Path to this page:
Subject: CVS commit: [pkgsrc-2007Q2] pkgsrc/www
From: Lubomir Sedlacik
Date: 2007-08-03 00:42:53
Message id: 20070802224253.E5A7D21507@cvs.netbsd.org
Log Message:
Pullup ticket 2154 - requested by ghen
security update for firefox
Revisions pulled up:
- pkgsrc/www/firefox/Makefile-firefox.common 1.46, 1.47
- pkgsrc/www/firefox/PLIST 1.28
- pkgsrc/www/firefox/distinfo 1.67, 1.68
- pkgsrc/www/firefox/patches/patch-cn 1.5
- pkgsrc/www/firefox-gtk1/PLIST 1.15
- pkgsrc/www/firefox-bin/Makefile 1.30, 1.32
- pkgsrc/www/firefox-bin/distinfo 1.27, 1.29
- pkgsrc/www/firefox15-bin/DESCR 1.3
- pkgsrc/www/firefox15-gtk1/DESCR 1.3
- pkgsrc/www/firefox15/DESCR 1.3
Module Name: pkgsrc
Committed By: xtraeme
Date: Thu Jul 19 18:20:59 UTC 2007
Modified Files:
pkgsrc/www/firefox-bin: Makefile distinfo
Log Message:
Update to 2.0.0.5:
MFSA 2007-25 XPCNativeWrapper pollution
MFSA 2007-24 Unauthorized access to wyciwyg:// documents
MFSA 2007-23 Remote code execution by launching Firefox from
Internet Explorer
MFSA 2007-22 File type confusion due to %00 in name
MFSA 2007-21 Privilege escalation using an event handler attached to an
element not in the document
MFSA 2007-20 Frame spoofing while window is loading
MFSA 2007-19 XSS using addEventListener and setTimeout
MFSA 2007-18 Crashes with evidence of memory corruption
---
Module Name: pkgsrc
Committed By: ghen
Date: Thu Jul 26 08:43:51 UTC 2007
Modified Files:
pkgsrc/www/firefox: Makefile-firefox.common PLIST distinfo
pkgsrc/www/firefox-gtk1: PLIST
pkgsrc/www/firefox/patches: patch-cn
Log Message:
Update firefox, firefox-bin and firefox-gtk1 to 2.0.0.5.
Security fixes in this version:
MFSA 2007-25 XPCNativeWrapper pollution
MFSA 2007-24 Unauthorized access to wyciwyg:// documents
MFSA 2007-23 Remote code execution by launching Firefox from Internet
Explorer
MFSA 2007-22 File type confusion due to %00 in name
MFSA 2007-21 Privilege escalation using an event handler attached to an
element not in the document
MFSA 2007-20 Frame spoofing while window is loading
MFSA 2007-19 XSS using addEventListener and setTimeout
MFSA 2007-18 Crashes with evidence of memory corruption
For more info, see http://www.mozilla.com/en-US/firefox/2.0.0.5/releasenotes/
---
Module Name: pkgsrc
Committed By: ghen
Date: Tue Jul 31 10:06:48 UTC 2007
Modified Files:
pkgsrc/www/firefox: Makefile-firefox.common distinfo
pkgsrc/www/firefox-bin: Makefile distinfo
Log Message:
Update firefox, firefox-bin and firefox-gtk1 to 2.0.0.6.
Security fixes in this version:
MFSA 2007-27 Unescaped URIs passed to external programs
MFSA 2007-26 Privilege escalation through chrome-loaded about:blank windows
For more info, see http://www.mozilla.com/en-US/firefox/2.0.0.6/releasenotes/
---
Module Name: pkgsrc
Committed By: ghen
Date: Thu Jul 26 08:47:36 UTC 2007
Modified Files:
pkgsrc/www/firefox15: DESCR
pkgsrc/www/firefox15-bin: DESCR
pkgsrc/www/firefox15-gtk1: DESCR
Log Message:
Firefox 1.5.0.x has been EOL'd.
Files: