diff options
author | bsiegert <bsiegert@pkgsrc.org> | 2021-11-05 19:28:52 +0000 |
---|---|---|
committer | bsiegert <bsiegert@pkgsrc.org> | 2021-11-05 19:28:52 +0000 |
commit | 7111b8de08871baabc6709d9445b0aea93ffb10a (patch) | |
tree | cece7a45e4038e80c85baa046a089f43edb28338 /www/firefox91/patches/patch-modules_fdlibm_src_math__private.h | |
parent | 99085e961e30eaa2b57316016af85d98c8c6a1e7 (diff) | |
download | pkgsrc-7111b8de08871baabc6709d9445b0aea93ffb10a.tar.gz |
Pullup ticket #6530 - requested by nia
www/firefox91: security fix
Revisions pulled up:
- www/firefox91/Makefile 1.8
- www/firefox91/PLIST 1.3
- www/firefox91/distinfo 1.6
- www/firefox91/patches/patch-modules_fdlibm_src_math__private.h 1.1
---
Module Name: pkgsrc
Committed By: nia
Date: Wed Nov 3 19:19:40 UTC 2021
Modified Files:
pkgsrc/www/firefox91: Makefile PLIST distinfo
Added Files:
pkgsrc/www/firefox91/patches: patch-modules_fdlibm_src_math__private.h
Log Message:
firefox91: update to 91.3.0
Security Vulnerabilities fixed in Firefox ESR 91.3
#CVE-2021-38503: iframe sandbox rules did not apply to XSLT stylesheets
#CVE-2021-38504: Use-after-free in file picker dialog
#CVE-2021-38506: Firefox could be coaxed into going into fullscreen mode
without notification or warning
#CVE-2021-38507: Opportunistic Encryption in HTTP2 could be used to bypass
the Same-Origin-Policy on services hosted on other ports
#MOZ-2021-0008: Use-after-free in HTTP2 Session object
#CVE-2021-38508: Permission Prompt could be overlaid, resulting in user
confusion and potential spoofing
#CVE-2021-38509: Javascript alert box could have been spoofed onto an
arbitrary domain
#CVE-2021-38510: Download Protections were bypassed by .inetloc files on Mac
OS
#MOZ-2021-0007: Memory safety bugs fixed in Firefox 94 and Firefox ESR 91.3
Diffstat (limited to 'www/firefox91/patches/patch-modules_fdlibm_src_math__private.h')
-rw-r--r-- | www/firefox91/patches/patch-modules_fdlibm_src_math__private.h | 18 |
1 files changed, 18 insertions, 0 deletions
diff --git a/www/firefox91/patches/patch-modules_fdlibm_src_math__private.h b/www/firefox91/patches/patch-modules_fdlibm_src_math__private.h new file mode 100644 index 00000000000..fba1609c5c1 --- /dev/null +++ b/www/firefox91/patches/patch-modules_fdlibm_src_math__private.h @@ -0,0 +1,18 @@ +$NetBSD: patch-modules_fdlibm_src_math__private.h,v 1.1.2.2 2021/11/05 19:28:53 bsiegert Exp $ + +* Fix PR pkg/56457, build failure on NetBSD/i386. + Do not use FreeBSD-specific definition. + +--- modules/fdlibm/src/math_private.h.orig 2021-09-27 22:47:42.000000000 +0000 ++++ modules/fdlibm/src/math_private.h +@@ -30,8 +30,8 @@ + * Adapted from https://github.com/freebsd/freebsd-src/search?q=__double_t + */ + +-typedef double __double_t; +-typedef __double_t double_t; ++#include <math.h> ++typedef double_t __double_t; + + /* + * The original fdlibm code used statements like: |