./www/firefox68, Web browser with support for extensions (version 68ESR)

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]


Branch: pkgsrc-2020Q2, Version: 68.11.0, Package name: firefox68-68.11.0, Maintainer: ryoon

Mozilla Firefox is a free, open-source and cross-platform web browser
for Windows, Linux, MacOS X and many other operating systems.

It is fast and easy to use, and offers many advantages over other web
browsers, such as tabbed browsing and the ability to block pop-up
windows.

Firefox also offers excellent bookmark and history management, and it
can be extended by developers using industry standards such as XML,
CSS, JavaScript, C++, etc. Many extensions are available.

This package provides Firefox 68 ESR.


Required to run:
[x11/gtk2] [x11/gtk3] [x11/pixman] [graphics/MesaLib] [graphics/libwebp] [lang/gcc6-libs] [sysutils/dbus-glib] [sysutils/desktop-file-utils] [devel/libevent] [devel/libffi] [devel/nspr] [devel/nss] [net/libIDL]

Required to build:
[x11/fixesproto4] [x11/xcb-proto] [x11/xorgproto] [lang/gcc6] [lang/rust-bin] [lang/clang] [devel/yasm] [devel/nasm]

Package options: dbus

Master sites:

SHA1: 445acbf7b7b8f75374ee6347bb6f45748511bcf9
RMD160: 82edab46fe312a47889047fe431784c511684ade
Filesize: 313764.047 KB

Version history: (Expand)


CVS history: (Expand)


   2020-07-30 20:13:52 by Benny Siegert | Files touched by this commit (2)
Log message:
Pullup ticket #6287 - requested by nia
www/firefox68: security fix

Revisions pulled up:
- www/firefox68/Makefile                                        1.31
- www/firefox68/distinfo                                        1.21

---
   Module Name:	pkgsrc
   Committed By:	nia
   Date:		Wed Jul 29 14:20:30 UTC 2020

   Modified Files:
   	pkgsrc/www/firefox68: Makefile distinfo

   Log message:
   firefox68: Update to 68.11.0

   Security Vulnerabilities fixed in Firefox ESR 68.11

       #CVE-2020-15652: Potential leak of redirect targets when loading scripts in
       a worker

       #CVE-2020-6514: WebRTC data channel leaks internal address to peer

       #CVE-2020-6463: Use-after-free in ANGLE
       gl::Texture::onUnbindAsSamplerTexture

       #CVE-2020-15650: Overwriting local files through malicious file picker
       application

       #CVE-2020-15649: Exfiltrating local files through malicious file picker
       application

       #CVE-2020-15659: Memory safety bugs fixed in Firefox 79 and Firefox ESR
       68.11
   2020-07-09 10:07:52 by Benny Siegert | Files touched by this commit (2) | Package updated
Log message:
Pullup ticket #6266 - requested by nia
www/firefox68: security fix

Revisions pulled up:
- www/firefox68/Makefile                                        1.29
- www/firefox68/distinfo                                        1.19

---
   Module Name:	pkgsrc
   Committed By:	nia
   Date:		Tue Jul  7 16:44:11 UTC 2020

   Modified Files:
   	pkgsrc/www/firefox68: Makefile distinfo

   Log message:
   firefox68: Update to 68.10.0

   For anyone curious about the delay: apparently, my ccache cache
   was corrupted so the build was failing. *sigh* that won't be a problem
   soon...

   Security Vulnerabilities fixed in Firefox ESR 68.10

       #CVE-2020-12417: Memory corruption due to missing sign-extension for
       ValueTags on ARM64

       #CVE-2020-12418: Information disclosure due to manipulated URL object

       #CVE-2020-12419: Use-after-free in nsGlobalWindowInner

       #CVE-2020-12420: Use-After-Free when trying to connect to a STUN server

       #CVE-2020-12421: Add-On updates did not respect the same certificate trust
       rules as software updates