Log Message:
Pullup ticket #6658 - requested by nia
www/firefox91: security update
www/firefox91-l10n: dependency update

Revisions pulled up:
- www/firefox91-l10n/Makefile                                   1.13
- www/firefox91-l10n/distinfo                                   1.15
- www/firefox91/Makefile                                        1.22
- www/firefox91/distinfo                                        1.15

-------------------------------------------------------------------
   Module Name:	pkgsrc
   Committed By:	nia
   Date:		Fri Jul 22 08:16:40 UTC 2022

   Modified Files:
   	pkgsrc/www/firefox91: Makefile distinfo
   	pkgsrc/www/firefox91-l10n: Makefile distinfo

   Log Message:
   firefox91: update to 91.11.0

                     Mozilla Foundation Security Advisory 2022-25

   Security Vulnerabilities fixed in Firefox ESR 91.11

       #CVE-2022-34479: A popup window could be resized in a way to overlay the
       address bar with web content

       #CVE-2022-34470: Use-after-free in nsSHistory

       #CVE-2022-34468: CSP sandbox header without `allow-scripts` can be bypassed
       via retargeted javascript: URI

       #CVE-2022-34481: Potential integer overflow in ReplaceElementsAt

       #CVE-2022-31744: CSP bypass enabling stylesheet injection

       #CVE-2022-34472: Unavailable PAC file resulted in OCSP requests being
       blocked

       #CVE-2022-34478: Microsoft protocols can be attacked if a user accepts a
       prompt

       #CVE-2022-2200: Undesired attributes could be set as part of prototype
       pollution

       #CVE-2022-34484: Memory safety bugs fixed in Firefox 102 and Firefox ESR
       91.11

   To generate a diff of this commit:
   cvs rdiff -u -r1.21 -r1.22 pkgsrc/www/firefox91/Makefile
   cvs rdiff -u -r1.14 -r1.15 pkgsrc/www/firefox91/distinfo
   cvs rdiff -u -r1.12 -r1.13 pkgsrc/www/firefox91-l10n/Makefile
   cvs rdiff -u -r1.14 -r1.15 pkgsrc/www/firefox91-l10n/distinfo