Subject: CVS commit: pkgsrc
From: Ryo ONODERA
Date: 2012-10-13 12:16:23
Message id: 20121013101623.C0CEA175DD@cvs.netbsd.org

Log Message:
Update to 10.0.9

Changelog:
Fixed in Firefox ESR 10.0.9
MFSA 2012-89 defaultValue security checks not applied

Fixed in Firefox ESR 10.0.8
MFSA 2012-87 Use-after-free in the IME State Manager
MFSA 2012-86 Heap memory corruption issues found using Address Sanitizer
MFSA 2012-85 Use-after-free, buffer overflow, and out of bounds read issues \ 
found using Address Sanitizer
MFSA 2012-84 Spoofing and script injection through location.hash
MFSA 2012-83 Chrome Object Wrapper (COW) does not disallow acces to privileged \ 
functions or properties
MFSA 2012-82 top object and location property accessible by plugins
MFSA 2012-81 GetProperty function can bypass security checks
MFSA 2012-79 DOS and crash with full screen and history navigation
MFSA 2012-77 Some DOMWindowUtils methods bypass security checks
MFSA 2012-74 Miscellaneous memory safety hazards (rv:16.0/ rv:10.0.8)
MFSA 2012-59 Location object can be shadowed using Object.defineProperty

Files:
RevisionActionfile
1.9modifypkgsrc/devel/xulrunner10/Makefile
1.8modifypkgsrc/devel/xulrunner10/dist.mk
1.6modifypkgsrc/devel/xulrunner10/distinfo
1.10modifypkgsrc/www/firefox10/Makefile