amaharaneko/guix-mirrors
1
1
Fork 0
mirror of https://codeberg.org/guix/guix.git synced 2025-10-02 02:15:12 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

gnu: librewolf: Update to 143.0-1 [security-fixes].

Browse source 
Contains fixes for:
CVE-2025-10527: Sandbox escape due to use-after-free in the Graphics:
                Canvas2D component
CVE-2025-10528: Sandbox escape due to undefined behavior, invalid
                pointer in the Graphics: Canvas2D component
CVE-2025-10529: Same-origin policy bypass in the Layout component
CVE-2025-10530: Spoofing issue in the WebAuthn component in Firefox
                for Android
CVE-2025-10531: Mitigation bypass in the Web Compatibility: Tooling
                component
CVE-2025-10532: Incorrect boundary conditions in the JavaScript: GC
                component
CVE-2025-10533: Integer overflow in the SVG component
CVE-2025-10534: Spoofing issue in the Site Permissions component
CVE-2025-10535: Information disclosure, mitigation bypass in the
                Privacy component in Firefox for Android
CVE-2025-10536: Information disclosure in the Networking: Cache
                component
CVE-2025-10537: Memory safety bugs fixed in Firefox ESR 140.3,
                Thunderbird ESR 140.3, Firefox 143 and Thunderbird 143

* gnu/packages/librewolf.scm (librewolf): Update to 143.0-1.

Change-Id: Idaa54a67f36b10e990363371505437159add938d
This commit is contained in:
Ian Eure 2025-09-19 15:49:15 -07:00
parent 203243cc6a
commit 56f909eefd
No known key found for this signature in database
GPG key ID: 8499AC88F1A71CF2
1 changed files with 4 additions and 4 deletions
Download patch file Download diff file Expand all files Collapse all files

8
gnu/packages/librewolf.scm
View file

@ -220,17 +220,17 @@
;; It's used for cache validation and therefore can lead to strange bugs.
;; ex: date '+%Y%m%d%H%M%S'
;; or: (format-time-string "%Y%m%d%H%M%S")
(define %librewolf-build-id "20250829153926")
(define %librewolf-build-id "20250919153758")
(define-public librewolf
(package
(name "librewolf")
(version "142.0.1-1")
(version "143.0-1")
(source
(make-librewolf-source
#:version version
#:firefox-hash "1h0hx0jxwy4rshdq6s5l5hbj8gyhn2zssisr59skwf63si7b9bdh"
#:librewolf-hash "1myzm6jblnrw1vdf5xlynbfr6a9swwcaws689az7xgq6s6n0rc3y"
#:firefox-hash "10yz3rz2akf3b19hd2c5v77f038j0h6ci1asjb4w480q14wclibc"
#:librewolf-hash "1jq52g5v38f0dmpyhpr9x9mjsbnn7afq2cr113wmqpdz6ynl07kr"
#:l10n firefox-l10n))
(build-system gnu-build-system)
(arguments