Subject: CVS commit: pkgsrc/www
From: Geert Hendrickx
Date: 2008-09-24 16:34:36
Message id: 20080924143436.CBCED175D0@cvs.netbsd.org
Log Message:
Update firefox, firefox-bin and firefox-gtk1 to 2.0.0.17.
(ok during freeze agc@)

Security fixes in this version:

MFSA 2008-45 XBM image uninitialized memory reading
MFSA 2008-44 resource: traversal vulnerabilities
MFSA 2008-43 BOM characters stripped from JavaScript before execution
MFSA 2008-42 Crashes with evidence of memory corruption (rv:1.9.0.2/1.8.1.17)
MFSA 2008-41 Privilege escalation via XPCnativeWrapper pollution
MFSA 2008-40 Forced mouse drag
MFSA 2008-39 Privilege escalation using feed preview page and XSS flaw
MFSA 2008-38 nsXMLDocument::OnChannelRedirect() same-origin violation
MFSA 2008-37 UTF-8 URL stack buffer overflow

For more info, see http://www.mozilla.com/en-US/firefox/2.0.0.17/releasenotes/
Files:
RevisionActionfile
1.48modifypkgsrc/www/firefox/Makefile
1.60modifypkgsrc/www/firefox/Makefile-firefox.common
1.31modifypkgsrc/www/firefox/PLIST
1.82modifypkgsrc/www/firefox/distinfo
1.45modifypkgsrc/www/firefox-bin/Makefile
1.45modifypkgsrc/www/firefox-bin/distinfo
1.21modifypkgsrc/www/firefox-gtk1/Makefile
1.16modifypkgsrc/www/firefox-gtk1/PLIST