pkgsrc.se | The NetBSD package collection

Subject: CVS commit: [pkgsrc-2010Q3] pkgsrc
From: Matthias Scheler
Date: 2010-10-25 10:23:43
Message id: 20101025082343.4ACA2175DD@cvs.netbsd.org

Log Message:
Pullup ticket #3255 - requested by tnn
devel/xulrunner: security update
www/firefox: security update

Revisions pulled up:
- devel/xulrunner/Makefile			1.42
- devel/xulrunner/dist.mk			1.15
- devel/xulrunner/distinfo			1.37
- devel/xulrunner/patches/patch-be		1.2
- devel/xulrunner/patches/patch-mc		delete
- www/firefox/Makefile				1.77
---
Module Name:	pkgsrc
Committed By:	tnn
Date:		Thu Oct 21 10:27:21 UTC 2010

Modified Files:
	pkgsrc/devel/xulrunner: Makefile dist.mk distinfo
	pkgsrc/devel/xulrunner/patches: patch-be
	pkgsrc/www/firefox: Makefile
Removed Files:
	pkgsrc/devel/xulrunner/patches: patch-mc

Log Message:
Security & stability update to firefox-3.6.11 (xulrunner-1.9.2.11)

MFSA 2010-72 Insecure Diffie-Hellman key exchange
MFSA 2010-71 Unsafe library loading vulnerabilities
MFSA 2010-70 SSL wildcard certificate matching IP addresses
MFSA 2010-69 Cross-site information disclosure via modal calls
MFSA 2010-68 XSS in gopher parser when parsing hrefs
MFSA 2010-67 Dangling pointer vulnerability in LookupGetterOrSetter
MFSA 2010-66 Use-after-free error in nsBarProp
MFSA 2010-65 Buffer overflow and memory corruption using document.write
MFSA 2010-64 Miscellaneous memory safety hazards (rv:1.9.2.11/ 1.9.1.14)

Files:

Revision	Action	file
1.41.2.1	modify	pkgsrc/devel/xulrunner/Makefile
1.14.2.1	modify	pkgsrc/devel/xulrunner/dist.mk
1.36.2.1	modify	pkgsrc/devel/xulrunner/distinfo
1.1.6.1	modify	pkgsrc/devel/xulrunner/patches/patch-be
1.76.2.1	modify	pkgsrc/www/firefox/Makefile
1.2	remove	pkgsrc/devel/xulrunner/patches/patch-mc