Subject: CVS commit: [pkgsrc-2007Q2] pkgsrc/www
From: Lubomir Sedlacik
Date: 2007-08-03 00:42:53
Message id: 20070802224253.E5A7D21507@cvs.netbsd.org
Log Message:
Pullup ticket 2154 - requested by ghen
security update for firefox

Revisions pulled up:
- pkgsrc/www/firefox/Makefile-firefox.common		1.46, 1.47
- pkgsrc/www/firefox/PLIST				1.28
- pkgsrc/www/firefox/distinfo				1.67, 1.68
- pkgsrc/www/firefox/patches/patch-cn			1.5
- pkgsrc/www/firefox-gtk1/PLIST				1.15
- pkgsrc/www/firefox-bin/Makefile			1.30, 1.32
- pkgsrc/www/firefox-bin/distinfo			1.27, 1.29
- pkgsrc/www/firefox15-bin/DESCR			1.3
- pkgsrc/www/firefox15-gtk1/DESCR			1.3
- pkgsrc/www/firefox15/DESCR				1.3

   Module Name:		pkgsrc
   Committed By:	xtraeme
   Date:		Thu Jul 19 18:20:59 UTC 2007

   Modified Files:
   	pkgsrc/www/firefox-bin: Makefile distinfo

   Log Message:
   Update to 2.0.0.5:

   MFSA 2007-25 XPCNativeWrapper pollution
   MFSA 2007-24 Unauthorized access to wyciwyg:// documents
   MFSA 2007-23 Remote code execution by launching Firefox from
   		Internet Explorer
   MFSA 2007-22 File type confusion due to %00 in name
   MFSA 2007-21 Privilege escalation using an event handler attached to an
   		element not in the document
   MFSA 2007-20 Frame spoofing while window is loading
   MFSA 2007-19 XSS using addEventListener and setTimeout
   MFSA 2007-18 Crashes with evidence of memory corruption
---
   Module Name:		pkgsrc
   Committed By:	ghen
   Date:		Thu Jul 26 08:43:51 UTC 2007

   Modified Files:
   	pkgsrc/www/firefox: Makefile-firefox.common PLIST distinfo
   	pkgsrc/www/firefox-gtk1: PLIST
   	pkgsrc/www/firefox/patches: patch-cn

   Log Message:
   Update firefox, firefox-bin and firefox-gtk1 to 2.0.0.5.

   Security fixes in this version:

   MFSA 2007-25 XPCNativeWrapper pollution
   MFSA 2007-24 Unauthorized access to wyciwyg:// documents
   MFSA 2007-23 Remote code execution by launching Firefox from Internet
                Explorer
   MFSA 2007-22 File type confusion due to %00 in name
   MFSA 2007-21 Privilege escalation using an event handler attached to an
                element not in the document
   MFSA 2007-20 Frame spoofing while window is loading
   MFSA 2007-19 XSS using addEventListener and setTimeout
   MFSA 2007-18 Crashes with evidence of memory corruption

   For more info, see http://www.mozilla.com/en-US/firefox/2.0.0.5/releasenotes/
---
   Module Name:		pkgsrc
   Committed By:	ghen
   Date:		Tue Jul 31 10:06:48 UTC 2007

   Modified Files:
   	pkgsrc/www/firefox: Makefile-firefox.common distinfo
   	pkgsrc/www/firefox-bin: Makefile distinfo

   Log Message:
   Update firefox, firefox-bin and firefox-gtk1 to 2.0.0.6.

   Security fixes in this version:

   MFSA 2007-27 Unescaped URIs passed to external programs
   MFSA 2007-26 Privilege escalation through chrome-loaded about:blank windows

   For more info, see http://www.mozilla.com/en-US/firefox/2.0.0.6/releasenotes/
---
   Module Name:		pkgsrc
   Committed By:	ghen
   Date:		Thu Jul 26 08:47:36 UTC 2007

   Modified Files:
   	pkgsrc/www/firefox15: DESCR
   	pkgsrc/www/firefox15-bin: DESCR
   	pkgsrc/www/firefox15-gtk1: DESCR

   Log Message:
   Firefox 1.5.0.x has been EOL'd.
Files:
RevisionActionfile
1.45.2.1modifypkgsrc/www/firefox/Makefile-firefox.common
1.27.2.1modifypkgsrc/www/firefox/PLIST
1.66.2.1modifypkgsrc/www/firefox/distinfo
1.29.2.1modifypkgsrc/www/firefox-bin/Makefile
1.26.2.1modifypkgsrc/www/firefox-bin/distinfo
1.14.2.1modifypkgsrc/www/firefox-gtk1/PLIST
1.4.2.1modifypkgsrc/www/firefox/patches/patch-cn
1.2.2.1modifypkgsrc/www/firefox15/DESCR
1.2.2.1modifypkgsrc/www/firefox15-bin/DESCR
1.2.2.1modifypkgsrc/www/firefox15-gtk1/DESCR