This reverts commit e94dcbf3c2.
"gnu: icecat: Update to 102.10.0-guix0-preview1 [security fixes]." was
already pushed as 3ab983d630. And the
`icecat-102.9.0-source` was removed in
"gnu: icedove: Update to 102.10.0 [security fixes]." a741b554cb.
* gnu/packages/freedesktop.scm (telepathy-idle): Update to 0.2.2-0.b516eab.
[inputs]: Replace python-2 with python-wrapper, python2-dbus with python-dbus.
* gnu/packages/fontutils.scm (python-afdko): Update to 3.9.4.
[source]: Remove patch.
[arguments]: Disable a few extra tests in the check phase override.
Delete use-system-libxml2 phase. Update patch-problematic-requirements phase.
* gnu/packages/patches/python-afdko-suppress-copyright-test.patch: Delete
file.
* gnu/local.mk (dist_patch_DATA): De-register it.
* gnu/packages/python-xyz.scm (python-fonttools-next): Update to 4.39.3.
(python-fonttools-full) [arguments]: Skip the MtiTest suite in the check phase
override.
Includes fixes for CVE-2023-1945, CVE-2023-29531, CVE-2023-29532,
CVE-2023-29533, CVE-2023-29535, CVE-2023-29536, CVE-2023-29539,
CVE-2023-29541, CVE-2023-29542, CVE-2023-29545, CVE-2023-29548,
CVE-2023-29550, and MFSA-TMP-2023-0001.
* gnu/packages/gnuzilla.scm (%icecat-base-version, %icecat-build-id): Update.
(icecat-source): Update gnuzilla commit, base version, and hashes.
Remove the vestigial RENAME_CMD environment variable setting.
(icecat-102.9.0-source): New variable.
(icedove-source): Use it.
Several recent Heimdal releases are affected by the serious vulnerability
CVE-2022-45142, which NIST scored as "7.5 HIGH". [1]
At the time of writing, the upstream developers had not yet cut any releases
post-7.8.0, which is why the patch is being applied here.
The patch was extracted from Helmut Grohne's public vulnerability
disclosure. [2]
[1] https://nvd.nist.gov/vuln/detail/CVE-2022-45142
[2] https://www.openwall.com/lists/oss-security/2023/02/08/1
* gnu/packages/patches/heimdal-CVE-2022-45142.patch: New patch.
* gnu/local.mk (dist_patch_DATA): Register it.
* gnu/packages/kerberos.scm (heimdal)[source]: Apply it.
Signed-off-by: Maxim Cournoyer <maxim.cournoyer@gmail.com>
* gnu/packages/scheme.scm (gerbil)[source, arguments]: Reindent.
[arguments]: Rewrite using G-expressions. Do not return #t from custom
phases. Use #:tests? instead of deleting the check phase.
Signed-off-by: Ludovic Courtès <ludo@gnu.org>
* gnu/packages/golang.scm (go-1.17)[arguments]: Use custom
'patch-gcc:lib phase on powerpc64le-linux. Add a phase to adjust the
allowed size of an executable in the test suite.
[inputs]: Keep gcc:lib as an input on powerpc64le-linux.
(go-1.18)[arguments]: Delete custom 'adjust-test-suite phase.
Deprecate using strings for these fields and prefer user-account
(resp. user-group) instead to avoid duplication within account-service-type.
Fixes#61570 <https://issues.guix.gnu.org/61570>.
* gnu/services/audio.scm (%mpd-user, %mpd-group)
(mpd-serialize-user-account, mpd-serialize-user-group)
(mpd-user-sanitizer, mpd-group-sanitizer): New variables.
(mpd-configuration)[user]: Use user-account as value type.
Sanitize via mpd-user-sanitizer.
[group]: Use user-group as value type.
Sanitize via mpd-group-sanitizer.
(mpd-shepherd-service): Adjust accordingly.
(mpd-accounts): Likewise.
* doc/guix.texi (Audio Services)[Music Player Daemon]: Likewise.
Signed-off-by: Liliana Marie Prikler <liliana.prikler@gmail.com>
* gnu/services/audio.scm (mpd-output)[mixer-type]: Use sanitizer to
accept both strings and symbols as values.
Signed-off-by: Liliana Marie Prikler <liliana.prikler@gmail.com>