head	1.3;
access;
symbols
	pkgsrc-2013Q2:1.3.0.8
	pkgsrc-2013Q2-base:1.3
	pkgsrc-2012Q4:1.3.0.6
	pkgsrc-2012Q4-base:1.3
	pkgsrc-2011Q4:1.3.0.4
	pkgsrc-2011Q4-base:1.3
	pkgsrc-2011Q2:1.3.0.2
	pkgsrc-2011Q2-base:1.3
	pkgsrc-2010Q3:1.2.0.2
	pkgsrc-2010Q3-base:1.2
	pkgsrc-2010Q2:1.1.0.2
	pkgsrc-2010Q2-base:1.1;
locks; strict;
comment	@# @;


1.3
date	2010.10.21.10.27.21;	author tnn;	state dead;
branches;
next	1.2;

1.2
date	2010.09.09.09.41.22;	author tnn;	state Exp;
branches
	1.2.2.1;
next	1.1;

1.1
date	2010.04.26.12.47.08;	author tnn;	state Exp;
branches
	1.1.2.1;
next	;

1.2.2.1
date	2010.10.25.08.23.42;	author tron;	state dead;
branches;
next	;

1.1.2.1
date	2010.09.11.14.59.16;	author spz;	state Exp;
branches;
next	;


desc
@@


1.3
log
@Security & stability update to firefox-3.6.11 (xulrunner-1.9.2.11)

MFSA 2010-72 Insecure Diffie-Hellman key exchange
MFSA 2010-71 Unsafe library loading vulnerabilities
MFSA 2010-70 SSL wildcard certificate matching IP addresses
MFSA 2010-69 Cross-site information disclosure via modal calls
MFSA 2010-68 XSS in gopher parser when parsing hrefs
MFSA 2010-67 Dangling pointer vulnerability in LookupGetterOrSetter
MFSA 2010-66 Use-after-free error in nsBarProp
MFSA 2010-65 Buffer overflow and memory corruption using document.write
MFSA 2010-64 Miscellaneous memory safety hazards (rv:1.9.2.11/ 1.9.1.14)
@
text
@$NetBSD: patch-mc,v 1.2 2010/09/09 09:41:22 tnn Exp $

Avoid extra file appearing in PLIST on Linux.

--- security/nss/lib/freebl/config.mk.orig	2010-08-24 21:32:09.000000000 +0000
+++ security/nss/lib/freebl/config.mk
@@@@ -68,7 +68,7 @@@@ else
 
 ifeq ($(FREEBL_NO_DEPEND),1)
 LOWHASH_SRCS = stubs.c nsslowhash.c
-LOWHASH_EXPORTS = nsslowhash.h
+#LOWHASH_EXPORTS = nsslowhash.h
 MAPFILE_SOURCE = freebl_hash.def
 else
 MAPFILE_SOURCE = freebl.def
@


1.2
log
@Update to firefox-3.6.9 (xulrunner-1.9.2.9)

MFSA 2010-63 Information leak via XMLHttpRequest statusText
MFSA 2010-62 Copy-and-paste or drag-and-drop into designMode document allows XSS
MFSA 2010-61 UTF-7 XSS by overriding document charset using <object> type
             attribute
MFSA 2010-59 SJOW creates scope chains ending in outer object
MFSA 2010-58 Crash on Mac using fuzzed font in data: URL
MFSA 2010-57 Crash and remote code execution in normalizeDocument
MFSA 2010-56 Dangling pointer vulnerability in nsTreeContentView
MFSA 2010-55 XUL tree removal crash and remote code execution
MFSA 2010-54 Dangling pointer vulnerability in nsTreeSelection
MFSA 2010-53 Heap buffer overflow in nsTextFrameUtils::TransformText
MFSA 2010-52 Windows XP DLL loading vulnerability
MFSA 2010-51 Dangling pointer vulnerability using DOM plugin array
MFSA 2010-50 Frameset integer overflow vulnerability
MFSA 2010-49 Miscellaneous memory safety hazards (rv:1.9.2.9/ 1.9.1.12)
@
text
@d1 1
a1 1
$NetBSD$
@


1.2.2.1
log
@Pullup ticket #3255 - requested by tnn
devel/xulrunner: security update
www/firefox: security update

Revisions pulled up:
- devel/xulrunner/Makefile			1.42
- devel/xulrunner/dist.mk			1.15
- devel/xulrunner/distinfo			1.37
- devel/xulrunner/patches/patch-be		1.2
- devel/xulrunner/patches/patch-mc		delete
- www/firefox/Makefile				1.77
---
Module Name:	pkgsrc
Committed By:	tnn
Date:		Thu Oct 21 10:27:21 UTC 2010

Modified Files:
	pkgsrc/devel/xulrunner: Makefile dist.mk distinfo
	pkgsrc/devel/xulrunner/patches: patch-be
	pkgsrc/www/firefox: Makefile
Removed Files:
	pkgsrc/devel/xulrunner/patches: patch-mc

Log Message:
Security & stability update to firefox-3.6.11 (xulrunner-1.9.2.11)

MFSA 2010-72 Insecure Diffie-Hellman key exchange
MFSA 2010-71 Unsafe library loading vulnerabilities
MFSA 2010-70 SSL wildcard certificate matching IP addresses
MFSA 2010-69 Cross-site information disclosure via modal calls
MFSA 2010-68 XSS in gopher parser when parsing hrefs
MFSA 2010-67 Dangling pointer vulnerability in LookupGetterOrSetter
MFSA 2010-66 Use-after-free error in nsBarProp
MFSA 2010-65 Buffer overflow and memory corruption using document.write
MFSA 2010-64 Miscellaneous memory safety hazards (rv:1.9.2.11/ 1.9.1.14)
@
text
@d1 1
a1 1
$NetBSD: patch-mc,v 1.2 2010/09/09 09:41:22 tnn Exp $
@


1.1
log
@fix linux PLIST issues
@
text
@d5 3
a7 3
--- security/nss/lib/freebl/manifest.mn.orig	2010-04-13 22:22:54.000000000 +0000
+++ security/nss/lib/freebl/manifest.mn
@@@@ -72,7 +72,7 @@@@ endif
d9 1
a9 1
 ifdef FREEBL_NO_DEPEND
@


1.1.2.1
log
@Pullup ticket 3219 - requested by tnn
security update

Revisions pulled up:
- pkgsrc/devel/nspr/Makefile			1.37
- pkgsrc/devel/nspr/PLIST			1.11
- pkgsrc/devel/nss/Makefile			1.38
- pkgsrc/devel/xulrunner/PLIST			1.24
- pkgsrc/devel/xulrunner/dist.mk		1.14
- pkgsrc/devel/xulrunner/distinfo		1.36
- pkgsrc/devel/xulrunner/mozilla-common.mk	1.16
- pkgsrc/devel/xulrunner/patches/patch-ag	1.2
- pkgsrc/devel/xulrunner/patches/patch-al	1.2
- pkgsrc/devel/xulrunner/patches/patch-ap	1.4
- pkgsrc/devel/xulrunner/patches/patch-mc	1.2
- pkgsrc/devel/xulrunner/patches/patch-mm	1.3
- pkgsrc/devel/xulrunner/patches/patch-mn	1.3

-------------------------------------------------------------------------
   Modified Files:
           pkgsrc/devel/nspr: Makefile PLIST

   Log Message:
   Update to nspr-4.8.6 (via firefox-3.6.9). Changes unknown.

   To generate a diff of this commit:
   cvs rdiff -u -r1.36 -r1.37 pkgsrc/devel/nspr/Makefile
   cvs rdiff -u -r1.10 -r1.11 pkgsrc/devel/nspr/PLIST

-------------------------------------------------------------------------
   Modified Files:
           pkgsrc/devel/nss: Makefile

   Log Message:
   Update to nss-3.12.7.0 (via firefox-3.6.9). Changes unknown.

   To generate a diff of this commit:
   cvs rdiff -u -r1.37 -r1.38 pkgsrc/devel/nss/Makefile

-------------------------------------------------------------------------
   Modified Files:
           pkgsrc/devel/xulrunner: PLIST dist.mk distinfo mozilla-common.mk
           pkgsrc/devel/xulrunner/patches: patch-ag patch-al patch-ap
   patch-mc patch-mm patch-mn

   Log Message:
   Update to firefox-3.6.9 (xulrunner-1.9.2.9)

   MFSA 2010-63 Information leak via XMLHttpRequest statusText
   MFSA 2010-62 Copy-and-paste or drag-and-drop into designMode document allows XSS
   MFSA 2010-61 UTF-7 XSS by overriding document charset using <object> type
                attribute
   MFSA 2010-59 SJOW creates scope chains ending in outer object
   MFSA 2010-58 Crash on Mac using fuzzed font in data: URL
   MFSA 2010-57 Crash and remote code execution in normalizeDocument
   MFSA 2010-56 Dangling pointer vulnerability in nsTreeContentView
   MFSA 2010-55 XUL tree removal crash and remote code execution
   MFSA 2010-54 Dangling pointer vulnerability in nsTreeSelection
   MFSA 2010-53 Heap buffer overflow in nsTextFrameUtils::TransformText
   MFSA 2010-52 Windows XP DLL loading vulnerability
   MFSA 2010-51 Dangling pointer vulnerability using DOM plugin array
   MFSA 2010-50 Frameset integer overflow vulnerability
   MFSA 2010-49 Miscellaneous memory safety hazards (rv:1.9.2.9/ 1.9.1.12)

   To generate a diff of this commit:
   cvs rdiff -u -r1.23 -r1.24 pkgsrc/devel/xulrunner/PLIST
   cvs rdiff -u -r1.13 -r1.14 pkgsrc/devel/xulrunner/dist.mk
   cvs rdiff -u -r1.35 -r1.36 pkgsrc/devel/xulrunner/distinfo
   cvs rdiff -u -r1.15 -r1.16 pkgsrc/devel/xulrunner/mozilla-common.mk
   cvs rdiff -u -r1.1.1.1 -r1.2 pkgsrc/devel/xulrunner/patches/patch-ag \
       pkgsrc/devel/xulrunner/patches/patch-al
   cvs rdiff -u -r1.3 -r1.4 pkgsrc/devel/xulrunner/patches/patch-ap
   cvs rdiff -u -r1.1 -r1.2 pkgsrc/devel/xulrunner/patches/patch-mc
   cvs rdiff -u -r1.2 -r1.3 pkgsrc/devel/xulrunner/patches/patch-mm \
       pkgsrc/devel/xulrunner/patches/patch-mn
@
text
@d1 1
a1 1
$NetBSD: patch-mc,v 1.2 2010/09/09 09:41:22 tnn Exp $
d5 3
a7 3
--- security/nss/lib/freebl/config.mk.orig	2010-08-24 21:32:09.000000000 +0000
+++ security/nss/lib/freebl/config.mk
@@@@ -68,7 +68,7 @@@@ else
d9 1
a9 1
 ifeq ($(FREEBL_NO_DEPEND),1)
@