Subject: CVS commit: [pkgsrc-2022Q2] pkgsrc/www
From: Benny Siegert
Date: 2022-09-20 20:31:29
Message id: 20220920183129.28CEDFA90@cvs.NetBSD.org
Log Message:
Pullup ticket #6670 - requested by nia
www/firefox91: security fix
www/firefox91-l10n: dependent update

Revisions pulled up:
- www/firefox91-l10n/Makefile                                   1.15
- www/firefox91-l10n/distinfo                                   1.17
- www/firefox91/Makefile                                        1.25
- www/firefox91/distinfo                                        1.17

---
   Module Name:	pkgsrc
   Committed By:	nia
   Date:		Tue Sep  6 15:38:35 UTC 2022

   Modified Files:
   	pkgsrc/www/firefox91: Makefile distinfo
   	pkgsrc/www/firefox91-l10n: Makefile distinfo

   Log Message:
   firefox91: update to 91.13.0

   Security Vulnerabilities fixed in Firefox ESR 91.13

       #CVE-2022-38472: Address bar spoofing via XSLT error handling

       #CVE-2022-38473: Cross-origin XSLT Documents would have inherited the
       parent's permissions

       #CVE-2022-38478: Memory safety bugs fixed in Firefox 104, Firefox ESR 102.2,
       and Firefox ESR 91.13
Files:
RevisionActionfile
1.19.2.2modifypkgsrc/www/firefox91/Makefile
1.14.2.2modifypkgsrc/www/firefox91/distinfo
1.12.2.2modifypkgsrc/www/firefox91-l10n/Makefile
1.14.2.2modifypkgsrc/www/firefox91-l10n/distinfo