./www/firefox, Web browser with support for extensions (version 91)

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]


Branch: CURRENT, Version: 91.0.2nb3, Package name: firefox-91.0.2nb3, Maintainer: ryoon

Mozilla Firefox is a free, open-source and cross-platform web browser
for Windows, Linux, MacOS X and many other operating systems.

It is fast and easy to use, and offers many advantages over other web
browsers, such as tabbed browsing and the ability to block pop-up
windows.

Firefox also offers excellent bookmark and history management, and it
can be extended by developers using industry standards such as XML,
CSS, JavaScript, C++, etc. Many extensions are available.


Required to run:
[sysutils/desktop-file-utils] [sysutils/dbus-glib] [textproc/icu] [graphics/MesaLib] [net/libIDL] [devel/nspr] [devel/libevent] [devel/libffi] [devel/nss] [x11/gtk2] [x11/pixman] [x11/gtk3] [graphics/libwebp] [multimedia/ffmpeg4]

Required to build:
[pkgtools/x11-links] [databases/py-sqlite3] [x11/xcb-proto] [lang/clang] [x11/fixesproto4] [pkgtools/cwrappers] [x11/xorgproto] [lang/rust-bin]

Package options: dbus

Master sites:

SHA1: 953eb52799ae1da9ea63e154e1b3194c10bca8ce
RMD160: 22b066a0f891aca3c9512501b01e556a6b5414e5
Filesize: 372259.59 KB

Version history: (Expand)


CVS history: (Expand)


   2021-09-16 23:12:48 by Nia Alarie | Files touched by this commit (2) | Package updated
Log message:
firefox: Use "unofficial" branding

Firefox's build system defaults to "nightly" for builds without official
branding, and in practice there seems to be very little difference between
"nightly" and "unofficial", but this at least makes our \ 
choice explicit.

Bump PKGREVISION
   2021-09-16 22:47:40 by Nia Alarie | Files touched by this commit (1)
Log message:
firefox: we no longer install to share/pixmaps
   2021-09-16 18:46:24 by Nia Alarie | Files touched by this commit (2) | Package updated
Log message:
firefox: Install scalable icon sizes, bump PKGREVISION
   2021-08-14 16:30:12 by Izumi Tsutsui | Files touched by this commit (1)
Log message:
firefox: 91.0 requires nspr>=4.32 and nss>=3.68.
   2021-08-13 16:57:52 by Ryo ONODERA | Files touched by this commit (6) | Package updated
Log message:
firefox: Update to 91.0

* Convert to --enable-chrome-format=omni.
  It is not necessary to modify JavaScript files to improve support recently.
* Fix build under NetBSD/i386 like lang/mozjs78.

Changelog:
New

  * Building on Total Cookie Protection, we've added a more comprehensive logic
    for clearing cookies that prevents hidden data leaks and makes it easy for
    users to understand which websites are storing local information. Learn
    more

  * Firefox now supports logging into Microsoft, work, and school accounts
    using Windows single sign-on. Learn more

  * The simplify page when printing feature is back! When printing, under More
    settings > Format select the Simplified option when available to get a
    clutter-free page. Learn more

  * HTTPS-First Policy: Firefox Private Browsing windows now attempt to make
    all connections to websites secure, and fall back to insecure connections
    only when websites do not support it. Learn more

  * We've added a new locale: Scots (sco)

  * The address bar now provides Switch to Tab results also in Private Browsing
    windows.

  * Firefox now automatically enables High Contrast Mode when "Increase
    Contrast" is checked on MacOS

  * Firefox now does catch-up paints for almost all user interactions, enabling
    a 10-20% improvement in response time to most user interactions.

Fixed

  * Various security fixes

Enterprise

  * Various bug fixes and new policies have been implemented in the latest
    version of Firefox. See more details in the Firefox for Enterprise 91
    Release Notes.

Developer

  * Developer Information

Web Platform

  * The Visual Viewport API is now supported on desktop platforms

Security fixes:
#CVE-2021-29986: Race condition when resolving DNS names could have led to
 memory corruption
#CVE-2021-29981: Live range splitting could have led to conflicting assignments
 in the JIT
#CVE-2021-29988: Memory corruption as a result of incorrect style treatment
#CVE-2021-29983: Firefox for Android could get stuck in fullscreen mode
#CVE-2021-29984: Incorrect instruction reordering during JIT optimization
#CVE-2021-29980: Uninitialized memory in a canvas object could have led to
 memory corruption
#CVE-2021-29987: Users could have been tricked into accepting unwanted
 permissions on Linux
#CVE-2021-29985: Use-after-free media channels
#CVE-2021-29982: Single bit data leak due to incorrect JIT optimization and
 type confusion
#CVE-2021-29989: Memory safety bugs fixed in Firefox 91 and Firefox ESR 78.13
#CVE-2021-29990: Memory safety bugs fixed in Firefox 91
   2021-07-30 14:27:14 by Ryo ONODERA | Files touched by this commit (366)
Log message:
*: Recursive revbump from audio/pulseaudio-15.0
   2021-07-23 09:49:53 by Ryo ONODERA | Files touched by this commit (2) | Package updated
Log message:
firefox: Update to 90.0.2

Changelog:
90.0.2:
Fixed

  * Fixed truncated output when printing (bug 1720621)

  * Fixed menu styling on some Gtk themes (bug 1720441, bug 1720874)

#

Changed

  * Updates to support DoH Canada rollout

90.0.1:
Fixed

  * Fixed a crash when using some accessibility clients on Windows (bug 1720696
    )

  * Fixed busy looping processing some HTTP3 responses (bug 1720079)

  * Fixed transient errors authenticating with some smart cards (bug 1715325)

  * Fixed a rare crash on shutdown (bug 1707057)

  * Fixed a race on startup that caused about:support to end up empty after
    upgrade (bug 1717894)

  * Reference link to 90.0 release notes

unresolved

  * Printing a page with scaling may result in truncated output (bug 1720621)
   2021-07-13 16:52:22 by Ryo ONODERA | Files touched by this commit (5) | Package updated
Log message:
firefox: Update to 90.0

Changelog:
New

  * On Windows, updates can now be applied in the background while Firefox is
    not running.

  * Firefox for Windows now offers a new page about:third-party to help
    identify compatibility issues caused by third-party applications

  * Exceptions to HTTPS-Only mode can be managed in about:preferences#privacy

  * Print to PDF now produces working hyperlinks

  * Version 2 of Firefox??s SmartBlock feature further improves private
    browsing. Third-party Facebook scripts are blocked to prevent you from
    being tracked, but are now automatically loaded ??just in time?? if you
    decide to ??Log in with Facebook?? on any website.

Fixed

  * Various security fixes

Changed

  * The "Open Image in New Tab" context menu item now opens images and \ 
media in
    a background tab by default. Learn more

  * Most users without hardware accelerated WebRender will now be using
    software WebRender.

  * Improved software WebRender performance

  * FTP support has been removed

Enterprise

  * Various bug fixes and new policies have been implemented in the latest
    version of Firefox. See more details in the Firefox for Enterprise 90
    Release Notes.

Developer

  * Developer Information
  * Support for Private Fields (TC39 proposal, stage 3) is available in
    DevTools. The support includes: object inspection, autocompletion,
    expression evaluation, variable tooltips, and pretty printing (bug)

  * The Network panel shows a preview of HTTP requests for fonts in the
    Response tab (bug)

    Network panel font preview screenshot

Web Platform

  * Support for Fetch Metadata Request Headers, which allows web applications
    to better protect themselves and their users against various cross-origin
    threats.

  * Added the ability to use client authentication certificates stored in
    hardware tokens or in Operating System storage.

Security fixes:
#CVE-2021-29970: Use-after-free in accessibility features of a document
#CVE-2021-29971: Granted permissions only compared host; omitting scheme and
 port on Android
#CVE-2021-30547: Out of bounds write in ANGLE
#CVE-2021-29972: Use of out-of-date library included use-after-free
 vulnerability
#CVE-2021-29973: Password autofill on HTTP websites was enabled without user
 interaction on Android
#CVE-2021-29974: HSTS errors could be overridden when network partitioning was
 enabled
#CVE-2021-29975: Text message could be overlaid on top of another website
#CVE-2021-29976: Memory safety bugs fixed in Firefox 90 and Firefox ESR 78.12
#CVE-2021-29977: Memory safety bugs fixed in Firefox 90