Navigation:
Browse pkgsrc
(this page)| 2022-10-22 17:59:27 by Nia Alarie | Files touched by this commit (4) |
Log message:
firefox102: Update to 102.4.0
Security Vulnerabilities fixed in Firefox ESR 102.4
#CVE-2022-42927: Same-origin policy violation could have leaked cross-origin
URLs
#CVE-2022-42928: Memory Corruption in JS Engine
#CVE-2022-42929: Denial of Service via window.print
#CVE-2022-42932: Memory safety bugs fixed in Firefox 106 and Firefox ESR
102.4
|
2022-09-24 00:52:50 by Nia Alarie | Files touched by this commit (5) |  |
Log message:
firefox102: update to 102.3.0
Security Vulnerabilities fixed in Firefox ESR 102.3
#CVE-2022-3266: Out of bounds read when decoding H264
#CVE-2022-40959: Bypassing FeaturePolicy restrictions on transient pages
#CVE-2022-40960: Data-race when parsing non-UTF-8 URLs in threads
#CVE-2022-40958: Bypassing Secure Context restriction for cookies with
__Host and __Secure prefix
#CVE-2022-40956: Content-Security-Policy base-uri bypass
#CVE-2022-40957: Incoherent instruction cache when building WASM on ARM64
#CVE-2022-40962: Memory safety bugs fixed in Firefox 105 and Firefox ESR
102.3
|
| 2022-09-11 14:52:13 by Thomas Klausner | Files touched by this commit (670) |
Log message: *: bump PKGREVISION for flac shlib bump |
| 2022-09-06 11:16:42 by Nia Alarie | Files touched by this commit (4) |
Log message:
firefox102: Update to 102.2.0
Mozilla Foundation Security Advisory 2022-34
Security Vulnerabilities fixed in Firefox ESR 102.2
#CVE-2022-38472: Address bar spoofing via XSLT error handling
#CVE-2022-38473: Cross-origin XSLT Documents would have inherited the
parent's permissions
#CVE-2022-38476: Data race and potential use-after-free in PK11_ChangePW
#CVE-2022-38477: Memory safety bugs fixed in Firefox 104 and Firefox ESR
102.2
#CVE-2022-38478: Memory safety bugs fixed in Firefox 104, Firefox ESR 102.2,
and Firefox ESR 91.13
|
| 2022-09-06 11:15:57 by Nia Alarie | Files touched by this commit (5) |
Log message: firefox*: Add a note about the branding to DESCR to reduce confusion |
| 2022-08-11 07:09:36 by David H. Gutteridge | Files touched by this commit (999) |
Log message: Bump all dependent packages of wayland (belatedly) The package changed with the addition of its libepoll-shim dependency. Otherwise, we can get: ERROR: libepoll-shim>=0.0.20210418 is not installed; can't buildlink files. |
| 2022-08-07 20:08:08 by Nia Alarie | Files touched by this commit (7) |
Log message: firefox102: Sync fixes with www/firefox |
| 2022-08-06 12:12:45 by Nia Alarie | Files touched by this commit (1) | |
Log message: firefox102: update DESCR |
| 2022-08-05 10:41:25 by Nia Alarie | Files touched by this commit (6) | |
Log message:
firefox102: update to 102.1.0
Security Vulnerabilities fixed in Firefox ESR 102.1
#CVE-2022-36319: Mouse Position spoofing with CSS transforms
#CVE-2022-36318: Directory indexes for bundled resources reflected URL
parameters
#CVE-2022-36314: Opening local <code>.lnk</code> files could cause
unexpected network loads
#CVE-2022-2505: Memory safety bugs fixed in Firefox 103 and 102.1
|
| 2022-07-25 03:01:54 by Tobias Nygren | Files touched by this commit (16) |
Log message: *: revbump for ffmpeg5 |
New packages: