Subject: CVS commit: pkgsrc/www
To: None <pkgsrc-changes@NetBSD.org>
From: Shin'ichiro TAYA <taya@netbsd.org>
List: pkgsrc-changes
Date: 04/19/2005 15:15:30
Module Name: pkgsrc
Committed By: taya
Date: Tue Apr 19 15:15:30 UTC 2005
Modified Files:
pkgsrc/www/mozilla: Makefile buildlink3.mk distinfo
pkgsrc/www/mozilla-gtk2: Makefile buildlink3.mk
Removed Files:
pkgsrc/www/mozilla/patches: patch-bugzilla288688
Log Message:
Update mozilla & mozilla-gtk2 to 1.7.7
This is a security fix release.
Fixed vulnerabilities are follows:
MFSA 2005-33 Javascript "lambda" replace exposes memory contents
MFSA 2005-35 Showing blocked javascript: popup uses wrong privilege context
MFSA 2005-36 Cross-site scripting through global scope pollution
MFSA 2005-37 Code execution through javascript: favicons
MFSA 2005-38 Search plugin cross-site scripting
MFSA 2005-40 Missing Install object instance checks
MFSA 2005-41 Privilege escalation via DOM property overrides
To generate a diff of this commit:
cvs rdiff -r1.143 -r1.144 pkgsrc/www/mozilla/Makefile
cvs rdiff -r1.9 -r1.10 pkgsrc/www/mozilla/buildlink3.mk
cvs rdiff -r1.74 -r1.75 pkgsrc/www/mozilla/distinfo
cvs rdiff -r1.20 -r1.21 pkgsrc/www/mozilla-gtk2/Makefile
cvs rdiff -r1.7 -r1.8 pkgsrc/www/mozilla-gtk2/buildlink3.mk
cvs rdiff -r1.1 -r0 pkgsrc/www/mozilla/patches/patch-bugzilla288688
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.