From 3cf2590392d022eecf873475c5dea583fb3d237a Mon Sep 17 00:00:00 2001
From: Tomas Volf <~@wolfsden.cz>
Date: Tue, 24 Jun 2025 17:52:02 +0200
Subject: nongnu: firefox: Update to 140.0 [security fixes].

Fixes CVE-2025-6424, CVE-2025-6425, CVE-2025-6426, CVE-2025-6427,
CVE-2025-6428, CVE-2025-6429, CVE-2025-6430, CVE-2025-6431,
CVE-2025-6432, CVE-2025-6433, CVE-2025-6434, CVE-2025-6435,
CVE-2025-6436.

* nongnu/packages/mozilla.scm (firefox): Update to 140.0.

Signed-off-by: Hilton Chain <hako@ultrarare.space>
---
 nongnu/packages/mozilla.scm | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

(limited to 'nongnu/packages/mozilla.scm')

diff --git a/nongnu/packages/mozilla.scm b/nongnu/packages/mozilla.scm
index 35cf6e1..7798165 100644
--- a/nongnu/packages/mozilla.scm
+++ b/nongnu/packages/mozilla.scm
@@ -528,20 +528,20 @@ Release (ESR) version.")
 
 ;; Update this id with every firefox update to its release date.
 ;; It's used for cache validation and therefore can lead to strange bugs.
-(define %firefox-build-id "20250609195321")
+(define %firefox-build-id "20250623125307")
 
 (define-public firefox
   (package
     (inherit firefox-esr)
     (name "firefox")
-    (version "139.0.4")
+    (version "140.0")
     (source
      (origin
        (method url-fetch)
        (uri (string-append "https://archive.mozilla.org/pub/firefox/releases/"
                            version "/source/firefox-" version ".source.tar.xz"))
        (sha256
-        (base32 "1xc7481g9adrn98ivqgigvdjcpkyk6sa183qvpbwcjgrqczhapjk"))
+        (base32 "07zxz49qj5d8h8s4w6nw9j8x7wfrw45zc3a9bny1l911kfs564pf"))
        (patches
         (map (lambda (patch)
                (search-path
-- 
cgit v1.2.3