Subject: CVS commit: pkgsrc/www
From: Nia Alarie
Date: 2022-06-14 11:17:20
Message id: 20220614091720.1EAFDFB1A@cvs.NetBSD.org
Log Message:
firefox91: update to 91.10.0

Security Vulnerabilities fixed in Firefox ESR 91.10

    #CVE-2022-31736: Cross-Origin resource's length leaked

    #CVE-2022-31737: Heap buffer overflow in WebGL

    #CVE-2022-31738: Browser window spoof using fullscreen mode

    #CVE-2022-31739: Attacker-influenced path traversal when saving downloaded
    files

    #CVE-2022-31740: Register allocation problem in WASM on arm64

    #CVE-2022-31741: Uninitialized variable leads to invalid memory read

    #CVE-2022-31742: Querying a WebAuthn token with a large number of
    allowCredential entries may have leaked cross-origin information

    #CVE-2022-31747: Memory safety bugs fixed in Firefox 101 and Firefox ESR
    91.10
Files:
RevisionActionfile
1.19modifypkgsrc/www/firefox91/Makefile
1.14modifypkgsrc/www/firefox91/distinfo
1.12modifypkgsrc/www/firefox91-l10n/Makefile
1.14modifypkgsrc/www/firefox91-l10n/distinfo