head 1.2; access; symbols pkgsrc-2013Q2:1.2.0.36 pkgsrc-2013Q2-base:1.2 pkgsrc-2012Q4:1.2.0.34 pkgsrc-2012Q4-base:1.2 pkgsrc-2011Q4:1.2.0.32 pkgsrc-2011Q4-base:1.2 pkgsrc-2011Q2:1.2.0.30 pkgsrc-2011Q2-base:1.2 pkgsrc-2009Q4:1.2.0.28 pkgsrc-2009Q4-base:1.2 pkgsrc-2008Q4:1.2.0.26 pkgsrc-2008Q4-base:1.2 pkgsrc-2008Q3:1.2.0.24 pkgsrc-2008Q3-base:1.2 cube-native-xorg:1.2.0.22 cube-native-xorg-base:1.2 pkgsrc-2008Q2:1.2.0.20 pkgsrc-2008Q2-base:1.2 pkgsrc-2008Q1:1.2.0.18 pkgsrc-2008Q1-base:1.2 pkgsrc-2007Q4:1.2.0.16 pkgsrc-2007Q4-base:1.2 pkgsrc-2007Q3:1.2.0.14 pkgsrc-2007Q3-base:1.2 pkgsrc-2007Q2:1.2.0.12 pkgsrc-2007Q2-base:1.2 pkgsrc-2007Q1:1.2.0.10 pkgsrc-2007Q1-base:1.2 pkgsrc-2006Q4:1.2.0.8 pkgsrc-2006Q4-base:1.2 pkgsrc-2006Q3:1.2.0.6 pkgsrc-2006Q3-base:1.2 pkgsrc-2006Q2:1.2.0.4 pkgsrc-2006Q2-base:1.2 pkgsrc-2006Q1:1.2.0.2 pkgsrc-2006Q1-base:1.2 pkgsrc-2005Q4:1.1.0.2 pkgsrc-2005Q4-base:1.1; locks; strict; comment @# @; 1.2 date 2006.02.05.14.46.31; author ghen; state dead; branches; next 1.1; 1.1 date 2005.12.10.13.47.22; author taya; state Exp; branches 1.1.2.1; next ; 1.1.2.1 date 2006.02.09.10.32.29; author salo; state dead; branches; next ; desc @@ 1.2 log @Update to Firefox 1.5.0.1, a bug fix release for Firefox 1.5. What's new: * Improved stability. * Improved support for Mac OS X. * International Domain Name support for Iceland (.is) is now enabled. * Fixes for several memory leaks. * Several security enhancements. For a more detailed list changes, see http://www.squarefree.com/burningedge/releases/1.5.0.1.html Ok with wiz. @ text @$NetBSD: patch-bugzilla-319004,v 1.1 2005/12/10 13:47:22 taya Exp $ Index: toolkit/components/history/src/nsGlobalHistory.cpp =================================================================== RCS file: /cvsroot/mozilla/toolkit/components/history/src/nsGlobalHistory.cpp,v retrieving revision 1.63 diff -u -8 -r1.63 nsGlobalHistory.cpp --- toolkit/components/history/src/nsGlobalHistory.cpp 17 Nov 2005 00:23:09 -0000 1.63 +++ toolkit/components/history/src/nsGlobalHistory.cpp 9 Dec 2005 08:30:42 -0000 @@@@ -108,16 +108,20 @@@@ #define PREF_BRANCH_BASE "browser." #define PREF_BROWSER_HISTORY_EXPIRE_DAYS "history_expire_days" #define PREF_AUTOCOMPLETE_ONLY_TYPED "urlbar.matchOnlyTyped" #define PREF_AUTOCOMPLETE_ENABLED "urlbar.autocomplete.enabled" #define FIND_BY_AGEINDAYS_PREFIX "find:datasource=history&match=AgeInDays&method=" +// see bug #319004 -- clamp title and URL to generously-large but not too large +// length +#define HISTORY_STRING_LENGTH_MAX 65536 + // sync history every 10 seconds #define HISTORY_SYNC_TIMEOUT (10 * PR_MSEC_PER_SEC) //#define HISTORY_SYNC_TIMEOUT 3000 // every 3 seconds - testing only! // the value of mLastNow expires every 3 seconds #define HISTORY_EXPIRE_NOW_TIMEOUT (3 * PR_MSEC_PER_SEC) #define MSECS_PER_DAY (PR_MSEC_PER_SEC * 60 * 60 * 24) @@@@ -1105,30 +1109,33 @@@@ } NS_IMETHODIMP nsGlobalHistory::SetPageTitle(nsIURI *aURI, const nsAString& aTitle) { nsresult rv; NS_ENSURE_ARG_POINTER(aURI); - const nsAFlatString& titleString = PromiseFlatString(aTitle); + nsAutoString titleString(Substring(aTitle, 0, HISTORY_STRING_LENGTH_MAX)); // skip about: URIs to avoid reading in the db (about:blank, especially) PRBool isAbout; rv = aURI->SchemeIs("about", &isAbout); NS_ENSURE_SUCCESS(rv, rv); if (isAbout) return NS_OK; NS_ENSURE_SUCCESS(OpenDB(), NS_ERROR_FAILURE); nsCAutoString URISpec; rv = aURI->GetSpec(URISpec); NS_ENSURE_SUCCESS(rv, rv); + if (URISpec.Length() > HISTORY_STRING_LENGTH_MAX) + URISpec.Left(URISpec, HISTORY_STRING_LENGTH_MAX); + nsCOMPtr row; rv = FindRow(kToken_URLColumn, URISpec.get(), getter_AddRefs(row)); // if the row doesn't exist, we silently succeed if (rv == NS_ERROR_NOT_AVAILABLE) return NS_OK; NS_ENSURE_SUCCESS(rv, rv); // Get the old title so we can notify observers Index: xpfe/components/history/src/nsGlobalHistory.cpp =================================================================== RCS file: /cvsroot/mozilla/xpfe/components/history/src/nsGlobalHistory.cpp,v retrieving revision 1.213 diff -u -8 -p -r1.213 nsGlobalHistory.cpp --- xpfe/components/history/src/nsGlobalHistory.cpp 26 Oct 2005 16:50:47 -0000 1.213 +++ xpfe/components/history/src/nsGlobalHistory.cpp 9 Dec 2005 08:47:37 -0000 @@@@ -106,16 +106,20 @@@@ nsIPrefBranch* nsGlobalHistory::gPrefBra #define PREF_BRANCH_BASE "browser." #define PREF_BROWSER_HISTORY_EXPIRE_DAYS "history_expire_days" #define PREF_AUTOCOMPLETE_ONLY_TYPED "urlbar.matchOnlyTyped" #define PREF_AUTOCOMPLETE_ENABLED "urlbar.autocomplete.enabled" #define FIND_BY_AGEINDAYS_PREFIX "find:datasource=history&match=AgeInDays&method=" +// see bug #319004 -- clamp title and URL to generously-large but not too large +// length +#define HISTORY_STRING_LENGTH_MAX 65536 + // sync history every 10 seconds #define HISTORY_SYNC_TIMEOUT (10 * PR_MSEC_PER_SEC) //#define HISTORY_SYNC_TIMEOUT 3000 // every 3 seconds - testing only! // the value of mLastNow expires every 3 seconds #define HISTORY_EXPIRE_NOW_TIMEOUT (3 * PR_MSEC_PER_SEC) static const PRInt64 MSECS_PER_DAY = LL_INIT(20, 500654080); // (1000000LL * 60 * 60 * 24) @@@@ -1028,30 +1032,33 @@@@ nsGlobalHistory::GetCount(PRUint32* aCou } NS_IMETHODIMP nsGlobalHistory::SetPageTitle(nsIURI *aURI, const nsAString& aTitle) { nsresult rv; NS_ENSURE_ARG_POINTER(aURI); - const nsAFlatString& titleString = PromiseFlatString(aTitle); + nsAutoString titleString(Substring(aTitle, 0, HISTORY_STRING_LENGTH_MAX)); // skip about: URIs to avoid reading in the db (about:blank, especially) PRBool isAbout; rv = aURI->SchemeIs("about", &isAbout); NS_ENSURE_SUCCESS(rv, rv); if (isAbout) return NS_OK; NS_ENSURE_SUCCESS(OpenDB(), NS_ERROR_FAILURE); nsCAutoString URISpec; rv = aURI->GetSpec(URISpec); NS_ENSURE_SUCCESS(rv, rv); + if (URISpec.Length() > HISTORY_STRING_LENGTH_MAX) + URISpec.Left(URISpec, HISTORY_STRING_LENGTH_MAX); + nsCOMPtr row; rv = FindRow(kToken_URLColumn, URISpec.get(), getter_AddRefs(row)); // if the row doesn't exist, we silently succeed if (rv == NS_ERROR_NOT_AVAILABLE) return NS_OK; NS_ENSURE_SUCCESS(rv, rv); // Get the old title so we can notify observers @ 1.1 log @ Update firefox & firefox-gtk1 to 1.5 Including fix for long title & history file problem. http://www.mozilla.org/security/history-title.html https://bugzilla.mozilla.org/show_bug.cgi?id=319004 What's New in Firefox 1.5 Firefox 1.5 is the next version of our award-winning Web browser. Here's what's new in Firefox 1.5: * Automated update to streamline product upgrades. Notification of an update is more prominent, and updates to Firefox may now be half a megabyte or smaller. Updating extensions has also improved. * Faster browser navigation with improvements to back and forward button performance. * Drag and drop reordering for browser tabs. * Improvements to popup blocking. * Clear Private Data feature provides an easy way to quickly remove personal data through a menu item or keyboard shortcut. * Answers.com is added to the search engine list. * Improvements to product usability including descriptive error pages, redesigned options menu, RSS discovery, and "Safe Mode" experience. * Better accessibility including support for DHTML accessibility and assistive technologies such as the Window-Eyes 5.5 beta screen reader for Microsoft Windows. Screen readers read aloud all available information in applications and documents or show the information on a Braille display, enabling blind and visually impaired users to use equivalent software functionality as their sighted peers. * Report a broken Web site wizard to report Web sites that are not working in Firefox. * Better support for Mac OS X (10.2 and greater) including profile migration from Safari and Mac Internet Explorer. * New support for Web Standards including SVG, CSS 2 and CSS 3, and JavaScript 1.6. * Many security enhancements. The Burning Edge has more detailed lists of new features and notable bug fixes. http://www.squarefree.com/burningedge/releases/1.5-comprehensive.html @ text @d1 1 a1 1 $NetBSD$ @ 1.1.2.1 log @Pullup ticket 1102 - requested by Geert Hendrickx security update for firefox and thunderbird Updated via patch from the submitter, includes these changes: Module Name: pkgsrc Committed By: joerg Date: Fri Dec 30 21:35:58 UTC 2005 Modified Files: pkgsrc/mail/thunderbird/patches: patch-ab patch-ac patch-aq patch-ba patch-bo patch-bs Added Files: pkgsrc/mail/thunderbird/patches: patch-ar patch-da patch-db patch-dc patch-de patch-df patch-dg patch-dh patch-dj patch-dk patch-dl patch-dm patch-do patch-ds patch-dt Log Message: Add DragonFly build support, partly based on the patches from www/firefox. --- Module Name: pkgsrc Committed By: joerg Date: Wed Jan 4 08:55:08 UTC 2006 Modified Files: pkgsrc/mail/thunderbird: distinfo Log Message: Also commit distinfo. Reminded by wiz@@. --- Module Name: pkgsrc Committed By: ghen Date: Sun Feb 5 14:49:05 UTC 2006 Modified Files: pkgsrc/mail/thunderbird: Makefile Makefile-thunderbird.common PLIST distinfo pkgsrc/mail/thunderbird-gtk1: Makefile PLIST pkgsrc/mail/thunderbird/patches: patch-aa patch-ab patch-ac patch-af patch-ag patch-ai patch-aj patch-al patch-ap patch-aq patch-aw patch-ax patch-bb patch-bo patch-bq patch-br patch-db patch-de patch-df Removed Files: pkgsrc/mail/thunderbird-gtk1: MESSAGE pkgsrc/mail/thunderbird/patches: patch-bt patch-bw patch-cc patch-ce patch-cf Log Message: Update to Thunderbird 1.5. What's new: * Automated update to streamline product upgrades. Notification of an update is more prominent, and updates to Thunderbird may now be half a megabyte or smaller. Updating extensions has also improved. * Sort address autocomplete results by how often you send e-mail to each recipient. * Spell check as you type. * Saved Search Folders can now search across multiple accounts. * Built in phishing detector to help protect users against email scams. * Podcasting and other RSS Improvements. * Deleting attachments from messages. * Integration with server side spam filtering. * Reply and forward actions for message filters. * Kerberos Authentication. * Auto save as draft for mail composition. * Message aging. * Filters for Global Inbox. * Improvements to product usability including redesigned options interface, and SMTP server management. * Many security enhancements. For a more detailed list of changes, see http://weblogs.mozillazine.org/rumblingedge/archives/2006/01/1-5.html Ok with wiz. --- Module Name: pkgsrc Committed By: ghen Date: Sun Feb 5 14:43:59 UTC 2006 Modified Files: pkgsrc/www/mozilla: Makefile.common Log Message: Set CATEGORIES ?=www (instead of =) such that thunderbird (and later sunbird) can override it. Ok for wiz. --- odule Name: pkgsrc Committed By: ghen Date: Sun Feb 5 14:46:31 UTC 2006 Modified Files: pkgsrc/www/firefox: Makefile Makefile-firefox.common PLIST distinfo pkgsrc/www/firefox-gtk1: Makefile PLIST Added Files: pkgsrc/www/firefox/patches: patch-dw patch-dx Removed Files: pkgsrc/www/firefox/patches: patch-bugzilla-319004 Log Message: Update to Firefox 1.5.0.1, a bug fix release for Firefox 1.5. What's new: * Improved stability. * Improved support for Mac OS X. * International Domain Name support for Iceland (.is) is now enabled. * Fixes for several memory leaks. * Several security enhancements. For a more detailed list changes, see http://www.squarefree.com/burningedge/releases/1.5.0.1.html Ok with wiz. @ text @d1 1 a1 1 $NetBSD: patch-bugzilla-319004,v 1.1 2005/12/10 13:47:22 taya Exp $ @