Subject: CVS commit: pkgsrc/www
From: Nia Alarie
Date: 2022-04-10 15:43:44
Message id: 20220410134344.39899FB24@cvs.NetBSD.org
Log Message:
firefox91: update to 91.8.0

Security Vulnerabilities fixed in Firefox ESR 91.8

#CVE-2022-1097: Use-after-free in NSSToken objects

#CVE-2022-28281: Out of bounds write due to unexpected WebAuthN Extensions

#CVE-2022-1196: Use-after-free after VR Process destruction

#CVE-2022-28282: Use-after-free in DocumentL10n::TranslateDocument

#CVE-2022-28285: Incorrect AliasSet used in JIT Codegen

#CVE-2022-28286: iframe contents could be rendered outside the border

#CVE-2022-24713: Denial of Service via complex regular expressions

#CVE-2022-28289: Memory safety bugs fixed in Firefox 99 and Firefox ESR 91.8
Files:
RevisionActionfile
1.16modifypkgsrc/www/firefox91/Makefile
1.12modifypkgsrc/www/firefox91/distinfo
1.10modifypkgsrc/www/firefox91-l10n/Makefile
1.12modifypkgsrc/www/firefox91-l10n/distinfo