summaryrefslogtreecommitdiff
path: root/nongnu/packages/mozilla.scm
AgeCommit message (Collapse)Author
10 daysnongnu: firefox: Update to 149.0 [security fixes].John Kehayias
Fixes CVE-2025-59375, CVE-2026-4684, CVE-2026-4685, CVE-2026-4686, CVE-2026-4687, CVE-2026-4688, CVE-2026-4689, CVE-2026-4690, CVE-2026-4691, CVE-2026-4692, CVE-2026-4693, CVE-2026-4694, CVE-2026-4695, CVE-2026-4696, CVE-2026-4697, CVE-2026-4698, CVE-2026-4699, CVE-2026-4700, CVE-2026-4701, CVE-2026-4702, CVE-2026-4704, CVE-2026-4705, CVE-2026-4706, CVE-2026-4707, CVE-2026-4708, CVE-2026-4709, CVE-2026-4710, CVE-2026-4711, CVE-2026-4712, CVE-2026-4713, CVE-2026-4714, CVE-2026-4715, CVE-2026-4716, CVE-2026-4717, CVE-2026-4718, CVE-2026-4719, CVE-2026-4720, CVE-2026-4721, CVE-2026-4722, CVE-2026-4723, CVE-2026-4724, CVE-2026-4725, CVE-2026-4726, CVE-2026-4727, CVE-2026-4728, CVE-2026-4729. * nongnu/packages/mozilla.scm (firefox): Update to 149.0.
2026-03-22nongnu: Reference the inherited arguments and inputs values.Hilton Chain
Following upstream change in https://codeberg.org/guix/guix/commit/6b1a15189e9f02f2962c4885092533f817d0375c These references are found via: rg '\(package-(arguments|[a-z]*-?inputs)' No derivation changes are introduced by this commit.
2026-03-11nongnu: firefox: Update to 148.0.2 [security fixes].Tomas Volf
Fixes CVE-2026-3845, CVE-2026-3846, CVE-2026-3847. * nongnu/packages/mozilla.scm (firefox): Update to 148.0.2. Signed-off-by: John Kehayias <john.kehayias@protonmail.com>
2026-02-25nongnu: firefox: Update to 148.0 [security fixes].Tomas Volf
Fixes CVE-2026-2757, CVE-2026-2758, CVE-2026-2759, CVE-2026-2760, CVE-2026-2761, CVE-2026-2762, CVE-2026-2763, CVE-2026-2764, CVE-2026-2765, CVE-2026-2766, CVE-2026-2767, CVE-2026-2768, CVE-2026-2769, CVE-2026-2770, CVE-2026-2771, CVE-2026-2772, CVE-2026-2773, CVE-2026-2774, CVE-2026-2775, CVE-2026-2776, CVE-2026-2777, CVE-2026-2778, CVE-2026-2779, CVE-2026-2780, CVE-2026-2781, CVE-2026-2782, CVE-2026-2783, CVE-2026-2784, CVE-2026-2785, CVE-2026-2786, CVE-2026-2787, CVE-2026-2788, CVE-2026-2789, CVE-2026-2790, CVE-2026-2791, CVE-2026-2792, CVE-2026-2793, CVE-2026-2794, CVE-2026-2795, CVE-2026-2796, CVE-2026-2797, CVE-2026-2798, CVE-2026-2799, CVE-2026-2800, CVE-2026-2801, CVE-2026-2802, CVE-2026-2803, CVE-2026-2804, CVE-2026-2805, CVE-2026-2806, CVE-2026-2807. * nongnu/packages/mozilla.scm (firefox): Update to 148.0. (rust-firefox): Set to rust-1.92. Signed-off-by: John Kehayias <john.kehayias@protonmail.com>
2026-02-25nongnu: firefox-esr: Update to 140.8.0esr [security fixes].Tomas Volf
Fixes CVE-2026-2757, CVE-2026-2758, CVE-2026-2759, CVE-2026-2760, CVE-2026-2761, CVE-2026-2762, CVE-2026-2763, CVE-2026-2764, CVE-2026-2765, CVE-2026-2766, CVE-2026-2767, CVE-2026-2768, CVE-2026-2769, CVE-2026-2770, CVE-2026-2771, CVE-2026-2772, CVE-2026-2773, CVE-2026-2774, CVE-2026-2775, CVE-2026-2776, CVE-2026-2777, CVE-2026-2778, CVE-2026-2779, CVE-2026-2780, CVE-2026-2781, CVE-2026-2782, CVE-2026-2783, CVE-2026-2784, CVE-2026-2785, CVE-2026-2786, CVE-2026-2787, CVE-2026-2788, CVE-2026-2789, CVE-2026-2790, CVE-2026-2791, CVE-2026-2792, CVE-2026-2793. * nongnu/packages/mozilla.scm (firefox-esr): Update to 140.8.0esr. Signed-off-by: John Kehayias <john.kehayias@protonmail.com>
2026-02-16nongnu: firefox-esr: Update to 140.7.1esr [security fixes].Tomas Volf
Fixes CVE-2026-2447. * nongnu/packages/mozilla.scm (firefox-esr): Update to 140.7.1esr. Signed-off-by: John Kehayias <john.kehayias@protonmail.com>
2026-02-16nongnu: firefox: Update to 147.0.4 [security fixes].Tomas Volf
Fixes CVE-2026-2447. * nongnu/packages/mozilla.scm (firefox): Update to 147.0.4. Signed-off-by: John Kehayias <john.kehayias@protonmail.com>
2026-02-10nongnu: mozilla: Search patches with ‘nongnu-patches’.Hilton Chain
* nongnu/packages/mozilla.scm (firefox-esr, firefox) [source]: Use ‘nongnu-patches’.
2026-02-10nongnu: firefox: Update to 147.0.3.Tomas Volf
* nongnu/packages/mozilla.scm (firefox): Update to 147.0.3. Signed-off-by: Hilton Chain <hako@ultrarare.space>
2026-01-29nongnu: firefox: Update to 147.0.2 [security fixes].Tomas Volf
Fixes CVE-2026-24868, CVE-2026-24869. * nongnu/packages/mozilla.scm (firefox): Update to 147.0.2. Signed-off-by: John Kehayias <john.kehayias@protonmail.com>
2026-01-20nongnu: firefox: Update to 147.0 [security fixes].Tomas Volf
Fixes CVE-2026-0877, CVE-2026-0878, CVE-2026-0879, CVE-2026-0880, CVE-2026-0881, CVE-2026-0882, CVE-2026-0883, CVE-2026-0884, CVE-2026-0885, CVE-2026-0886, CVE-2026-0887, CVE-2026-0888, CVE-2026-0889, CVE-2026-0890, CVE-2026-0891, CVE-2026-0892. * nongnu/packages/mozilla.scm (firefox): Update to 147.0. [inputs]: Use icu4c-78. Signed-off-by: John Kehayias <john.kehayias@protonmail.com> Modified-by: John Kehayias <john.kehayias@protonmail.com>
2026-01-14nongnu: firefox-esr: Update to 140.7.0esr [security fixes].Tomas Volf
Fixes CVE-2025-14327, CVE-2026-0877, CVE-2026-0878, CVE-2026-0879, CVE-2026-0880, CVE-2026-0882, CVE-2026-0883, CVE-2026-0884, CVE-2026-0885, CVE-2026-0886, CVE-2026-0887, CVE-2026-0890, CVE-2026-0891. * nongnu/packages/mozilla.scm (firefox-esr): Update to 140.7.0esr. Signed-off-by: John Kehayias <john.kehayias@protonmail.com>
2025-12-28nongnu: firefox: Update to 146.0.1 [security fixes].Tomas Volf
Fixes CVE-2025-14860, CVE-2025-14861. * nongnu/packages/mozilla.scm (firefox): Update to 146.0.1. [native-inputs]: Use official rust-cbindgen-0.29 package. Signed-off-by: Jonathan Brielmaier <jonathan.brielmaier@web.de>
2025-12-14nongnu: firefox: Update to 146.0 [security fixes].Tomas Volf
Fixes CVE-2025-14321, CVE-2025-14322, CVE-2025-14323, CVE-2025-14324, CVE-2025-14325, CVE-2025-14326, CVE-2025-14327, CVE-2025-14328, CVE-2025-14329, CVE-2025-14330, CVE-2025-14331, CVE-2025-14332, CVE-2025-14333. * nongnu/packages/mozilla.scm (firefox): Update to 146.0. [native-inputs]: Replace rust-cbindgen with 0.29.2 version. Signed-off-by: John Kehayias <john.kehayias@protonmail.com>
2025-12-10nongnu: firefox: Update to 145.0.1.Tomas Volf
* nongnu/packages/mozilla.scm (firefox): Update to 145.0.1. Signed-off-by: Jonathan Brielmaier <jonathan.brielmaier@web.de>
2025-12-10nongnu: firefox-esr: Update to 140.6.0esr [security fixes].Tomas Volf
Fixes CVE-2025-13012, CVE-2025-13013, CVE-2025-13014, CVE-2025-13015, CVE-2025-13016, CVE-2025-13017, CVE-2025-13018, CVE-2025-13019, CVE-2025-13020, CVE-2025-14321, CVE-2025-14322, CVE-2025-14323, CVE-2025-14324, CVE-2025-14325, CVE-2025-14328, CVE-2025-14329, CVE-2025-14330, CVE-2025-14331, CVE-2025-14333. * nongnu/packages/mozilla.scm (firefox-esr): Update to 140.6.0esr. Signed-off-by: Jonathan Brielmaier <jonathan.brielmaier@web.de>
2025-11-13nongnu: firefox: Update to 145.0 [security fixes].Tomas Volf
Fixes CVE-2025-12380, CVE-2025-13012, CVE-2025-13013, CVE-2025-13014, CVE-2025-13015, CVE-2025-13016, CVE-2025-13017, CVE-2025-13018, CVE-2025-13019, CVE-2025-13020, CVE-2025-13021, CVE-2025-13022, CVE-2025-13023, CVE-2025-13024, CVE-2025-13025, CVE-2025-13026, CVE-2025-13027. * nongnu/packages/mozilla.scm (firefox): Update to 145.0. Signed-off-by: John Kehayias <john.kehayias@protonmail.com>
2025-10-29nongnu: firefox: Update to 144.0 [security fixes].Tomas Volf
Fixes CVE-2025-11708, CVE-2025-11709, CVE-2025-11710, CVE-2025-11711, CVE-2025-11712, CVE-2025-11713, CVE-2025-11714, CVE-2025-11715, CVE-2025-11716, CVE-2025-11717, CVE-2025-11718, CVE-2025-11719, CVE-2025-11720, CVE-2025-11721. * nongnu/packages/mozilla.scm (firefox): Update to 144.0. Signed-off-by: John Kehayias <john.kehayias@protonmail.com>
2025-10-29nongnu: firefox-esr: Update to 140.4.0esr [security fixes].Tomas Volf
Fixes CVE-2025-11708, CVE-2025-11709, CVE-2025-11710, CVE-2025-11711, CVE-2025-11712, CVE-2025-11713, CVE-2025-11714, CVE-2025-11715. * nongnu/packages/mozilla.scm (firefox-esr): Update to 140.4.0esr. Signed-off-by: John Kehayias <john.kehayias@protonmail.com>
2025-10-03nongnu: firefox: Update to 143.0.3 [security fixes].Tomas Volf
Fixes CVE-2025-11152, CVE-2025-11153. * nongnu/packages/mozilla.scm (firefox): Update to 143.0.3. Signed-off-by: John Kehayias <john.kehayias@protonmail.com>
2025-10-03nongnu: firefox-esr: Update to 140.3.1esr.Tomas Volf
* nongnu/packages/mozilla.scm (firefox-esr): Update to 140.3.1esr. Signed-off-by: John Kehayias <john.kehayias@protonmail.com>
2025-09-30nongnu: firefox-esr: Use ffmpeg-6.John Kehayias
This fixes video playback post mesa-updates merge in Guix. See upstream issue <https://bugzilla.mozilla.org/show_bug.cgi?id=1962139>; fix is like for librewolf in Guix, see <https://codeberg.org/guix/guix/issues/3038>. * nongnu/packages/mozilla.scm (firefox-esr)[inputs]: Change ffmpeg to ffmpeg-6.
2025-09-18nongnu: firefox-esr: Update to 140.3.0esr [security fixes].Tomas Volf
Fixes CVE-2025-10527, CVE-2025-10528, CVE-2025-10529, CVE-2025-10532, CVE-2025-10533, CVE-2025-10536, CVE-2025-10537. * nongnu/packages/mozilla.scm (firefox-esr): Update to 140.3.0esr. Signed-off-by: John Kehayias <john.kehayias@protonmail.com>
2025-09-18nongnu: firefox: Update to 143.0 [security fixes].Tomas Volf
Fixes CVE-2025-10527, CVE-2025-10528, CVE-2025-10529, CVE-2025-10530, CVE-2025-10531, CVE-2025-10532, CVE-2025-10533, CVE-2025-10534, CVE-2025-10535, CVE-2025-10536, CVE-2025-10537. * nongnu/packages/mozilla.scm (firefox): Update to 143.0. Signed-off-by: John Kehayias <john.kehayias@protonmail.com>
2025-08-21nongnu: firefox-esr: Update to 140.2.0esr [security fixes].Tomas Volf
Fixes CVE-2025-9179, CVE-2025-9180, CVE-2025-9181, CVE-2025-9182, CVE-2025-9183, CVE-2025-9184, CVE-2025-9185. * nongnu/packages/mozilla.scm (firefox-esr): Update to 140.2.0esr. Signed-off-by: John Kehayias <john.kehayias@protonmail.com>
2025-08-21nongnu: firefox: Update to 142.0 [security fixes].Tomas Volf
Fixes CVE-2025-9179, CVE-2025-9180, CVE-2025-9181, CVE-2025-9182, CVE-2025-9183, CVE-2025-9184, CVE-2025-9185, CVE-2025-9186, CVE-2025-9187. * nongnu/packages/mozilla.scm (firefox): Update to 142.0. Signed-off-by: John Kehayias <john.kehayias@protonmail.com>
2025-08-18nongnu: firefox-esr: No longer hardcode nspr version.caem
Nspr version 4.32 was removed in Guix https://codeberg.org/guix/guix/commit/4d7692adc58effb97b82c4144efef8a28802da9b. The issue that required this version specifically has also since been resolved and thus a specific version of nspr is no longer required: https://bugs.gnu.org/32833#28. * nongnu/packages/mozilla.scm (firefox-esr) [inputs] Replace nspr-4.32 with nspr. Signed-off-by: Hilton Chain <hako@ultrarare.space>
2025-08-13nongnu: Remove (gnu packages crates-io) module import.Hilton Chain
* nongnu/packages/mozilla.scm (nongnu): Remove module import of (gnu packages crates-io).
2025-08-10nongnu: firefox: Update to 141.0.3.Tomas Volf
* nongnu/packages/mozilla.scm (firefox): Update to 141.0.3. Signed-off-by: John Kehayias <john.kehayias@protonmail.com>
2025-07-23nongnu: firefox-esr: Update to 140.1.0esr [security fixes].Tomas Volf
Fixes CVE-2025-8027, CVE-2025-8028, CVE-2025-8029, CVE-2025-8030, CVE-2025-8031, CVE-2025-8032, CVE-2025-8033, CVE-2025-8034, CVE-2025-8035, CVE-2025-8036, CVE-2025-8037, CVE-2025-8038, CVE-2025-8039, CVE-2025-8040. * nongnu/packages/mozilla.scm (firefox-esr): Update to 140.1.0esr. Signed-off-by: John Kehayias <john.kehayias@protonmail.com>
2025-07-23nongnu: firefox: Update to 141.0 [security fixes].Tomas Volf
Fixes CVE-2025-8027, CVE-2025-8028, CVE-2025-8029, CVE-2025-8030, CVE-2025-8031, CVE-2025-8032, CVE-2025-8033, CVE-2025-8034, CVE-2025-8035, CVE-2025-8036, CVE-2025-8037, CVE-2025-8038, CVE-2025-8039, CVE-2025-8040, CVE-2025-8041, CVE-2025-8042, CVE-2025-8043, CVE-2025-8044. * nongnu/packages/mozilla.scm (firefox): Update to 141.0. Signed-off-by: John Kehayias <john.kehayias@protonmail.com>
2025-07-10nongnu: firefox: Update to 140.0.4.Tomas Volf
* nongnu/packages/mozilla.scm (firefox): Update to 140.0.4. Signed-off-by: John Kehayias <john.kehayias@protonmail.com>
2025-06-28nongnu: firefox: Remove obsolete phase.Tomas Volf
* nongnu/packages/mozilla.scm (firefox)[arguments]<#:phases>: Remome 'patch-icu-lookup. Signed-off-by: Hilton Chain <hako@ultrarare.space>
2025-06-28nongnu: firefox-esr: Update to 140.0esr.Tomas Volf
* nongnu/packages/mozilla.scm (firefox-esr): Update to 140.0esr. [source]<patches>: Add firefox-restore-desktop-files.patch. Use >=138 version of path comparison patch. [inputs]: Use icu4c-76. [native-inputs]: Use rust-cbindgen-0.28. (firefox)[inputs]: Drop. [native-inputs]: Do not replace rust-cbindgen. * nongnu/packages/patches/firefox-esr-add-store-to-rdd-allowlist.patch: Update to new version. No functional changes. * nongnu/packages/patches/firefox-esr-use-system-wide-dir.patch: Same. * nongnu/packages/patches/firefox-esr-compare-paths.patch: Delete file. Signed-off-by: Hilton Chain <hako@ultrarare.space>
2025-06-25nongnu: firefox-esr: Update to 128.12.0esr [security fixes].Tomas Volf
Fixes CVE-2025-6424, CVE-2025-6425, CVE-2025-6426, CVE-2025-6429, CVE-2025-6430. * nongnu/packages/mozilla.scm (firefox-esr): Update to 128.12.0esr. Signed-off-by: Hilton Chain <hako@ultrarare.space>
2025-06-25nongnu: firefox: Update to 140.0 [security fixes].Tomas Volf
Fixes CVE-2025-6424, CVE-2025-6425, CVE-2025-6426, CVE-2025-6427, CVE-2025-6428, CVE-2025-6429, CVE-2025-6430, CVE-2025-6431, CVE-2025-6432, CVE-2025-6433, CVE-2025-6434, CVE-2025-6435, CVE-2025-6436. * nongnu/packages/mozilla.scm (firefox): Update to 140.0. Signed-off-by: Hilton Chain <hako@ultrarare.space>
2025-06-25nongnu: firefox: Fix GPU decoding.Brice Waegeneire
* nongnu/packages/patches/firefox-esr-add-store-to-rdd-allowlist.patch: New file. * nongnu/packages/mozilla.scm (firefox-esr)[source]<patches>: Add it. [#:phases]<wrap-glxtest>: New phase ported from Guix's librewolf package. <wrap-program>: Remove whitelist manipulation. [inputs]: Add pciutils. * nongnu/packages/patches/firefox-add-store-to-rdd-allowlist.patch: New file. * nongnu/packages/mozilla.scm (firefox)[source]<patches>: Add it. Fixes: https://gitlab.com/nonguix/nonguix/-/issues/389 Signed-off-by: Hilton Chain <hako@ultrarare.space> Modified-by: Hilton Chain <hako@ultrarare.space>
2025-06-12nongnu: firefox: Update to 139.0.4 [security fixes].Tomas Volf
Fixes CVE-2025-49709, CVE-2025-49710. * nongnu/packages/mozilla.scm (firefox): Update to 139.0.4. Signed-off-by: Hilton Chain <hako@ultrarare.space>
2025-06-12nongnu: firefox, firefox-esr: Delete testing/web-platform.Nicolas Graves
* nongnu/packages/mozilla.scm (firefox, firefox-esr)[source]: Delete testing/web-platform to allow build with 1G less RAM. Signed-off-by: Hilton Chain <hako@ultrarare.space>
2025-05-28nongnu: firefox: Update to 139.0 [security fixes].Tomas Volf
Fixes CVE-2025-5262, CVE-2025-5263, CVE-2025-5264, CVE-2025-5265, CVE-2025-5266, CVE-2025-5267, CVE-2025-5268, CVE-2025-5270, CVE-2025-5271, CVE-2025-5272. * nongnu/packages/mozilla.scm (firefox): Update to 139.0. Signed-off-by: Hilton Chain <hako@ultrarare.space>
2025-05-28nongnu: firefox-esr: Update to 128.11.0esr [security fixes].Tomas Volf
Fixes CVE-2025-5262, CVE-2025-5263, CVE-2025-5264, CVE-2025-5265, CVE-2025-5266, CVE-2025-5267, CVE-2025-5268, CVE-2025-5269. * nongnu/packages/mozilla.scm (firefox-esr): Update to 128.11.0esr. Signed-off-by: Hilton Chain <hako@ultrarare.space>
2025-05-18nongnu: firefox-esr: Update to 128.10.1esr [security fixes].Tomas Volf
Fixes CVE-2025-4920, CVE-2025-4921. * nongnu/packages/mozilla.scm (firefox-esr): Update to 128.10.1esr. Signed-off-by: Hilton Chain <hako@ultrarare.space>
2025-05-18nongnu: firefox: Update to 138.0.4 [security fixes].Tomas Volf
Fixes CVE-2025-4920, CVE-2025-4921. * nongnu/packages/mozilla.scm (firefox): Update to 138.0.4. Signed-off-by: Hilton Chain <hako@ultrarare.space>
2025-05-14nongnu: firefox: Update to 138.0.3.Tomas Volf
* nongnu/packages/mozilla.scm (firefox): Update to 138.0.3. Signed-off-by: Hilton Chain <hako@ultrarare.space>
2025-05-04nongnu: firefox: Update to 138.0 [security fixes].Tomas Volf
Fixes CVE-2025-2817, CVE-2025-4082, CVE-2025-4083, CVE-2025-4085, CVE-2025-4086, CVE-2025-4087, CVE-2025-4088, CVE-2025-4089, CVE-2025-4090, CVE-2025-4091, CVE-2025-4092. * nongnu/packages/patches/firefox-ge-138-compare-paths.patch: New file. * nongnu/packages/mozilla.scm (firefox): Update to 138.0. [source]: Use the new patch. [native-inputs]: Replace rust-cbindgen with rust-cbindgen-0.28. Signed-off-by: Hilton Chain <hako@ultrarare.space>
2025-04-30nongnu: firefox-esr: Update to 128.10.0esr [security fixes].Tomas Volf
Fixes CVE-2025-2817, CVE-2025-4082, CVE-2025-4083, CVE-2025-4084, CVE-2025-4087, CVE-2025-4091, CVE-2025-4093. * nongnu/packages/mozilla.scm (firefox-esr): Update to 128.10.0esr. Signed-off-by: Hilton Chain <hako@ultrarare.space>
2025-04-17nongnu: firefox: Update to 137.0.2 [security fixes].Tomas Volf
Fixes CVE-2025-3608. * nongnu/packages/mozilla.scm (firefox): Update to 137.0.2. Signed-off-by: Hilton Chain <hako@ultrarare.space>
2025-04-11nongnu: firefox: Create lib/icecat so that ICECAT_SYSTEM_DIR is set.Clement Lassieur
Adapted from <https://issues.guix.gnu.org/77677>. * nongnu/packages/mozilla.scm (firefox-esr) [arguments]<#:phases>: Add 'mkdir-lib-icecat'. Fixes: https://gitlab.com/nonguix/nonguix/-/issues/368 Reported-by: Katherine Cox-Buday <cox.katherine.e@gmail.com> Signed-off-by: Hilton Chain <hako@ultrarare.space>
2025-04-10nongnu: firefox: Update to 137.0.1.Tomas Volf
* nongnu/packages/mozilla.scm (firefox): Update to 137.0.1. Signed-off-by: Hilton Chain <hako@ultrarare.space>
2025-04-10nongnu: Deprecate firefox-esr-wayland.Hilton Chain
Since Firefox ESR has already been above version 121, this variable can be deprecated. * nongnu/packages/mozilla.scm (firefox-esr/wayland): Deprecated by firefox-esr.
generated by cgit v1.3 (git 2.53.0) at 2026-04-06 21:38:22 +0000