• http://releases.mozilla.org/pub/mozilla.org/firefox/releases/3.0.17/source/ (Download)
• ftp://ftp.openbsd.org/pub/OpenBSD/distfiles// (Download)
• ftp://ftp.usa.openbsd.org/pub/OpenBSD/distfiles// (Download)

• debug

• (2010-01-06) Updated to version: mozilla-firefox-3.0.17
• (2009-12-22) Updated to version: mozilla-firefox-3.0.16p0
• (2009-12-18) Updated to version: mozilla-firefox-3.0.16
• (2009-11-28) Updated to version: mozilla-firefox-3.0.15
• (2009-09-19) Updated to version: mozilla-firefox-3.0.14p1
• (2009-09-11) Updated to version: mozilla-firefox-3.0.14p0
• (2009-08-10) Updated to version: mozilla-firefox-3.0.13p1
• (2009-08-05) Updated to version: mozilla-firefox-3.0.13p0
• (2009-08-04) Updated to version: mozilla-firefox-3.0.13
• (2009-07-22) Updated to version: mozilla-firefox-3.0.12

Log message:
minor reliability update to 3.0.17

Log message:
Use @unexec-delete instead of @unexec for the *-update-* goos.
prodded by espie@
discussed with espie@ ajacoutot@ landry@

Log message:
SECURITY update to 3.0.16:
MFSA 2009-71 GeckoActiveXObject exception messages can be used to enumerate installed COM objects
MFSA 2009-70 Privilege escalation via chrome window.opener
MFSA 2009-69 Location bar spoofing vulnerabilities
MFSA 2009-68 NTLM reflection vulnerability
MFSA 2009-65 Crashes with evidence of memory corruption

Log message:
SECURITY update to 3.0.15.  For the list of horrors, see
http://www.mozilla.org/security/known-vulnerabilities/firefox30.html#firefox3.0.15

Log message:
- create downloads dir with mode 0700 instead
- pass --disable-crashreporter

Log message:
- create downloads dir with mode 0700 instead
- pass --disable-crashreporter

Log message:
security update to mozilla-firefox-3.0.14.  MFSA 2009-51, MFSA
2009-50, MFSA 2009-49, MFSA 2009-48, MFSA 2009-47
http://www.mozilla.org/security/known-vulnerabilities/firefox30.html#firefox3.0.14

Log message:
WANTLIB changes after xcb addition and bump.

Log message:
depend on more recent nss and nspr
help and ok martynas@

Log message:
security update to mozilla-firefox-3.0.13

Log message:
security update to mozilla-firefox-3.0.12

Log message:
mozilla-firefox-3.0.11

Log message:
MFC:
security update to mozilla-firefox-3.0.10.  from robert at openbsd.pap.st
MFSA 2009-23  Crash in nsTextFrame::ClearTextRun()
http://www.mozilla.org/security/known-vulnerabilities/firefox30.html#firefox3.0.10
This update also resolves MFSA 2009-07 through MFSA 2009-22, and includes
the following fixes:
turn off Ignore Scaling and Shrink to fit page width.  fixes printing
for beck@.
sync switches w/ ff3
update about url
ok robert@

Log message:
implement sndio backend and get rid of esound.  ok jakemsr@

Log message:
security update to mozilla-firefox-3.0.10.  from robert at openbsd.pap.st
MFSA 2009-23  Crash in nsTextFrame::ClearTextRun()
http://www.mozilla.org/security/known-vulnerabilities/firefox30.html#firefox3.0.10
ok kurt@, naddy@

Log message:
CONFIGURE_ENV += PYTHON="${MODPY_BIN}" is inherited from the python module

Log message:
security update to mozilla-firefox-3.0.9.  MFSA 2009-22, MFSA
2009-21, MFSA 2009-20, MFSA 2009-19, MFSA 2009-18, MFSA 2009-17,
MFSA 2009-16, MFSA 2009-15, MFSA 2009-14:
"go ahead" naddy@

Log message:
turn off Ignore Scaling and Shrink to fit page width.  fixes printing
for beck@.  ok kurt@, "no objections" naddy@

Log message:
sync switches w/ ff3
update about url
ok naddy@

Log message:
mozilla-firefox-3.0.8:  forced release after security bugs got
attention
MFSA 2009-12 Mozilla Firefox XSL Parsing 'root' XML Tag Remote
Memory Corruption Vulnerability
* http://www.securityfocus.com/bid/34235/exploit
* https://bugzilla.mozilla.org/show_bug.cgi?id=485217
* CVE-2009-1169
MFSA 2009-12 covers the Pwn2Own bug, which is a crash involving the XUL
<tree> widget.
* https://bugzilla.mozilla.org/show_bug.cgi?id=484320
* CVE-2009-1044
ok naddy@

Log message:
fix wantlib and bump package.
ok martynas@

Log message:
security update to mozilla-firefox-3.0.7.  MFSA 2009-11, MFSA
2009-10, MFSA 2009-09, MFSA 2009-08, MFSA 2009-07.
http://www.mozilla.org/security/known-vulnerabilities/firefox30.html#firefox3.0.7
includes security update to the png library
ok naddy@

Log message:
security/stability update to mozilla-firefox-3.0.6.  MFSA 2009-06;
MFSA 2009-05; MFSA 2009-04; MFSA 2009-03; MFSA 2009-02; MFSA 2009-01
http://www.mozilla.org/security/known-vulnerabilities/firefox30.html#firefox3.0.6
ok naddy@

Log message:
- do not run with a predictable directory as root:  firefox,
thunderbird, seamonkey, xulrunner
- add comment for xulrunner why -devel needs to be bumped
suggested and ok naddy@;  ok kurt@

Log message:
security update to mozilla-firefox-3.0.5.  MFSA 2008-69; MFSA
2008-68; MFSA 2008-67; MFSA 2008-66; MFSA 2008-65; MFSA 2008-64;
MFSA 2008-63; MFSA 2008-60.
tested by sthen@ and naddy@.  ok naddy@

Log message:
The Gtk+2 printing default has been fixed to include lpr.  ok martynas@

Log message:
it is the right time to update to mozilla-firefox-3.0.4, which has
been tested good enough, and i've fixed all the issues i'm aware
of.  furthermore 2.0 branch has basically reached eol, since there
will be only one minor update (2.0.0.19)
discussed with kurt@, naddy@ and porters
pkgname change handling help naddy@
ok naddy@

Log message:
security update to mozilla-firefox-2.0.0.18.  MFSA 2008-58; MFSA
2008-57; MFSA 2008-56; MFSA 2008-55; MFSA 2008-54; MFSA 2008-53;
MFSA 2008-52; MFSA 2008-50; MFSA 2008-49; MFSA 2008-48; MFSA 2008-47.
http://www.mozilla.org/security/known-vulnerabilities/firefox20.html#firefox2.0.0.18
ok naddy@

Log message:
security update to mozilla-firefox-2.0.0.17.  MFSA 2008-45, MFSA
2008-44, MFSA 2008-43, MFSA 2008-42, MFSA 2008-41, MFSA 2008-40,
MFSA 2008-39, MFSA 2008-38, MFSA 2008-37
http://www.mozilla.org/security/known-vulnerabilities/firefox20.html#firefox2.0.0.17
ok naddy@.  looks good to kurt@

Log message:
- SYSCONFDIR and LOCALBASE are already part of the generic SUBST_VARS
looks good to landry@

Log message:
use system libm.  was ok naddy@, kurt@

Log message:
- s/PREFIX/LOCALBASE
ok martynas@

Log message:
document the new MOZ_PLUGIN_PATH behavior, bump pkgnames
pointed out, and looks good to landry@

Log message:
@conflict firefox3-*
bump pkgname

Log message:
Don't overwrite MOZ_PLUGIN_PATH in the startup script if it has been already
been set. This allows to load plugins on demand, especially interesting when
using multiple profiles with the -no-remote option.
OK martynas@

Log message:
security update to mozilla-firefox-2.0.0.16.  MFSA 2008-35, MFSA 2008-34
ok kurt@, naddy@, bernd@

Log message:
security update to mozilla-firefox-2.0.0.15, fixes MFSA 2008-33,
MFSA 2008-32, MFSA 2008-31, MFSA 2008-30, MFSA 2008-29, MFSA 2008-28,
MFSA 2008-27, MFSA 2008-25, MFSA 2008-24, MFSA 2008-23, MFSA 2008-22,
MFSA 2008-21
http://www.mozilla.org/projects/security/known-vulnerabilities.html#Firefox2.0.0.15
ok kurt@, naddy@

Log message:
oops missing distinfo change from previous commit

Log message:
security update to 2.0.0.14; MFSA 2008-20
from William Yodlowsky

Log message:
security update to mozilla-firefox-2.0.0.14;  MFSA 2008-20
ok kurt@, naddy@

Log message:
SECURITY UPDATE to mozilla-firefox 2.0.0.13
fixes multiple vulnerabilities: http://secunia.com/advisories/29526/
ok landry@ martynas@

Log message:
Security update to mozilla-firefox-2.0.0.12.
Fixes multiple vulnerabilities:
CVE-2008-0412
CVE-2008-0413
CVE-2008-0414
CVE-2008-0415
CVE-2008-0419
CVE-2008-0591
CVE-2008-0593
More infos:
http://secunia.com/advisories/28758/
Tested by some people on ports@. Thanks!
ok martynas@, laurent@, steven@

Log message:
- drop -devel
- move libraries to PLIST
improvements, testing and ok kurt@ and naddy@

Log message:
bring back the browser.startup.homepage behavior after 1.82
requested by deraadt@;  ok naddy@

Log message:
add back in the directory entries that were accidentally removed in the
last commit.

Log message:
oops, wrong dependency

Log message:
- install a .desktop file, so that a firefox entry will appear in menus
like gnome's.
- tweak PLIST (from kurt@)
requested by fkr@
feedback and ok kurt@ martynas@

Log message:
- security update to mozilla-firefox-2.0.0.10:
http://www.mozilla.org/projects/security/known-vulnerabilities.html#firefox2.0.0.10
- fix canvas.drawImage regression.
ok kurt@, kili@

Log message:
update to 2.0.0.9, a regression fix release:
http://developer.mozilla.org/devnews/index.php/2007/10/22/firefox-2008-update-to-be-updated/
ok kurt@, naddy@

Log message:
- fix WANTLIB
"go ahead" robert@

Log message:
security update to mozilla-firefox-2.0.0.8:
http://www.mozilla.org/projects/security/known-vulnerabilities.html#firefox2.0.0.8
ok kurt@, naddy@

Log message:
Re-add browserconfig.properties, otherwise you may encounter some issues
on fresh installations; bump package.
discussed an ok kurt@ martynas@

Log message:
- fix a 64-bit problem with the LiveConnect feature. From mozilla
bug report: https://bugzilla.mozilla.org/show_bug.cgi?id=345866
Eventually the java plugin will need this on amd64. okay martynas@

Log message:
MFC (original commit martynas@):
update to 2.0.0.7;  fixes MFSA 2007-28:
http://www.mozilla.org/projects/security/known-vulnerabilities.html#firefox2.0.0.7
ok sturm@

Log message:
update to 2.0.0.7;  fixes MFSA 2007-28:
http://www.mozilla.org/projects/security/known-vulnerabilities.html#firefox2.0.0.7
ok kurt@; naddy@.  similar diff from bernd@

Log message:
Remove surrounding quotes in COMMENT-*

Log message:
Remove surrounding quotes from
COMMENT-*/ERRORS/NO_REGRESS/PERMIT_*/REGRESS_IS_INTERACTIVE
Change '.include "bsd.port.mk"' to '.include <bsd.port.mk>' while here
(ok naddy@)

Log message:
cumulative security update to firefox 2.0.0.6
MFC:
SECURITY update to 2.0.0.5.
Fixes a rash of security vulnerabilities and bugs.
-----
security update to 2.0.0.6:
http://www.mozilla.org/projects/security/known-vulnerabilities.html#firefox2.0.0.6

Log message:
security update to 2.0.0.6:
http://www.mozilla.org/projects/security/known-vulnerabilities.html#firefox2.0.0.6
the diff matches with naddy@'s, ok kurt@

Log message:
SECURITY update to 2.0.0.5.
Fixes a rash of security vulnerabilities and bugs.  ok kurt@

Log message:
MFC:
- set fd soft limit to 128 if it's lower

Log message:
security update to firefox 1.5.0.12
set soft fd to 128
backport an nss fix for a deadlock

Log message:
MFC:
security update to mozilla-firefox-2.0.0.4
http://www.mozilla.org/projects/security/known-vulnerabilities.html#firefox2.0.0.4
- use the combination of find(1) and install(1) to install the
{DATA,DIST}FILES, as suggested by kurt@;
- remove the two patches that are already upstream;
- fmt;

Log message:
- set fd soft limit to 128 if it's lower: helps for people who
upgraded and didn't use mergemaster;
- remove lines, related to debug build and fd in README.OpenBSD;
help from sturm@, kurt@, espie@, naddy@
ok kurt@, sturm@

Log message:
security update to mozilla-firefox-2.0.0.4
http://www.mozilla.org/projects/security/known-vulnerabilities.html#firefox2.0.0.4
- WANTLIB for xenocara;
- use the combination of find(1) and install(1) to install the
{DATA,DIST}FILES, as suggested by kurt@;
- remove the two patches that are already upstream;
- fmt;
ok kurt@, naddy@

Log message:
MFC:
- update to 2.0.0.3;
- don't force -Os;

Log message:
-devel has -main in it's plist, so bump it, too.
ok, martynas@

Log message:
- make it check LOCALBASE/share/mozilla-dicts, the global dictionaries
location for all mozilla ports;
- regen patches (due to the current changes);
- bump pkgname;
discussed with naddy@, kurt@, ajacoutot@
ok naddy@

Log message:
more base64 checksums

Log message:
remove patch-widget_src_gtk_nsSound_cpp, because
patch-widget_src_gtk2_nsSound_cpp does the job.
no pkgname bump -- the file was not being compiled.
ok wilfried@

Log message:
security update to 1.5.0.11

Log message:
security update to 1.5.0.11

Log message:
- update to 2.0.0.3;
- don't force -Os;
ok naddy@, kurt@

Log message:
Security update to firefox 1.5.0.10
see http://www.mozilla.org/projects/security/known-vulnerabilities.html#firefox1.5.0.10
for details

Log message:
Security update to firefox 1.5.0.10
see http://www.mozilla.org/projects/security/known-vulnerabilities.html#firefox1.5.0.10
for details

Log message:
fix @pkgpath for debug flavor, unconfuses pkg_add -u.
okay pvalchev@

Log message:
Fix permissions to /usr/local/mozilla (where ~/.mozilla inherits them
from) to allow owner writes. This was broken in the last commit... now
it allows users to save bookmarks, preferences, etc. From martynas

Log message:
- update to version 2.0.0.2 and apply several security fixes,
therefore bump the PKGNAME to p0 now;
- enable official branding by default
- fix some WANTLIB markers
work done by Martynas Venckus; thanks.
tested by many many people; ok pvalchev@

Log message:
implement xptcinvoke and xptcstubs for arm based on the linux code,
and fix an endianess issue that makes minimo work on arm based
architectures; bump PKGNAME

Log message:
fix live bookmarks on sparc64
from Martynas Venckus <martynas at altroot.org>

Log message:
add man page; from Martynas Venckus <martynas@altroot.org>, ok kurt@

Log message:
resurrect COREXFONTS, so that GDK_USE_XFT works again. Needs linking fixes
(+pangox-1.0).
Adjust README.OpenBSD, and provide a debug flavor

Log message:
- update to 2.0.0.1 from Martynas Venckus <martynas at altroot.org>
- add a -devel sub-package for vlc plugin
input and testing from many - thanks! okay naddy@ pvalchev@

Log message:
MFC:
Security update to firefox 1.5.0.9.
More info:
http://www.mozilla.org/projects/security/known-vulnerabilities.html#Firefox

Log message:
MFC:
Security update to firefox 1.5.0.9.
More info:
http://www.mozilla.org/projects/security/known-vulnerabilities.html#Firefox

Log message:
Security update to firefox 1.5.0.9.
More info:
http://www.mozilla.org/projects/security/known-vulnerabilities.html#Firefox
ok steven@

Log message:
say goodbye to GNU land.

Log message:
- require nspr with PR_GetLibraryName fix
- bump major due to previous nspr removal

Log message:
use devel/nspr instead of internal nspr. now using libc strtod and __dtoa
via devel/nspr. okay pvalchev@

Log message:
MFC:
SECURITY update to 1.5.0.8
see http://www.mozilla.org/projects/security/known-vulnerabilities.html
for details

Log message:
MFC:
SECURITY update to 1.5.0.8
see http://www.mozilla.org/projects/security/known-vulnerabilities.html
for details

Log message:
SECURITY update to 1.5.0.8
see http://www.mozilla.org/projects/security/known-vulnerabilities.html
for details

Log message:
MFC:
SECURITY update to firefox 1.5.0.7
see http://www.mozilla.org/projects/security/known-vulnerabilities.html
for details

Log message:
stop using the gcc3 module on the alpha architecture.

Log message:
MFC:
SECURITY update to firefox 1.5.0.7
see http://www.mozilla.org/projects/security/known-vulnerabilities.html
for details

Log message:
zap .0.0

Log message:
SECURITY update to firefox 1.5.0.7
see http://www.mozilla.org/projects/security/known-vulnerabilities.html
for details
ok bernd@

Log message:
MFC:
Security update to mozilla-firefox-1.5.0.5.
This update fixes multiple security vulnerabilities.
For detailed information see:
http://www.mozilla.org/projects/security/known-vulnerabilities.html#firefox1.5.0.5

Log message:
Security update to mozilla-firefox-1.5.0.5.
This update fixes multiple security vulnerabilities.
For detailed information see:
http://www.mozilla.org/projects/security/known-vulnerabilities.html#firefox1.5.0.5
ok steven@

Log message:
MFC:
Security update to mozilla-firefox-1.5.0.4.
Fixes multiple security vulnerabilities. For detailed information see:
http://secunia.com/advisories/20376/
http://www.mozilla.org/projects/security/known-vulnerabilities.html#firefox1.5.0.4

Log message:
Security update to mozilla-firefox-1.5.0.4.
Fixes multiple security vulnerabilities. For detailed information see:
http://secunia.com/advisories/20376/
http://www.mozilla.org/projects/security/known-vulnerabilities.html#firefox1.5.0.4
ok steven@

Log message:
- better pkg/MESSAGE, from Deanna Phillips <deanna at sdf.lonestar.org>
- fix some typos in files/README.OpenBSD
- bump PKGNAME accordingly
ok wilfried@, kurt@

Log message:
MFC:
Update to 1.5.0.3. Security fixes inside...
More info:
CVE-2006-1993
http://secunia.com/advisories/19802/

Log message:
Update to 1.5.0.3. Security fixes inside...
More info:
CVE-2006-1993
http://secunia.com/advisories/19802/
tested by many
"go ahead" jolan@

Log message:
MFC:
update to 1.5.0.2
fixes multiple critical vulnerabilities

Log message:
update to firefox 1.0.8
several security related fixes

Log message:
update to firefox 1.0.8
several security related fixes

Log message:
update to 1.5.0.2
fixes multiple critical vulnerabilities

Log message:
check XftLockFace() for NULL return to avoid a crash, see
https://bugzilla.mozilla.org/show_bug.cgi?id=331077
from Tobias Ulmer <tobiasu@tmux.org>

Log message:
Firefox 1.5.0.1 is a stability-and-security update to Firefox 1.5.
It also includes a number of low-risk fixes for other types of bugs.

Log message:
fix WANTLIB after gtk+2 downgrade
"looks good" espie@

Log message:
more C++ libs bumps. Done thru mail, plus lizards.

Log message:
SHARED_LIBS
note that we keep the mozilla ports at a single SO_VERSION, too many
libraries, too little gain otherwise

Log message:
Add README.OpenBSD with more details on email, Java, etc.; shorten
MESSAGE accordingly to refer to new file; patchlevel bump for new file.
ok bernd@, kurt@.

Log message:
- Fix startup DoS. overlong document.title setting can corrupt history
data, causing non-responsive temporary hang on subsequent startups
patches from https://bugzilla.mozilla.org/show_bug.cgi?id=319004
- Fix use after free segfault after printing reported by Andy Wingate.
FT_Done_Face was being called twice on the same mFace.

Log message:
Update to Firefox 1.5.
Team work by wilfried@, kurt@ and me.
Tested by many. Thanks a lot!
ok kurt@ krw@ jolan@ ian@ pvalchev@

Log message:
fix packages-specs brain fart from yesterday and bump

Log message:
fix wantlib + bump

Log message:
Fix a crash in prdtoa.c:mult() where there is an off-by-some bytes
in memory accessed during some very fucked up pointer acrobatics.
Allocate 2 bytes extra for that case, which seems to be a
sufficient hack to keep this working.
Debugged by me with minimo on zaurus/arm (pain!), seen also by krw@
and others on amd64, who helped with testing.  Due to random malloc
this of course did not show up everywhere all the time.

Log message:
SECURITY: disable IDN due to buffer overflow (CAN-2005-2871)
https://addons.mozilla.org/messages/307259.html
Mozilla.org bug 210658:
Fix hanging with non-standard HTML elements parsererror, sourcetext.

Log message:
Mozilla.org bug 210658:
Fix hanging with non-standard HTML elements parsererror, sourcetext.
ok brad@

Log message:
Mozilla.org bug 210658:
Fix hanging with non-standard HTML elements parsererror, sourcetext.
ok wilfried@

Log message:
remove 'don't close dlopened objects' type ld.so work-arounds

Log message:
If we start a second firefox, don't show the profile chooser but open a
new browser window instead. (The same for thunderbird and mozilla.)
Idea from Marc Winiger <mw at msys.ch>, thanks!
suggestions, tests & ok kurt@

Log message:
update to mozilla-firefox-1.0.7
comments & ok kurt@

Log message:
MFC:
SECURITY: disable IDN due to buffer overflow (CAN-2005-2871)
https://addons.mozilla.org/messages/307259.html
ok brad@

Log message:
SECURITY: disable IDN due to buffer overflow (CAN-2005-2871)
https://addons.mozilla.org/messages/307259.html
tested by bernd@

Log message:
- switch from gtk1 to gtk2. tested by many (thanks!)
- fix backup mastersite
- fix gdk_property_get warnings (from marcm@)
some feedback marcm@, okay brad@ pvalchev@

Log message:
updated packages for these ports where not build in a sane environment
bump PKGNAME for fixed packages

Log message:
Sync the port with the current one. It takes the port to firefox 1.0.6
It fixes a lot of security vulnerabilities. For more information please visit:
http://www.mozilla.org/projects/security/known-vulnerabilities.html
ok brad@

Log message:
Switch back to gtk1, as there are side-effects that need to be discussed
more and it's too close to release to be having such discussions, showing
this was not thought out very well.
Bump PKGNAME and shlibs again

Log message:
-switch to gtk2 (originally from msf@) tested by many
some minor scrolling issues noticed my naddy@
-fix US master site
ok msf@, fine by me naddy@, go ahead wilfried@

Log message:
- update to 1.0.6 from Bernd Ahlers
- remove "Extentions don't work" from DESCR
tested on i386/amd64/macppc by myself, naddy@ and/or Bernd

Log message:
Sync the port with the current one. It takes the port to firefox 1.0.4.
It fixes a lot of security vulnerabilities. For more information please visit:
http://www.mozilla.org/projects/security/known-vulnerabilities.html
ok brad@

Log message:
- USE_SYSTRACE was written to be transparent to the port author. Adding i
${_SYSTRACE_CMD} to any target in a port Makefile is a mistake.
ok sturm@ kurt@

Log message:
update to firefox 1.0.4
fixed remote code execution of Javascript and DHTML errors.

Log message:
update firefox to 1.0.3

Log message:
- make the build OFFICAL. This enables firefox to detect and upgrade
profiles that need to be upgraded automatically. Many annoying profile
issues will be gone now.
- Mention deleting extensions/Extensions.rdf and also the old ~/.firefox
as a location for profiles in MESSAGE. ~/.firefox will continue to be used
on systems that have been upgraded from older firefox versions.
OFFICAL build okay wilfried@

Log message:
- bump major shlib version
- move INSTALL/DEINSTALL code to PLIST
- remove unused ldap config/patches

Log message:
- fix CUPS printing: fix partial so version and don't dlclose lib.
- remove partial so version on freetype
CUPS testing and ok by mbalmer@ idea from wilfried@

Log message:
- don't unload dependent libs (avoid dlclose bug)
- fix alpha wantlib
- adjust depends for esound & ORBit
okay alek@

Log message:
update firefox to 1.0.2

Log message:
disable thread priority scheduling as moz doesn't
cope with round-robin priority scheduling, from kettenis@

Log message:
Tentative step for extensions, at least firefox stops whining.
From jamesw at bsdhosting.co.za, cleanup by me.
ok pval@, naddy@

Log message:
document that extensions don't work; should calm fgsch@

Log message:
* Update to 1.0.1.  Fixes IDN spoofing and other vulnerabilities.
* Dependency fixes from alek@
* Don't install world-writable files and directories related to
extensions.  Breaks functionality in that area.

Log message:
fix system png include path

Log message:
bump pkgname

Log message:
always use own nspr

Log message:
SIZE

Log message:
let's make some noise, using esound

Log message:
sync with update-patches

Log message:
sync with thunderbird

Log message:
fix SUBST_VARS

Log message:
Add WANTLIB markers

Log message:
Do not disable ProPolice, we have reports of success for most platforms.
ok pvalchev@

Log message:
mozilla-firefox-1.0; based on work by wilfried/robert/naddy

Log message:
i386 gcc3 support.
ok wilfried@

Log message:
fix building againt new freetype, sync w/update-patches

Log message:
fix build now that we have getproto*_r

Log message:
gcc3/powerpc

Log message:
new style conflicts

Log message:
SECURITY:
The added patch fixes some libpng buffer overflow vulnerabilities in
mozilla's png decoder module.
http://bugzilla.mozilla.org/show_bug.cgi?id=251381
new-style PLIST

Log message:
fix up MODGNU_CONFIG_GUESS_DIRS

Log message:
Sync DESCR with reality.
"Free commits :-)" MAINTAINER

Log message:
use no-autoheader and explicitly set autoconf version

Log message:
disable IPv6 for 3.5 as it presents dns-resolution problems (and there is no time
for other fixes)
numerous people report success with this reverted.

Log message:
enable propolice on sparc64; ok pvalchev@

Log message:
Patches to make firefox work on OpenBSD/macppc

Log message:
spacing

Log message:
amd64 support from FreeBSD & bugzilla

Log message:
resolve more than one host name simultaneously, needed with last patch
from netbsd

Log message:
enable ipv6

Log message:
The sparc64 compiler is gcc3 now; don't require the gcc3 module.

Log message:
forgot to remove graphics/libmng dependency