Firefox vulnerability: CVE-2019-17026

2020-01-08 Thread Greg Rivers 
FYI, this one is marked "critical", with active exploits.



-- 
Greg Rivers


___
freebsd-gecko@freebsd.org mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-gecko
To unsubscribe, send any mail to "freebsd-gecko-unsubscr...@freebsd.org"

[Bug 242605] www/firefox: update to 72.0 (phase: Beta, ETA: 2020-01-07)

2020-01-08 Thread bugzilla-noreply 
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=242605

--- Comment #12 from commit-h...@freebsd.org ---
A commit references this bug:

Author: jbeich
Date: Wed Jan  8 19:17:45 UTC 2020
New revision: 522453
URL: https://svnweb.freebsd.org/changeset/ports/522453

Log:
  www/firefox: update to 72.0.1

  Changes:  https://www.mozilla.org/firefox/72.0.1/releasenotes/
  PR:   242605
  Security: CVE-2019-17026

Changes:
  head/www/firefox/Makefile
  head/www/firefox/distinfo

-- 
You are receiving this mail because:
You are the assignee for the bug.
___
freebsd-gecko@freebsd.org mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-gecko
To unsubscribe, send any mail to "freebsd-gecko-unsubscr...@freebsd.org"

[Bug 242605] www/firefox: update to 72.0 (phase: Beta, ETA: 2020-01-07)

2020-01-08 Thread bugzilla-noreply 
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=242605

--- Comment #13 from commit-h...@freebsd.org ---
A commit references this bug:

Author: jbeich
Date: Wed Jan  8 19:18:46 UTC 2020
New revision: 522455
URL: https://svnweb.freebsd.org/changeset/ports/522455

Log:
  MFH: r522453

  www/firefox: update to 72.0.1

  Changes:  https://www.mozilla.org/firefox/72.0.1/releasenotes/
  PR:   242605
  Security: CVE-2019-17026
  Approved by:  ports-secteam blanket

Changes:
_U  branches/2020Q1/
  branches/2020Q1/www/firefox/Makefile
  branches/2020Q1/www/firefox/distinfo

-- 
You are receiving this mail because:
You are the assignee for the bug.
___
freebsd-gecko@freebsd.org mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-gecko
To unsubscribe, send any mail to "freebsd-gecko-unsubscr...@freebsd.org"

maintainer-approval requested: [Bug 242523] security/nss 3.48 doesn't build on PowerPC : [Attachment 210548] v2

2020-01-08 Thread bugzilla-noreply 
Piotr Kubaj  has asked freebsd-gecko mailing list
 for maintainer-approval:
Bug 242523: security/nss 3.48 doesn't build on PowerPC
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=242523

Attachment 210548: v2
https://bugs.freebsd.org/bugzilla/attachment.cgi?id=210548&action=edit



--- Comment #17 from Piotr Kubaj  ---
Created attachment 210548
  --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=210548&action=edit
v2

- Fix build without AltiVec, Crypto and VSX by moving altivec-types.h include
to USE_PPC_CRYPTO's ifdef -this header is not necessary without USE_PPC_CRYPTO
enabled,
- Enable USE_PPC_CRYPTO on BE as well if VSX and Crypto are supported,
- Add non-default VSX option for adding -mvsx -mcrypto to set USE_PPC_CRYPTO,
- since we don't need new GCC now, don't set USES=compiler:c11 by default.

This fixes powerpc and powerpc64 build without AltiVec, Crypto and VSX and
makes it possible to use USE_PPC_CRYPTO which should accelerate things.

make test output without this patch:
Passed: 14415
Failed: 58
Failed with core:   0
ASan failures:  0
Unknown status: 52
TinderboxPrint:Unknown: 52

And with:
Passed: 14471
Failed: 2
Failed with core:   0
ASan failures:  0
Unknown status: 52
TinderboxPrint:Unknown: 52
___
freebsd-gecko@freebsd.org mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-gecko
To unsubscribe, send any mail to "freebsd-gecko-unsubscr...@freebsd.org"

[Bug 242523] security/nss 3.48 doesn't build on PowerPC

2020-01-08 Thread bugzilla-noreply 
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=242523

Piotr Kubaj  changed:

   What|Removed |Added

 Attachment #209971|0   |1
is obsolete||
 Attachment #210548||maintainer-approval?(gecko@
  Flags||FreeBSD.org)

--- Comment #17 from Piotr Kubaj  ---
Created attachment 210548
  --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=210548&action=edit
v2

- Fix build without AltiVec, Crypto and VSX by moving altivec-types.h include
to USE_PPC_CRYPTO's ifdef -this header is not necessary without USE_PPC_CRYPTO
enabled,
- Enable USE_PPC_CRYPTO on BE as well if VSX and Crypto are supported,
- Add non-default VSX option for adding -mvsx -mcrypto to set USE_PPC_CRYPTO,
- since we don't need new GCC now, don't set USES=compiler:c11 by default.

This fixes powerpc and powerpc64 build without AltiVec, Crypto and VSX and
makes it possible to use USE_PPC_CRYPTO which should accelerate things.

make test output without this patch:
Passed: 14415
Failed: 58
Failed with core:   0
ASan failures:  0
Unknown status: 52
TinderboxPrint:Unknown: 52

And with:
Passed: 14471
Failed: 2
Failed with core:   0
ASan failures:  0
Unknown status: 52
TinderboxPrint:Unknown: 52

-- 
You are receiving this mail because:
You are the assignee for the bug.
You are on the CC list for the bug.
___
freebsd-gecko@freebsd.org mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-gecko
To unsubscribe, send any mail to "freebsd-gecko-unsubscr...@freebsd.org"

[Bug 242523] security/nss 3.48 doesn't build on PowerPC

2020-01-08 Thread bugzilla-noreply 
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=242523

--- Comment #18 from Jan Beich  ---
Comment on attachment 210548
  --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=210548
v2

> VSX_CFLAGS=   -mcrypto -mvsx

When every file is built with SIMD runtime detection is pointless. Essentially,
you're disabling USE_PPC_CRYPTO code for binary package users.

> +defined(__VSX__) && defined(__CRYPTO__)

Can you check if this works with per-file SIMD flags?

-- 
You are receiving this mail because:
You are the assignee for the bug.
You are on the CC list for the bug.
___
freebsd-gecko@freebsd.org mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-gecko
To unsubscribe, send any mail to "freebsd-gecko-unsubscr...@freebsd.org"