GNU bug report logs -
#70618
[PATCH 0/3] Update LibreWolf to 125.0.2-1
Previous Next
Reported by: Ian Eure <ian <at> retrospec.tv>
Date: Sun, 28 Apr 2024 00:33:01 UTC
Severity: normal
Tags: patch
Done: Maxim Cournoyer <maxim.cournoyer <at> gmail.com>
Bug is archived. No further changes may be made.
To add a comment to this bug, you must first unarchive it, by sending
a message to control AT debbugs.gnu.org, with unarchive 70618 in the body.
You can then email your comments to 70618 AT debbugs.gnu.org in the normal way.
Toggle the display of automated, internal messages from the tracker.
Report forwarded
to
guix-patches <at> gnu.org:
bug#70618; Package
guix-patches.
(Sun, 28 Apr 2024 00:33:02 GMT)
Full text and
rfc822 format available.
Acknowledgement sent
to
Ian Eure <ian <at> retrospec.tv>:
New bug report received and forwarded. Copy sent to
guix-patches <at> gnu.org.
(Sun, 28 Apr 2024 00:33:02 GMT)
Full text and
rfc822 format available.
Message #5 received at submit <at> debbugs.gnu.org (full text, mbox):
New upstream release. A few things to note:
- nss / nss-certs needs a bump from 3.98->3.99, as this is what LibreWolf wants in order to build.
- Clang 13.x (the Guix default) segfaulted when building LibreWolf and suggested that I file a bug report. Switching to clang/LLVM 18 resolved the issue.
LibreWolf 125.0.2-1 resolves:
CVE-2024-3852 (high)
CVE-2024-3853 (high)
CVE-2024-3854 (high)
CVE-2024-3855 (high)
CVE-2024-3856 (high)
CVE-2024-3857 (high)
CVE-2024-3858 (high)
CVE-2024-3859 (moderate)
CVE-2024-3860 (moderate)
CVE-2024-3861 (moderate)
CVE-2024-3862 (moderate)
CVE-2024-3302 (low)
CVE-2024-3864 (high)
CVE-2024-3865 (high)
Ian Eure (3):
gnu: nss/fixed: Update to 3.99.
gnu: nss-certs: Update to 3.99.
gnu: librewolf: Update to 125.0.2-1.
gnu/packages/certs.scm | 6 +++---
gnu/packages/librewolf.scm | 15 ++++++++-------
gnu/packages/nss.scm | 4 ++--
3 files changed, 13 insertions(+), 12 deletions(-)
base-commit: 8d29f416a9378d30f63c2a95f1bd1a420d9ccab4
--
2.41.0
Information forwarded
to
guix-patches <at> gnu.org:
bug#70618; Package
guix-patches.
(Sun, 28 Apr 2024 00:43:02 GMT)
Full text and
rfc822 format available.
Message #8 received at 70618 <at> debbugs.gnu.org (full text, mbox):
* gnu/packages/nss.scm (nss/fixed): Update to 3.99.
Change-Id: I5a2b461c0a13212a45c81304f0ea2c2f4bb777c1
---
gnu/packages/nss.scm | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/gnu/packages/nss.scm b/gnu/packages/nss.scm
index 8f6ed06e63..162e748094 100644
--- a/gnu/packages/nss.scm
+++ b/gnu/packages/nss.scm
@@ -250,7 +250,7 @@ (define-public nss
(license license:mpl2.0)))
(define-public nss/fixed
- (let ((actual-version "3.98"))
+ (let ((actual-version "3.99"))
(hidden-package
(package
(inherit nss)
@@ -265,7 +265,7 @@ (define-public nss/fixed
"nss-" actual-version ".tar.gz")))
(sha256
(base32
- "1kh98amfklrq6915n4mlbrcqghc3srm7rkzs9dkh21jwscrwqjgm"))))
+ "1g89ig40gfi1sp02gybvl2z818lawcnrqjzsws36cdva834c5maw"))))
(arguments
(substitute-keyword-arguments (package-arguments nss)
((#:phases phases)
--
2.41.0
Information forwarded
to
guix-patches <at> gnu.org:
bug#70618; Package
guix-patches.
(Sun, 28 Apr 2024 00:43:02 GMT)
Full text and
rfc822 format available.
Message #11 received at 70618 <at> debbugs.gnu.org (full text, mbox):
* gnu/packages/certs.scm (nss-certs): Update to 3.99.
Change-Id: I588bc385022df486e596cd6fc5a7363df919b80b
---
gnu/packages/certs.scm | 6 +++---
1 file changed, 3 insertions(+), 3 deletions(-)
diff --git a/gnu/packages/certs.scm b/gnu/packages/certs.scm
index 7078c7c8d1..00c6a93b92 100644
--- a/gnu/packages/certs.scm
+++ b/gnu/packages/certs.scm
@@ -188,10 +188,10 @@ (define-public nss-certs
(home-page "https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS")
(license license:mpl2.0)))
-(define-public nss-certs-3.98
+(define-public nss-certs-3.99
(package
(inherit nss-certs)
- (version "3.98")
+ (version "3.99")
(source (origin
(method url-fetch)
(uri (let ((version-with-underscores
@@ -202,7 +202,7 @@ (define-public nss-certs-3.98
"nss-" version ".tar.gz")))
(sha256
(base32
- "1kh98amfklrq6915n4mlbrcqghc3srm7rkzs9dkh21jwscrwqjgm"))))))
+ "1g89ig40gfi1sp02gybvl2z818lawcnrqjzsws36cdva834c5maw"))))))
(define-public le-certs
(package
--
2.41.0
Information forwarded
to
guix-patches <at> gnu.org:
bug#70618; Package
guix-patches.
(Sun, 28 Apr 2024 00:43:02 GMT)
Full text and
rfc822 format available.
Message #14 received at 70618 <at> debbugs.gnu.org (full text, mbox):
* gnu/packages/librewolf.scm (librewolf): Update to 125.0.2-1. Build with
LLVM/Clang 18; LLVM 13 (the default) segfaults on build. Minor style tweaks.
Change-Id: Ib515f1596b3ce2dd192baebf1a877b3c2dc8d7e2
---
gnu/packages/librewolf.scm | 15 ++++++++-------
1 file changed, 8 insertions(+), 7 deletions(-)
diff --git a/gnu/packages/librewolf.scm b/gnu/packages/librewolf.scm
index 1717bad0b5..fa83857c96 100644
--- a/gnu/packages/librewolf.scm
+++ b/gnu/packages/librewolf.scm
@@ -93,17 +93,17 @@ (define-module (gnu packages librewolf)
;; upstream. See the file taskcluster/ci/toolchain/rust.yml at
;; https://searchfox.org under the particular firefox release, like
;; mozilla-esr102.
-(define rust-librewolf rust) ; 1.60 is the default in Guix, 1.65 is the minimum.
+(define rust-librewolf rust) ; 1.75 is the default in Guix, 1.65 is the minimum.
;; Update this id with every update to its release date.
;; It's used for cache validation and therefore can lead to strange bugs.
;; ex: date '+%Y%m%d%H%M%S'
-(define %librewolf-build-id "20240326080003")
+(define %librewolf-build-id "20240427150329")
(define-public librewolf
(package
(name "librewolf")
- (version "124.0.1-1")
+ (version "125.0.2-1")
(source
(origin
(method url-fetch)
@@ -115,7 +115,7 @@ (define-public librewolf
version
".source.tar.gz"))
(sha256
- (base32 "1sks49nywzhvq5mik4ipm3vyyxv49s9hq6bfyk5d9r6f0nlydllf"))))
+ (base32 "09qzdaq9l01in9h4q14vyinjvvffycha2iyjqj5p4dd5jh6q5zma"))))
(build-system gnu-build-system)
(arguments
(list
@@ -227,7 +227,8 @@ (define-public librewolf
"\""))))
(find-files "." "Cargo\\.lock$"))
(for-each generate-all-checksums
- '("build" "dom/media"
+ '("build"
+ "dom/media"
"dom/webauthn"
"gfx"
"intl"
@@ -597,8 +598,8 @@ (define-public librewolf
(native-inputs (list alsa-lib
autoconf-2.13
`(,rust-librewolf "cargo")
- clang
- llvm
+ clang-18
+ llvm-18
m4
nasm
node-lts
--
2.41.0
Reply sent
to
Maxim Cournoyer <maxim.cournoyer <at> gmail.com>:
You have taken responsibility.
(Sun, 28 Apr 2024 14:44:02 GMT)
Full text and
rfc822 format available.
Notification sent
to
Ian Eure <ian <at> retrospec.tv>:
bug acknowledged by developer.
(Sun, 28 Apr 2024 14:44:02 GMT)
Full text and
rfc822 format available.
Message #19 received at 70618-done <at> debbugs.gnu.org (full text, mbox):
Hi,
Ian Eure <ian <at> retrospec.tv> writes:
> New upstream release. A few things to note:
>
> - nss / nss-certs needs a bump from 3.98->3.99, as this is what LibreWolf wants in order to build.
> - Clang 13.x (the Guix default) segfaulted when building LibreWolf and suggested that I file a bug report. Switching to clang/LLVM 18 resolved the issue.
>
> LibreWolf 125.0.2-1 resolves:
>
> CVE-2024-3852 (high)
> CVE-2024-3853 (high)
> CVE-2024-3854 (high)
> CVE-2024-3855 (high)
> CVE-2024-3856 (high)
> CVE-2024-3857 (high)
> CVE-2024-3858 (high)
> CVE-2024-3859 (moderate)
> CVE-2024-3860 (moderate)
> CVE-2024-3861 (moderate)
> CVE-2024-3862 (moderate)
> CVE-2024-3302 (low)
> CVE-2024-3864 (high)
> CVE-2024-3865 (high)
>
> Ian Eure (3):
> gnu: nss/fixed: Update to 3.99.
> gnu: nss-certs: Update to 3.99.
> gnu: librewolf: Update to 125.0.2-1.
Applied, thank you!
--
Thanks,
Maxim
bug archived.
Request was from
Debbugs Internal Request <help-debbugs <at> gnu.org>
to
internal_control <at> debbugs.gnu.org.
(Mon, 27 May 2024 11:24:06 GMT)
Full text and
rfc822 format available.
This bug report was last modified 1 year and 115 days ago.
Previous Next
GNU bug tracking system
Copyright (C) 1999 Darren O. Benham,
1997,2003 nCipher Corporation Ltd,
1994-97 Ian Jackson.