Navigation:
Browse pkgsrc
(this page) 2024-04-17 15:42:45 by David H. Gutteridge | Files touched by this commit (2) |  |
Log message:
firefox115: update to 115.10.0
* Fixes for mfsa2024-19, also known as:
CVE-2024-3852, CVE-2024-3854, CVE-2024-3857, CVE-2024-2609,
CVE-2024-3859, CVE-2024-3861, CVE-2024-3302, CVE-2024-3864.
|
| 2024-04-12 00:21:39 by David H. Gutteridge | Files touched by this commit (1) |
Log message: firefox115: drop comment that's no longer relevant |
| 2024-04-07 09:35:33 by Thomas Klausner | Files touched by this commit (1138) |
Log message: *: bump for cairo buildlink3.mk change lzo was made an option |
| 2024-04-06 10:07:18 by Thomas Klausner | Files touched by this commit (1490) |
Log message: * recursive bump for libxkbcommon 1.7.0 Marc Baudoin reported problems with using old binary packages with the new libkxbcommon, so force everything to 1.7.0 |
| 2024-03-25 01:35:50 by David H. Gutteridge | Files touched by this commit (2) | |
Log message: firefox115: update to 115.9.1 Note there are references to use of Python 3.12 as a build tool now being supported, but this has not been tested in pkgsrc as it stands. (This has been tested on NetBSD 9.3_STABLE with pkgsrc defaults.) 115.9.1 Fixes for mfsa2024-16, also known as CVE-2024-29944 115.9.0 Fixes for mfsa2024-13, also known as: CVE-2024-0743, CVE-2024-2607, CVE-2024-2608, CVE-2024-2616, CVE-2023-5388, CVE-2024-2610, CVE-2024-2611, CVE-2024-2612, CVE-2024-2614 115.8.0 Fixes for mfsa2024-06, also known as: CVE-2024-1546, CVE-2024-1547, CVE-2024-1548, CVE-2024-1549, CVE-2024-1550, CVE-2024-1551, CVE-2024-1552, CVE-2024-1553 |
| 2024-01-31 17:18:33 by Ryo ONODERA | Files touched by this commit (2) | |
Log message: firefox115: Update to 115.7.0 Changelog: 115.7.0: Mozilla Foundation Security Advisory 2024-02 #CVE-2024-0741: Out of bounds write in ANGLE #CVE-2024-0742: Failure to update user input timestamp #CVE-2024-0746: Crash when listing printers on Linux #CVE-2024-0747: Bypass of Content Security Policy when directive unsafe-inline was set #CVE-2024-0749: Phishing site popup could show local origin in address bar #CVE-2024-0750: Potential permissions request bypass via clickjacking #CVE-2024-0751: Privilege escalation through devtools #CVE-2024-0753: HSTS policy on subdomain could bypass policy of upper domain #CVE-2024-0755: Memory safety bugs fixed in Firefox 122, Firefox ESR 115.7, and Thunderbird 115.7 |
| 2024-01-30 15:22:43 by Ryo ONODERA | Files touched by this commit (672) |
Log message: *: Recursive revbump from audio/pulseaudio-17.0 |
| 2024-01-22 14:17:08 by Ryo ONODERA | Files touched by this commit (119) |
Log message: *: Recursive revbump from multimedia/libvpx |
| 2024-01-10 16:38:44 by Ryo ONODERA | Files touched by this commit (3) |
Log message: firefox115: Update to 115.6.0 Changelog: 115.6.0: * Security fixes. Mozilla Foundation Security Advisory 2023-54 #CVE-2023-6856: Heap-buffer-overflow affecting WebGL DrawElementsInstanced method with Mesa VM driver #CVE-2023-6865: Potential exposure of uninitialized data in EncryptingOutputStream #CVE-2023-6857: Symlinks may resolve to smaller than expected buffers #CVE-2023-6858: Heap buffer overflow in nsTextFragment #CVE-2023-6859: Use-after-free in PR_GetIdentitiesLayer #CVE-2023-6860: Potential sandbox escape due to VideoBridge lack of texture validation #CVE-2023-6867: Clickjacking permission prompts using the popup transition #CVE-2023-6861: Heap buffer overflow affected nsWindow::PickerOpen(void) in headless mode #CVE-2023-6862: Use-after-free in nsDNSService #CVE-2023-6863: Undefined behavior in ShutdownObserver() #CVE-2023-6864: Memory safety bugs fixed in Firefox 121, Firefox ESR 115.6, and Thunderbird 115.6 |
| 2024-01-08 18:39:44 by Leonardo Taccari | Files touched by this commit (2) |
Log message:
firefox115: Re-enable screen/tab capture
Sync replace-moz.build.awk with firefox{102,} so that X11 desktop
capture works.
(Re)Fix PR pkg/56955.
(While here define PKGREVISION only once.)
PKGREVISION++
|
New packages: