head 1.23; access; symbols pkgsrc-2023Q1:1.22.0.2 pkgsrc-2023Q1-base:1.22 pkgsrc-2022Q4:1.21.0.6 pkgsrc-2022Q4-base:1.21 pkgsrc-2022Q3:1.21.0.4 pkgsrc-2022Q3-base:1.21 pkgsrc-2022Q2:1.21.0.2 pkgsrc-2022Q2-base:1.21 pkgsrc-2022Q1:1.20.0.16 pkgsrc-2022Q1-base:1.20 pkgsrc-2021Q4:1.20.0.14 pkgsrc-2021Q4-base:1.20 pkgsrc-2021Q3:1.20.0.12 pkgsrc-2021Q3-base:1.20 pkgsrc-2021Q2:1.20.0.10 pkgsrc-2021Q2-base:1.20 pkgsrc-2021Q1:1.20.0.8 pkgsrc-2021Q1-base:1.20 pkgsrc-2020Q4:1.20.0.6 pkgsrc-2020Q4-base:1.20 pkgsrc-2020Q3:1.20.0.4 pkgsrc-2020Q3-base:1.20 pkgsrc-2020Q2:1.20.0.2 pkgsrc-2020Q2-base:1.20 pkgsrc-2020Q1:1.19.0.2 pkgsrc-2020Q1-base:1.19 pkgsrc-2019Q4:1.18.0.8 pkgsrc-2019Q4-base:1.18 pkgsrc-2019Q3:1.18.0.4 pkgsrc-2019Q3-base:1.18 pkgsrc-2019Q2:1.18.0.2 pkgsrc-2019Q2-base:1.18 pkgsrc-2019Q1:1.17.0.4 pkgsrc-2019Q1-base:1.17 pkgsrc-2018Q4:1.17.0.2 pkgsrc-2018Q4-base:1.17 pkgsrc-2018Q3:1.15.0.4 pkgsrc-2018Q3-base:1.15 pkgsrc-2018Q2:1.15.0.2 pkgsrc-2018Q2-base:1.15 pkgsrc-2018Q1:1.13.0.4 pkgsrc-2018Q1-base:1.13 pkgsrc-2017Q4:1.13.0.2 pkgsrc-2017Q4-base:1.13 pkgsrc-2017Q3:1.12.0.4 pkgsrc-2017Q3-base:1.12 pkgsrc-2017Q2:1.11.0.2 pkgsrc-2017Q2-base:1.11 pkgsrc-2017Q1:1.10.0.4 pkgsrc-2017Q1-base:1.10 pkgsrc-2016Q4:1.10.0.2 pkgsrc-2016Q4-base:1.10 pkgsrc-2016Q3:1.9.0.2 pkgsrc-2016Q3-base:1.9 pkgsrc-2016Q2:1.8.0.2 pkgsrc-2016Q2-base:1.8 pkgsrc-2016Q1:1.6.0.2 pkgsrc-2016Q1-base:1.6 pkgsrc-2015Q4:1.5.0.2 pkgsrc-2015Q4-base:1.5 pkgsrc-2015Q3:1.4.0.2 pkgsrc-2015Q3-base:1.4 pkgsrc-2015Q2:1.3.0.6 pkgsrc-2015Q2-base:1.3 pkgsrc-2015Q1:1.3.0.4 pkgsrc-2015Q1-base:1.3 pkgsrc-2014Q4:1.3.0.2 pkgsrc-2014Q4-base:1.3 pkgsrc-2014Q3:1.1.0.4 pkgsrc-2014Q3-base:1.1 pkgsrc-2014Q2:1.1.0.2 pkgsrc-2014Q2-base:1.1; locks; strict; comment @# @; 1.23 date 2023.04.05.14.22.36; author ryoon; state dead; branches; next 1.22; commitid 2mcgkmDUoGwYvVjE; 1.22 date 2023.01.24.17.57.09; author nia; state Exp; branches; next 1.21; commitid 9Me0jLePQPV5ZOaE; 1.21 date 2022.05.13.14.12.53; author ryoon; state Exp; branches; next 1.20; commitid eLQooaDi6UGiYTDD; 1.20 date 2020.04.09.14.01.26; author ryoon; state Exp; branches; next 1.19; commitid s0HVajyHjCcTsI3C; 1.19 date 2020.01.18.15.32.40; author nia; state Exp; branches; next 1.18; commitid NVDfApLiZrhEBbTB; 1.18 date 2019.06.13.22.05.24; author nia; state Exp; branches; next 1.17; commitid TTGGIsA2XOHHO4rB; 1.17 date 2018.11.04.04.46.57; author ryoon; state Exp; branches; next 1.16; commitid YX8q8tG8A2J4bAYA; 1.16 date 2018.11.04.00.38.45; author ryoon; state Exp; branches; next 1.15; commitid VDnZtZgWK5fTNyYA; 1.15 date 2018.06.28.13.52.37; author ryoon; state Exp; branches; next 1.14; commitid p6EHyR4EYL8jl3IA; 1.14 date 2018.05.10.20.01.53; author ryoon; state Exp; branches; next 1.13; commitid xD42Z67JHKvGXMBA; 1.13 date 2017.09.30.05.34.12; author ryoon; state Exp; branches; next 1.12; commitid FvJcfB7R3sEnib9A; 1.12 date 2017.08.10.14.46.15; author ryoon; state Exp; branches; next 1.11; commitid rDI4h24RNI2oZF2A; 1.11 date 2017.04.27.01.49.47; author ryoon; state Exp; branches; next 1.10; commitid J6Df3i7KVGRj47Pz; 1.10 date 2016.12.03.09.58.26; author ryoon; state Exp; branches; next 1.9; commitid uIUIk0K6tuQSqwwz; 1.9 date 2016.08.06.08.46.59; author ryoon; state Exp; branches; next 1.8; commitid E1GJBeRJuobrRdhz; 1.8 date 2016.06.16.12.08.21; author ryoon; state Exp; branches; next 1.7; commitid LAwegbTYgLLjCGaz; 1.7 date 2016.04.27.16.22.40; author ryoon; state Exp; branches; next 1.6; commitid u2rwBznaaKPcDh4z; 1.6 date 2016.03.08.21.32.52; author ryoon; state Exp; branches 1.6.2.1; next 1.5; commitid BVJhJwzz8HleXSXy; 1.5 date 2015.12.16.09.34.56; author ryoon; state Exp; branches; next 1.4; commitid aMgpAzrWlYumE9Ny; 1.4 date 2015.09.23.06.44.42; author ryoon; state Exp; branches; next 1.3; commitid A8JQd1PZS2cnplCy; 1.3 date 2014.12.01.18.11.14; author ryoon; state Exp; branches; next 1.2; commitid jJPLy0Wr2QzMIm0y; 1.2 date 2014.10.15.13.07.07; author ryoon; state Exp; branches; next 1.1; commitid BxXu2KLWwPm1yiUx; 1.1 date 2014.05.30.03.03.36; author pho; state Exp; branches; next ; commitid SyhQGFZ06rmWDvCx; 1.6.2.1 date 2016.05.19.12.56.31; author bsiegert; state Exp; branches; next ; commitid 53h9eCcjRRHEM57z; desc @@ 1.23 log @firefox: Update to 111.0.1 * Enable eventfd(2) for NetBSD 10 or later. * Fix LICENSE in official Firefox branding case. Changelog: 111.0.1 Fixed * Fixed a crash on macOS while pinch-zooming under some circumstances (bug 1658986). * Fixed a bug causing Firefox to freeze on startup for some Windows users ( bug 1823159). 111.0 New * Windows native notifications are now enabled. * Firefox Relay users can now opt-in to create Relay email masks directly from the Firefox credential manager. You must be signed in with your Firefox Account. * We've added two new locales: Silhe Friulian (fur) and Sardinian (sc). Fixed * Various security fixes. Security fixes #CVE-2023-28159: Fullscreen Notification could have been hidden by download popups on Android #CVE-2023-25748: Fullscreen Notification could have been hidden by window prompts on Android #CVE-2023-25749: Firefox for Android may have opened third-party apps without a prompt #CVE-2023-25750: Potential ServiceWorker cache leak during private browsing mode #CVE-2023-25751: Incorrect code generation during JIT compilation #CVE-2023-28160: Redirect to Web Extension files may have leaked local path #CVE-2023-28164: URL being dragged from a removed cross-origin iframe into the same tab triggered navigation #CVE-2023-28161: One-time permissions granted to a local file were extended to other local files loaded in the same tab #CVE-2023-28162: Invalid downcast in Worklets #CVE-2023-25752: Potential out-of-bounds when accessing throttled streams #CVE-2023-28163: Windows Save As dialog resolved environment variables #CVE-2023-28176: Memory safety bugs fixed in Firefox 111 and Firefox ESR 102.9 #CVE-2023-28177: Memory safety bugs fixed in Firefox 111 @ text @$NetBSD: patch-media_libcubeb_src_moz.build,v 1.22 2023/01/24 17:57:09 nia Exp $ * Add Sun audio support https://bugzilla.mozilla.org/show_bug.cgi?id=1811911 --- media/libcubeb/src/moz.build.orig 2022-04-28 22:02:59.000000000 +0000 +++ media/libcubeb/src/moz.build @@@@ -22,6 +22,12 @@@@ if CONFIG['MOZ_ALSA']: ] DEFINES['USE_ALSA'] = True +if CONFIG['MOZ_SUNAUDIO']: + SOURCES += [ + 'cubeb_sun.c', + ] + DEFINES['USE_SUN'] = True + if ( CONFIG["MOZ_PULSEAUDIO"] or CONFIG["MOZ_JACK"] @ 1.22 log @firefox: Update patch comments. @ text @d1 1 a1 1 $NetBSD: patch-media_libcubeb_src_moz.build,v 1.21 2022/05/13 14:12:53 ryoon Exp $ @ 1.21 log @firefox: Update to 100.0 * Simplify some option logics. * Add sunaudio and jack options as audio backends. Changelog 100.0: New * We now support captions/subtitles display on YouTube, Prime Video, and Netflix videos you watch in Picture-in-Picture. Just turn on the subtitles on the in-page video player, and they will appear in PiP. * Picture-in-Picture now also supports video captions on websites that use WebVTT (Web Video Text Track) format, like Coursera.org, Canadian Broadcasting Corporation, and many more. * On the first run after install, Firefox detects when its language does not match the operating system language and offers the user a choice between the two languages. * Firefox spell checking now checks spelling in multiple languages. To enable additional languages, select them in the text field's context menu. * HDR video is now supported in Firefox on Mac --- starting with YouTube! Firefox users on macOS 11+ (with HDR-compatible screens) can enjoy higher-fidelity video content. No need to manually flip any preferences to turn HDR video support on --- just make sure battery preferences are NOT set to "optimize video streaming while on battery". * Hardware accelerated AV1 video decoding is enabled on Windows with supported GPUs (Intel Gen 11+, AMD RDNA 2 Excluding Navi 24, GeForce 30). Installing the AV1 Video Extension from the Microsoft Store may also be required. * Video overlay is enabled on Windows for Intel GPUs, reducing power usage during video playback. * Improved fairness between painting and handling other events. This noticeably improves the performance of the volume slider on Twitch. * Scrollbars on Linux and Windows 11 won't take space by default. On Linux, users can change this in Settings. On Windows, Firefox follows the system setting (System Settings > Accessibility > Visual Effects > Always show scrollbars). * Firefox now supports credit card autofill and capture in the United Kingdom. * Firefox now ignores less restricted referrer policies --- including unsafe-url, no-referrer-when-downgrade, and origin-when-cross-origin --- for cross-site subresource/iframe requests to prevent privacy leaks from the referrer. Fixed * Users can now choose preferred color schemes for websites. Theme authors can now make better decisions about which color scheme Firefox uses for menus. Web content appearance can now be changed in Settings. * Beginning in this release, the Firefox installer for Windows is signed with a SHA-256 digest, rather than SHA-1. Update KB4474419 is required for successful installation on a computer running Microsoft Windows 7. For more details about this update, visit the Microsoft Technical Support website. * In macOS 11+ we now only rasterize the fonts once per window. This means that opening a new tab is fast, and switching tabs in the same window is also fast. (There's still work to do to share fonts across windows, or to reduce the time it takes to initialize these fonts.) * The performance of deeply-nested display: grid elements is greatly improved. * Support for profiling multiple java threads has been added. * Soft-reloading a web page will no longer cause revalidation for all resources. * Non-vsync tasks are given more time to run, which improves behavior on Google docs and Twitch. * Geckoview APIs have been added to control the start/stop time of capturing a profile. * Various security fixes. Changed * Firefox has a new focus indicator for links which replaces the old dotted outline with a solid blue outline. This change unifies the focus indicators across form fields and links, which makes it easier to identify the focused link, especially for users with low vision. * New users can now set Firefox as the default PDF handler when setting Firefox as their default browser. * Some websites might not work correctly in Firefox version 100 due to Firefox's new three-digit number. You can read about it in our blog post here! See the Mozilla Support article Difficulties opening or using a website in Firefox 100 for possible workarounds you can use. There, you will also find instructions for reporting a broken website so that Mozilla can help fix the problem. Mozilla Foundation Security Advisory 2022-16 #CVE-2022-29914: Fullscreen notification bypass using popups #CVE-2022-29909: Bypassing permission prompt in nested browsing contexts #CVE-2022-29916: Leaking browser history with CSS variables #CVE-2022-29911: iframe Sandbox bypass #CVE-2022-29912: Reader mode bypassed SameSite cookies #CVE-2022-29910: Firefox for Android forgot HTTP Strict Transport Security settings #CVE-2022-29915: Leaking cross-origin redirect through the Performance API #CVE-2022-29917: Memory safety bugs fixed in Firefox 100 and Firefox ESR 91.9 #CVE-2022-29918: Memory safety bugs fixed in Firefox 100 99.0.1: Fixed * Fixed an issue for Windows users that prevented hardware video decoding on newer Intel drivers (bug 1762125) * Fixed an issue with text rendering in Bengali (bug 1763368) * Fixed a selection issue in the Download panel with drag and drop (bug 1762723) * Fixed an issue preventing Zoom gallery mode for users who go to zoom.us URLs instead of subdomain.zoom.us URLs (bug 1763801) 99.0: New * You can now toggle Narrate in ReaderMode with the keyboard shortcut "n." * You can find added support for search --- with or without diacritics --- in the PDF viewer. * The Linux sandbox has been strengthened: processes exposed to web content no longer have access to the X Window system (X11). * Firefox now supports credit card autofill and capture in Germany and France. Fixed * Various security fixes. Mozilla Foundation Security Advisory 2022-13 #CVE-2022-1097: Use-after-free in NSSToken objects #CVE-2022-28281: Out of bounds write due to unexpected WebAuthN Extensions #CVE-2022-28282: Use-after-free in DocumentL10n::TranslateDocument #CVE-2022-28283: Missing security checks for fetching sourceMapURL #CVE-2022-28284: Script could be executed via svg's use element #CVE-2022-28285: Incorrect AliasSet used in JIT Codegen #CVE-2022-28286: iframe contents could be rendered outside the border #CVE-2022-28287: Text Selection could crash Firefox #CVE-2022-24713: Denial of Service via complex regular expressions #CVE-2022-28289: Memory safety bugs fixed in Firefox 99 and Firefox ESR 91.8 #CVE-2022-28288: Memory safety bugs fixed in Firefox 99 @ text @d1 1 a1 1 $NetBSD$ d3 3 a5 1 * Add Sun audio support @ 1.20 log @firefox: Update to 75.0 Changelog: New With today's release, a number of improvements will help you search smarter, faster. Type less and find more with Firefox's revamped address bar: Focused, clean search experience that's optimized for smaller laptop screens Top sites now appear when you select the address Improved readability of search suggestions with a focus on new search terms Suggestions include solutions to common Firefox issues On Linux, the behavior when clicking on the Address Bar and the Search Bar now matches other desktop platforms: a single click selects all without primary selection, a double click selects a word, and a triple click selects all with primary selection Firefox will locally cache all trusted Web PKI Certificate Authority certificates known to Mozilla. This will improve HTTPS compatibility with misconfigured web servers and improve security. Firefox is now available in Flatpak, an easier way to install and use Firefox on Linux. Direct Composition is being integrated for our users on Windows to help improve performance and enable our ongoing work to ship WebRender on Windows 10 laptops with Intel graphics cards. Fixed Various security fixes Enterprise Experimental support for using client certificates from the OS certificate store can be enabled on macOS by setting the preference security.osclientcerts.autoload to true. Enterprise policies may be used to exclude domains from being resolved via TRR (Trusted Recursive Resolver) using DNS over HTTPS. Developer Developer Information Save bandwidth and reduce browser memory by using the loading attribute on the element. The default "eager" value loads images immediately, and the "lazy" value delays loading until the image is within range of the viewport. Instant evaluation for Console expressions lets developers identify and fix errors more rapidly than before. As long as expressions typed into the Web Console are side-effect free, their results will be previewed while you type. Security fixes: #CVE-2020-6821: Uninitialized memory could be read when using the WebGL copyTexSubImage method #CVE-2020-6822: Out of bounds write in GMPDecodeData when processing large images #CVE-2020-6823: Malicious Extension could obtain auth codes from OAuth login flows #CVE-2020-6824: Generated passwords may be identical on the same site between separate private browsing sessions #CVE-2020-6825: Memory safety bugs fixed in Firefox 75 and Firefox ESR 68.7 #CVE-2020-6826: Memory safety bugs fixed in Firefox 75 @ text @d1 1 a1 1 $NetBSD: patch-media_libcubeb_src_moz.build,v 1.19 2020/01/18 15:32:40 nia Exp $ d3 1 a3 1 * Add Sun audio support d5 1 a5 1 --- media/libcubeb/src/moz.build.orig 2020-04-03 19:35:03.000000000 +0000 d7 1 a7 1 @@@@ -23,6 +23,12 @@@@ if CONFIG['MOZ_ALSA']: d17 3 a19 3 if CONFIG['MOZ_PULSEAUDIO'] or CONFIG['MOZ_JACK']: SOURCES += [ 'cubeb_resampler.cpp', @ 1.19 log @firefox: Remove remaining traces of OSS support. We no longer patch this in but it's still searching for the files if you're using something FreeBSDish or Linuxish. This should resolve build problems on these platforms. On NetBSD this problem never appeared because it's been using native audio instead of OSS for a while now. from Michael Forney in PR pkg/54868 @ text @d1 1 a1 1 $NetBSD: patch-media_libcubeb_src_moz.build,v 1.18 2019/06/13 22:05:24 nia Exp $ d5 1 a5 1 --- media/libcubeb/src/moz.build.orig Wed Jan 8 01:23:35 2020 a19 8 @@@@ -92,6 +98,7 @@@@ FINAL_LIBRARY = 'gkmedias' CFLAGS += CONFIG['MOZ_ALSA_CFLAGS'] CFLAGS += CONFIG['MOZ_JACK_CFLAGS'] +CFLAGS += CONFIG['MOZ_OSS_CFLAGS'] CFLAGS += CONFIG['MOZ_PULSEAUDIO_CFLAGS'] # We allow warnings for third-party code that can be updated from upstream. @ 1.18 log @firefox: Add sun audio backend and make it a default where supported. This replaces the OSS backend with something that passes the unit tests, supports additional channels, and supports recording. It will be included with future versions of Firefox. Tested with: * YouTube audio-video sync test * about:support device detection * WebRTC microphone recording (using an USB microphone) Note: you can select an audio backend using the about:config variable media.cubeb.backend. This can be set to options such as sun/pulse/oss. Let me know if you still need to use the oss backend. It's very incomplete, buggy, and FreeBSD has already removed it - ideally we should eventually. Bump PKGREVISION. @ text @d1 1 a1 1 $NetBSD: patch-media_libcubeb_src_moz.build,v 1.17 2018/11/04 04:46:57 ryoon Exp $ a2 1 * Add OSS audio support d5 1 a5 1 --- media/libcubeb/src/moz.build.orig 2019-05-29 15:39:06.000000000 +0000 d7 1 a7 1 @@@@ -23,6 +23,18 @@@@ if CONFIG['MOZ_ALSA']: a10 6 +if CONFIG['MOZ_OSS']: + SOURCES += [ + 'cubeb_oss.c', + ] + DEFINES['USE_OSS'] = True + d20 1 a20 1 @@@@ -89,6 +101,7 @@@@ FINAL_LIBRARY = 'gkmedias' @ 1.17 log @Restore accidentally removed comments, pointed by wiz@@. Thank you. @ text @d1 1 a1 1 $NetBSD: patch-media_libcubeb_src_moz.build,v 1.16 2018/11/04 00:38:45 ryoon Exp $ d4 1 d6 1 a6 1 --- media/libcubeb/src/moz.build.orig 2018-10-18 20:06:09.000000000 +0000 d8 1 a8 1 @@@@ -23,6 +23,12 @@@@ if CONFIG['MOZ_ALSA']: d18 6 d27 1 a27 1 @@@@ -89,6 +95,7 @@@@ FINAL_LIBRARY = 'gkmedias' @ 1.16 log @Update to 63.0.1 * Minimize pkgsrc specific patches. * A build system written in Rust lang does not find a C++ header files from pkgsrc (non-base) GCC, this version is not buildable on NetBSD 7. I will investigate this problem again. Changelog: 63.0.1 Fixed Snippets are not loaded due to missing element (bug 1503047) Print preview always shows 30% scale when it is actually Shrink To Fit (bug 1501952) Dialog displayed when closing multiple windows shows unreplaced %1$S placeholder in Japanese and potentially other locales (bug 1500823) 63.0 New Performance and visual improvements for Windows users Performance improvements for macOS users Added content blocking, a collection of Firefox settings that offer users greater control over technology that can track them around the web. In 63, users can opt to block third-party tracking cookies or block all trackers and create exceptions for trusted sites that don't work correctly with content blocking enabled. WebExtensions now run in their own process on Linux Firefox now warns about having multiple windows and tabs open when quitting from the main menu. The Save and Quit feature has been removed. You can restore your session by ticking the box for Restore previous session in the General->Startup options or by using Restore Previous Session in the main menu. Firefox now recognizes the operating system accessibility setting for reducing animation Added search shortcuts for Top Sites: Amazon and Google appear as Top Sites tiles on the Firefox Home (New Tab) page. When selected these tiles will change focus to the address bar to initiate a search. Currently in US only. Fixed Resolved an issue that prevented the address bar from autofilling bookmarked URLs in certain cases Various security fixes Changed In the Library, the Open in Sidebar feature for individual bookmarks was removed The option to Never check for updates was removed from about:preferences. You can use the DisableAppUpdate enterprise policy as a substitute. The Ctrl+Tab shortcut now displays thumbnail previews of your tabs and cycles through tabs in recently used order. This new default behavior is activated only in new profiles and can be changed in preferences. #CVE-2018-12391: HTTP Live Stream audio data is accessible cross-origin #CVE-2018-12392: Crash with nested event loops #CVE-2018-12393: Integer overflow during Unicode conversion while loading JavaScript #CVE-2018-12395: WebExtension bypass of domain restrictions through header rewriting #CVE-2018-12396: WebExtension content scripts can execute in disallowed contexts #CVE-2018-12397: Missing warning prompt when WebExtension requests local file access #CVE-2018-12398: CSP bypass through stylesheet injection in resource URIs #CVE-2018-12399: Spoofing of protocol registration notification bar #CVE-2018-12400: Favicons are cached in private browsing mode on Firefox for Android #CVE-2018-12401: DOS attack through special resource URI parsing #CVE-2018-12402: SameSite cookies leak when pages are explicitly saved #CVE-2018-12403: Mixed content warning is not displayed when HTTPS page loads a favicon over HTTP #CVE-2018-12388: Memory safety bugs fixed in Firefox 63 #CVE-2018-12390: Memory safety bugs fixed in Firefox 63 and Firefox ESR 60.3 @ text @d1 3 a3 1 $NetBSD$ @ 1.15 log @Update to 61.0 Changelog: New Enhanced performance: Faster page rendering with Quantum CSS improvements and the new retained display list feature Faster switching between tabs on Windows and Linux WebExtensions now run in their own process on MacOS Convenient access to more search engines: You can now add search engines to the address bar "Search with" tool from the page action menu when on a webpage that provides an OpenSearch plugin Share links from Firefox for MacOS more easily: You can now share the URL of an active tab from the page actions menu in the address bar Improved security: On-by-default support for the latest draft of the TLS 1.3 specification Access to FTP subresources inside http(s) pages has been blocked A more consistent user experience: Improvements for dark theme support across the entire Firefox user interface More customization for tab management: added support to allow WebExtensions to hide tabs Improved bookmark syncing Fixed Various security fixes Changed The settings for customizing your homepage and new tab page in Firefox have been added to a new Preferences section that can be accessed from Firefox at about:preferences#home. The settings can also be accessed via the gear icon on the New Tab page. Security fixes: #CVE-2018-12359: Buffer overflow using computed size of canvas element #CVE-2018-12360: Use-after-free when using focus() #CVE-2018-12361: Integer overflow in SwizzleData #CVE-2018-12358: Same-origin bypass using service worker and redirection #CVE-2018-12362: Integer overflow in SSSE3 scaler #CVE-2018-5156: Media recorder segmentation fault when track type is changed during capture #CVE-2018-12363: Use-after-free when appending DOM nodes #CVE-2018-12364: CSRF attacks through 307 redirects and NPAPI plugins #CVE-2018-12365: Compromised IPC child process can list local filenames #CVE-2018-12371: Integer overflow in Skia library during edge builder allocation #CVE-2018-12366: Invalid data handling during QCMS transformations #CVE-2018-12367: Timing attack mitigation of PerformanceNavigationTiming #CVE-2018-12368: No warning when opening executable SettingContent-ms files #CVE-2018-12369: WebExtension security permission checks bypassed by embedded experiments #CVE-2018-12370: SameSite cookie protections bypassed when exiting Reader View #CVE-2018-5186: Memory safety bugs fixed in Firefox 61 #CVE-2018-5187: Memory safety bugs fixed in Firefox 60 and Firefox ESR 60.1 #CVE-2018-5188: Memory safety bugs fixed in Firefox 60, Firefox ESR 60.1, and Firefox ESR 52.9 @ text @d1 1 a1 1 $NetBSD: patch-media_libcubeb_src_moz.build,v 1.14 2018/05/10 20:01:53 ryoon Exp $ d3 1 a3 4 * Add OSS audio support * Support system library --- media/libcubeb/src/moz.build.orig 2018-06-21 20:03:51.000000000 +0000 @ 1.14 log @Update to 60.0 * Remove untested patches including NetBSD/earm support Changelog: New Added a policy engine that allows customized Firefox deployments in enterprise environments, using Windows Group Policy or a cross-platform JSON file Enhancements to New Tab / Firefox Home Responsive layout that shows more content for users with wide-screen displays Highlights section includes web sites saved to Pocket More options to reorder sections and content on the page Pocket Sponsored Stories will appear for a percentage of users in the US. Read about our privacy-conscious approach to sponsored content Redesigned Cookies and Site Storage section in Preferences for greater clarity and control of first- and third-party cookies Applied Quantum CSS to render browser UI Added support for Web Authentication API, which allows USB tokens for website authentication Enhanced camera privacy indicators: Firefox now turns off your camera and the camera's light when you disable video recording, and turns the camera and light on when you resume recording Added an option for Linux users to show or hide page titles in a bar at the top of the browser. You'll find the Title Bar option in the Customize panel available from the main browser menu. Improved WebRTC audio performance and playback for Linux users Locale added: Occitan (oc) Fixed Various security fixes Changed #CVE-2018-5154: Use-after-free with SVG animations and clip paths #CVE-2018-5155: Use-after-free with SVG animations and text paths #CVE-2018-5157: Same-origin bypass of PDF Viewer to view protected PDF files #CVE-2018-5158: Malicious PDF can inject JavaScript into PDF Viewer #CVE-2018-5159: Integer overflow and out-of-bounds write in Skia #CVE-2018-5160: Uninitialized memory use by WebRTC encoder #CVE-2018-5152: WebExtensions information leak through webRequest API #CVE-2018-5153: Out-of-bounds read in mixed content websocket messages #CVE-2018-5163: Replacing cached data in JavaScript Start-up Bytecode Cache #CVE-2018-5164: CSP not applied to all multipart content sent with multipart/x-mixed-replace #CVE-2018-5166: WebExtension host permission bypass through filterReponseData #CVE-2018-5167: Improper linkification of chrome: and javascript: content in web console and JavaScript debugger #CVE-2018-5168: Lightweight themes can be installed without user interaction #CVE-2018-5169: Dragging and dropping link text onto home button can set home page to include chrome pages #CVE-2018-5172: Pasted script from clipboard can run in the Live Bookmarks page or PDF viewer #CVE-2018-5173: File name spoofing of Downloads panel with Unicode characters #CVE-2018-5174: Windows Defender SmartScreen UI runs with less secure behavior for downloaded files in Windows 10 April 2018 Update #CVE-2018-5175: Universal CSP bypass on sites using strict-dynamic in their policies #CVE-2018-5176: JSON Viewer script injection #CVE-2018-5177: Buffer overflow in XSLT during number formatting #CVE-2018-5165: Checkbox for enabling Flash protected mode is inverted in 32-bit Firefox #CVE-2018-5180: heap-use-after-free in mozilla::WebGLContext::DrawElementsInstanced #CVE-2018-5181: Local file can be displayed in noopener tab through drag and drop of hyperlink #CVE-2018-5182: Local file can be displayed from hyperlink dragged and dropped on addressbar #CVE-2018-5151: Memory safety bugs fixed in Firefox 60 #CVE-2018-5150: Memory safety bugs fixed in Firefox 60 and Firefox ESR 52.8 @ text @d1 1 a1 1 $NetBSD: patch-media_libcubeb_src_moz.build,v 1.13 2017/09/30 05:34:12 ryoon Exp $ d6 1 a6 1 --- media/libcubeb/src/moz.build.orig 2018-05-03 16:58:30.000000000 +0000 d8 1 a8 1 @@@@ -22,6 +22,12 @@@@ if CONFIG['MOZ_ALSA']: d21 1 a21 2 @@@@ -87,6 +93,7 @@@@ if CONFIG['OS_TARGET'] == 'Android': FINAL_LIBRARY = 'gkmedias' d24 1 @ 1.13 log @Update to 56.0 New Launched Firefox Screenshots, a feature that lets users take, save, and share screenshots without leaving the browser Added support for address form autofill (en-US only) Updated Preferences Added search tool so users can find a specific setting quickly Reorganized preferences so users can more easily scan settings Rewrote descriptions so users can better understand choices and how they affect browsing Revised data collection choices so they align with updated Privacy Notice and data collection strategy Media opened in a background tab will not play until the tab is selected Improved Send Tabs feature of Sync for iOS and Android, and Send Tabs can be discovered even by users without a Firefox Account Changed Replaced character encoding converters with a new Encoding Standard-compliant implementation written in Rust Added hardware acceleration for AES-GCM Updated the Safe Browsing protocol to version 4 Reduced update download file size by approximately 20 percent Improved security for verifying update downloads Developer Added Layout Panel to CSS Grid DevTools @ text @d1 1 a1 1 $NetBSD: patch-media_libcubeb_src_moz.build,v 1.12 2017/08/10 14:46:15 ryoon Exp $ d6 1 a6 1 --- media/libcubeb/src/moz.build.orig 2017-07-31 16:20:49.000000000 +0000 d21 1 a21 2 @@@@ -85,6 +91,7 @@@@ if CONFIG['OS_TARGET'] == 'Android': d24 1 a25 1 CFLAGS += CONFIG['MOZ_ALSA_CFLAGS'] d28 1 @ 1.12 log @Update to 55.0 Changelog: New Launched Windows support for WebVR, bringing immersive experiences to the web. See examples and try working demos at Mozilla VR. Added options that let users optimize recent performance improvements Setting to enable Hardware VP9 acceleration on Windows 10 Anniversary Edition for better battery life and lower CPU usage while watching videos Setting to modify the number of concurrent content processes for faster page loading and more responsive tab switching Simplified installation process with a streamlined Windows stub installer Firefox for Windows 64-bit is now installed by default on 64-bit systems with at least 2GB of RAM Full installers with advanced installation options are still available Improved address bar functionality Search with any installed one-click search engine directly from the address bar Search suggestions appear by default When entering a hostname (like pinterest.com) in the URL bar, Firefox resolves to the secure version of the site (https://www.pinterest.com) instead of the insecure version (http://www.pinterest.com) when possible Updated Sidebar for bookmarks, history, and synced tabs so it can appear at the right edge of the window as well as the left Added support for stereo microphones with WebRTC Pages can be simplified before printing from within Print Preview Updated Firefox for OSX and macOS to allow users to assign custom keyboard shortcuts to Firefox menu items via System Preferences Browsing sessions with a high number of tabs are now restored in an instant Make screenshots of webpages, and save them locally or upload them to the cloud. This feature will undergo A/B testing and will not be visible for some users. Added Belarusian (be) locale Fixed Various security fixes Changed Made the Adobe Flash plugin click-to-activate by default and allowed only on http:// and https:// URL schemes. (This change will not be visible to all users immediately. For more information see the Firefox plugin roadmap) Firefox does not support downgrades, even though this may have worked in past versions. Users who install Firefox 55+ and later downgrade to an earlier version may experience issues with Firefox. Modernized application update UI to be less intrusive and more aligned with the rest of the browser. Only users who have not restarted their browser 8 days after downloading an update or users who opted out of automatic updates will see this change. Security fixes: CVE-2017-7798: XUL injection in the style editor in devtools Reporter Frederik Braun Impact critical Description The Developer Tools feature suffers from a XUL injection vulnerability due to improper sanitization of the web page source code. In the worst case, this could allow arbitrary code execution when opening a malicious page with the style editor tool. References Bug 1371586, 1372112 #CVE-2017-7800: Use-after-free in WebSockets during disconnection Reporter Looben Yang Impact critical Description A use-after-free vulnerability can occur in WebSockets when the object holding the connection is freed before the disconnection operation is finished. This results in an exploitable crash. References Bug 1374047 #CVE-2017-7801: Use-after-free with marquee during window resizing Reporter Nils Impact critical Description A use-after-free vulnerability can occur while re-computing layout for a marquee element during window resizing where the updated style object is freed while still in use. This results in a potentially exploitable crash. References Bug 1371259 #CVE-2017-7809: Use-after-free while deleting attached editor DOM node Reporter Nils Impact high Description A use-after-free vulnerability can occur when an editor DOM node is deleted prematurely during tree traversal while still bound to the document. This results in a potentially exploitable crash. References Bug 1380284 #CVE-2017-7784: Use-after-free with image observers Reporter Nils Impact high Description A use-after-free vulnerability can occur when reading an image observer during frame reconstruction after the observer has been freed. This results in a potentially exploitable crash. References Bug 1376087 #CVE-2017-7802: Use-after-free resizing image elements Reporter Nils Impact high Description A use-after-free vulnerability can occur when manipulating the DOM during the resize event of an image element. If these elements have been freed due to a lack of strong references, a potentially exploitable crash may occur when the freed elements are accessed. References Bug 1378147 #CVE-2017-7785: Buffer overflow manipulating ARIA attributes in DOM Reporter Nils Impact high Description A buffer overflow can occur when manipulating Accessible Rich Internet Applications (ARIA) attributes within the DOM. This results in a potentially exploitable crash. References Bug 1356985 #CVE-2017-7786: Buffer overflow while painting non-displayable SVG Reporter Nils Impact high Description A buffer overflow can occur when the image renderer attempts to paint non-displayable SVG elements. This results in a potentially exploitable crash. References Bug 1365189 #CVE-2017-7806: Use-after-free in layer manager with SVG Reporter Nils Impact high Description A use-after-free vulnerability can occur when the layer manager is freed too early when rendering specific SVG content, resulting in a potentially exploitable crash. References Bug 1378113 #CVE-2017-7753: Out-of-bounds read with cached style data and pseudo-elements Reporter SkyLined Impact high Description An out-of-bounds read occurs when applying style rules to pseudo-elements, such as ::first-line, using cached style data. References Bug 1353312 #CVE-2017-7787: Same-origin policy bypass with iframes through page reloads Reporter Oliver Wagner Impact high Description Same-origin policy protections can be bypassed on pages with embedded iframes during page reloads, allowing the iframes to access content on the top level page, leading to information disclosure. References Bug 1322896 #CVE-2017-7807: Domain hijacking through AppCache fallback Reporter Mathias Karlsson Impact high Description A mechanism that uses AppCache to hijack a URL in a domain using fallback by serving the files from a sub-path on the domain. This has been addressed by requiring fallback files be inside the manifest directory. References Bug 1376459 #CVE-2017-7792: Buffer overflow viewing certificates with an extremely long OID Reporter Fraser Tweedale Impact high Description A buffer overflow will occur when viewing a certificate in the certificate manager if the certificate has an extremely long object identifier (OID). This results in a potentially exploitable crash. References Bug 1368652 #CVE-2017-7804: Memory protection bypass through WindowsDllDetourPatcher Reporter Stephen Fewer Impact high Description The destructor function for the WindowsDllDetourPatcher class can be re-purposed by malicious code in concert with another vulnerability to write arbitrary data to an attacker controlled location in memory. This can be used to bypass existing memory protections in this situation. Note: This attack only affects Windows operating systems. Other operating systems are not affected. References Bug 1372849 #CVE-2017-7791: Spoofing following page navigation with data: protocol and modal alerts Reporter Jose María Acuña Impact moderate Description On pages containing an iframe, the data: protocol can be used to create a modal alert that will render over arbitrary domains following page navigation, spoofing of the origin of the modal alert from the iframe content. References Bug 1365875 #CVE-2017-7808: CSP information leak with frame-ancestors containing paths Reporter Jun Kokatsu Impact moderate Description A content security policy (CSP) frame-ancestors directive containing origins with paths allows for comparisons against those paths instead of the origin. This results in a cross-origin information leak of this path information. References Bug 1367531 #CVE-2017-7782: WindowsDllDetourPatcher allocates memory without DEP protections Reporter Arthur Edelstein Impact moderate Description An error in the WindowsDllDetourPatcher where a RWX ("Read/Write/Execute") 4k block is allocated but never protected, violating DEP protections. Note: This attack only affects Windows operating systems. Other operating systems are not affected. References Bug 1344034 #CVE-2017-7781: Elliptic curve point addition error when using mixed Jacobian-affine coordinates Reporter Antonio Sanso Impact moderate Description An error occurs in the elliptic curve point addition algorithm that uses mixed Jacobian-affine coordinates where it can yield a result POINT_AT_INFINITY when it should not. A man-in-the-middle attacker could use this to interfere with a connection, resulting in an attacked party computing an incorrect shared secret. References Bug 1352039 #CVE-2017-7794: Linux file truncation via sandbox broker Reporter Jann Horn Impact moderate Description On Linux systems, if the content process is compromised, the sandbox broker will allow files to be truncated even though the sandbox explicitly only has read access to the local file system and no write permissions. Note: This attack only affects the Linux operating system. Other operating systems are not affected. References Bug 1374281 #CVE-2017-7803: CSP containing 'sandbox' improperly applied Reporter Rhys Enniks Impact moderate Description When a page’s content security policy (CSP) header contains a sandbox directive, other directives are ignored. This results in the incorrect enforcement of CSP. References Bug 1377426 #CVE-2017-7799: Self-XSS XUL injection in about:webrtc Reporter Frederik Braun Impact moderate Description JavaScript in the about:webrtc page is not sanitized properly being being assigned to innerHTML. Data on this page is supplied by WebRTC usage and is not under third-party control, making this difficult to exploit, but the vulnerability could possibly be used for a cross-site scripting (XSS) attack. References Bug 1372509 #CVE-2017-7783: DOS attack through long username in URL Reporter Amit Sangra Impact low Description If a long user name is used in a username/password combination in a site URL (such as http://UserName:Password@@example.com), the resulting modal prompt will hang in a non-responsive state or crash, causing a denial of service. References Bug 1360842 #CVE-2017-7788: Sandboxed about:srcdoc iframes do not inherit CSP directives Reporter Muneaki Nishimura Impact low Description When an iframe has a sandbox attribute and its content is specified using srcdoc, that content does not inherit the containing page's Content Security Policy (CSP) as it should unless the sandbox attribute included allow-same-origin. References Bug 1073952 #CVE-2017-7789: Failure to enable HSTS when two STS headers are sent for a connection Reporter Muneaki Nishimura Impact low Description If a server sends two Strict-Transport-Security (STS) headers for a single connection, they will be rejected as invalid and HTTP Strict Transport Security (HSTS) will not be enabled for the connection. References Bug 1074642 #CVE-2017-7790: Windows crash reporter reads extra memory for some non-null-terminated registry values Reporter Xiaoyin Liu Impact low Description On Windows systems, if non-null-terminated strings are copied into the crash reporter for some specific registry keys, stack memory data can be copied until a null is found. This can potentially contain private data from the local system. Note: This attack only affects Windows operating systems. Other operating systems are not affected. References Bug 1350460 #CVE-2017-7796: Windows updater can delete any file named update.log Reporter Matt Howell Impact low Description On Windows systems, the logger run by the Windows updater deletes the file "update.log" before it runs in order to write a new log of that name. The path to this file is supplied at the command line to the updater and could be used in concert with another local exploit to delete a different file named "update.log" instead of the one intended. Note: This attack only affects Windows operating systems. Other operating systems are not affected. References Bug 1234401 #CVE-2017-7797: Response header name interning leaks across origins Reporter Anne van Kesteren Impact low Description Response header name interning does not have same-origin protections and these headers are stored in a global registry. This allows stored header names to be available cross-origin. References Bug 1334776 #CVE-2017-7780: Memory safety bugs fixed in Firefox 55 Reporter Mozilla developers and community Impact critical Description Mozilla developers and community members Gary Kwong, Christian Holler, André Bargull, Bob Clary, Carsten Book, Emilio Cobos Álvarez, Masayuki Nakano, Sebastian Hengst, Franziskus Kiefer, Tyson Smith, and Ronald Crane reported memory safety bugs present in Firefox 54. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. References Memory safety bugs fixed in Firefox 55 #CVE-2017-7779: Memory safety bugs fixed in Firefox 55 and Firefox ESR 52.3 Reporter Mozilla developers and community Impact critical Description Mozilla developers and community members Masayuki Nakano, Gary Kwong, Ronald Crane, Andrew McCreight, Tyson Smith, Bevis Tseng, Christian Holler, Bryce Van Dyk, Dragana Damjanovic, Kartikaya Gupta, Philipp, Tristan Bourvon, and Andi-Bogdan Postelnicu reported memory safety bugs present in Firefox 54 and Firefox ESR 52.2. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. References Memory safety bugs fixed in Firefox 55 and Firefox ESR 52.3 @ text @d1 1 a1 1 $NetBSD: patch-media_libcubeb_src_moz.build,v 1.11 2017/04/27 01:49:47 ryoon Exp $ d21 1 a21 11 @@@@ -32,7 +38,8 @@@@ if CONFIG['MOZ_PULSEAUDIO']: 'cubeb_pulse.c', ] DEFINES['USE_PULSE'] = True - DEFINES['USE_PULSE_RUST'] = True + if CONFIG['MOZ_RUST']: + DEFINES['USE_PULSE_RUST'] = True if CONFIG['MOZ_JACK']: SOURCES += [ @@@@ -85,6 +92,7 @@@@ if CONFIG['OS_TARGET'] == 'Android': @ 1.11 log @Update to 53.0 Changelog: New Improved graphics stability for Windows users with the addition of compositor process separation (Quantum Compositor) Two new 'compact' themes available in Firefox, dark and light, based on the Firefox Developer Edition theme Lightweight themes are now applied in private browsing windows Reader Mode now displays estimated reading time for the page Windows 7+ users on 64-bit OS can select 32-bit or 64-bit versions in the stub installer Fixed Various security fixes Changed Updated the design of site permission requests to make them harder to miss and easier to understand Windows XP and Vista are no longer supported. XP and Vista users running Firefox 52 will continue to receive security updates on Firefox ESR 52. 32-bit Mac OS X is no longer supported. 32-bit Mac OS X users can switch to Firefox ESR 52 to continue receiving security updates. Updates for Mac OS X are smaller in size compared to updates for Firefox 52 New visual design for audio and video controls Ended Firefox Linux support for processors older than Pentium 4 and AMD Opteron The last few characters of shortened tab titles fade out instead of being replaced by ellipses to keep more of the title visible Security fixes: #CVE-2017-5433: Use-after-free in SMIL animation functions #CVE-2017-5435: Use-after-free during transaction processing in the editor #CVE-2017-5436: Out-of-bounds write with malicious font in Graphite 2 #CVE-2017-5461: Out-of-bounds write in Base64 encoding in NSS #CVE-2017-5459: Buffer overflow in WebGL #CVE-2017-5466: Origin confusion when reloading isolated data:text/html URL #CVE-2017-5434: Use-after-free during focus handling #CVE-2017-5432: Use-after-free in text input selection #CVE-2017-5460: Use-after-free in frame selection #CVE-2017-5438: Use-after-free in nsAutoPtr during XSLT processing #CVE-2017-5439: Use-after-free in nsTArray Length() during XSLT processing #CVE-2017-5440: Use-after-free in txExecutionState destructor during XSLT processing #CVE-2017-5441: Use-after-free with selection during scroll events #CVE-2017-5442: Use-after-free during style changes #CVE-2017-5464: Memory corruption with accessibility and DOM manipulation #CVE-2017-5443: Out-of-bounds write during BinHex decoding #CVE-2017-5444: Buffer overflow while parsing application/http-index-format content #CVE-2017-5446: Out-of-bounds read when HTTP/2 DATA frames are sent with incorrect data #CVE-2017-5447: Out-of-bounds read during glyph processing #CVE-2017-5465: Out-of-bounds read in ConvolvePixel #CVE-2017-5448: Out-of-bounds write in ClearKeyDecryptor #CVE-2017-5437: Vulnerabilities in Libevent library #CVE-2017-5454: Sandbox escape allowing file system read access through file picker #CVE-2017-5455: Sandbox escape through internal feed reader APIs #CVE-2017-5456: Sandbox escape allowing local file system access #CVE-2017-5469: Potential Buffer overflow in flex-generated code #CVE-2017-5445: Uninitialized values used while parsing application/http-index-format content #CVE-2017-5449: Crash during bidirectional unicode manipulation with animation #CVE-2017-5450: Addressbar spoofing using javascript: URI on Firefox for Android #CVE-2017-5451: Addressbar spoofing with onblur event #CVE-2017-5462: DRBG flaw in NSS #CVE-2017-5463: Addressbar spoofing through reader view on Firefox for Android #CVE-2017-5467: Memory corruption when drawing Skia content #CVE-2017-5452: Addressbar spoofing during scrolling with editable content on Firefox for Android #CVE-2017-5453: HTML injection into RSS Reader feed preview page through TITLE element #CVE-2017-5458: Drag and drop of javascript: URLs can allow for self-XSS #CVE-2017-5468: Incorrect ownership model for Private Browsing information #CVE-2017-5430: Memory safety bugs fixed in Firefox 53 and Firefox ESR 52.1 #CVE-2017-5429: Memory safety bugs fixed in Firefox 53, Firefox ESR 45.9, and Firefox ESR 52.1 @ text @d1 1 a1 1 $NetBSD: patch-media_libcubeb_src_moz.build,v 1.10 2016/12/03 09:58:26 ryoon Exp $ d6 1 a6 1 --- media/libcubeb/src/moz.build.orig 2017-04-11 04:15:21.000000000 +0000 d8 1 a8 1 @@@@ -20,6 +20,12 @@@@ if CONFIG['MOZ_ALSA']: d21 13 a33 3 @@@@ -92,6 +98,7 @@@@ if CONFIG['MOZ_WIDGET_TOOLKIT'] == 'gonk '%' + '%s/system/media/wilhelm/include' % CONFIG['ANDROID_SOURCE'], ] @ 1.10 log @Update to 50.0.2 * Change default audio support to ALSA. You can use OSS or pulseaudio via ALSA plugin package. Changelog: 50.0.2: Fixed in Firefox 50.0.2 #CVE-2016-9079: Use-after-free in SVG Animation 50.0.1: Fixed *Firefox crashes with 3rd party Chinese IME when using IME text Security vulnerabilities fixed in Firefox 50.0.1: #CVE-2016-9078: data: URL can inherit wrong origin after an HTTP redirect 50.0: New *Playback video on more sites without plugins with WebM EME Support for Widevine on Windows and Mac *Improved performance for SDK extensions or extensions using the SDK module loader *Added download protection for a large number of executable file types on Windows, Mac and Linux *Increased availability of WebGL to more than 98 percent of users on Windows 7 and newer *Added Guarani (gn) locale *Added option to Find in page that allows users to limit search to whole words only *Updates to keyboard shortcuts *Set a preference to have Ctrl+Tab cycle through tabs in recently used order *View a page in Reader Mode by using Ctrl+Alt+R (command+alt+r on Mac) Fixed *Login cookies are now saved for sites with a high number of cookies (Bug 1264192) *Various security fixes *Fixed rendering of dashed and dotted borders with rounded corners (border-radius) Changed *The link to check for plugin security updates has been removed from the addon manager as Firefox automatically checks for plugin updates *Blocked versions of libavcodec older than 54.35.1 *Added a built-in Emoji set for operating systems without native Emoji fonts (Windows 8.0 and lower and Linux) Developer *Changes for web developers Security vulnerabilities fixed in Firefox 50: #CVE-2016-5296: Heap-buffer-overflow WRITE in rasterize_edges_1 #CVE-2016-5292: URL parsing causes crash #CVE-2016-5293: Write to arbitrary file with Mozilla Updater and Maintenance Service using updater.log hardlink #CVE-2016-5294: Arbitrary target directory for result files of update process #CVE-2016-5297: Incorrect argument length checking in JavaScript #CVE-2016-9064: Add-ons update must verify IDs match between current and new versions #CVE-2016-9065: Firefox for Android location bar spoofing using fullscreen #CVE-2016-9066: Integer overflow leading to a buffer overflow in nsScriptLoadHandler #CVE-2016-9067: heap-use-after-free in nsINode::ReplaceOrInsertBefore #CVE-2016-9068: heap-use-after-free in nsRefreshDriver #CVE-2016-9072: 64-bit NPAPI sandbox isn't enabled on fresh profile #CVE-2016-9075: WebExtensions can access the mozAddonManager API and use it to gain elevated privileges #CVE-2016-9077: Canvas filters allow feDisplacementMaps to be applied to cross-origin images, allowing timing attacks on them #CVE-2016-5291: Same-origin policy violation using local HTML file and saved shortcut file #CVE-2016-5295: Mozilla Maintenance Service: Ability to read arbitrary files as SYSTEM #CVE-2016-5298: SSL indicator can mislead the user about the real URL visited #CVE-2016-5299: Firefox AuthToken in broadcast protected with signature-level permission can be accessed by an application installed beforehand that defines the same permissionsPI key (glocation) in broadcast protected with signature-level permission can be accessed by an application installed beforehand that defines the same permissions #CVE-2016-9062: Private browsing browser traces (Android) in browser.db and wal file #CVE-2016-9070: Sidebar bookmark can have reference to chrome window #CVE-2016-9073: windows.create schema doesn't specify "format": "relativeUrl" #CVE-2016-9074: Insufficient timing side-channel resistance in divSpoiler #CVE-2016-9076: select dropdown menu can be used for URL bar spoofing on e10s #CVE-2016-9063: Possible integer overflow to fix inside XML_Parse in Expat #CVE-2016-9071: Probe browser history via HSTS/301 redirect + CSP #CVE-2016-5289: Memory safety bugs fixed in Firefox 50 #CVE-2016-5290: Memory safety bugs fixed in Firefox 50 and Firefox ESR 45.5 @ text @d1 1 a1 1 $NetBSD: patch-media_libcubeb_src_moz.build,v 1.9 2016/08/06 08:46:59 ryoon Exp $ d6 1 a6 1 --- media/libcubeb/src/moz.build.orig 2016-10-31 20:15:39.000000000 +0000 d8 1 a8 2 @@@@ -24,6 +24,12 @@@@ if CONFIG['MOZ_PULSEAUDIO'] or CONFIG['M 'cubeb_resampler.cpp', d10 1 d18 1 a18 1 if CONFIG['MOZ_PULSEAUDIO']: d20 4 a23 2 'cubeb_pulse.c', @@@@ -81,6 +87,7 @@@@ if CONFIG['OS_TARGET'] == 'Android': d25 3 a27 1 FINAL_LIBRARY = 'gkmedias' a28 4 +CFLAGS += CONFIG['MOZ_OSS_CFLAGS'] if CONFIG['MOZ_WIDGET_TOOLKIT'] == 'gonk': if CONFIG['ANDROID_VERSION'] >= '17': LOCAL_INCLUDES += [ @ 1.9 log @Update to 48.0 * OSS audio support may not work. I will revisit later Changelog: New: Roar for moar protection against harmful downloads! We've got your back Process separation (e10s) is enabled for some of you. Like it? Let us know and we'll roll it out to more. Add-ons that have not been verified and signed by Mozilla will not load GNU/Linux fans: Get better Canvas performance with speedy Skia support. Try saying that three times fast WebRTC embetterments: Delay-agnostic AEC enabled Full duplex for GNU/Linux enabled ICE Restart & Update is supported Cloning of MediaStream and MediaStreamTrack is now supported Searching for something already in your bookmarks or open tabs? We added super smart icons to let you know Windows folks: Tab (move buttons) and Shift+F10 (pop-up menus) now behave as they should in Firefox customization mode The media parser has been redeveloped using the Rust programming language Windows 7 systems without Platform Update can now use D3D11 WARP Fixed: Various security fixes Heyo, Jabra & Logitech C920 webcam users. We fixed those pesky WebRTC bugs causing frequency distortions. Buh-bye, squeaky voice! Improved step debugging on last line of functions Changed: Starting with the Firefox version 49 release, so long to support for 10.6, 10.7 and 10.8. Now we can focus on where most Mac users are: 10.9. Don't forget to upgrade! After version 48, SSE2 CPU extensions are going to be required on Windows Au revoir to Windows Remote Access Service modem Autodial Developer: WebExtensions support is now considered as stable Workers can now use the Web Crypto API Want to move absolute & fixed positioned elements? (Who doesn't, right?) Now you can with our geometry editor. The memory tool now has a tree map view for your debugging pleasure. It's a little bit of "boo" and a whole lot of "ya." We're putting the spotlight on the background. Now you can debug WebExtensions background content scripts and background pages Content Security Policy (CSP) is now enforced for WebExtensions. (Who's down with CSP?) Old and busted: Error Console. New hotness: Browser Console for your debugging pleasure. Add-on development just got easier because you can reload them from about:debugging — because we're all about debugging. This theme is hot, hot, hot! Say hi to the Firebug theme for Developer Tools. Expand network requests from the console panel to view request details in line, so you can see things in context Fixed in Firefox 48: 2016-84 Information disclosure through Resource Timing API during page navigation 2016-83 Spoofing attack through text injection into internal error pages 2016-82 Addressbar spoofing with right-to-left characters on Firefox for Android 2016-81 Information disclosure and local file manipulation through drag and drop 2016-80 Same-origin policy violation using local HTML file and saved shortcut file 2016-79 Use-after-free when applying SVG effects 2016-78 Type confusion in display transformation 2016-77 Buffer overflow in ClearKey Content Decryption Module (CDM) during video playback 2016-76 Scripts on marquee tag can execute in sandboxed iframes 2016-75 Integer overflow in WebSockets during data buffering 2016-74 Form input type change from password to text can store plain text password in session restore file 2016-73 Use-after-free in service workers with nested sync events 2016-72 Use-after-free in DTLS during WebRTC session shutdown 2016-71 Crash in incremental garbage collection in JavaScript 2016-70 Use-after-free when using alt key and toplevel menus 2016-69 Arbitrary file manipulation by local user through Mozilla updater and callback application path parameter 2016-68 Out-of-bounds read during XML parsing in Expat library 2016-67 Stack underflow during 2D graphics rendering 2016-66 Location bar spoofing via data URLs with malformed/invalid mediatypes 2016-65 Cairo rendering crash due to memory allocation issue with FFmpeg 0.10 2016-64 Buffer overflow rendering SVG with bidirectional content 2016-63 Favicon network connection can persist when page is closed 2016-62 Miscellaneous memory safety hazards (rv:48.0 / rv:45.3) @ text @d1 1 a1 1 $NetBSD: patch-media_libcubeb_src_moz.build,v 1.8 2016/06/16 12:08:21 ryoon Exp $ d6 1 a6 1 --- media/libcubeb/src/moz.build.orig 2016-07-25 20:22:04.000000000 +0000 d8 2 a9 1 @@@@ -19,6 +19,12 @@@@ if CONFIG['MOZ_ALSA']: a10 1 DEFINES['USE_ALSA'] = True d21 1 a21 1 @@@@ -68,6 +74,9 @@@@ if CONFIG['OS_TARGET'] == 'Android': d25 1 a25 3 +if CONFIG['MOZ_SYSTEM_SPEEX']: + SOURCES['cubeb_resampler.cpp'].flags += CONFIG['MOZ_SPEEX_CFLAGS'] + a28 8 @@@@ -78,6 +87,7 @@@@ if CONFIG['MOZ_WIDGET_TOOLKIT'] == 'gonk '%' + '%s/system/media/wilhelm/include' % CONFIG['ANDROID_SOURCE'], ] +CFLAGS += CONFIG['MOZ_OSS_CFLAGS'] CFLAGS += CONFIG['MOZ_ALSA_CFLAGS'] CFLAGS += CONFIG['MOZ_PULSEAUDIO_CFLAGS'] @ 1.8 log @Update to 47.0 * Remove macOS patches, because I cannot confirm them sadly Changelog: New Support for Google’s Widevine CDM on Windows and Mac OS X so streaming services like Amazon Video can switch from Silverlight to encrypted HTML5 video. Enable VP9 video codec for users with fast machines Embedded YouTube videos now play with HTML5 video if Flash is not installed. View and search open tabs from your smartphone or another computer in a sidebar Allow no-cache on back/forward navigations for https resources Latgalu [ltg] locale added. Wikipedia tells us there are 164,500 daily speakers. Fixed Various security fixes Changed FUEL (Firefox User Extension Library) has been removed. Add-ons relying on it will stop working. The browser.sessionstore.restore_on_demand preference has been reset to its default value (true) to avoid e10s performance problems. Because faster is better! The Firefox click-to-activate plugin whitelist has been removed. XRender is no longer used for rendering web content on Linux as this may cause a regression in remote X performance Developer Web platform changes View, start,and debug registered Service Workers in the Service Workers developer tool Simulate Push messages in the Service Workers developer tool 'Start' button for service workers in about:debugging to start registered Service Workers Changes that can affect add-on compatibility Added support for ChaCha20/Poly1305 cipher suites Custom user agents supported in Responsive Design Mode Smart multi-line input in the Web Console Developer Information HTML5 cuechange events are now available on TextTrack objects WebCrypto: PBKDF2 supports SHA-2 hash algorithms WebCrypto: RSA-PSS signature support Fixed in Firefox 47 2016-61 Network Security Services (NSS) vulnerabilities 2016-60 Java applets bypass CSP protections 2016-59 Information disclosure of disabled plugins through CSS pseudo-classes 2016-58 Entering fullscreen and persistent pointerlock without user permission 2016-57 Incorrect icon displayed on permissions notifications 2016-56 Use-after-free when textures are used in WebGL operations after recycle pool destruction 2016-55 File overwrite and privilege escalation through Mozilla Windows updater 2016-54 Partial same-origin-policy through setting location.host through data URI 2016-53 Out-of-bounds write with WebGL shader 2016-52 Addressbar spoofing though the SELECT element 2016-51 Use-after-free deleting tables from a contenteditable document 2016-50 Buffer overflow parsing HTML5 fragments 2016-49 Miscellaneous memory safety hazards (rv:47.0 / rv:45.2) @ text @d1 1 a1 1 $NetBSD: patch-media_libcubeb_src_moz.build,v 1.7 2016/04/27 16:22:40 ryoon Exp $ d6 1 a6 1 --- media/libcubeb/src/moz.build.orig 2016-04-15 16:57:46.000000000 +0000 d8 1 a8 1 @@@@ -17,6 +17,12 @@@@ if CONFIG['MOZ_ALSA']: d21 1 a21 1 @@@@ -64,6 +70,9 @@@@ if CONFIG['OS_TARGET'] == 'Android': d25 1 a25 1 +if CONFIG['MOZ_NATIVE_SPEEX']: d31 1 a31 1 @@@@ -74,6 +83,7 @@@@ if CONFIG['MOZ_WIDGET_TOOLKIT'] == 'gonk @ 1.7 log @Update to 46.0 * Drop buildlink to gstreamer1 Changelog: New Improved security of the JavaScript Just In Time (JIT) Compiler GTK3 integration (GNU/Linux only) Fixed Correct rendering for scaled SVGs that use a clip and a mask Various security fixes Screen reader behavior with blank spaces in Google Docs corrected Changed WebRTC fixes to improve performance and stability Developer Display dominator trees in Memory tool Allocation and garbage collection pause profiling in the performance panel Launch responsive mode from the Style Editor @@media sidebar HTML5 Added support for document.elementsFromPoint Added HKDF support for Web Crypto API Fixed in Firefox 46 2016-48 Firefox Health Reports could accept events from untrusted domains 2016-47 Write to invalid HashMap entry through JavaScript.watch() 2016-46 Elevation of privilege with chrome.tabs.update API in web extensions 2016-45 CSP not applied to pages sent with multipart/x-mixed-replace 2016-44 Buffer overflow in libstagefright with CENC offsets 2016-43 Disclosure of user actions through JavaScript with motion and orientation sensors 2016-42 Use-after-free and buffer overflow in Service Workers 2016-41 Content provider permission bypass allows malicious application to access data 2016-40 Privilege escalation through file deletion by Maintenance Service updater 2016-39 Miscellaneous memory safety hazards (rv:46.0 / rv:45.1 / rv:38.8) @ text @d1 1 a1 1 $NetBSD: patch-media_libcubeb_src_moz.build,v 1.6 2016/03/08 21:32:52 ryoon Exp $ d3 2 a4 1 Don't assume cocoa toolkit just because OS_TARGET is Darwin. a20 9 @@@@ -31,7 +37,7 @@@@ if CONFIG['OS_ARCH'] == 'OpenBSD': ] DEFINES['USE_SNDIO'] = True -if CONFIG['OS_TARGET'] == 'Darwin': +if CONFIG['MOZ_WIDGET_TOOLKIT'] == 'cocoa': SOURCES += [ 'cubeb_audiounit.c', ] @ 1.6 log @Update to 45.0 Changelog: New Instant browser tab sharing through Hello Tabs synced via Firefox Accounts from other devices are now shown in dropdown area of Awesome Bar when searching Synced Tabs button in button bar Introduce a new preference (network.dns.blockDotOnion) to allow blocking .onion at the DNS level Guarani [gn] locale added Fixed URLs containing a Unicode-format Internationalized Domain Name (IDN) are now properly redirected Various security fixes Fixed in Firefox 45 2016-37 Font vulnerabilities in the Graphite 2 library 2016-36 Use-after-free during processing of DER encoded keys in NSS 2016-35 Buffer overflow during ASN.1 decoding in NSS 2016-34 Out-of-bounds read in HTML parser following a failed allocation 2016-33 Use-after-free in GetStaticInstance in WebRTC 2016-32 WebRTC and LibVPX vulnerabilities found through code inspection 2016-31 Memory corruption with malicious NPAPI plugin 2016-30 Buffer overflow in Brotli decompression 2016-29 Same-origin policy violation using perfomance.getEntries and history navigation with session restore 2016-28 Addressbar spoofing though history navigation and Location protocol property 2016-27 Use-after-free during XML transformations 2016-26 Memory corruption when modifying a file being read by FileReader 2016-25 Use-after-free when using multiple WebRTC data channels 2016-24 Use-after-free in SetBody 2016-23 Use-after-free in HTML5 string parser 2016-22 Service Worker Manager out-of-bounds read in Service Worker Manager 2016-21 Displayed page address can be overridden 2016-20 Memory leak in libstagefright when deleting an array during MP4 processing 2016-19 Linux video memory DOS with Intel drivers 2016-18 CSP reports fail to strip location information for embedded iframe pages 2016-17 Local file overwriting and potential privilege escalation through CSP reports 2016-16 Miscellaneous memory safety hazards (rv:45.0 / rv:38.7) @ text @d1 1 a1 1 $NetBSD: patch-media_libcubeb_src_moz.build,v 1.5 2015/12/16 09:34:56 ryoon Exp $ d5 1 a5 1 --- media/libcubeb/src/moz.build.orig 2016-02-25 23:01:58.000000000 +0000 d39 1 a39 1 @@@@ -74,5 +83,6 @@@@ if CONFIG['MOZ_WIDGET_TOOLKIT'] == 'gonk d46 1 @ 1.6.2.1 log @Pullup ticket #5015 - requested by sevan www/firefox: security fix Revisions pulled up: - www/firefox/Makefile 1.249-1.250 - www/firefox/PLIST 1.105-1.106 - www/firefox/distinfo 1.242-1.243 - www/firefox/mozilla-common.mk 1.73 - www/firefox/patches/patch-aa 1.45 - www/firefox/patches/patch-config_external_moz.build 1.11 - www/firefox/patches/patch-config_system-headers 1.18 - www/firefox/patches/patch-dom_media_gstreamer_GStreamerAllocator.cpp deleted - www/firefox/patches/patch-dom_media_moz.build 1.3 - www/firefox/patches/patch-gfx_skia_generate__mozbuild.py 1.4 - www/firefox/patches/patch-gfx_skia_moz.build 1.11 - www/firefox/patches/patch-gfx_skia_skia_src_core_SkUtilsArm.cpp 1.2 - www/firefox/patches/patch-gfx_skia_skia_src_opts_SkBitmapProcState__opts__arm.cpp deleted - www/firefox/patches/patch-gfx_skia_skia_src_opts_memset.arm.S deleted - www/firefox/patches/patch-gfx_thebes_moz.build 1.3 - www/firefox/patches/patch-media_libcubeb_src_cubeb.c 1.3 - www/firefox/patches/patch-media_libcubeb_src_cubeb__alsa.c 1.14 - www/firefox/patches/patch-media_libcubeb_src_moz.build 1.7 - www/firefox/patches/patch-media_libtheora_moz.build 1.5 - www/firefox/patches/patch-pb deleted - www/firefox/patches/patch-pc deleted - www/firefox/patches/patch-toolkit_library_moz.build 1.5 - www/firefox/patches/patch-xpcom_reflect_xptcall_md_unix_moz.build 1.5 --- Module Name: pkgsrc Committed By: ryoon Date: Wed Apr 13 20:37:33 UTC 2016 Modified Files: pkgsrc/www/firefox: Makefile PLIST distinfo Log Message: Update to 45.0.2 Changelog: Fixed: Fix an issue impacting the cookie header when third-party cookies are blocked (1257861) Fix a web compatibility regression impacting the srcset attribute of the image tag (1259482) Fix a regression with the copy and paste with some old versions of some Gecko applications like Thunderbird (1254980) Fix a crash impacting the video playback with Media Source Extension (1258562) Fix a regression impacting some specific uploads (1255735) --- Module Name: pkgsrc Committed By: ryoon Date: Wed Apr 27 16:22:40 UTC 2016 Modified Files: pkgsrc/www/firefox: Makefile PLIST distinfo mozilla-common.mk pkgsrc/www/firefox/patches: patch-aa patch-config_external_moz.build patch-config_system-headers patch-dom_media_moz.build patch-gfx_skia_generate__mozbuild.py patch-gfx_skia_moz.build patch-gfx_skia_skia_src_core_SkUtilsArm.cpp patch-gfx_thebes_moz.build patch-media_libcubeb_src_cubeb.c patch-media_libcubeb_src_cubeb__alsa.c patch-media_libcubeb_src_moz.build patch-media_libtheora_moz.build patch-toolkit_library_moz.build patch-xpcom_reflect_xptcall_md_unix_moz.build Removed Files: pkgsrc/www/firefox/patches: patch-dom_media_gstreamer_GStreamerAllocator.cpp patch-gfx_skia_skia_src_opts_SkBitmapProcState__opts__arm.cpp patch-gfx_skia_skia_src_opts_memset.arm.S patch-pb patch-pc Log Message: Update to 46.0 * Drop buildlink to gstreamer1 Changelog: New Improved security of the JavaScript Just In Time (JIT) Compiler GTK3 integration (GNU/Linux only) Fixed Correct rendering for scaled SVGs that use a clip and a mask Various security fixes Screen reader behavior with blank spaces in Google Docs corrected Changed WebRTC fixes to improve performance and stability Developer Display dominator trees in Memory tool Allocation and garbage collection pause profiling in the performance panel Launch responsive mode from the Style Editor @@media sidebar HTML5 Added support for document.elementsFromPoint Added HKDF support for Web Crypto API Fixed in Firefox 46 2016-48 Firefox Health Reports could accept events from untrusted domains 2016-47 Write to invalid HashMap entry through JavaScript.watch() 2016-46 Elevation of privilege with chrome.tabs.update API in web extensions 2016-45 CSP not applied to pages sent with multipart/x-mixed-replace 2016-44 Buffer overflow in libstagefright with CENC offsets 2016-43 Disclosure of user actions through JavaScript with motion and orientation sensors 2016-42 Use-after-free and buffer overflow in Service Workers 2016-41 Content provider permission bypass allows malicious application to access data 2016-40 Privilege escalation through file deletion by Maintenance Service updater 2016-39 Miscellaneous memory safety hazards (rv:46.0 / rv:45.1 / rv:38.8) @ text @d1 1 a1 1 $NetBSD$ d5 1 a5 1 --- media/libcubeb/src/moz.build.orig 2016-04-15 16:57:46.000000000 +0000 d39 1 a39 1 @@@@ -74,6 +83,7 @@@@ if CONFIG['MOZ_WIDGET_TOOLKIT'] == 'gonk a45 1 @ 1.5 log @Update to 43.0 Changelog: New Private Browsing with Tracking Protection offers choice of blocking additional trackers New Improved API support for m4v video playback New Firefox 64-bit for Windows is now available via the Firefox download page New Users can choose search suggestions from the Awesome Bar New On-screen keyboard displayed on selecting input field on devices running Windows 8 or greater New Firefox Health Report has switched to use the same data collection mechanism as telemetry Developer Markup view shows indicators for pseudo-classes locked for elements Developer Bind F1 key to open the settings when the toolbox is focused Developer New 'Use in Console' context menu item in Inspector to store selected element in a temporary variable Developer Search button next to overridden CSS properties to find similar properties in the rules view Developer Ability to filter styles from their property names in the rules view Developer Stack traces are now shown for exceptions inside the console Developer Added ability to display server-side logs in the console Developer Ability to choose resolution for the GCLI screenshot command Developer Subresource integrity allows developers to make their sites more secure Developer Network requests in Console now link to Network panel instead of opening in a popup Developer Unprefixed 'hyphens' property is now supported Developer WebIDE now has a sidebar-based UI Developer The 'transform-origin' property is now supported on SVG elements Developer Animation inspector now displays animations in a timeline Developer Single-process mode is no longer supported for NPAPI plugins Fixed Eyedropper tool does not work as expected when page is zoomed Fixed Various security fixes Fixed in Firefox 43 2015-149 Cross-site reading attack through data and view-source URIs 2015-148 Privilege escalation vulnerabilities in WebExtension APIs 2015-147 Integer underflow and buffer overflow processing MP4 metadata in libstagefright 2015-146 Integer overflow in MP4 playback in 64-bit versions 2015-145 Underflow through code inspection 2015-144 Buffer overflows found through code inspection 2015-143 Linux file chooser crashes on malformed images due to flaws in Jasper library 2015-142 DOS due to malformed frames in HTTP/2 2015-141 Hash in data URI is incorrectly parsed 2015-140 Cross-origin information leak through web workers error events 2015-139 Integer overflow allocating extremely large textures 2015-138 Use-after-free in WebRTC when datachannel is used after being destroyed 2015-137 Firefox allows for control characters to be set in cookies 2015-136 Same-origin policy violation using perfomance.getEntries and history navigation 2015-135 Crash with JavaScript variable assignment with unboxed objects 2015-134 Miscellaneous memory safety hazards (rv:43.0 / rv:38.5) @ text @d1 1 a1 1 $NetBSD: patch-media_libcubeb_src_moz.build,v 1.4 2015/09/23 06:44:42 ryoon Exp $ d5 1 a5 1 --- media/libcubeb/src/moz.build.orig 2015-12-04 00:36:59.000000000 +0000 d29 1 a29 1 @@@@ -65,6 +71,9 @@@@ if CONFIG['GKMEDIAS_SHARED_LIBRARY']: d37 9 a45 2 CFLAGS += [ '-I%s/%s' % (CONFIG['ANDROID_SOURCE'], d) for d in [ @ 1.4 log @Update to 41.0 Changelog: New Enhance IME support on Windows (Vista +) using TSF (Text Services Framework) New Ability to set a profile picture for your Firefox Account New Firefox Hello now includes instant messaging New SVG images can be used as favicons New Improved box-shadow rendering performance Changed WebRTC now requires perfect forward secrecy Changed WARP is disabled on Windows 7 Changed Updates to image decoding process Changed Support for running animations of 'transform' and 'opacity' on the compositor thread HTML5 MessageChannel and MessagePort API enabled by default HTML5 Added support for the transform-origin property on SVG elements HTML5 CSS Font Loading API enabled by default HTML5 Navigator.onLine now varies with actual internet connectivity (Windows and Mac OS X only) HTML5 Copy/Cut Web content from JavaScript to the OS clipboard with document.execCommand("cut"/"copy") HTML5 Implemented Cache API for querying named caches that are accessible Window, Worker, and ServiceWorker Developer Removed support for binary XPCOM components in extensions, use addon SDK "system/child_process" pipe mechanism for native binaries instead Developer Network requests can be exported in HAR format Developer Quickly add new CSS rule with New Rule button in the Inspector Developer Screenshot a node or element from markup view with the Screenshot Node context menu item Developer Copy element CSS rule declarations with the Copy Rule Declaration context menu item in the Inspector Developer Pseudo-Class panel in the Inspector Fixed Picture element does not react to resize/viewport changes Fixed Various security fixes Security fixes: Fixed in Firefox 41 2015-114 Information disclosure via the High Resolution Time API 2015-113 Memory safety errors in libGLES in the ANGLE graphics library 2015-112 Vulnerabilities found through code inspection 2015-111 Errors in the handling of CORS preflight request headers 2015-110 Dragging and dropping images exposes final URL after redirects 2015-109 JavaScript immutable property enforcement can be bypassed 2015-108 Scripted proxies can access inner window 2015-107 Out-of-bounds read during 2D canvas display on Linux 16-bit color depth systems 2015-106 Use-after-free while manipulating HTML media content 2015-105 Buffer overflow while decoding WebM video 2015-104 Use-after-free with shared workers and IndexedDB 2015-103 URL spoofing in reader mode 2015-102 Crash when using debugger with SavedStacks in JavaScript 2015-101 Buffer overflow in libvpx while parsing vp9 format video 2015-100 Arbitrary file manipulation by local user through Mozilla updater 2015-99 Site attribute spoofing on Android by pasting URL with unknown scheme 2015-98 Out of bounds read in QCMS library with ICC V4 profile attributes 2015-97 Memory leak in mozTCPSocket to servers 2015-96 Miscellaneous memory safety hazards (rv:41.0 / rv:38.3) @ text @d1 1 a1 1 $NetBSD: patch-media_libcubeb_src_moz.build,v 1.3 2014/12/01 18:11:14 ryoon Exp $ d5 1 a5 1 --- media/libcubeb/src/moz.build.orig 2015-08-24 21:53:10.000000000 +0000 d29 1 a29 1 @@@@ -66,6 +72,9 @@@@ if CONFIG['GKMEDIAS_SHARED_LIBRARY']: a38 10 @@@@ -74,7 +83,9 @@@@ if CONFIG['MOZ_WIDGET_TOOLKIT'] == 'gonk ] ] +CFLAGS += CONFIG['MOZ_OSS_CFLAGS'] FAIL_ON_WARNINGS = True +CFLAGS += CONFIG['MOZ_OSS_CFLAGS'] CFLAGS += CONFIG['MOZ_ALSA_CFLAGS'] CFLAGS += CONFIG['MOZ_PULSEAUDIO_CFLAGS'] @ 1.3 log @Update to 34.0.5 Changelog: New Default search engine changed to Yahoo! for North America New Default search engine changed to Yandex for Belarusian, Kazakh, and Russian locales New Improved search bar (en-US only) New Firefox Hello real-time communication client New Easily switch themes/personas directly in the Customizing mode New Wikipedia search now uses HTTPS for secure searching (en-US only) New Implementation of HTTP/2 (draft14) and ALPN New Recover from a locked Firefox process in the "Firefox is already running" dialog on Windows Changed Disabled SSLv3 Changed Proprietary window.crypto properties/functions re-enabled (to be removed in Firefox 35) Changed Firefox signed by Apple OS X version 2 signature HTML5 ECMAScript 6 WeakSet Implemented HTML5 JavaScript Template Strings Implemented HTML5 CSS3 Font variants and features control (e.g. kerning) implemented HTML5 WebCrypto: RSA-OAEP, PBKDF2 and AES-KW support HTML5 WebCrypto: wrapKey and unwrapKey implemented HTML5 WebCrypto: Import/export of JWK-formatted keys HTML5 matches() DOM API implemented (formerly mozMatchesSelector()) HTML5 Performance.now() for workers implemented HTML5 WebCrypto: ECDH support Developer WebIDE: Create, edit, and test a new Web application from your browser Developer Highlight all nodes that match a given selector in the Style Editor and the Inspector's Rules panel Developer Improved User Interface of the Profiler Developer console.table function added to web console Fixed CSS transitions start correctly when started at the same time as changes to display, position, overflow, and similar properties Fixed Various security fixes 2014-89 Bad casting from the BasicThebesLayer to BasicContainerLayer 2014-88 Buffer overflow while parsing media content 2014-87 Use-after-free during HTML5 parsing 2014-86 CSP leaks redirect data via violation reports 2014-85 XMLHttpRequest crashes with some input streams 2014-84 XBL bindings accessible via improper CSS declarations 2014-83 Miscellaneous memory safety hazards (rv:34.0 / rv:31.3) @ text @d1 1 a1 1 $NetBSD: patch-media_libcubeb_src_moz.build,v 1.2 2014/10/15 13:07:07 ryoon Exp $ d5 1 a5 1 --- media/libcubeb/src/moz.build.orig 2014-11-21 03:37:42.000000000 +0000 d28 2 a29 2 'cubeb_osx_run_loop.c' @@@@ -65,6 +71,9 @@@@ if CONFIG['GKMEDIAS_SHARED_LIBRARY']: d39 1 a39 1 @@@@ -73,7 +82,9 @@@@ if CONFIG['MOZ_WIDGET_TOOLKIT'] == 'gonk @ 1.2 log @Update to 33.0 Changelog: New OpenH264 support (sandboxed) New Improved search experience through the location bar New Slimmer and faster JavaScript strings New Search suggestions on the Firefox Start (about:home) and new tab (about:newtab) pages New Windows: OMTC enabled by default New New CSP (Content Security Policy) backend New Support for connecting to HTTP proxy over HTTPS New Improved reliability of the session restoration New Azerbaijani [az] locale added Changed Proprietary window.crypto properties/functions removed Changed JSD (JavaScript Debugger Service) removed in favor of the Debugger interface HTML5 @@counter-style rule from CSS3 Counter Styles specification implemented HTML5 DOMMatrix interface implemented Developer Cubic-bezier curves editor Developer Display which elements have listeners attached Developer New sidebar which displays a list of shortcuts to every @@media rule in the current stylesheet Developer Paint flashing for browser content repaints Developer Editable @@keyframes rules in the Rules section of the Inspector Developer CSS transform highlighter in the style-inspector Fixed Fix incomplete downloads being marked as complete by detecting broken HTTP1.1 transfers (237623) Fixed Various security fixes Fixed in Firefox 33 MFSA 2014-82 Accessing cross-origin objects via the Alarms API MFSA 2014-81 Inconsistent video sharing within iframe MFSA 2014-80 Key pinning bypasses MFSA 2014-79 Use-after-free interacting with text directionality MFSA 2014-78 Further uninitialized memory use during GIF MFSA 2014-77 Out-of-bounds write with WebM video MFSA 2014-76 Web Audio memory corruption issues with custom waveforms MFSA 2014-75 Buffer overflow during CSS manipulation MFSA 2014-74 Miscellaneous memory safety hazards (rv:33.0 / rv:31.2) @ text @d1 1 a1 1 $NetBSD: patch-media_libcubeb_src_moz.build,v 1.1 2014/05/30 03:03:36 pho Exp $ d5 1 a5 1 --- media/libcubeb/src/moz.build.orig 2014-10-11 09:06:39.000000000 +0000 d7 1 a7 1 @@@@ -16,6 +16,12 @@@@ if CONFIG['MOZ_ALSA']: d20 1 a20 1 @@@@ -30,7 +36,7 @@@@ if CONFIG['OS_ARCH'] == 'OpenBSD': d28 12 a39 2 ] @@@@ -71,4 +77,5 @@@@ if CONFIG['MOZ_WIDGET_TOOLKIT'] == 'gonk d45 4 @ 1.1 log @PR pkg/48840: Don't assume cocoa toolkit just because OS_ARCH is Darwin @ text @d1 1 a1 1 $NetBSD$ d5 1 a5 1 --- media/libcubeb/src/moz.build.orig 2014-05-06 22:56:07.000000000 +0000 d7 14 a20 1 @@@@ -28,7 +28,7 @@@@ if CONFIG['OS_ARCH'] == 'OpenBSD': d29 6 @