diff options
| author | John Kehayias <john.kehayias@protonmail.com> | 2024-10-19 01:26:32 -0400 |
|---|---|---|
| committer | John Kehayias <john.kehayias@protonmail.com> | 2024-10-19 01:26:32 -0400 |
| commit | d47b2f5a7bc82fe52825ba4b5ff6cb9362a9fed4 (patch) | |
| tree | 4a1a9e7cff1c6aff6e1af38cbba886a680963144 /nongnu/packages/chrome.scm | |
| parent | 14c3e1fdc837debd4b0e9e72cd20c81db44c0318 (diff) | |
nongnu: firefox: Update to 131.0.3 [security fixes].
Fixes CVE-2024-9936 and, in previous versions since 130.0.1, CVE-2024-9680,
CVE-2024-9391, CVE-2024-9392, CVE-2024-9393, CVE-2024-9394, CVE-2024-9395,
CVE-2024-9396, CVE-2024-9397, CVE-2024-9398, CVE-2024-9399, CVE-2024-9400,
CVE-2024-9401, CVE-2024-9402, and CVE-2024-9403.
Upstream removed firefox.desktop files which can be generated from their mach
tool. However, this will try to download various dependencies. So, for now
at least, use a patch which reverts that commit so we can use the included
desktop file. In Arch, for example, they include a separate pre-generated
desktop file rather than doing this at build time.
* nongnu/packages/mozilla.scm (firefox): Update to 131.0.3.
* nongnu/packages/patches/firefox-CVE-2024-9680.patch: Delete patch.
* nongnu/packages/patches/firefox-restore-desktop-files.patch: Add patch.
Diffstat (limited to 'nongnu/packages/chrome.scm')
0 files changed, 0 insertions, 0 deletions