From 366eb8a5b3899db4343e92e7c13fc4c5cc89d332 Mon Sep 17 00:00:00 2001
From: Tomas Volf <~@wolfsden.cz>
Date: Sun, 18 May 2025 00:29:37 +0200
Subject: nongnu: firefox: Update to 138.0.4 [security fixes].

Fixes CVE-2025-4920, CVE-2025-4921.

* nongnu/packages/mozilla.scm (firefox): Update to 138.0.4.

Signed-off-by: Hilton Chain <hako@ultrarare.space>
---
 nongnu/packages/mozilla.scm | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

(limited to 'nongnu/packages/mozilla.scm')

diff --git a/nongnu/packages/mozilla.scm b/nongnu/packages/mozilla.scm
index 8a3a85e..4795efe 100644
--- a/nongnu/packages/mozilla.scm
+++ b/nongnu/packages/mozilla.scm
@@ -524,13 +524,13 @@ Release (ESR) version.")
 
 ;; Update this id with every firefox update to its release date.
 ;; It's used for cache validation and therefore can lead to strange bugs.
-(define %firefox-build-id "20250512230011")
+(define %firefox-build-id "20250517192316")
 
 (define-public firefox
   (package
     (inherit firefox-esr)
     (name "firefox")
-    (version "138.0.3")
+    (version "138.0.4")
     (source
      (origin
        (method url-fetch)
@@ -546,7 +546,7 @@ Release (ESR) version.")
                "firefox-ge-138-compare-paths.patch"
                "firefox-use-system-wide-dir.patch")))
        (sha256
-        (base32 "1r0kam26cz5rz39n6zcc2hrbav6dxlfrsa0qhhfjlnv33ns3lzx2"))))
+        (base32 "0mjh2if31ibx68a66cvxh5sa20xb78gdn9wdw0wv745dinq0vlrz"))))
     (arguments
      (substitute-keyword-arguments (package-arguments firefox-esr)
        ((#:phases phases)
-- 
cgit v1.2.3