diff options
| author | Ian Eure <ian@retrospec.tv> | 2025-07-27 20:22:40 -0700 |
|---|---|---|
| committer | Ian Eure <ian@retrospec.tv> | 2025-07-27 20:26:32 -0700 |
| commit | 7d8e69752a325314aa85fdd73f5da9168770aaac (patch) | |
| tree | 519019ba07f28764995130acfefd42161fe8631f | |
| parent | 82ff5a73f2e75dccfbdf94bb9751f127f1cc3196 (diff) | |
gnu: librewolf: Update to 141.0-1.librewolf-updates
LibreWolf 141.0 contains fixes for:
CVE-2025-8027: JavaScript engine only wrote partial return value to
stack
CVE-2025-8028: Large branch table could lead to truncated instruction
CVE-2025-8041: Incorrect URL truncation in Firefox for Android
CVE-2025-8042: Sandboxed iframe could start downloads
CVE-2025-8029: javascript: URLs executed on object and embed tags
CVE-2025-8036: DNS rebinding circumvents CORS
CVE-2025-8037: Nameless cookies shadow secure cookies
CVE-2025-8030: Potential user-assisted code execution in “Copy as
cURL” command
CVE-2025-8043: Incorrect URL truncation
CVE-2025-8031: Incorrect URL stripping in CSP reports
CVE-2025-8032: XSLT documents could bypass CSP
CVE-2025-8038: CSP frame-src was not correctly enforced for paths
CVE-2025-8039: Search terms persisted in URL bar
CVE-2025-8033: Incorrect JavaScript state machine for generators
CVE-2025-8044: Memory safety bugs fixed in Firefox 141 and Thunderbird
141
CVE-2025-8034: Memory safety bugs fixed in Firefox ESR 115.26, Firefox
ESR 128.13, Thunderbird ESR 128.13, Firefox ESR 140.1,
Thunderbird ESR 140.1, Firefox 141 and Thunderbird 141
CVE-2025-8040: Memory safety bugs fixed in Firefox ESR 140.1,
Thunderbird ESR 140.1, Firefox 141 and Thunderbird 141
CVE-2025-8035: Memory safety bugs fixed in Firefox ESR 128.13,
Thunderbird ESR 128.13, Firefox ESR 140.1, Thunderbird
ESR 140.1, Firefox 141 and Thunderbird 141
* gnu/packages/librewolf.scm (librewolf): Update to 141.0-1.
Change-Id: I13a4221178d9d928967fd8e01bd675e034219013
| -rw-r--r-- | gnu/packages/librewolf.scm | 8 |
1 files changed, 4 insertions, 4 deletions
diff --git a/gnu/packages/librewolf.scm b/gnu/packages/librewolf.scm index 74dcbf8c00..271e732054 100644 --- a/gnu/packages/librewolf.scm +++ b/gnu/packages/librewolf.scm @@ -212,17 +212,17 @@ ;; It's used for cache validation and therefore can lead to strange bugs. ;; ex: date '+%Y%m%d%H%M%S' ;; or: (format-time-string "%Y%m%d%H%M%S") -(define %librewolf-build-id "20250716174115") +(define %librewolf-build-id "20250727200313") (define-public librewolf (package (name "librewolf") - (version "140.0.4-1") + (version "141.0-1") (source (make-librewolf-source #:version version - #:firefox-hash "0xz3b76av9va64b04w4bvikfg8n61rs1sfh5q2l4vkj39yrvw9s0" - #:librewolf-hash "1cqk27jzdrmnzx4crkwxg6g3k8l7bxy2fyfhngkfy4la96vjgdpz" + #:firefox-hash "1j1m6niw47xi6aj9rlcny8jhqkppjvg22cq7mikim93wpf22m640" + #:librewolf-hash "18k3d09dr6jkhr6g8z8c3aa7jj0ynjalkmvc3nj7wd98mgvky2xj" #:l10n firefox-l10n)) (build-system gnu-build-system) (arguments |