pkgsrc-Changes-HG archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

[pkgsrc/pkgsrc-2005Q1]: pkgsrc/www/firefox-gtk2-bin Pullup ticket 379 - reque...



details:   https://anonhg.NetBSD.org/pkgsrc/rev/109bd7bf0e42
branches:  pkgsrc-2005Q1
changeset: 490849:109bd7bf0e42
user:      snj <snj%pkgsrc.org@localhost>
date:      Tue Mar 22 19:13:56 2005 +0000

description:
Pullup ticket 379 - requested by Matthias Scheler
security fix for firefox-gtk2-bin

Revisions pulled up:
- pkgsrc/www/firefox-gtk2-bin/Makefile  1.7
- pkgsrc/www/firefox-gtk2-bin/distinfo  1.8


    Module Name:        pkgsrc
    Committed By:       tron
    Date:               Tue Mar 22 10:17:50 UTC 2005

    Modified Files:
            pkgsrc/www/firefox-gtk2-bin: Makefile distinfo

    Log Message:
    Update "firefox-gtk2-bin" package to version 1.0.1. Besides various bug
    fixes the following security issuses were fixed:

    MFSA 2005-29 Internationalized Domain Name (IDN) homograph spoofing
    MFSA 2005-28 Unsafe /tmp/plugtmp directory exploitable to erase user's files
    MFSA 2005-27 Plugins can be used to load privileged content
    MFSA 2005-26 Cross-site scripting by dropping javascript: link on tab
    MFSA 2005-25 Image drag and drop executable spoofing
    MFSA 2005-24 HTTP auth prompt tab spoofing
    MFSA 2005-23 Download dialog source spoofing
    MFSA 2005-22 Download dialog spoofing using Content-Disposition header
    MFSA 2005-21 Overwrite arbitrary files downloading .lnk twice
    MFSA 2005-20 XSLT can include stylesheets from arbitrary hosts
    MFSA 2005-19 Autocomplete data leak
    MFSA 2005-18 Memory overwrite in string library
    MFSA 2005-17 Install source spoofing with user:pass@host
    MFSA 2005-16 Spoofing download and security dialogs with overlapping windows
    MFSA 2005-15 Heap overflow possible in UTF8 to Unicode conversion
    MFSA 2005-14 SSL "secure site" indicator spoofing
    MFSA 2005-13 Window Injection Spoofing

diffstat:

 www/firefox-gtk2-bin/Makefile |  4 ++--
 www/firefox-gtk2-bin/distinfo |  8 ++++----
 2 files changed, 6 insertions(+), 6 deletions(-)

diffs (26 lines):

diff -r 395baad2c659 -r 109bd7bf0e42 www/firefox-gtk2-bin/Makefile
--- a/www/firefox-gtk2-bin/Makefile     Tue Mar 22 19:05:46 2005 +0000
+++ b/www/firefox-gtk2-bin/Makefile     Tue Mar 22 19:13:56 2005 +0000
@@ -1,7 +1,7 @@
-# $NetBSD: Makefile,v 1.6 2005/02/27 03:50:11 grant Exp $
+# $NetBSD: Makefile,v 1.6.2.1 2005/03/22 19:13:56 snj Exp $
 
 MOZILLA=       firefox
-MOZ_VER=       1.0
+MOZ_VER=       1.0.1
 MOZ_DISTVER=   ${MOZ_VER}
 
 HOMEPAGE=      http://www.mozilla.org/projects/firefox/
diff -r 395baad2c659 -r 109bd7bf0e42 www/firefox-gtk2-bin/distinfo
--- a/www/firefox-gtk2-bin/distinfo     Tue Mar 22 19:05:46 2005 +0000
+++ b/www/firefox-gtk2-bin/distinfo     Tue Mar 22 19:13:56 2005 +0000
@@ -1,5 +1,5 @@
-$NetBSD: distinfo,v 1.7 2005/02/27 03:50:11 grant Exp $
+$NetBSD: distinfo,v 1.7.2.1 2005/03/22 19:13:56 snj Exp $
 
-SHA1 (firefox-gtk2/releases/1.0/linux-i686/en-US/firefox-1.0.tar.gz) = 50fc6b1e6b3a7958e9ad6a5a5862fadb4b877bec
-RMD160 (firefox-gtk2/releases/1.0/linux-i686/en-US/firefox-1.0.tar.gz) = 484cb9807ed2106fe78cf5896a46677e41fe2825
-Size (firefox-gtk2/releases/1.0/linux-i686/en-US/firefox-1.0.tar.gz) = 8223869 bytes
+SHA1 (firefox-gtk2/releases/1.0.1/linux-i686/en-US/firefox-1.0.1.tar.gz) = ea5c7752a9079053229004f342abf26ca3ec2796
+RMD160 (firefox-gtk2/releases/1.0.1/linux-i686/en-US/firefox-1.0.1.tar.gz) = dc1586d3533376d85e7cdc236830a47f8f305342
+Size (firefox-gtk2/releases/1.0.1/linux-i686/en-US/firefox-1.0.1.tar.gz) = 8231204 bytes



Home | Main Index | Thread Index | Old Index