head	1.2;
access;
symbols
	pkgsrc-2026Q1:1.2.0.6
	pkgsrc-2026Q1-base:1.2
	pkgsrc-2025Q4:1.2.0.4
	pkgsrc-2025Q4-base:1.2
	pkgsrc-2025Q3:1.2.0.2
	pkgsrc-2025Q3-base:1.2
	pkgsrc-2025Q2:1.1.0.8
	pkgsrc-2025Q2-base:1.1
	pkgsrc-2025Q1:1.1.0.6
	pkgsrc-2025Q1-base:1.1
	pkgsrc-2024Q4:1.1.0.4
	pkgsrc-2024Q4-base:1.1
	pkgsrc-2024Q3:1.1.0.2
	pkgsrc-2024Q3-base:1.1;
locks; strict;
comment	@# @;


1.2
date	2025.07.15.13.58.05;	author ryoon;	state Exp;
branches;
next	1.1;
commitid	BoegzikoNpQtDQ2G;

1.1
date	2024.08.12.14.03.32;	author ryoon;	state Exp;
branches;
next	;
commitid	0HnQweQUmvFYuxlF;


desc
@@


1.2
log
@www/firefox: Update to 139.0.4

* Try to add some NetBSD-specific changes (incompleted).

Changelog:
139.0.4:
Fixed

  * Fixed Firefox freezing when switching between apps or opening certain
    panels within the browser. (Bug 1969253 & Bug 1969346)

  * Fixed difficult selection of drop-down menu options in the Firefox
    preferences page when selected via the in-page search. (Bug 1968949)

  * Fixed various selection issues when triple-clicking text in some
    situations. (Bug 1969100 & Bug 1969432)

  * Fixed an incorrect filename being used when setting an image as the desktop
    wallpaper on Windows. (Bug 1969793)

  * Various security fixes.

Security fixes:
Mozilla Foundation Security Advisory 2025-47
#CVE-2025-49709: Memory corruption in canvas surfaces
#CVE-2025-49710: Integer overflow in OrderedHashTable


139.0.1:
Fixed

  * Fixed graphics corruption with certain NVIDIA graphics adapters and
    multiple monitors running at mixed refresh rates after updating to Firefox
    139. (Bug 1968876)


139.0:
New

  * By popular request, Full-Page Translations are now available within Firefox
    extension pages that start with the moz-extension:// URL scheme.

  * The New Tab custom wallpaper (and colors) option is now available! Your own
    image can be uploaded as your New Tab wallpaper or any custom color can be
    selected - from the brightest pink to dark gray. This feature will be
    rolling out gradually to new users and can also be enabled immediately via
    Firefox Labs. Additionally, new Wallpaper images and a new Celestial
    category have also been added.

  * Link Previews is currently available as an experimental feature which can
    be enabled via Firefox Labs in the Firefox settings. After enabling, use
    the Alt+Shift keyboard shortcut when hovering over a link to see the
    previews in action!

  * Address autofill has now been enabled for users in Australia and India.

Fixed

  * PNG images with transparency now keep their transparency when pasted into
    Firefox.

  * The upload performance of HTTP/3 has been significantly improved,
    particularly on resumed connections (QUIC 0-RTT) and high-bandwidth and
    high-delay connections.

  * Various security fixes.

Changed

  * Due to recent changes in how Chrome encrypts user data on Windows, the
    Firefox migration wizard can no longer directly import payment methods or
    passwords from Chrome. However, users can still export passwords from
    Chrome to a CSV file and then import them into Firefox using the migration
    wizard or the password manager.

  * The Review Checker feature is shutting down and will no longer be available
    after June 10, 2025.


Mozilla Foundation Security Advisory 2025-42
#CVE-2025-5283: Double-free in libvpx encoder
#CVE-2025-5263: Error handling for script execution was incorrectly isolated
 from web content
#CVE-2025-5264: Potential local code execution in “Copy as cURL” command
#CVE-2025-5265: Potential local code execution in “Copy as cURL” command
#CVE-2025-5266: Script element events leaked cross-origin resource status
#CVE-2025-5271: Devtools' preview ignored CSP headers
#CVE-2025-5267: Clickjacking vulnerability could have led to leaking saved
 payment card details
#CVE-2025-5268: Memory safety bugs fixed in Firefox 139, Thunderbird 139,
 Firefox ESR 128.11, and Thunderbird 128.11
#CVE-2025-5272: Memory safety bugs fixed in Firefox 139 and Thunderbird 139
@
text
@$NetBSD: patch-third__party_sqlite3_ext_moz.build,v 1.1 2024/08/12 14:03:32 ryoon Exp $

--- third_party/sqlite3/ext/moz.build.orig	2025-05-20 17:57:17.576392093 +0000
+++ third_party/sqlite3/ext/moz.build
@@@@ -21,7 +21,7 @@@@ SOURCES += [
     "sqlite-vec/sqlite-vec.c",
 ]
 
-if CONFIG["OS_TARGET"] == "Linux" or CONFIG["OS_TARGET"] == "Android":
+if CONFIG["OS_TARGET"] == "Linux" or CONFIG["OS_TARGET"] == "Android" or CONFIG["OS_TARGET"] == "FreeBSD" or CONFIG["OS_TARGET"] == "NetBSD" or CONFIG["OS_TARGET"] == "OpenBSD":
     OS_LIBS += [
         "m",
     ]
@


1.1
log
@www/firefox: Update to 129.0

Changelog:
129.0:
New

  * Reader View now has an enhanced Text and Layout menu with new options for
    character spacing, word spacing, and text alignment. These changes offer a
    more accessible reading experience.

  * Reader View now has a Theme menu with additional Contrast and Gray options.
    You can also select custom colors for text, background, and links from the
    Custom tab.

  * A tab preview is now displayed when hovering the mouse over background
    tabs, making it easier to locate the desired tab without needing to switch
    tabs.

    This feature is part of a progressive roll out.

  * HTTPS is replacing HTTP as the default protocol in the address bar on
    non-local sites. If a site is not available via HTTPS, Firefox will fall
    back to HTTP.

  * HTTPS DNS records can now be resolved with the operating system's DNS
    resolver on specific platforms (Windows 11, Linux, Android 10+). Previously
    this required DNS over HTTPS to be enabled. This capability allows the use
    of HTTP/3 without needing to use the Alt-Svc header, upgrades requests to
    HTTPS when the DNS record is present, and enables wider use of ECH.

  * Added support for multiple languages in the same document spoken in macOS
    VoiceOver.

  * Address Autofill is now enabled for users in France and Germany.

Fixed

  * Various security fixes.

#

Enterprise

  * You can find information about policy updates and enterprise specific bug
    fixes in the Firefox for Enterprise 129 Release Notes.

Security fixes:
Mozilla Foundation Security Advisory 2024-33
#CVE-2024-7518: Fullscreen notification dialog can be obscured by document
 content
#CVE-2024-7519: Out of bounds memory access in graphics shared memory handling
#CVE-2024-7520: Type confusion in WebAssembly
#CVE-2024-7521: Incomplete WebAssembly exception handing
#CVE-2024-7522: Out of bounds read in editor component
#CVE-2024-7523: Document content could partially obscure security prompts
#CVE-2024-7524: CSP strict-dynamic bypass using web-compatibility shims
#CVE-2024-7525: Missing permission check when creating a StreamFilter
#CVE-2024-7526: Uninitialized memory used by WebGL
#CVE-2024-7527: Use-after-free in JavaScript garbage collection
#CVE-2024-7528: Use-after-free in IndexedDB
#CVE-2024-7529: Document content could partially obscure security prompts
#CVE-2024-7530: Use-after-free in JavaScript code coverage collection
#CVE-2024-7531: PK11_Encrypt using CKM_CHACHA20 can reveal plaintext on Intel
 Sandy Bridge machines
@
text
@d1 1
a1 1
$NetBSD$
d3 1
a3 1
--- third_party/sqlite3/ext/moz.build.orig	2024-08-06 01:06:04.545236415 +0000
d5 2
a6 2
@@@@ -20,7 +20,7 @@@@ SOURCES += [
     "fts5.c",
@