./www/firefox, Web browser with support for extensions (version 81)

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]


Branch: CURRENT, Version: 81.0, Package name: firefox-81.0, Maintainer: ryoon

Mozilla Firefox is a free, open-source and cross-platform web browser
for Windows, Linux, MacOS X and many other operating systems.

It is fast and easy to use, and offers many advantages over other web
browsers, such as tabbed browsing and the ability to block pop-up
windows.

Firefox also offers excellent bookmark and history management, and it
can be extended by developers using industry standards such as XML,
CSS, JavaScript, C++, etc. Many extensions are available.


Required to run:
[sysutils/desktop-file-utils] [sysutils/dbus-glib] [textproc/icu] [graphics/MesaLib] [net/libIDL] [devel/nspr] [devel/libevent] [devel/libffi] [devel/nss] [x11/gtk2] [x11/pixman] [x11/gtk3] [graphics/libwebp] [multimedia/ffmpeg4]

Required to build:
[pkgtools/x11-links] [databases/py-sqlite3] [x11/xcb-proto] [lang/clang] [x11/fixesproto4] [pkgtools/cwrappers] [x11/xorgproto] [lang/rust-bin]

Package options: dbus

Master sites:

SHA1: f8818767277e43fb1521fde82d67d954e5eb4fb0
RMD160: 073e392cd486d17c0ba8af226f8459a862ae4a6a
Filesize: 332371.012 KB

Version history: (Expand)


CVS history: (Expand)


   2020-09-28 15:30:01 by Ryo ONODERA | Files touched by this commit (7) | Package updated
Log message:
firefox: Update to 81.0

Changelog:
September 22, 2020

Version 81.0, first offered to Release channel users on September 22, 2020

We'd like to extend a special thank you to all of the new Mozillians who
contributed to this release of Firefox.

New

  * You can pause and play audio or video in Firefox right from your keyboard
    or headset, giving you easy access to control your media when in another
    Firefox tab, another program, or even when your computer is locked.

  * In addition to our default, dark and light themes, with this release,
    Firefox introduces the Alpenglow theme: a colorful appearance for buttons,
    menus, and windows. You can update your Firefox themes under settings or
    preferences.

  * For our users in the US and Canada, Firefox can now save, manage, and
    auto-fill credit card information for you, making shopping on Firefox ever
    more convenient. To ensure the smoothest experience, this will be rolling
    out to users gradually.

  * Firefox supports AcroForm, which will soon allow you to fill in, print, and
    save supported PDF forms and the PDF viewer also has a new fresh look.

  * Our users in Austria, Belgium and Switzerland using the German version of
    Firefox will now see Pocket recommendations in their new tab featuring some
    of the best stories on the web. If you don’t see them, you can turn on
    Pocket articles in your new tab by following these steps. In addition to
    Firefox’s new tab, Pocket is also available as an app on iOS and Android.

Fixed

  * Various security fixes.

  * We’ve fixed a bug for users of language packs where the default language
    was reset to English after Firefox updates.

  * Browser native HTML5 audio/video controls received several important
    accessibility fixes:

      + Audio/video controls remain accessible to screen readers even when they
        are temporarily hidden visually.
      + Audio/video elapsed and total time are now accessible to screen readers
        where they weren't previously.
      + Various unlabelled controls are now labelled making them identifiable
        to screen readers.
      + Screen readers no longer intrusively report progress information unless
        the user requests it.

Changed

  * You will soon find Picture-in-Picture more easily on all the videos you
    watch with new iconography.

  * The bookmarks toolbar is now automatically revealed once bookmarks are
    imported into Firefox, making it easier to find your most important
    websites.

  * We have expanded our supported file types - .xml, .svg, and .webp - so
    files you’ve downloaded can be opened right in Firefox.

Security fixes:
#CVE-2020-15675: Use-After-Free in WebGL
#CVE-2020-15677: Download origin spoofing via redirect
#CVE-2020-15676: XSS when pasting attacker-controlled data into a
contenteditable element
#CVE-2020-15678: When recursing through layers while scrolling, an iterator may
have become invalid, resulting in a potential use-after-free scenario
#CVE-2020-15673: Memory safety bugs fixed in Firefox 81 and Firefox ESR 78.3
corruption and we presume that with enough effort some of these could have been
exploited to run arbitrary code.
#CVE-2020-15674: Memory safety bugs fixed in Firefox 81
   2020-09-15 11:40:08 by Nia Alarie | Files touched by this commit (1)
Log message:
firefox: further explanations of compiler clusterfudge
   2020-09-05 12:19:04 by Ryo ONODERA | Files touched by this commit (2)
Log message:
firefox: Requires textproc/py-expat at least with python37
   2020-09-02 12:00:23 by Ryo ONODERA | Files touched by this commit (3) | Package updated
Log message:
firefox: Update to 80.0.1

* Change WebRTC dependency to new graphics/libv4l.

Changelog:
Fixed

    Fixed a performance regression when encountering new intermediate CA \ 
certificates (bug 1661543)

    Fixed crashes possibly related to GPU resets (bug 1627616)

    Fixed rendering on some sites using WebGL (bug 1659225)

    Fixed the zoom-in keyboard shortcut on Japanese language builds (bug 1661895)

    Fixed download issues related to extensions and cookies (bug 1655190)
   2020-08-30 00:24:27 by Ryo ONODERA | Files touched by this commit (4) | Package updated
Log message:
firefox: Use graphics/libv4l1 for NetBSD 9.99.70 or later

* This enables webcam for WebRTC. Bump PKGREVISION.
* And fix rust.mk patch, from Michael Forney on tech-pkg@.
   2020-08-26 12:27:40 by Thomas Klausner | Files touched by this commit (1)
Log message:
firefox: allow dbus to be disabled on Linux

From Michael Forney on tech-pkg

With the release of firefox 80, there are no longer any issues with
--disable-dbus on Linux[0].

[0] https://bugzilla.mozilla.org/show_bug.cgi?id=1561207
   2020-08-25 16:35:24 by Ryo ONODERA | Files touched by this commit (14) | Package removed
Log message:
firefox: Update to 80.0

Changelog:
New
    Firefox can now be set as the default system PDF viewer.

    The name reported by accessibility tools for items in multi-tiered
    tree controls no longer incorrectly includes information from
    items at deeper levels, providing users with the correct level
    of content when using a screen reader.

Fixed
    Various security fixes.

    Several crashes while using a screen reader were fixed including
    a frequently encountered crash when using the JAWS screen
    reader.

    Firefox Developer Tools received significant fixes allowing
    screen reader users to benefit from some of the tools that were
    previously inaccessible.

    SVG title and desc elements (labels and descriptions) are now
    correctly exposed to assistive technology products such as
    screen readers.

Changed
    For users with reduced motion settings, we've reduced a number
    of animations such as tab loading to reduce motion for users
    with migraines and epilepsy.

    The new add-ons blocklist has been enabled to improve performance
    and scalability.

Enterprise
    A number of bug fixes and new policies have been implemented
    in the latest version of Firefox. You can see more details in
    the Firefox for Enterprise 80 Release Notes.

    Today's release is the final scheduled for Firefox 68 ESR
    (68.12) unless there is a critical security issue found prior
    to the release of Firefox ESR 78.3 on September 22, 2020. Users
    of Firefox 68 ESR will be automatically upgraded to the Firefox
    78 ESR series with the release of 78.3.

Developer
    We've shipped an experimental sidebar panel in the inspector
    to Firefox Developer Edition that helps developers more quickly
    identify potential browser compatibility problems based on MDN
    data.

    In the Network Monitor request list, a turtle icon is shown
    for "slow" requests that exceed a threshold for the waiting
    time.

    Firefox now supports RTX and Transport-cc for improved call
    quality in poor network conditions and better bandwidth
    estimation. These features also provide better compatibility
    with many websites using WebRTC.

Security fixes:
#CVE-2020-15663: Downgrade attack on the Mozilla Maintenance Service could have \ 
resulted in escalation of privilege
#CVE-2020-15664: Attacker-induced prompt for extension installation
#CVE-2020-12401: Timing-attack on ECDSA signature generation
#CVE-2020-6829: P-384 and P-521 vulnerable to an electro-magnetic side channel \ 
attack on signature generation
#CVE-2020-12400: P-384 and P-521 vulnerable to a side channel attack on modular \ 
inversion
#CVE-2020-15665: Address bar not reset when choosing to stay on a page after the \ 
beforeunload dialog is shown
#CVE-2020-15666: MediaError message property leaks cross-origin response status
#CVE-2020-15667: Heap overflow when processing an update file
#CVE-2020-15668: Data Race when reading certificate information
#CVE-2020-15670: Memory safety bugs fixed in Firefox 80 and Firefox ESR 78.2
   2020-08-18 19:58:18 by Leonardo Taccari | Files touched by this commit (549)
Log message:
*: revbump for libsndfile