From: Ian Eure <ian@retrospec.tv>
To: 71832@debbugs.gnu.org
Cc: control@debbugs.gnu.org, Ian Eure <ian@retrospec.tv>
Subject: [bug#71832] [PATCH v5 0/3] [SECURITY] Add nss-rapid; update Librewolf to 128.0.3-1
Date: Tue, 30 Jul 2024 20:54:58 -0700 [thread overview]
Message-ID: <20240731035501.27512-1-ian@retrospec.tv> (raw)
In-Reply-To: <20240629035716.21504-1-ian@retrospec.tv>
retitle 71832 [PATCH v5 0/3] [SECURITY] Add nss-rapid; update Librewolf to 128.0.3-1
thanks
New upstream versions of nss-rapid and LibreWolf. This contains security fixes for:
CVE-2024-6605: Firefox Android missed activation delay to prevent tapjacking debugger eval code
CVE-2024-6606: Out-of-bounds read in clipboard component debugger eval code
CVE-2024-6607: Leaving pointerlock by pressing the escape key could be prevented debugger eval code
CVE-2024-6608: Cursor could be moved out of the viewport using pointerlock. debugger eval code
CVE-2024-6609: Memory corruption in NSS debugger eval code
CVE-2024-6610: Form validation popups could block exiting full-screen mode debugger eval code
CVE-2024-6600: Memory corruption in WebGL API debugger eval code
CVE-2024-6601: Race condition in permission assignment debugger eval code
CVE-2024-6602: Memory corruption in NSS debugger eval code
CVE-2024-6603: Memory corruption in thread creation debugger eval code
CVE-2024-6611: Incorrect handling of SameSite cookies debugger eval code
CVE-2024-6612: CSP violation leakage when using devtools debugger eval code
CVE-2024-6613: Incorrect listing of stack frames debugger eval code
CVE-2024-6614: Incorrect listing of stack frames debugger eval code
CVE-2024-6604: Memory safety bugs fixed in Firefox 128, Firefox ESR 115.13, Thunderbird 128, and Thunderbird 115.13 debugger eval code
CVE-2024-6615: Memory safety bugs fixed in Firefox 128 and Thunderbird 128
This also includes a fix for the application icon not showing up in DEs.
Ian Eure (3):
gnu: Add nss-rapid.
gnu: gnuzilla: Add skr to all-mozilla-locales.
gnu: librewolf: Update to 128.0.3-1
gnu/packages/gnuzilla.scm | 1 +
gnu/packages/librewolf.scm | 1054 ++++++++++++++++++------------------
gnu/packages/nss.scm | 80 ++-
3 files changed, 606 insertions(+), 529 deletions(-)
--
2.45.2
next prev parent reply other threads:[~2024-07-31 3:56 UTC|newest]
Thread overview: 33+ messages / expand[flat|nested] mbox.gz Atom feed top
2024-06-29 3:57 [bug#71832] [PATCH 0/2] Add nss-latest; updte Librewolf to 127.0.2-2 Ian Eure
2024-06-29 3:59 ` [bug#71832] [PATCH 1/2] gnu: Add nss-latest Ian Eure
2024-06-29 3:59 ` [bug#71832] [PATCH 2/2] gnu: librewolf: Update to 127.0.2-1 Ian Eure
2024-06-29 17:22 ` [bug#71832] [PATCH v2 0/2] Add nss-latest; update Librewolf to 127.0.2-2 Ian Eure
2024-06-29 17:22 ` [bug#71832] [PATCH v2 1/2] gnu: Add nss-latest Ian Eure
2024-06-29 17:22 ` [bug#71832] [PATCH v2 2/2] gnu: librewolf: Update to 127.0.2-1 Ian Eure
2024-07-02 0:21 ` [bug#71832] [PATCH v3 0/2] Add nss-rapid; updte Librewolf to 127.0.2-2 Ian Eure
2024-07-02 0:21 ` [bug#71832] [PATCH v3 1/2] gnu: Add nss-rapid Ian Eure
2024-07-02 0:21 ` [bug#71832] [PATCH v3 2/2] gnu: librewolf: Update to 127.0.2-1 Ian Eure
2024-07-08 8:55 ` [bug#71832] Closing one bug Andreas Enge
2024-07-01 19:53 ` [bug#71882] [PATCH] gnu: librewolf: Fix building on aarch64-linux Remco van 't Veer
[not found] ` <handler.71882.D71882.172042897930179.notifdone@debbugs.gnu.org>
2024-07-08 10:16 ` [bug#71882] closed (Closing one bug) Remco van 't Veer
2024-07-17 3:06 ` [bug#71832] [PATCH v4 0/3] Add nss-rapid; update Librewolf to 128.0-2 Ian Eure
2024-07-17 3:06 ` [bug#71832] [PATCH v4 1/3] gnu: Add nss-rapid Ian Eure
2024-07-17 3:06 ` [bug#71832] [PATCH v4 2/3] gnu: gnuzilla: Add skr to all-mozilla-locales Ian Eure
2024-07-17 3:06 ` [bug#71832] [PATCH v4 3/3] gnu: librewolf: Update to 128.0-2 Ian Eure
2024-07-21 16:17 ` [bug#71832] [PATCH 0/2] Add nss-latest; updte Librewolf to 127.0.2-2 Ian Eure
2024-07-31 3:54 ` Ian Eure [this message]
2024-07-31 3:54 ` [bug#71832] [PATCH v5 1/3] gnu: Add nss-rapid Ian Eure
2024-07-31 3:55 ` [bug#71832] [PATCH v5 2/3] gnu: gnuzilla: Add skr to all-mozilla-locales Ian Eure
2024-07-31 3:55 ` [bug#71832] [PATCH v5 3/3] gnu: librewolf: Update to 128.0.3-1 Ian Eure
2024-08-17 19:32 ` [bug#71832] [PATCH v6 0/3] [SECURITY] Update LibreWolf to 129.0.1-1; add nss-rapid Ian Eure
2024-08-17 19:32 ` [bug#71832] [PATCH v6 1/3] gnu: gnuzilla: Add skr to all-mozilla-locales Ian Eure
2024-08-17 19:32 ` [bug#71832] [PATCH v6 2/3] gnu: Add nss-rapid Ian Eure
2024-08-17 22:46 ` Vagrant Cascadian
2024-08-17 23:33 ` Vagrant Cascadian
2024-08-17 23:51 ` Ian Eure
2024-08-18 2:00 ` Vagrant Cascadian
2024-08-18 3:38 ` Vagrant Cascadian
2024-08-18 3:48 ` Ian Eure
2024-08-17 19:32 ` [bug#71832] [PATCH v6 3/3] gnu: librewolf: Update to 129.0.1-1 Ian Eure
2024-08-18 3:46 ` [bug#71832] [PATCH v6 0/3] [SECURITY] Update LibreWolf to 129.0.1-1; add nss-rapid Vagrant Cascadian
2024-08-20 5:46 ` bug#71832: " Vagrant Cascadian
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20240731035501.27512-1-ian@retrospec.tv \
--to=ian@retrospec.tv \
--cc=71832@debbugs.gnu.org \
--cc=control@debbugs.gnu.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
Code repositories for project(s) associated with this external index
https://git.savannah.gnu.org/cgit/guix.git
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.