Navigation:
Browse pkgsrc
(this page)Log Message: Pullup ticket #6313 - requested by wiz security/tor-browser: security fix Revisions pulled up: - security/tor-browser/Makefile 1.71,1.74 - security/tor-browser/distinfo 1.26,1.28 - security/tor-browser/options.mk 1.7 - security/tor-browser/patches/patch-config_makefiles_rust.mk 1.2 - security/tor-browser/patches/patch-dom_webauthn_u2f-hid-rs_src_lib.rs 1.1 - security/tor-browser/patches/patch-dom_webauthn_u2f-hid-rs_src_netbsd_device.rs 1.1 - security/tor-browser/patches/patch-dom_webauthn_u2f-hid-rs_src_netbsd_fd.rs 1.1 - security/tor-browser/patches/patch-dom_webauthn_u2f-hid-rs_src_netbsd_mod.rs 1.1 - \ security/tor-browser/patches/patch-dom_webauthn_u2f-hid-rs_src_netbsd_monitor.rs \ 1.1 - \ security/tor-browser/patches/patch-dom_webauthn_u2f-hid-rs_src_netbsd_transaction.rs \ 1.1 - security/tor-browser/patches/patch-dom_webauthn_u2f-hid-rs_src_netbsd_uhid.rs 1.1 --- Module Name: pkgsrc Committed By: riastradh Date: Mon Aug 17 06:58:02 UTC 2020 Modified Files: pkgsrc/security/tor-browser: Makefile options.mk Log Message: security/tor-browser: Make dbus an option. --- Module Name: pkgsrc Committed By: riastradh Date: Mon Aug 17 06:58:32 UTC 2020 Modified Files: pkgsrc/security/tor-browser: distinfo Added Files: pkgsrc/security/tor-browser/patches: patch-dom_webauthn_u2f-hid-rs_src_lib.rs patch-dom_webauthn_u2f-hid-rs_src_netbsd_device.rs patch-dom_webauthn_u2f-hid-rs_src_netbsd_fd.rs patch-dom_webauthn_u2f-hid-rs_src_netbsd_mod.rs patch-dom_webauthn_u2f-hid-rs_src_netbsd_monitor.rs patch-dom_webauthn_u2f-hid-rs_src_netbsd_transaction.rs patch-dom_webauthn_u2f-hid-rs_src_netbsd_uhid.rs Log Message: security/tor-browser: Add U2F support to NetBSD. The webauthn API is disabled by default in the Tor Browser: https://gitlab.torproject.org/tpo/applications/tor-browser/-/issues/26614 In order to use it, risking the consequences since the Tor Project has not audited its anonymity properties, you have to explicitly enable security.webauthn.webauthn=true in about:config. So if you definitely want to log into a web site using U2F in spite of that, with location privacy but not anonymity, then these patches now enable it to work on NetBSD (with the caveat that enabling security.webauthn.webauthn=true applies also to any web site that tries to use the webauthn API, not just the ones you want to log into). --- Module Name: pkgsrc Committed By: wiz Date: Wed Aug 26 20:55:20 UTC 2020 Modified Files: pkgsrc/security/tor-browser: Makefile distinfo pkgsrc/security/tor-browser/patches: patch-config_makefiles_rust.mk Log Message: tor-browser: update to 9.5.4. This release updates Firefox to 68.12.0esr. Also, this release features important security updates to Firefox.
New packages: