From 41c69c8fe5471a4069a5129736aeec1ec5b26dca Mon Sep 17 00:00:00 2001 From: Jonathan Brielmaier Date: Sat, 17 Dec 2022 13:57:35 +0100 Subject: [PATCH] nongnu: firefox: Update to 108.0.1 [security fixes]. Fixes CVE-2022-46871, CVE-2022-46872, CVE-2022-46873, CVE-2022-46874, CVE-2022-46875, CVE-2022-46877, CVE-2022-46878 and CVE-2022-46879. * nongnu/packages/mozilla.scm (rust-firefox): Update to rust-1.63. (firefox): Update to 108.0.1. --- nongnu/packages/mozilla.scm | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/nongnu/packages/mozilla.scm b/nongnu/packages/mozilla.scm index 5de742b..8bac88b 100644 --- a/nongnu/packages/mozilla.scm +++ b/nongnu/packages/mozilla.scm @@ -90,7 +90,7 @@ ;; https://searchfox.org under the particular firefox release, like ;; mozilla-esr102. (define-public rust-firefox-esr rust) ; 1.60 is the default in Guix -(define-public rust-firefox (@@ (gnu packages rust) rust-1.61)) ; 1.63 is also listed, but 1.61 is the minimum needed +(define-public rust-firefox (@@ (gnu packages rust) rust-1.63)) ; 1.63 is also listed, but 1.61 is the minimum needed ;; rust-cbindgen-0.23/0.24 dependencies (define-public rust-unicode-ident-1 @@ -665,20 +665,20 @@ MOZ_ENABLE_WAYLAND=1 exec ~a $@\n" ;; Update this id with every firefox update to it's release date. ;; It's used for cache validation and therefor can lead to strange bugs. -(define %firefox-build-id "20221129000000") +(define %firefox-build-id "20221216000000") (define-public firefox (package (inherit firefox-esr) (name "firefox") - (version "107.0.1") + (version "108.0.1") (source (origin (method url-fetch) (uri (string-append "https://archive.mozilla.org/pub/firefox/releases/" version "/source/firefox-" version ".source.tar.xz")) (sha256 - (base32 "0iq67r9ik6zng9m8zzrsaf1d1fvhpsdpf66whgbb0hwipawm16g2")))) + (base32 "1shi0s4zhs414gxaf7ysa79jj4yljb6gcsr70cz3h0dd1l9sq8cq")))) (arguments (substitute-keyword-arguments (package-arguments firefox-esr) ((#:phases phases)