![[BACK]](/icons/back.gif){kind=icon}
Up to [cvs.NetBSD.org] / pkgsrc / www / firefox38
Request diff between arbitrary revisions
Default branch: MAIN
Revision 1.33, Fri Oct 27 13:59:52 2017 UTC (6 years, 5 months ago) by ryoon
Branch: MAIN
CVS Tags: HEAD
Changes since 1.32: +1 -1
lines
FILE REMOVED
Remove firefox38
Revision 1.32 / (download) - annotate - [select for diffs], Mon Sep 18 09:53:37 2017 UTC (6 years, 7 months ago) by maya
Branch: MAIN
CVS Tags: pkgsrc-2017Q3-base,
pkgsrc-2017Q3
Changes since 1.31: +2 -2
lines
Diff to previous 1.31 (colored)
revbump for requiring ICU 59.x
Revision 1.31 / (download) - annotate - [select for diffs], Fri Sep 8 02:38:44 2017 UTC (6 years, 7 months ago) by ryoon
Branch: MAIN
Changes since 1.30: +2 -2
lines
Diff to previous 1.30 (colored)
Recursive revbump from audio/pulseaudio-11.0
Revision 1.30 / (download) - annotate - [select for diffs], Sat Apr 22 21:04:02 2017 UTC (6 years, 11 months ago) by adam
Branch: MAIN
CVS Tags: pkgsrc-2017Q2-base,
pkgsrc-2017Q2
Changes since 1.29: +2 -2
lines
Diff to previous 1.29 (colored)
Revbump after icu update
Revision 1.29 / (download) - annotate - [select for diffs], Sun Feb 12 06:26:08 2017 UTC (7 years, 2 months ago) by ryoon
Branch: MAIN
CVS Tags: pkgsrc-2017Q1-base,
pkgsrc-2017Q1
Changes since 1.28: +2 -2
lines
Diff to previous 1.28 (colored)
Recursive revbump from fonts/harfbuzz
Revision 1.28 / (download) - annotate - [select for diffs], Mon Feb 6 13:56:05 2017 UTC (7 years, 2 months ago) by wiz
Branch: MAIN
Changes since 1.27: +2 -2
lines
Diff to previous 1.27 (colored)
Recursive bump for harfbuzz's new graphite2 dependency.
Revision 1.27 / (download) - annotate - [select for diffs], Sat Jan 21 20:06:53 2017 UTC (7 years, 2 months ago) by ryoon
Branch: MAIN
Changes since 1.26: +2 -2
lines
Diff to previous 1.26 (colored)
Recursive revbump from audio/pulseaudio-10.0
Revision 1.26 / (download) - annotate - [select for diffs], Mon Jan 16 23:45:17 2017 UTC (7 years, 3 months ago) by wiz
Branch: MAIN
Changes since 1.25: +2 -2
lines
Diff to previous 1.25 (colored)
Recursive bump for libvpx shlib major change.
Revision 1.25 / (download) - annotate - [select for diffs], Sun Dec 4 05:17:44 2016 UTC (7 years, 4 months ago) by ryoon
Branch: MAIN
CVS Tags: pkgsrc-2016Q4-base,
pkgsrc-2016Q4
Changes since 1.24: +2 -2
lines
Diff to previous 1.24 (colored)
Recursive revbump from textproc/icu 58.1
Revision 1.24 / (download) - annotate - [select for diffs], Sun Nov 20 21:10:41 2016 UTC (7 years, 4 months ago) by joerg
Branch: MAIN
Changes since 1.23: +4 -1
lines
Diff to previous 1.23 (colored)
Create a maintainable form of the patch.
Revision 1.23 / (download) - annotate - [select for diffs], Wed Aug 17 00:06:47 2016 UTC (7 years, 8 months ago) by ryoon
Branch: MAIN
CVS Tags: pkgsrc-2016Q3-base,
pkgsrc-2016Q3
Changes since 1.22: +2 -2
lines
Diff to previous 1.22 (colored)
Recursive revbump from multimedia/libvpx uppdate
Revision 1.22 / (download) - annotate - [select for diffs], Thu Aug 4 17:03:39 2016 UTC (7 years, 8 months ago) by ryoon
Branch: MAIN
Changes since 1.21: +2 -2
lines
Diff to previous 1.21 (colored)
Recursive revbump from audio/pulseaudio
Revision 1.21 / (download) - annotate - [select for diffs], Wed Aug 3 10:23:31 2016 UTC (7 years, 8 months ago) by adam
Branch: MAIN
Changes since 1.20: +2 -2
lines
Diff to previous 1.20 (colored)
Revbump after graphics/gd update
Revision 1.20 / (download) - annotate - [select for diffs], Sat Jul 9 06:39:12 2016 UTC (7 years, 9 months ago) by wiz
Branch: MAIN
Changes since 1.19: +2 -1
lines
Diff to previous 1.19 (colored)
Bump PKGREVISION for perl-5.24.0 for everything mentioning perl.
Revision 1.17.2.1 / (download) - annotate - [select for diffs], Thu May 19 12:55:30 2016 UTC (7 years, 11 months ago) by bsiegert
Branch: pkgsrc-2016Q1
Changes since 1.17: +3 -3
lines
Diff to previous 1.17 (colored) next main 1.18 (colored)
Pullup ticket #5014 - requested by sevan
devel/xulrunner38: security fix
www/firefox38: security fix
Revisions pulled up:
- devel/xulrunner38/Makefile 1.8
- devel/xulrunner38/PLIST 1.2
- www/firefox38/Makefile 1.19
- www/firefox38/distinfo 1.17
---
Module Name: pkgsrc
Committed By: ryoon
Date: Wed Apr 27 21:21:18 UTC 2016
Modified Files:
pkgsrc/www/firefox38: Makefile distinfo
Log Message:
Update to 38.8.0
Changelog:
Fixed in Firefox ESR 38.8
2016-47 Write to invalid HashMap entry through JavaScript.watch()
2016-44 Buffer overflow in libstagefright with CENC offsets
2016-39 Miscellaneous memory safety hazards (rv:46.0 / rv:45.1 / rv:38.8)
2016-36 Use-after-free during processing of DER encoded keys in NSS
2016-29 Same-origin policy violation using performance.getEntries and history navigation with session restore
2016-15 Use-after-free in NSS during SSL connections in low memory
2016-07 Errors in mp_div and mp_exptmod cryptographic functions in NSS
---
Module Name: pkgsrc
Committed By: ryoon
Date: Wed May 4 09:56:26 UTC 2016
Modified Files:
pkgsrc/devel/xulrunner38: Makefile PLIST
Log Message:
Update to 38.8.0
* Sync with firefox38-38.8.0
Revision 1.19 / (download) - annotate - [select for diffs], Wed Apr 27 21:21:18 2016 UTC (7 years, 11 months ago) by ryoon
Branch: MAIN
CVS Tags: pkgsrc-2016Q2-base,
pkgsrc-2016Q2
Changes since 1.18: +3 -4
lines
Diff to previous 1.18 (colored)
Update to 38.8.0
Changelog:
Fixed in Firefox ESR 38.8
2016-47 Write to invalid HashMap entry through JavaScript.watch()
2016-44 Buffer overflow in libstagefright with CENC offsets
2016-39 Miscellaneous memory safety hazards (rv:46.0 / rv:45.1 / rv:38.8)
2016-36 Use-after-free during processing of DER encoded keys in NSS
2016-29 Same-origin policy violation using performance.getEntries and history navigation with session restore
2016-15 Use-after-free in NSS during SSL connections in low memory
2016-07 Errors in mp_div and mp_exptmod cryptographic functions in NSS
Revision 1.18 / (download) - annotate - [select for diffs], Mon Apr 11 19:02:06 2016 UTC (8 years ago) by ryoon
Branch: MAIN
Changes since 1.17: +2 -1
lines
Diff to previous 1.17 (colored)
Recursive revbump from textproc/icu 57.1
Revision 1.17 / (download) - annotate - [select for diffs], Sat Mar 19 23:01:35 2016 UTC (8 years, 1 month ago) by ryoon
Branch: MAIN
CVS Tags: pkgsrc-2016Q1-base
Branch point for: pkgsrc-2016Q1
Changes since 1.16: +2 -2
lines
Diff to previous 1.16 (colored)
Update to 38.7.1
Changelog:
Fixed
Loading from history can show the wrong url in the location bar (Bug 1256194)
Changed
Disabled Graphite font shaping library
Revision 1.16 / (download) - annotate - [select for diffs], Sat Mar 12 03:47:20 2016 UTC (8 years, 1 month ago) by ryoon
Branch: MAIN
Changes since 1.15: +3 -4
lines
Diff to previous 1.15 (colored)
Update to 38.7.0
Changelog:
Fixed in Firefox ESR 38.7
2016-37 Font vulnerabilities in the Graphite 2 library
2016-35 Buffer overflow during ASN.1 decoding in NSS
2016-34 Out-of-bounds read in HTML parser following a failed allocation
2016-31 Memory corruption with malicious NPAPI plugin
2016-28 Addressbar spoofing though history navigation and Location protocol property
2016-27 Use-after-free during XML transformations
2016-25 Use-after-free when using multiple WebRTC data channels
2016-24 Use-after-free in SetBody
2016-23 Use-after-free in HTML5 string parser
2016-21 Displayed page address can be overridden
2016-20 Memory leak in libstagefright when deleting an array during MP4 processing
2016-17 Local file overwriting and potential privilege escalation through CSP reports
2016-16 Miscellaneous memory safety hazards (rv:45.0 / rv:38.7)
2015-136 Same-origin policy violation using performance.getEntries and history navigation
2015-81 Use-after-free in MediaStream playback
Revision 1.15 / (download) - annotate - [select for diffs], Sat Mar 5 11:29:37 2016 UTC (8 years, 1 month ago) by jperkin
Branch: MAIN
Changes since 1.14: +2 -1
lines
Diff to previous 1.14 (colored)
Bump PKGREVISION for security/openssl ABI bump.
Revision 1.14 / (download) - annotate - [select for diffs], Fri Feb 26 10:57:46 2016 UTC (8 years, 1 month ago) by jperkin
Branch: MAIN
Changes since 1.13: +3 -7
lines
Diff to previous 1.13 (colored)
Use OPSYSVARS.
Revision 1.13 / (download) - annotate - [select for diffs], Fri Feb 19 14:42:33 2016 UTC (8 years, 2 months ago) by ryoon
Branch: MAIN
Changes since 1.12: +2 -3
lines
Diff to previous 1.12 (colored)
Update 38.6.1
Changelog:
Fixed in Firefox ESR 38.6.1
2016-14 Vulnerabilities in Graphite 2
Revision 1.12 / (download) - annotate - [select for diffs], Tue Feb 9 13:26:12 2016 UTC (8 years, 2 months ago) by ryoon
Branch: MAIN
Changes since 1.11: +2 -1
lines
Diff to previous 1.11 (colored)
Add workaround for build failure with binutils 2.26 ld from NetBSD current Bump PKGREVISION.
Revision 1.11 / (download) - annotate - [select for diffs], Tue Feb 2 05:39:13 2016 UTC (8 years, 2 months ago) by ryoon
Branch: MAIN
Changes since 1.10: +2 -2
lines
Diff to previous 1.10 (colored)
Update to 38.6.0
Changelog:
Fixed in Firefox ESR 38.6
2016-03 Buffer overflow in WebGL after out of memory allocation
2016-01 Miscellaneous memory safety hazards (rv:44.0 / rv:38.6)
2015-150 MD5 signatures accepted within TLS 1.2 ServerKeyExchange in server signature
Revision 1.10 / (download) - annotate - [select for diffs], Wed Dec 16 23:51:34 2015 UTC (8 years, 4 months ago) by ryoon
Branch: MAIN
CVS Tags: pkgsrc-2015Q4-base,
pkgsrc-2015Q4
Changes since 1.9: +2 -3
lines
Diff to previous 1.9 (colored)
Update to 38.5.0
Changelog:
Fixed Various security fixes
Fixed Improved stability with Java (1221448)
Fixed in Firefox ESR 38.5
2015-149 Cross-site reading attack through data and view-source URIs
2015-147 Integer underflow and buffer overflow processing MP4 metadata in libstagefright
2015-146 Integer overflow in MP4 playback in 64-bit versions
2015-145 Underflow through code inspection
2015-139 Integer overflow allocating extremely large textures
2015-138 Use-after-free in WebRTC when datachannel is used after being destroyed
2015-134 Miscellaneous memory safety hazards (rv:43.0 / rv:38.5)
Revision 1.9 / (download) - annotate - [select for diffs], Wed Nov 18 14:19:55 2015 UTC (8 years, 5 months ago) by ryoon
Branch: MAIN
Changes since 1.8: +2 -1
lines
Diff to previous 1.8 (colored)
Recursive revbump from multimedia/libvpx
Revision 1.8 / (download) - annotate - [select for diffs], Tue Nov 3 23:39:08 2015 UTC (8 years, 5 months ago) by ryoon
Branch: MAIN
Changes since 1.7: +2 -3
lines
Diff to previous 1.7 (colored)
Update to 38.4.0
Changelog:
Fixed in Firefox ESR 38.4
2015-133 NSS and NSPR memory corruption issues
2015-132 Mixed content WebSocket policy bypass through workers
2015-131 Vulnerabilities found through code inspection
2015-130 JavaScript garbage collection crash with Java applet
2015-128 Memory corruption in libjar through zip files
2015-127 CORS preflight is bypassed when non-standard Content-Type headers are received
2015-123 Buffer overflow during image interactions in canvas
2015-122 Trailing whitespace in IP address hostnames can bypass same-origin policy
2015-116 Miscellaneous memory safety hazards (rv:42.0 / rv:38.4)
Revision 1.7 / (download) - annotate - [select for diffs], Sat Oct 10 01:58:22 2015 UTC (8 years, 6 months ago) by ryoon
Branch: MAIN
Changes since 1.6: +2 -2
lines
Diff to previous 1.6 (colored)
Recursive revbump from textproc/icu
Revision 1.6 / (download) - annotate - [select for diffs], Sun Sep 27 23:46:31 2015 UTC (8 years, 6 months ago) by tnn
Branch: MAIN
Changes since 1.5: +2 -1
lines
Diff to previous 1.5 (colored)
Remove old and probably stale Gecko Media Plugin patches (from FreeBSD?). It might still be possible that pkgsrc needs adjustments for gmp loading if/when we adopt some gmp packages, but until then they serve no purpose and in fact appear to be harmful. Fixes Firefox startup error message: addons.manager ERROR Exception calling provider GMPProvider.startup
Revision 1.5 / (download) - annotate - [select for diffs], Wed Sep 23 06:48:24 2015 UTC (8 years, 6 months ago) by ryoon
Branch: MAIN
CVS Tags: pkgsrc-2015Q3-base,
pkgsrc-2015Q3
Changes since 1.4: +3 -3
lines
Diff to previous 1.4 (colored)
Update to 38.3.0
Changelog:
Fixed in Firefox ESR 38.3
2015-113 Memory safety errors in libGLES in the ANGLE graphics library
2015-112 Vulnerabilities found through code inspection
2015-111 Errors in the handling of CORS preflight request headers
2015-110 Dragging and dropping images exposes final URL after redirects
2015-106 Use-after-free while manipulating HTML media content
2015-105 Buffer overflow while decoding WebM video
2015-101 Buffer overflow in libvpx while parsing vp9 format video
2015-100 Arbitrary file manipulation by local user through Mozilla updater
2015-96 Miscellaneous memory safety hazards (rv:41.0 / rv:38.3)
Revision 1.4 / (download) - annotate - [select for diffs], Sat Aug 29 12:48:25 2015 UTC (8 years, 7 months ago) by ryoon
Branch: MAIN
Changes since 1.3: +2 -2
lines
Diff to previous 1.3 (colored)
Update to 38.2.1
* Fix build with newer freetype.
Changelog:
Fixed in Firefox ESR 38.2.1
2015-95 Add-on notification bypass through data URLs
2015-94 Use-after-free when resizing canvas element during restyling
Revision 1.3 / (download) - annotate - [select for diffs], Fri Aug 21 09:08:56 2015 UTC (8 years, 8 months ago) by he
Branch: MAIN
Changes since 1.2: +3 -3
lines
Diff to previous 1.2 (colored)
Update firefox38 to version 38.2.0esr. Upstream changes, ref. https://www.mozilla.org/en-US/firefox/38.2.0/releasenotes/ * Firefox may crash during mp4 video playback * Significant memory leak with GreaseMonkey add-on * crash [@ RtlEnterCriticalSection | MessageLoop::PostTask_Helper] on browser shutdown * Browser UI becomes unresponsive state when using Unity Web Player Plugin * ESRs will not build on hppa platform * crash in mozilla::layers::SyncObjectD3D11::FinalizeFrame() and a smattering of security fixes: * 2015-92 Use-after-free in XMLHttpRequest with shared workers * 2015-90 Vulnerabilities found through code inspection * 2015-89 Buffer overflows on Libvpx when decoding WebM video * 2015-88 Heap overflow in gdk-pixbuf when scaling bitmap images * 2015-87 Crash when using shared memory in JavaScript * 2015-85 Out-of-bounds write with Updater and malicious MAR file * 2015-84 Arbitrary file overwriting through Mozilla Maintenance Service with hard links * 2015-83 Overflow issues in libstagefright * 2015-82 Redefinition of non-configurable JavaScript object properties * 2015-80 Out-of-bounds read with malformed MP3 file * 2015-79 Miscellaneous memory safety hazards (rv:40.0 / rv:38.2)
Revision 1.2 / (download) - annotate - [select for diffs], Sun Aug 9 16:33:05 2015 UTC (8 years, 8 months ago) by he
Branch: MAIN
Changes since 1.1: +2 -2
lines
Diff to previous 1.1 (colored)
Upgrade from version 38.1.0 to 38.1.1. Fixes Mozilla Foundation Security Advisory 2015-78: Same origin violation and local file stealing via PDF reader * Fixes CVE-2015-4495 - It's possible to read local files or perform privilege escalation by using a native setter, bug 1178058. * Remove PlayPreview registration from PDF viewer, bug 1179262. ref. https://www.mozilla.org/en-US/security/advisories/mfsa2015-78/
Revision 1.1 / (download) - annotate - [select for diffs], Thu Jul 9 14:13:51 2015 UTC (8 years, 9 months ago) by ryoon
Branch: MAIN
Import firefox38-38.1.0 as www/firefox38. Mozilla Firefox is a free, open-source and cross-platform web browser for Windows, Linux, MacOS X and many other operating systems. It is fast and easy to use, and offers many advantages over other web browsers, such as tabbed browsing and the ability to block pop-up windows. Firefox also offers excellent bookmark and history management, and it can be extended by developers using industry standards such as XML, CSS, JavaScript, C++, etc. Many extensions are available. This package tracks 38 ESR.