Fixes MFSA 2017-08/CVE-2017-5428, see
https://www.mozilla.org/en-US/security/advisories/mfsa2017-08/
While here, add a patch from semarie@ (tested by and ok danj@) to tweak
a last-minute change in the jit engine memory allocator that happened to
fix a security issue in 52 branch (bug #1334933/CVE-2017-5400) - see
https://hg.mozilla.org/releases/mozilla-esr52/rev/6b35bbf96b67.
Sadly, this change resulted in a browser crashing at startup
on OpenBSD with the default limits, because the jit engine tried to
allocate 1Gb (previously 640Mb in #1334933, then 1Gb because of
#1337561, see
https://hg.mozilla.org/releases/mozilla-esr52/rev/65bb26d07408) and hit
the default datasize ulimit of 768Mb. The patch makes it allocate 128Mb
instead (as it's done on 32bit architectures), while a better (?) fix
might be devised in bug #1347139.
Generally speaking, if you see firefox crashing with ENOMEM errors,
raise the datasize limit for your login class, write your own wrapper
script to temporarly raise the limit when starting firefox, or stop
using the modern web. Websites are ginormous, deal with it.
See https://www.mozilla.org/en-US/firefox/52.0esr/releasenotes/
This release switches to Gtk3 by default, following upstream. It also
still supports NPAPI plugins (java etc..) for the 52esr lifetime (around
1 year).
This way, 6.1 will ship with a supported branch of esr instead of the
soon-to-be-dead 45 branch.
Discussed with naddy@
- See https://www.mozilla.org/en-US/firefox/45.1.0/releasenotes/
- Fixes MFSA 2016-39, 44 & 47
- Stays with Gtk2 for now, will probably move to Gtk3 with 52 at the end
of the year
- Bring some patches from www/mozilla-firefox to fix build issues/enable
W^X/etc
- Disable gstreamer, now uses ffmpeg at runtime of found like firefox
- Use bundled libevent
See https://www.mozilla.org/en-US/firefox/38.5.2/releasenotes/
No binary change for us since this is only to force updates for poor
windows users, because microsoft now requires SHA256 certs. But ppl wont
complain that OpenBSD doesn't ship the latest and greatest!
The reasoning to update www/firefox-esr is simple: the esr31 branch will
be supported for the next 56 weeks, while the esr24 branch will die in
12 weeks - this way, 5.6-stable will receive updates.
- See https://www.mozilla.org/en-US/firefox/31.0/releasenotes/
- Fixes MFSA 2014-56->66
- Add libvpx hack for clang build (#982693)
- Build against gstreamer1
- Add skia patches for i386/sse3 (#1028827)
- Add intl install patch (#990196)
- Remove patch-ipc_chromium_src_base_debug_util_posix_cc, merged (#927810)
- Remove patch-ipc_chromium_src_base_dir_reader_bsd_h, merged (#909005)
- Remove patch-js_src_ctypes_libffi_src_x86_freebsd_S, merged (#928381)
ok sthen@ jasper@ naddy@
- See http://www.mozilla.org/en-US/firefox/24.5.0/releasenotes/
- Fixes MFSA-2014-34,35,37,38,42,43,44 & 46
- add a default prefs all-openbsd.js file, pointing
spellchecker.dictionary_path to ${LOCALBASE}/share/mozilla-dicts/ so
that systemwide dictionaries are looked for by default.
- while here the same file disables safebrowsing feature, as is already
done in www/mozilla-firefox.
