pkgsrc.se | The NetBSD package collection

Next | Query returned 16 messages, browsing 11 to 20 | previous

CVS Commit History:

2022-10-22 17:59:27 by Nia Alarie | Files touched by this commit (4)

Log message:
firefox102: Update to 102.4.0

Security Vulnerabilities fixed in Firefox ESR 102.4

    #CVE-2022-42927: Same-origin policy violation could have leaked cross-origin
    URLs

    #CVE-2022-42928: Memory Corruption in JS Engine

    #CVE-2022-42929: Denial of Service via window.print

    #CVE-2022-42932: Memory safety bugs fixed in Firefox 106 and Firefox ESR
    102.4

2022-09-24 00:52:50 by Nia Alarie | Files touched by this commit (5) | Package updated

Log message:
firefox102: update to 102.3.0

Security Vulnerabilities fixed in Firefox ESR 102.3

    #CVE-2022-3266: Out of bounds read when decoding H264

    #CVE-2022-40959: Bypassing FeaturePolicy restrictions on transient pages

    #CVE-2022-40960: Data-race when parsing non-UTF-8 URLs in threads

    #CVE-2022-40958: Bypassing Secure Context restriction for cookies with
    __Host and __Secure prefix

    #CVE-2022-40956: Content-Security-Policy base-uri bypass

    #CVE-2022-40957: Incoherent instruction cache when building WASM on ARM64

    #CVE-2022-40962: Memory safety bugs fixed in Firefox 105 and Firefox ESR
    102.3

2022-09-06 11:16:42 by Nia Alarie | Files touched by this commit (4)

Log message:
firefox102: Update to 102.2.0

                  Mozilla Foundation Security Advisory 2022-34

Security Vulnerabilities fixed in Firefox ESR 102.2

    #CVE-2022-38472: Address bar spoofing via XSLT error handling

    #CVE-2022-38473: Cross-origin XSLT Documents would have inherited the
    parent's permissions

    #CVE-2022-38476: Data race and potential use-after-free in PK11_ChangePW

    #CVE-2022-38477: Memory safety bugs fixed in Firefox 104 and Firefox ESR
    102.2

    #CVE-2022-38478: Memory safety bugs fixed in Firefox 104, Firefox ESR 102.2,
    and Firefox ESR 91.13

2022-08-05 10:41:25 by Nia Alarie | Files touched by this commit (6) | Package updated

Log message:
firefox102: update to 102.1.0

Security Vulnerabilities fixed in Firefox ESR 102.1

    #CVE-2022-36319: Mouse Position spoofing with CSS transforms

    #CVE-2022-36318: Directory indexes for bundled resources reflected URL
    parameters

    #CVE-2022-36314: Opening local <code>.lnk</code> files could cause
    unexpected network loads

    #CVE-2022-2505: Memory safety bugs fixed in Firefox 103 and 102.1

2022-07-22 10:13:12 by Nia Alarie | Files touched by this commit (2)

Log message:
firefox102-l10n: Fix PLIST

2022-07-22 01:56:39 by Nia Alarie | Files touched by this commit (52)

Log message:
Add a package for Firefox 102 ESR

Next | Query returned 16 messages, browsing 11 to 20 | previous