bartronx7/guix
1
0
Fork 0
mirror of https://codeberg.org/guix/guix.git synced 2026-01-25 12:05:19 -06:00
Code Issues Projects Releases Packages Wiki Activity Actions

gnu: librewolf: Update to 145.0.1-2 [security-fixes].

Browse source 
Contains fixes for:
CVE-2025-13021: Incorrect boundary conditions in the Graphics: WebGPU
                component
CVE-2025-13022: Incorrect boundary conditions in the Graphics: WebGPU
                component
CVE-2025-13012: Race condition in the Graphics component
CVE-2025-13023: Sandbox escape due to incorrect boundary conditions in
                the Graphics: WebGPU component
CVE-2025-13016: Incorrect boundary conditions in the JavaScript:
                WebAssembly component
CVE-2025-13024: JIT miscompilation in the JavaScript Engine: JIT
                component
CVE-2025-13025: Incorrect boundary conditions in the Graphics: WebGPU
                component
CVE-2025-13026: Sandbox escape due to incorrect boundary conditions in
                the Graphics: WebGPU component
CVE-2025-13017: Same-origin policy bypass in the DOM: Notifications
                component
CVE-2025-13018: Mitigation bypass in the DOM: Security component
CVE-2025-13019: Same-origin policy bypass in the DOM: Workers
                component
CVE-2025-13013: Mitigation bypass in the DOM: Core & HTML component
CVE-2025-13020: Use-after-free in the WebRTC: Audio/Video component
CVE-2025-13014: Use-after-free in the Audio/Video component
CVE-2025-13015: Spoofing issue in Firefox
CVE-2025-13027: Memory safety bugs fixed in Firefox 145 and
                Thunderbird 145

* gnu/packages/librewolf.scm (librewolf): Update to 145.0.1-2.

Change-Id: Ibc74847cb0bbf3ca31cd91ebead1459199a1b364
This commit is contained in:
Ian Eure 2025-11-21 13:00:05 -08:00
parent 60b6c5bdc2
commit c93b89e591
No known key found for this signature in database
GPG key ID: 8499AC88F1A71CF2
1 changed files with 4 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

8
gnu/packages/librewolf.scm
View file

@ -220,17 +220,17 @@
;; It's used for cache validation and therefore can lead to strange bugs.
;; ex: date '+%Y%m%d%H%M%S'
;; or: (format-time-string "%Y%m%d%H%M%S")
(define %librewolf-build-id "20251031125342")
(define %librewolf-build-id "20251121090137")
(define-public librewolf
(package
(name "librewolf")
(version "144.0.2-1")
(version "145.0.1-2")
(source
(make-librewolf-source
#:version version
#:firefox-hash "0sw0cbgm28w10msy450xcqn70w98ip0r8j3c01rqs02rs8p75i7a"
#:librewolf-hash "0yqibva76c20rri6ijmhld84q38fl9jv4zmr5995m1mq4r98navi"
#:firefox-hash "0mzlkymgp1dcyjlv30xaq96f0ls0mxn25264xygidw2g62yib0dl"
#:librewolf-hash "0vicz6kb2d28d736rlmj776sv5p2xk1ilabs2ihxnifs8g9ab8ya"
#:l10n firefox-l10n))
(build-system gnu-build-system)
(arguments