Subject: CVS commit: pkgsrc/www/firefox68
From: Nia Alarie
Date: 2020-01-08 22:49:32
Message id: 20200108214932.88AC6FBF4@cvs.NetBSD.org
Log Message:
firefox68: Update to 68.4.0

Security Vulnerabilities fixed in Firefox ESR 68.4:

# CVE-2019-17015: Memory corruption in parent process during new content process \ 
initialization on Windows
# CVE-2019-17016: Bypass of @namespace CSS sanitization during pasting
# CVE-2019-17017: Type Confusion in XPCVariant.cpp
# CVE-2019-17021: Heap address disclosure in parent process during content \ 
process initialization on Windows
# CVE-2019-17022: CSS sanitization does not escape HTML tags
# CVE-2019-17024: Memory safety bugs fixed in Firefox 72 and Firefox ESR 68.4
Files:
RevisionActionfile
1.7modifypkgsrc/www/firefox68/Makefile
1.6modifypkgsrc/www/firefox68/distinfo
1.1removepkgsrc/www/firefox68/patches/patch-rust-1.39.0