head 1.1; access; symbols pkgsrc-2026Q1:1.1.0.4 pkgsrc-2026Q1-base:1.1 pkgsrc-2025Q4:1.1.0.2 pkgsrc-2025Q4-base:1.1; locks; strict; comment @# @; 1.1 date 2025.09.26.23.15.49; author ryoon; state Exp; branches; next ; commitid BP6lTqvD8twmnhcG; desc @@ 1.1 log @www/firefox: Update to 143.0.1 Changelog: 143.0.1: Fixed * Fixed a tab crash experienced by some users caused by DLL injection. (Bug 1872261) 143.0: New * On Windows, Firefox now supports running websites as web apps pinned directly to the taskbar. These are sites that you can pin and run as simplified windows directly from the taskbar without losing access to your installed add-ons. This feature is not currently available for Firefox installs from the Microsoft Store. * Tabs can now be pinned by dragging them to the start of the tab strip, making it easier to keep important sites within reach. * Copilot from Microsoft can now be chosen as a chatbot to use in the sidebar for quick access without leaving your main view. * When a site asks for camera access, it can now be previewed inside the permission dialog. This is especially helpful when switching between multiple cameras. * The Firefox address bar can now show you important dates and events. This feature supports displaying events (e.g. ??Mother??s Day??) in the United States, United Kingdom, Germany, France, and Italy regions. * Firefox has expanded its Fingerprinting Protection by reporting constant values for several more attributes of user's computers. * When downloading a file in Private Browsing mode, Firefox now asks whether to keep or delete it after that session ends. You can adjust this behavior in Settings. * Firefox now supports Windows UI Automation, which improves support for accessibility tools such as Windows Voice Access, Text Cursor Indicator and Narrator. Fixed * Various security fixes. Security fixes: Mozilla Foundation Security Advisory 2025-73 #CVE-2025-10527: Sandbox escape due to use-after-free in the Graphics: Canvas2D component #CVE-2025-10528: Sandbox escape due to undefined behavior, invalid pointer in the Graphics: Canvas2D component #CVE-2025-10529: Same-origin policy bypass in the Layout component #CVE-2025-10530: Spoofing issue in the WebAuthn component in Firefox for Android #CVE-2025-10531: Mitigation bypass in the Web Compatibility: Tooling component #CVE-2025-10532: Incorrect boundary conditions in the JavaScript: GC component #CVE-2025-10533: Integer overflow in the SVG component #CVE-2025-10534: Spoofing issue in the Site Permissions component #CVE-2025-10535: Information disclosure, mitigation bypass in the Privacy component in Firefox for Android #CVE-2025-10536: Information disclosure in the Networking: Cache component #CVE-2025-10537: Memory safety bugs fixed in Firefox ESR 140.3, Thunderbird ESR 140.3, Firefox 143 and Thunderbird 143 @ text @$NetBSD$ --- dom/media/webrtc/libwebrtc_overrides/moz.build.orig 2025-09-10 13:58:16.516218833 +0000 +++ dom/media/webrtc/libwebrtc_overrides/moz.build @@@@ -52,7 +52,7 @@@@ if CONFIG["OS_TARGET"] == "Linux" and CO if ( CONFIG["MOZ_X11"] == "1" - and CONFIG["OS_TARGET"] == "Linux" + and (CONFIG["OS_TARGET"] == "Linux" or CONFIG["OS_TARGET"] == "NetBSD" or CONFIG["OS_TARGET"] == "OpenBSD" or CONFIG["OS_TARGET"] == "FreeBSD") and CONFIG["TARGET_CPU"] in ("aarch64", "arm", "mips32", "mips64", "x86", "x86_64") ): UNIFIED_SOURCES += [ @