bartronx7/guix
1
0
Fork 0
mirror of https://codeberg.org/guix/guix.git synced 2026-01-25 03:55:08 -06:00
Code Issues Projects Releases Packages Wiki Activity Actions
guix/gnu
History
Ian Eure 2c34e9ccb6
gnu: librewolf: Update to 147.0.1-3 [security-fixes]. 
Contains fixes for:
CVE-2026-0877: Mitigation bypass in the DOM: Security component
CVE-2026-0878: Sandbox escape due to incorrect boundary conditions in
               the Graphics: CanvasWebGL component
CVE-2026-0879: Sandbox escape due to incorrect boundary conditions in
               the Graphics component
CVE-2026-0880: Sandbox escape due to integer overflow in the Graphics
               component
CVE-2026-0881: Sandbox escape in the Messaging System component
CVE-2026-0882: Use-after-free in the IPC component
CVE-2026-0883: Information disclosure in the Networking component
CVE-2026-0884: Use-after-free in the JavaScript Engine component
CVE-2026-0885: Use-after-free in the JavaScript: GC component
CVE-2026-0886: Incorrect boundary conditions in the Graphics component
CVE-2026-0887: Clickjacking issue, information disclosure in the PDF
               Viewer component
CVE-2026-0888: Information disclosure in the XML component
CVE-2026-0889: Denial-of-service in the DOM: Service Workers component
CVE-2026-0890: Spoofing issue in the DOM: Copy & Paste and Drag & Drop
               component
CVE-2026-0891: Memory safety bugs fixed in Firefox ESR 140.7,
               Thunderbird ESR 140.7, Firefox 147 and Thunderbird 147
CVE-2026-0892: Memory safety bugs fixed in Firefox 147 and Thunderbird
               147

* gnu/packages/librewolf.scm (librewolf-bsys6): New variable.
* gnu/packages/librewolf.scm (make-librewolf-source): Don’t attempt to GPG
sign the source tarball, the key isn’t available.
* gnu/packages/librewolf.scm (librewolf): Update to 147.0.1-3.
[native-inputs] Add librewolf-bsys6.
[phases 'patch-icu-lookup]: Delete.
[phases 'install-desktop-entry]: Use the .desktop file template from librewolf-bsys6.

Change-Id: Ic7ff0197294cbb2485cb8db2f42f4fb499e39277
2026-01-20 18:05:03 -08:00
..
bootloader gnu: install-starfive-visionfive2-uEnv.txt: Set extra options. 2026-01-16 20:13:41 +01:00
build image: Use unshare to map root user for btrfs 2026-01-12 10:56:38 +01:00
home services: configuration: Generalize 'list-of-packages?' 2026-01-09 15:22:44 +01:00
installer installer: Add Hurd x86_64 as an option. 2026-01-12 22:50:51 +01:00
machine
packages gnu: librewolf: Update to 147.0.1-3 [security-fixes]. 2026-01-20 18:05:03 -08:00
services services: <greetd-terminal-configuration>: Default initial-session-command to (greetd-user-session). 2026-01-19 23:23:50 +01:00
system gnu: visionfive2: Update the module commentary. 2026-01-16 20:13:43 +01:00
tests tests: install: Fix timezone check. 2026-01-15 20:26:28 +01:00
artwork.scm
bootloader.scm
ci.scm
compression.scm
home.scm
image.scm
installer.scm
local.mk gnu: Add icu4c-78. 2026-01-20 18:04:58 -08:00
machine.scm
packages.scm
services.scm
system.scm system: operating-system-etc-service: Unset GUIX_PROFILE. 2026-01-04 12:13:29 +01:00
tests.scm