head 1.15; access; symbols pkgsrc-2025Q1:1.14.0.34 pkgsrc-2025Q1-base:1.14 pkgsrc-2024Q4:1.14.0.32 pkgsrc-2024Q4-base:1.14 pkgsrc-2024Q3:1.14.0.30 pkgsrc-2024Q3-base:1.14 pkgsrc-2024Q2:1.14.0.28 pkgsrc-2024Q2-base:1.14 pkgsrc-2024Q1:1.14.0.26 pkgsrc-2024Q1-base:1.14 pkgsrc-2023Q4:1.14.0.24 pkgsrc-2023Q4-base:1.14 pkgsrc-2023Q3:1.14.0.22 pkgsrc-2023Q3-base:1.14 pkgsrc-2023Q2:1.14.0.20 pkgsrc-2023Q2-base:1.14 pkgsrc-2023Q1:1.14.0.18 pkgsrc-2023Q1-base:1.14 pkgsrc-2022Q4:1.14.0.16 pkgsrc-2022Q4-base:1.14 pkgsrc-2022Q3:1.14.0.14 pkgsrc-2022Q3-base:1.14 pkgsrc-2022Q2:1.14.0.12 pkgsrc-2022Q2-base:1.14 pkgsrc-2022Q1:1.14.0.10 pkgsrc-2022Q1-base:1.14 pkgsrc-2021Q4:1.14.0.8 pkgsrc-2021Q4-base:1.14 pkgsrc-2021Q3:1.14.0.6 pkgsrc-2021Q3-base:1.14 pkgsrc-2021Q2:1.14.0.4 pkgsrc-2021Q2-base:1.14 pkgsrc-2021Q1:1.14.0.2 pkgsrc-2021Q1-base:1.14 pkgsrc-2020Q4:1.13.0.6 pkgsrc-2020Q4-base:1.13 pkgsrc-2020Q3:1.13.0.4 pkgsrc-2020Q3-base:1.13 pkgsrc-2020Q2:1.13.0.2 pkgsrc-2020Q2-base:1.13 pkgsrc-2020Q1:1.12.0.22 pkgsrc-2020Q1-base:1.12 pkgsrc-2019Q4:1.12.0.44 pkgsrc-2019Q4-base:1.12 pkgsrc-2019Q3:1.12.0.40 pkgsrc-2019Q3-base:1.12 pkgsrc-2019Q2:1.12.0.38 pkgsrc-2019Q2-base:1.12 pkgsrc-2019Q1:1.12.0.36 pkgsrc-2019Q1-base:1.12 pkgsrc-2018Q4:1.12.0.34 pkgsrc-2018Q4-base:1.12 pkgsrc-2018Q3:1.12.0.32 pkgsrc-2018Q3-base:1.12 pkgsrc-2018Q2:1.12.0.30 pkgsrc-2018Q2-base:1.12 pkgsrc-2018Q1:1.12.0.28 pkgsrc-2018Q1-base:1.12 pkgsrc-2017Q4:1.12.0.26 pkgsrc-2017Q4-base:1.12 pkgsrc-2017Q3:1.12.0.24 pkgsrc-2017Q3-base:1.12 pkgsrc-2017Q2:1.12.0.20 pkgsrc-2017Q2-base:1.12 pkgsrc-2017Q1:1.12.0.18 pkgsrc-2017Q1-base:1.12 pkgsrc-2016Q4:1.12.0.16 pkgsrc-2016Q4-base:1.12 pkgsrc-2016Q3:1.12.0.14 pkgsrc-2016Q3-base:1.12 pkgsrc-2016Q2:1.12.0.12 pkgsrc-2016Q2-base:1.12 pkgsrc-2016Q1:1.12.0.10 pkgsrc-2016Q1-base:1.12 pkgsrc-2015Q4:1.12.0.8 pkgsrc-2015Q4-base:1.12 pkgsrc-2015Q3:1.12.0.6 pkgsrc-2015Q3-base:1.12 pkgsrc-2015Q2:1.12.0.4 pkgsrc-2015Q2-base:1.12 pkgsrc-2015Q1:1.12.0.2 pkgsrc-2015Q1-base:1.12 pkgsrc-2014Q4:1.11.0.2 pkgsrc-2014Q4-base:1.11 pkgsrc-2014Q3:1.10.0.4 pkgsrc-2014Q3-base:1.10 pkgsrc-2014Q2:1.10.0.2 pkgsrc-2014Q2-base:1.10 pkgsrc-2014Q1:1.9.0.2 pkgsrc-2014Q1-base:1.9 pkgsrc-2013Q4:1.8.0.4 pkgsrc-2013Q4-base:1.8 pkgsrc-2013Q3:1.8.0.2 pkgsrc-2013Q3-base:1.8 pkgsrc-2013Q2:1.7.0.4 pkgsrc-2013Q2-base:1.7 pkgsrc-2013Q1:1.7.0.2 pkgsrc-2013Q1-base:1.7 pkgsrc-2012Q4:1.5.0.2 pkgsrc-2012Q4-base:1.5 pkgsrc-2012Q3:1.4.0.2 pkgsrc-2012Q3-base:1.4 pkgsrc-2012Q2:1.3.0.2 pkgsrc-2012Q2-base:1.3 pkgsrc-2012Q1:1.2.0.2 pkgsrc-2012Q1-base:1.2; locks; strict; comment @// @; 1.15 date 2025.04.14.15.33.04; author nia; state dead; branches; next 1.14; commitid SdmOsZfrH2wk72RF; 1.14 date 2021.02.08.12.26.20; author ryoon; state Exp; branches; next 1.13; commitid 4MVVzyHXg6Dx8UGC; 1.13 date 2020.05.06.14.34.53; author ryoon; state Exp; branches; next 1.12; commitid AlOTfiLltbeFMb7C; 1.12 date 2015.02.15.02.11.03; author ryoon; state Exp; branches; next 1.11; commitid X0qR9yjTCtQWX2ay; 1.11 date 2014.11.02.05.40.31; author ryoon; state Exp; branches; next 1.10; commitid NE5EWeAimDmUuzWx; 1.10 date 2014.06.22.08.54.39; author ryoon; state Exp; branches; next 1.9; commitid PZNghMi9oWIHQuFx; 1.9 date 2014.03.30.04.13.17; author ryoon; state Exp; branches; next 1.8; commitid tLBJBro5DZzzZFux; 1.8 date 2013.08.11.03.18.46; author ryoon; state Exp; branches; next 1.7; commitid GDZSqlFAfPtd7Z0x; 1.7 date 2013.01.20.08.33.14; author ryoon; state Exp; branches; next 1.6; 1.6 date 2013.01.07.21.55.30; author ryoon; state Exp; branches; next 1.5; 1.5 date 2012.11.23.17.28.49; author ryoon; state Exp; branches; next 1.4; 1.4 date 2012.09.06.12.08.51; author ryoon; state Exp; branches; next 1.3; 1.3 date 2012.04.28.22.48.06; author ryoon; state Exp; branches; next 1.2; 1.2 date 2012.03.19.10.35.59; author ryoon; state Exp; branches; next 1.1; 1.1 date 2012.03.10.03.26.06; author ryoon; state Exp; branches; next ; desc @@ 1.15 log @seamonkey: Update to 2.53.20. Large scale cleanup of package. - Local change: Removed all old patches. - Additional important security fixes up to Current Firefox 115.19 and Thunderbird 115.19 ESR plus many enhancements have been backported. - Support for all NPAPI plugins like Flash, Java and Silverlight has been removed. See release notes: https://www.seamonkey-project.org/releases/seamonkey2.53.20/ @ text @$NetBSD: patch-mozilla_ipc_glue_GeckoChildProcessHost.cpp,v 1.14 2021/02/08 12:26:20 ryoon Exp $ --- ipc/glue/GeckoChildProcessHost.cpp.orig 2020-02-17 23:37:52.000000000 +0000 +++ ipc/glue/GeckoChildProcessHost.cpp @@@@ -4,7 +4,13 @@@@ * License, v. 2.0. If a copy of the MPL was not distributed with this * file, You can obtain one at http://mozilla.org/MPL/2.0/. */ +#if defined(__NetBSD__) +_Pragma("GCC visibility push(default)") +#endif #include "GeckoChildProcessHost.h" +#if defined(__NetBSD__) +_Pragma("GCC visibility pop") +#endif #include "base/command_line.h" #include "base/string_util.h" @ 1.14 log @seamonkey: Update to 2.53.6 CHangelog: What's New in SeaMonkey 2.53.6 SeaMonkey 2.53.6 contains (among other changes) the following major changes relative to SeaMonkey 2.53.5.1: * Improve usability of multiple mailboxes/folders selectionbug 1600103. * Add Greek localisation (el). * Remove more RDF from mailnews code. * Switch to mozilla as topsrcdir and component for building is comm/suite now. * Rust support is now up to 1.48 and official build is now using 1.47.0 * Various security and general platform fixes. SeaMonkey 2.53.6 contains (among other changes) the following major changes relative to SeaMonkey 2.49.5: * The Bookmarks Manager has switched its name to Library, and now also includes the History list. When invoking History, the Library will be shown with the History list selected. The extensive modifications were needed because of Mozilla Gecko platform API changes. * Download Manager has been migrated to a new API. Although it looks pretty much the same as before, the search option is missing and some other minor details work differently. The previous downloads history is removed during the upgrade. * The layout panel was added to the CSS Grid tools. * TLS 1.3 is the default SSL version now. * The only NPAPI plugin which will work with SeaMonkey 2.53.6 is Flash. Support for other NPAPI plugins like Java and Silverlight has been removed. For displaying pdf files in the browser you can use pdf.js-seamonkey from Isaac Schemm. * SeaMonkey now uses a new api for formatting regional data like time and date. Default is to use the application locale of the current SeaMonkey build. If you use a language pack or a different OS formatting this is usually not desired. You can change the formatting from the application locale to the regional settings locale (OS) in the preferences dialog under "Appearance". SeaMonkey 2.53.6 uses the same backend as Firefox and contains the relevant Firefox 60.8 security fixes. SeaMonkey 2.53.6 shares most parts of the mail and news code with Thunderbird. Please read the Thunderbird 60.0 release notes for specific changes and security fixes in this release. Additional important security fixes up to Current Firefox 78.6 ESR and a few enhancements have been backported. We will continue to enhance SeaMonkey security in subsequent 2.53.x beta and release versions as fast as we are able to. SeaMonkey-specific changes * SeaMonkey now uses gtk3 on Linux. If you experience a problem because of this please file a bug and link it to bug 1367257. Please try another OS theme first. Some of them are buggy and cause problems with SeaMonkey, Thunderbird and Firefox. @ text @d1 1 a1 1 $NetBSD: patch-mozilla_ipc_glue_GeckoChildProcessHost.cpp,v 1.13 2020/05/06 14:34:53 ryoon Exp $ @ 1.13 log @seamonkey: Update to 2.53.2 Changelog: SeaMonkey 2.53.2 contains (among other changes) the following major changes relative to SeaMonkey 2.53.1: Scrollbars have been switched over to the native gtk3 theme in bug 1625754. If your theme does not show scrollbar buttons and you would like to see them try editing ~/.config/gtk-3.0/gtk.css and adding the following: * { -GtkScrollbar-has-backward-stepper: 1; -GtkScrollbar-has-forward-stepper: 1; } The download progress dialog has been fixed and is now showing the correct status for downloads. Some downloads may not show the transferred count. This problem is under investigation. SeaMonkey is now translated and available in Finnish and Georgian. Because of website compatibility issues and privacy concerns the Lightning version is no longer appended to the user agent string and has been removed from the preferences dialog. Advanced Layers has been activated on Windows. This should boost performance on some websites. If you experience graphics problems please disable it by setting the pref "layers.mlgpu.enabled" to false. Whether the native app chooser is used in Linux is now controlled via a preference setting in the Helper Applications preference pane. In the Modern theme, popup notifications have improved styling and column headers now display sort direction arrows. The column picker and folder view have been reinstated for the bookmarks panel. Introduced the ability to close all tabs to the right of the current tab. Whether mailnews tabs open in the background is controlled by a separate preference to browser tabs via General Settings section of main Mail & Newsgroups preference pane. Fixed an issue with the recipient being missing when using Reply to Sender and Group button in Newsgroup discussions. SeaMonkey now prevents address books from having duplicate names. SeaMonkey 2.53.2 contains (among other changes) the following major changes relative to SeaMonkey 2.49.5: The Bookmarks Manager has switched its name to Library, and now also includes the History list. When invoking History, the Library will be shown with the History list selected. The extensive modifications were needed because of Mozilla Gecko platform API changes. Download Manager has been migrated to a new API. Although it looks pretty much the same as before, the search option is missing and some other minor details work differently. The previous downloads history is removed during the upgrade. The layout panel was added to the CSS Grid tools. TLS 1.3 is the default SSL version now. The only NPAPI plugin which will work with SeaMonkey 2.53.2 is Flash. Support for other NPAPI plugins like Java and Silverlight has been removed. SeaMonkey now uses a new api for formatting regional data like time and date. Default is to use the application locale of the current SeaMonkey build. If you use a language pack or a different OS formatting this is usually not desired. You can change the formatting from the application locale to the regional settings locale (OS) in the preferences dialog under "Appearance". SeaMonkey 2.53.2 uses the same backend as Firefox and contains the relevant Firefox 60.3 security fixes. @ text @d1 1 a1 1 $NetBSD$ d3 2 a4 2 --- mozilla/ipc/glue/GeckoChildProcessHost.cpp.orig 2020-02-17 23:37:52.000000000 +0000 +++ mozilla/ipc/glue/GeckoChildProcessHost.cpp @ 1.12 log @Update to 2.32.1 Changelog: What's New in SeaMonkey 2.32.1 Mostly regression fixes, including: MailNews feeds not updating Selected profile in Profile Manager not remembered Opening a bookmark folder in tabs on Linux Troubleshooting Information (about:support) with the Modern theme What's New in SeaMonkey 2.32 SeaMonkey 2.32 contains the following major changes relative to SeaMonkey 2.31: SeaMonkey-specific changes The Spell Check dialog is now resizable. Generational Garbage Collection has been enabled. Mozilla platform changes Improved handling of dynamic styling changes to increase responsiveness. Implemented HTTP Public Key Pinning Extension (for enhanced authentication of encrypted connections). Reduced resource usage for scaled images. Also see Firefox 35 for Developers. Fixed several stability issue Fixed in SeaMonkey 2.32 2015-09 XrayWrapper bypass through DOM objects 2015-08 Delegated OCSP responder certificates failure with id-pkix-ocsp-nocheck extension 2015-06 Read-after-free in WebRTC 2015-05 Read of uninitialized memory in Web Audio 2015-04 Cookie injection through Proxy Authenticate responses 2015-03 sendBeacon requests lack an Origin header 2015-02 Uninitialized memory use during bitmap rendering 2015-01 Miscellaneous memory safety hazards (rv:35.0 / rv:31.4) @ text @d1 1 a1 1 $NetBSD: patch-mozilla_ipc_glue_GeckoChildProcessHost.cpp,v 1.11 2014/11/02 05:40:31 ryoon Exp $ d3 1 a3 1 --- mozilla/ipc/glue/GeckoChildProcessHost.cpp.orig 2015-02-05 04:38:37.000000000 +0000 a18 27 @@@@ -533,7 +539,7 @@@@ GeckoChildProcessHost::PerformAsyncLaunc // and passing wstrings from one config to the other is unsafe. So // we split the logic here. -#if defined(OS_LINUX) || defined(OS_MACOSX) || defined(OS_BSD) +#if defined(OS_LINUX) || defined(OS_MACOSX) || defined(OS_BSD) || defined(OS_SOLARIS) base::environment_map newEnvVars; ChildPrivileges privs = mPrivileges; if (privs == base::PRIVILEGES_DEFAULT) { @@@@ -672,7 +678,7 @@@@ GeckoChildProcessHost::PerformAsyncLaunc childArgv.push_back(pidstring); #if defined(MOZ_CRASHREPORTER) -# if defined(OS_LINUX) || defined(OS_BSD) +# if defined(OS_LINUX) || defined(OS_BSD) || defined(OS_SOLARIS) int childCrashFd, childCrashRemapFd; if (!CrashReporter::CreateNotificationPipeForChild( &childCrashFd, &childCrashRemapFd)) @@@@ -705,7 +711,7 @@@@ GeckoChildProcessHost::PerformAsyncLaunc childArgv.push_back(childProcessType); base::LaunchApp(childArgv, mFileMap, -#if defined(OS_LINUX) || defined(OS_MACOSX) || defined(OS_BSD) +#if defined(OS_LINUX) || defined(OS_MACOSX) || defined(OS_BSD) || defined(OS_SOLARIS) newEnvVars, privs, #endif false, &process, arch); @ 1.11 log @Update to 2.30 * Update enigmail to 1.7.2 Changelog: * SeaMonkey specific changes are not available. * Use xul engine from Firefox 33. @ text @d1 1 a1 1 $NetBSD: patch-mozilla_ipc_glue_GeckoChildProcessHost.cpp,v 1.10 2014/06/22 08:54:39 ryoon Exp $ d3 1 a3 1 --- mozilla/ipc/glue/GeckoChildProcessHost.cpp.orig 2014-10-14 06:36:14.000000000 +0000 d18 2 a19 2 #include "base/path_service.h" @@@@ -504,7 +510,7 @@@@ GeckoChildProcessHost::PerformAsyncLaunc d28 1 a28 1 @@@@ -643,7 +649,7 @@@@ GeckoChildProcessHost::PerformAsyncLaunc d37 1 a37 1 @@@@ -676,7 +682,7 @@@@ GeckoChildProcessHost::PerformAsyncLaunc @ 1.10 log @Update to 2.26.1 Changelog: SeaMonkey-specific changes The delimiter for forwarded messages can now be configured. An option to not strip signatures on reply has been added to prevent top signatures from deleting the body. Add to Searchbar (search-engine autodiscovery) was implemented. The location bar tooltip now shows the complete current URL in case it is displayed only partially. See the changes page for a more complete overview. Mozilla platform changes The Gamepad API has been finalized and enabled (learn more). navigator.plugins is no longer enumerable, for user privacy. ECMAScript Internationalization API has been enabled. 'box-sizing' (dropping the -moz- prefix) has been implemented. SharedWorker is now enabled by default. CSS3 variables have been implemented. Console object is now available in Web Workers. Promises have been enabled by default. has been implemented and enabled. has been implemented and enabled. Fixed several stability issues. Fixed in SeaMonkey 2.26.1 MFSA 2014-54 Buffer overflow in Gamepad API MFSA 2014-53 Buffer overflow in Web Audio Speex resampler MFSA 2014-52 Use-after-free with SMIL Animation Controller MFSA 2014-51 Use-after-free in Event Listener Manager MFSA 2014-49 Use-after-free and out of bounds issues found using Address Sanitizer MFSA 2014-48 Miscellaneous memory safety hazards (rv:30.0 / rv:24.6) Fixed in SeaMonkey 2.26 MFSA 2014-47 Debugger can bypass XrayWrappers with JavaScript MFSA 2014-46 Use-after-free in nsHostResolve MFSA 2014-45 Incorrect IDNA domain name matching for wildcard certificates MFSA 2014-44 Use-after-free in imgLoader while resizing images MFSA 2014-43 Cross-site scripting (XSS) using history navigations MFSA 2014-42 Privilege escalation through Web Notification API MFSA 2014-41 Out-of-bounds write in Cairo MFSA 2014-39 Use-after-free in the Text Track Manager for HTML video MFSA 2014-38 Buffer overflow when using non-XBL object as XBL MFSA 2014-37 Out of bounds read while decoding JPG images MFSA 2014-36 Web Audio memory corruption issues MFSA 2014-34 Miscellaneous memory safety hazards (rv:29.0 / rv:24.5) @ text @d1 1 a1 1 $NetBSD: patch-mozilla_ipc_glue_GeckoChildProcessHost.cpp,v 1.9 2014/03/30 04:13:17 ryoon Exp $ d3 1 a3 1 --- mozilla/ipc/glue/GeckoChildProcessHost.cpp.orig 2014-06-13 00:46:08.000000000 +0000 d17 2 a18 2 #if defined(XP_WIN) && defined(MOZ_CONTENT_SANDBOX) #include "sandboxBroker.h" d28 1 a28 37 @@@@ -523,7 +529,7 @@@@ GeckoChildProcessHost::PerformAsyncLaunc if (NS_SUCCEEDED(rv)) { nsCString path; greDir->GetNativePath(path); -# if defined(OS_LINUX) || defined(OS_BSD) +# if defined(OS_LINUX) || defined(OS_BSD) || defined(OS_SOLARIS) # if defined(MOZ_WIDGET_ANDROID) path += "/lib"; # endif // MOZ_WIDGET_ANDROID @@@@ -538,7 +544,17 @@@@ GeckoChildProcessHost::PerformAsyncLaunc newEnvVars["LD_LIBRARY_PATH"] = path.get(); } # elif OS_MACOSX - newEnvVars["DYLD_LIBRARY_PATH"] = path.get(); + const char *dyld_library_path = PR_GetEnv("DYLD_LIBRARY_PATH"); + nsCString new_dyld_lib_path; + if (dyld_library_path && *dyld_library_path) { + new_dyld_lib_path.Assign(path.get()); + new_dyld_lib_path.AppendLiteral(":"); + new_dyld_lib_path.Append(dyld_library_path); + newEnvVars["DYLD_LIBRARY_PATH"] = new_dyld_lib_path.get(); + } else { + newEnvVars["DYLD_LIBRARY_PATH"] = path.get(); + } +# if defined(MOZ_WIDGET_COCOA) // XXX DYLD_INSERT_LIBRARIES should only be set when launching a plugin // process, and has no effect on other subprocesses (the hooks in // libplugin_child_interpose.dylib become noops). But currently it @@@@ -558,6 +574,7 @@@@ GeckoChildProcessHost::PerformAsyncLaunc interpose.Append(path.get()); interpose.AppendLiteral("/libplugin_child_interpose.dylib"); newEnvVars["DYLD_INSERT_LIBRARIES"] = interpose.get(); +# endif // MOZ_WIDGET_COCOA # endif // OS_LINUX } } @@@@ -632,7 +649,7 @@@@ GeckoChildProcessHost::PerformAsyncLaunc d37 1 a37 1 @@@@ -665,7 +682,7 @@@@ GeckoChildProcessHost::PerformAsyncLaunc @ 1.9 log @Update to 2.25 * Change enigmail build mechanism Changelog: 2.25: SeaMonkey-specific changes Newsgroup names can now be entered using autocompletion. See the changes page for a more complete overview. Mozilla platform changes The Gamepad API has been finalized and enabled (learn more). VP9 video decoding has been implemented. Support for Opus in WebM was added. Volume control for HTML5 audio/video has been added. Mac OS X Notification Center support has been added for web notifications. Support for spdy/2 has been removed. Support for multi-line flexbox in layout has been added. Support for the MathML 2.0 mathvariant attribute has been added. Background thread hang reporting has been added. has been implemented and enabled. Fixed several stability issues. Fixed in SeaMonkey 2.25 MFSA 2014-32 Out-of-bounds write through TypedArrayObject after neutering MFSA 2014-31 Out-of-bounds read/write through neutering ArrayBuffer objects MFSA 2014-30 Use-after-free in TypeObject MFSA 2014-29 Privilege escalation using WebIDL-implemented APIs MFSA 2014-28 SVG filters information disclosure through feDisplacementMap MFSA 2014-27 Memory corruption in Cairo during PDF font rendering MFSA 2014-26 Information disclosure through polygon rendering in MathML MFSA 2014-23 Content Security Policy for data: documents not preserved by session restore MFSA 2014-22 WebGL content injection from one domain to rendering in another MFSA 2014-20 onbeforeunload and Javascript navigation DOS MFSA 2014-19 Spoofing attack on WebRTC permission prompt MFSA 2014-18 crypto.generateCRMFRequest does not validate type of key MFSA 2014-17 Out of bounds read during WAV file decoding MFSA 2014-16 Files extracted during updates are not always read only MFSA 2014-15 Miscellaneous memory safety hazards (rv:28.0 / rv:24.4) 2.24: SeaMonkey-specific changes The DoNotTrack and Prompt on Sanitize preferences are now kept in sync. A pref (mailnews.p7m_external) has been added to allow users to choose an alternate application/pkcs7-mime handling. Support for Atom Threading Extensions (RFC 4685) has been added. Migrating profiles from Thunderbird supports the new signons file format now (support for the old format has been dropped). Autocomplete drop-downs (e.g. used on the Location Bar and Open Location dialog) now show favicons for their entries. The account name is now displayed in the status bar for all messages when checking mail. IMAP alert messages now show the server of the corresponding mail account. Newsgroup names are now searched for all search strings combined (AND-search) on the subscribe dialog. See the changes page for a more complete overview. Mozilla platform changes Removed support for importing logins from the legacy signons.txt format, including the Base64 conversion (bug 717490). Enabled support for TLS 1.2 (RFC 5246) by default (bug 861266). Added support for the SPDY 3.1 protocol. Added ability to reset style sheets using all:unset. Added support for scrolled fieldsets (overflow property support, bug 261037). Implemented allow-popups directive for iframe sandbox, enabling increased security (bug 766282). Unprefixed CSS cursor keywords -moz-grab and -moz-grabbing (bug 880672). Added support for ES6 generators in SpiderMonkey (blog post). Implemented support for mathematical function Math.hypot() in ES6 (bug 896264). Added dashed line support on Canvas (bug 768067). Fixed Azure/Skia content rendering on Linux (bug 740200). Fixed several stability issues. Fixed in SeaMonkey 2.24 MFSA 2014-13 Inconsistent JavaScript handling of access to Window objects MFSA 2014-12 NSS ticket handling issues MFSA 2014-11 Crash when using web workers with asm.js MFSA 2014-09 Cross-origin information leak through web workers MFSA 2014-08 Use-after-free with imgRequestProxy and image proccessing MFSA 2014-07 XSLT stylesheets treated as styles in Content Security Policy MFSA 2014-05 Information disclosure with *FromPoint on iframes MFSA 2014-04 Incorrect use of discarded images by RasterImage MFSA 2014-03 UI selection timeout missing on download prompts MFSA 2014-02 Clone protected content with XBL scopes MFSA 2014-01 Miscellaneous memory safety hazards (rv:27.0 / rv:24.3) @ text @d1 1 a1 1 $NetBSD: patch-mozilla_ipc_glue_GeckoChildProcessHost.cpp,v 1.8 2013/08/11 03:18:46 ryoon Exp $ d3 1 a3 1 --- mozilla/ipc/glue/GeckoChildProcessHost.cpp.orig 2014-03-19 01:41:56.000000000 +0000 d19 1 a19 1 @@@@ -499,7 +505,7 @@@@ GeckoChildProcessHost::PerformAsyncLaunc d28 1 a28 1 @@@@ -518,7 +524,7 @@@@ GeckoChildProcessHost::PerformAsyncLaunc d37 28 a64 1 @@@@ -627,7 +633,7 @@@@ GeckoChildProcessHost::PerformAsyncLaunc d73 1 a73 1 @@@@ -660,7 +666,7 @@@@ GeckoChildProcessHost::PerformAsyncLaunc @ 1.8 log @Update to 2.20 * Merge SunOS patches from www/firefox. Changelog: SeaMonkey-specific changes The Content Security Policy (CSP) 1.0 parser has been enabled. The Mixed Content Blocker has been enabled, blocking insecure active content loads on HTTPS pages. New mail alert information can be customized now (Preferences/Mail & Newsgroups/Notifications). A confirmation prompt has been introduced to protect against accidental permanent data loss when force-deleting messages using Shift+Del. MailNews Save As Template supports multiple selections now. The size on disk is now shown for newsgroup folders. See the changes page for a more complete overview. Mozilla platform changes Added support for scrollbar style in Mac OS X 10.7 and newer. Enabled mixed content blocking to protects users from man-in-the-middle attacks and eavesdroppers on HTTPS pages (learn more). Improved about:memory's functional UI. Enabled DXVA2 on Windows Vista+ to accelerate H.264 video decoding. Simplified interface for notifications of plugin installation. Enabled users to switch the search provider across the entire browser. CSP policies using the standard syntax and semantics will now be enforced. Implemented the HTML5 form control. Added unprefixed requestAnimationFrame. Dropped blink effect from CSS rule text-decoration:blink and completely removed element. Fixed several stability issues. Fixed in SeaMonkey 2.20 MFSA 2013-75 Local Java applets may read contents of local file system MFSA 2013-74 Firefox full and stub installer DLL hijacking MFSA 2013-73 Same-origin bypass with web workers and XMLHttpRequest MFSA 2013-72 Wrong principal used for validating URI for some Javascript components MFSA 2013-71 Further Privilege escalation through Mozilla Updater MFSA 2013-70 Bypass of XrayWrappers using XBL Scopes MFSA 2013-69 CRMF requests allow for code execution and XSS attacks MFSA 2013-68 Document URI misrepresentation and masquerading MFSA 2013-67 Crash during WAV audio file decoding MFSA 2013-66 Buffer overflow in Mozilla Maintenance Service and Mozilla Updater MFSA 2013-65 Buffer underflow when generating CRMF requests MFSA 2013-64 Use after free mutating DOM during SetBody MFSA 2013-63 Miscellaneous memory safety hazards (rv:23.0 / rv:17.0.8) @ text @d1 1 a1 1 $NetBSD: patch-mozilla_ipc_glue_GeckoChildProcessHost.cpp,v 1.7 2013/01/20 08:33:14 ryoon Exp $ d3 1 a3 1 --- mozilla/ipc/glue/GeckoChildProcessHost.cpp.orig 2013-08-04 03:05:30.000000000 +0000 d17 3 a19 3 #include "base/command_line.h" #include "base/path_service.h" @@@@ -490,7 +496,7 @@@@ GeckoChildProcessHost::PerformAsyncLaunc d28 1 a28 1 @@@@ -509,7 +515,7 @@@@ GeckoChildProcessHost::PerformAsyncLaunc d37 1 a37 1 @@@@ -618,7 +624,7 @@@@ GeckoChildProcessHost::PerformAsyncLaunc d46 1 a46 1 @@@@ -651,7 +657,7 @@@@ GeckoChildProcessHost::PerformAsyncLaunc @ 1.7 log @Update to 2.15 * Use Lightning in seamonkey tar ball, 2.0pre. Changelog: SeaMonkey-specific changes SeaMonkey can be set as default client/browser on Mac and Linux now. See the changes page for minor changes. Mozilla platform changes The new IonMonkey compiler improves JavaScript performance. Preliminary support for WebRTC has been added. Image quality has been improved through a new HTML scaling algorithm. CSS3 Flexbox has been implemented. Support for new DOM property window.devicePixelRatio has been added. Support for @@supports has been added (disabled for now). Startup time has been improved through smart handling of signed extension certificates. HTML5: Support for W3C touch events has been implemented, taking the place of MozTouch events Insecure content loading has been disabled on HTTPS pages (see bug 62178). Responsiveness for users on proxies has been improved. Fixed several stability issues. Fixed in SeaMonkey 2.15 MFSA 2013-20 Mis-issued TURKTRUST certificates MFSA 2013-19 Use-after-free in Javascript Proxy objects MFSA 2013-18 Use-after-free in Vibrate MFSA 2013-17 Use-after-free in ListenerManager MFSA 2013-16 Use-after-free in serializeToStream MFSA 2013-15 Privilege escalation through plugin objects MFSA 2013-14 Chrome Object Wrapper (COW) bypass through changing prototype MFSA 2013-13 Memory corruption in XBL with XML bindings containing SVG MFSA 2013-12 Buffer overflow in Javascript string concatenation MFSA 2013-11 Address space layout leaked in XBL objects MFSA 2013-10 Event manipulation in plugin handler to bypass same-origin policy MFSA 2013-09 Compartment mismatch with quickstubs returned values MFSA 2013-08 AutoWrapperChanger fails to keep objects alive during garbage collection MFSA 2013-07 Crash due to handling of SSL on threads MFSA 2013-06 Touch events are shared across iframes MFSA 2013-05 Use-after-free when displaying table with many columns and column groups MFSA 2013-04 URL spoofing in addressbar during page loads MFSA 2013-03 Buffer Overflow in Canvas MFSA 2013-02 Use-after-free and buffer overflow issues found using Address Sanitizer MFSA 2013-01 Miscellaneous memory safety hazards (rv:18.0/ rv:10.0.12 / rv:17.0.2) @ text @d1 1 a1 1 $NetBSD: patch-mozilla_ipc_glue_GeckoChildProcessHost.cpp,v 1.6 2013/01/07 21:55:30 ryoon Exp $ d3 1 a3 1 --- mozilla/ipc/glue/GeckoChildProcessHost.cpp.orig 2013-01-06 06:26:17.000000000 +0000 d19 36 @ 1.6 log @* Regen patches... * Fix build on recent NetBSD (kproc_info vs kproc_info2) @ text @d1 1 a1 1 $NetBSD: patch-mozilla_ipc_glue_GeckoChildProcessHost.cpp,v 1.4 2012/09/06 12:08:51 ryoon Exp $ d3 1 a3 1 --- mozilla/ipc/glue/GeckoChildProcessHost.cpp.orig 2012-11-18 10:19:38.000000000 +0000 a18 38 @@@@ -437,7 +443,7 @@@@ GeckoChildProcessHost::PerformAsyncLaunc // and passing wstrings from one config to the other is unsafe. So // we split the logic here. -#if defined(OS_LINUX) || defined(OS_MACOSX) +#if defined(OS_LINUX) || defined(OS_MACOSX) || defined(OS_BSD) base::environment_map newEnvVars; base::ChildPrivileges privs = kLowRightsSubprocesses ? base::UNPRIVILEGED : @@@@ -455,8 +461,8 @@@@ GeckoChildProcessHost::PerformAsyncLaunc if (NS_SUCCEEDED(rv)) { nsCString path; greDir->GetNativePath(path); -# ifdef OS_LINUX -# ifdef MOZ_WIDGET_ANDROID +# if defined(OS_LINUX) || defined(OS_BSD) +# if defined(MOZ_WIDGET_ANDROID) || defined(OS_BSD) path += "/lib"; # endif // MOZ_WIDGET_ANDROID const char *ld_library_path = PR_GetEnv("LD_LIBRARY_PATH"); @@@@ -575,7 +581,7 @@@@ GeckoChildProcessHost::PerformAsyncLaunc childArgv.push_back(pidstring); #if defined(MOZ_CRASHREPORTER) -# if defined(OS_LINUX) +# if defined(OS_LINUX) || defined(OS_BSD) int childCrashFd, childCrashRemapFd; if (!CrashReporter::CreateNotificationPipeForChild( &childCrashFd, &childCrashRemapFd)) @@@@ -612,7 +618,7 @@@@ GeckoChildProcessHost::PerformAsyncLaunc #endif base::LaunchApp(childArgv, mFileMap, -#if defined(OS_LINUX) || defined(OS_MACOSX) +#if defined(OS_LINUX) || defined(OS_MACOSX) || defined(OS_BSD) newEnvVars, privs, #endif false, &process, arch); @ 1.5 log @Update to 2.14 * Patches are synced with xulrunner-17.0, and regen patches * Update Mozilla Lightning to 1.9 Changelog: SeaMonkey-specific changes None (see changes page for minor changes). Mozilla platform changes OS X 10.6 is now the minimum supported Mac version. JavaScript Maps and Sets are now iterable. SVG FillPaint and StrokePaint have been implemented. The sandbox attribute has been implemented for iframes, enabling increased security. Fixed several stability issues. Security fixes Fixed in SeaMonkey 2.14 MFSA 2012-106 Use-after-free, buffer overflow, and memory corruption issues found using Address Sanitizer MFSA 2012-105 Use-after-free and buffer overflow issues found using Address Sanitizer MFSA 2012-103 Frames can shadow top.location MFSA 2012-101 Improper character decoding in HZ-GB-2312 charset MFSA 2012-100 Improper security filtering for cross-origin wrappers MFSA 2012-99 XrayWrappers exposes chrome-only properties when not in chrome compartment MFSA 2012-97 XMLHttpRequest inherits incorrect principal within sandbox MFSA 2012-96 Memory corruption in str_unescape MFSA 2012-94 Crash when combining SVG text on path with CSS MFSA 2012-93 evalInSanbox location context incorrectly applied MFSA 2012-92 Buffer overflow while rendering GIF images MFSA 2012-91 Miscellaneous memory safety hazards (rv:17.0/ rv:10.0.11) @ text @@ 1.4 log @Update to 2.12 * Update Mozilla Lightning to 1.7 * Update Enigmail to 1.4.4 (functionality is not tested yet; should be updated) * Regen patches Changelog: SeaMonkey-specific changes None. Mozilla platform changes Added support for SPDY networking protocol v3. Implemented WebGL enhancements, including compressed textures for better performance. Optimized memory usage for add-ons. Implemented the CSS word-break property. Implemented high precision event timer. HTML5: Added native support for the Opus audio codec. HTML5: Added support for the source element media attribute. HTML5: Added support for the audio element and video element played attribute. Fixed several stability issues. Fixed in SeaMonkey 2.12 MFSA 2012-70 Location object security checks bypassed by chrome code MFSA 2012-69 Incorrect site SSL certificate data display MFSA 2012-68 DOMParser loads linked resources in extensions when parsing text/html MFSA 2012-65 Out-of-bounds read in format-number in XSLT MFSA 2012-64 Graphite 2 memory corruption MFSA 2012-63 SVG buffer overflow and use-after-free issues MFSA 2012-62 WebGL use-after-free and memory corruption MFSA 2012-61 Memory corruption with bitmap format images with negative height MFSA 2012-59 Location object can be shadowed using Object.defineProperty MFSA 2012-58 Use-after-free issues found using Address Sanitizer MFSA 2012-57 Miscellaneous memory safety hazards (rv:15.0/ rv:10.0.7) @ text @d1 1 a1 1 $NetBSD: patch-mozilla_ipc_glue_GeckoChildProcessHost.cpp,v 1.3 2012/04/28 22:48:06 ryoon Exp $ d3 1 a3 1 --- mozilla/ipc/glue/GeckoChildProcessHost.cpp.orig 2012-08-27 04:49:15.000000000 +0000 d5 15 a19 1 @@@@ -410,7 +410,7 @@@@ GeckoChildProcessHost::PerformAsyncLaunc d26 3 a28 3 // XPCOM may not be initialized in some subprocesses. We don't want // to initialize XPCOM just for the directory service, especially @@@@ -425,8 +425,8 @@@@ GeckoChildProcessHost::PerformAsyncLaunc d39 1 a39 1 @@@@ -537,7 +537,7 @@@@ GeckoChildProcessHost::PerformAsyncLaunc d48 1 a48 1 @@@@ -574,7 +574,7 @@@@ GeckoChildProcessHost::PerformAsyncLaunc d54 1 a54 1 newEnvVars, @ 1.3 log @Update to 2.9 * Remove unused option. * Restore jemalloc option. Changelog: * The File and Move Bookmarks dialogs are resizable now. * HTML5 videos that do not start automatically show a large play button now. * Add-ons Sync can now be configured without the Add-ons Sync Prefs add-on. * Pasting a URL from the clipboard into the Download Manager window will download it. * Plugins can be disabled for the whole suite now in addition to Mail & Newsgroups only. * View Source now has line numbers. * Line breaks are now supported in the title attribute. * Find in Page search results are scrolled into view now. * The column-fill CSS property has been implemented. * Support for the text-align-last CSS property has been added. * Experimental support for ECMAScript 6 Map and Set objects has been implemented. * Fixed several stability issues. @ text @d1 1 a1 1 $NetBSD: patch-mozilla_ipc_glue_GeckoChildProcessHost.cpp,v 1.2 2012/03/19 10:35:59 ryoon Exp $ d3 1 a3 1 --- mozilla/ipc/glue/GeckoChildProcessHost.cpp.orig 2012-04-23 06:27:39.000000000 +0000 d5 1 a5 1 @@@@ -430,7 +430,7 @@@@ GeckoChildProcessHost::PerformAsyncLaunc d14 1 a14 1 @@@@ -445,8 +445,8 @@@@ GeckoChildProcessHost::PerformAsyncLaunc d25 1 a25 1 @@@@ -557,7 +557,7 @@@@ GeckoChildProcessHost::PerformAsyncLaunc d34 1 a34 1 @@@@ -594,7 +594,7 @@@@ GeckoChildProcessHost::PerformAsyncLaunc @ 1.2 log @Update to 2.8 * Based on xulrunner-11.0 * Patches are almost as same as mail/thunderbird Changelog: See http://www.seamonkey-project.org/releases/seamonkey2.8/ etc. @ text @d1 1 a1 1 $NetBSD: patch-mozilla_ipc_glue_GeckoChildProcessHost.cpp,v 1.1 2012/03/10 03:26:06 ryoon Exp $ d3 1 a3 1 --- mozilla/ipc/glue/GeckoChildProcessHost.cpp.orig 2012-03-13 05:32:39.000000000 +0000 @ 1.1 log @Update to 2.7.2 * Many new features. * Security bugfixes. * See http://www.seamonkey-project.org/releases/seamonkey2.7/ @ text @d1 1 a1 1 $NetBSD$ d3 1 a3 1 --- mozilla/ipc/glue/GeckoChildProcessHost.cpp.orig 2012-02-16 14:09:03.000000000 +0000 d19 1 a19 1 -# ifdef ANDROID d21 1 a21 1 +# if defined(ANDROID) || defined(OS_BSD) d23 1 a23 1 # endif // ANDROID @