ryan77627/guix
1
0
Fork 0
mirror of https://git.in.rschanz.org/ryan77627/guix.git synced 2024-11-07 15:36:20 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions

gnu: icecat: Update to 102.11.0-guix0-preview1 [security fixes].

Browse source 
Includes fixes for CVE-2023-32205, CVE-2023-32206, CVE-2023-32207,
CVE-2023-32211, CVE-2023-32212, CVE-2023-32213, CVE-2023-32214, and
CVE-2023-32215.

* gnu/packages/gnuzilla.scm (%icecat-base-version, %icecat-build-id): Update.
(icecat-source): Update gnuzilla commit, base version, and hashes.
This commit is contained in:
Mark H Weaver 2023-05-09 02:38:56 -04:00
parent 5b58608f56
commit 7f89eee664
No known key found for this signature in database
GPG key ID: 7CEF29847562C516
1 changed files with 6 additions and 6 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

12
gnu/packages/gnuzilla.scm
View file

@ -518,9 +518,9 @@ (define all-mozilla-locales
;; XXXX: Workaround 'snippet' limitations.
(define computed-origin-method (@@ (guix packages) computed-origin-method))
(define %icecat-base-version "102.10.0")
(define %icecat-base-version "102.11.0")
(define %icecat-version (string-append %icecat-base-version "-guix0-preview1"))
(define %icecat-build-id "20230411000000") ;must be of the form YYYYMMDDhhmmss
(define %icecat-build-id "20230509000000") ;must be of the form YYYYMMDDhhmmss
;; 'icecat-source' is a "computed" origin that generates an IceCat tarball
;; from the corresponding upstream Firefox ESR tarball, using the 'makeicecat'
@ -540,12 +540,12 @@ (define icecat-source
"firefox-" upstream-firefox-version ".source.tar.xz"))
(sha256
(base32
"1y7v19xxl6jchywd0zxy5vr4pj23pi6di4lhlivxpki2pkgm8scc"))))
"0cyfij00i9m1pwwyfhiq2qasbfr2ykdwziqykj8878kyjvkj1wg7"))))
;; The upstream-icecat-base-version may be older than the
;; %icecat-base-version.
(upstream-icecat-base-version "102.10.0")
(gnuzilla-commit "15c6c2229a053cdcc064eda89cee07f18efac35d")
(upstream-icecat-base-version "102.11.0")
(gnuzilla-commit "5a1894fc966840dc242110ec0459471c637a4675")
(gnuzilla-source
(origin
(method git-fetch)
@ -557,7 +557,7 @@ (define icecat-source
(string-take gnuzilla-commit 8)))
(sha256
(base32
"0v3wak2fd9bmq1j8k8k5xw0i4xbqy7fbasycr4swaqmsaf22sdv4"))))
"1816lm4cl45l1zbc043827rfnzzzxckhxk16gvj3a8kyg7fxvv3v"))))
;; 'search-patch' returns either a valid file name or #f, so wrap it
;; in 'assume-valid-file-name' to avoid 'local-file' warnings.