./www/firefox91, Web browser with support for extensions (version 91ESR)

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]

Branch: pkgsrc-2022Q2, Version: 91.13.0, Package name: firefox91-91.13.0, Maintainer: ryoon

Mozilla Firefox is a free, open-source and cross-platform web browser
for Windows, Linux, MacOS X and many other operating systems.

It is fast and easy to use, and offers many advantages over other web
browsers, such as tabbed browsing and the ability to block pop-up
windows.

Firefox also offers excellent bookmark and history management, and it
can be extended by developers using industry standards such as XML,
CSS, JavaScript, C++, etc. Many extensions are available.

This package provides Firefox 91 ESR.



Package options: dbus

Master sites:

Filesize: 371146.078 KB

Version history: (Expand)

CVS history: (Expand)


   2022-09-20 20:31:29 by Benny Siegert | Files touched by this commit (4) | Package updated
Log message:
Pullup ticket #6670 - requested by nia
www/firefox91: security fix
www/firefox91-l10n: dependent update

Revisions pulled up:
- www/firefox91-l10n/Makefile                                   1.15
- www/firefox91-l10n/distinfo                                   1.17
- www/firefox91/Makefile                                        1.25
- www/firefox91/distinfo                                        1.17

---
   Module Name:	pkgsrc
   Committed By:	nia
   Date:		Tue Sep  6 15:38:35 UTC 2022

   Modified Files:
   	pkgsrc/www/firefox91: Makefile distinfo
   	pkgsrc/www/firefox91-l10n: Makefile distinfo

   Log message:
   firefox91: update to 91.13.0

   Security Vulnerabilities fixed in Firefox ESR 91.13

       #CVE-2022-38472: Address bar spoofing via XSLT error handling

       #CVE-2022-38473: Cross-origin XSLT Documents would have inherited the
       parent's permissions

       #CVE-2022-38478: Memory safety bugs fixed in Firefox 104, Firefox ESR 102.2,
       and Firefox ESR 91.13
   2022-07-27 09:18:17 by S.P.Zeidler | Files touched by this commit (4) | Package updated
Log message:
Pullup ticket #6658 - requested by nia
www/firefox91: security update
www/firefox91-l10n: dependency update

Revisions pulled up:
- www/firefox91-l10n/Makefile                                   1.13
- www/firefox91-l10n/distinfo                                   1.15
- www/firefox91/Makefile                                        1.22
- www/firefox91/distinfo                                        1.15

-------------------------------------------------------------------
   Module Name:	pkgsrc
   Committed By:	nia
   Date:		Fri Jul 22 08:16:40 UTC 2022

   Modified Files:
   	pkgsrc/www/firefox91: Makefile distinfo
   	pkgsrc/www/firefox91-l10n: Makefile distinfo

   Log message:
   firefox91: update to 91.11.0

                     Mozilla Foundation Security Advisory 2022-25

   Security Vulnerabilities fixed in Firefox ESR 91.11

       #CVE-2022-34479: A popup window could be resized in a way to overlay the
       address bar with web content

       #CVE-2022-34470: Use-after-free in nsSHistory

       #CVE-2022-34468: CSP sandbox header without `allow-scripts` can be bypassed
       via retargeted javascript: URI

       #CVE-2022-34481: Potential integer overflow in ReplaceElementsAt

       #CVE-2022-31744: CSP bypass enabling stylesheet injection

       #CVE-2022-34472: Unavailable PAC file resulted in OCSP requests being
       blocked

       #CVE-2022-34478: Microsoft protocols can be attacked if a user accepts a
       prompt

       #CVE-2022-2200: Undesired attributes could be set as part of prototype
       pollution

       #CVE-2022-34484: Memory safety bugs fixed in Firefox 102 and Firefox ESR
       91.11

   To generate a diff of this commit:
   cvs rdiff -u -r1.21 -r1.22 pkgsrc/www/firefox91/Makefile
   cvs rdiff -u -r1.14 -r1.15 pkgsrc/www/firefox91/distinfo
   cvs rdiff -u -r1.12 -r1.13 pkgsrc/www/firefox91-l10n/Makefile
   cvs rdiff -u -r1.14 -r1.15 pkgsrc/www/firefox91-l10n/distinfo