmark and history management, and it
can be extended by developers using industry standards such as XML,
CSS, JavaScript, C++, etc. Many extensions are available.

This package provides Firefox 60 ESR.

Securty fixes:
#CVE-2018-12359: Buffer overflow using computed size of canvas element
#CVE-2018-12360: Use-after-free when using focus()
#CVE-2018-12361: Integer overflow in SwizzleData
#CVE-2018-12362: Integer overflow in SSSE3 scaler
#CVE-2018-5156: Media recorder segmentation fault when track type is changed \ 
during capture
#CVE-2018-12363: Use-after-free when appending DOM nodes
#CVE-2018-12364: CSRF attacks through 307 redirects and NPAPI plugins
#CVE-2018-12365: Compromised IPC child process can list local filenames
#CVE-2018-12371: Integer overflow in Skia library during edge builder allocation
#CVE-2018-12366: Invalid data handling during QCMS transformations
#CVE-2018-12367: Timing attack mitigation of PerformanceNavigationTiming
#CVE-2018-12368: No warning when opening executable SettingContent-ms files
#CVE-2018-12369: WebExtension security permission checks bypassed by embedded \ 
experiments
#CVE-2018-5187: Memory safety bugs fixed in Firefox 60 and Firefox ESR 60.1
#CVE-2018-5188: Memory safety bugs fixed in Firefox 60, Firefox ESR 60.1, and \ 
Firefox ESR 52.9