guix/gnu
Ian Eure aa250f071a
gnu: librewolf: Update to 130.0.1-1. [security fixes]
This patch:

- Updates LibreWolf to the latest version
- Removes the code which disabled encoding_rs.patch from upstream.  It’s no
  longer in the repo, so the code did nothing, and the underlying issue (Guix
  being stuck with an old Rust version) has been fixed.
- Integrates changes from #72265 with some slight tweaks.  This should allow
  LibreWolf to use accelerated video decoding on supported hardware.
- Neuters the GenAI chat feature, which direcly integrates with non-free
  services, by excluding it from the build and locking the preferences which
  would enable it.

Fixes:
CVE-2024-8385: WASM type confusion involving ArrayTypes
CVE-2024-8381: Type confusion when looking up a property name in a "with" block
CVE-2024-8388: Fullscreen notice on Android could be hidden under various panels and OS prompts
CVE-2024-8382: Internal event interfaces were exposed to web content when browser EventHandler listener callbacks ran
CVE-2024-8383: Firefox did not ask before openings news: links in an external application
CVE-2024-8384: Garbage collection could mis-color cross-compartment objects in OOM conditions
CVE-2024-8386: SelectElements could be shown over another site if popups are allowed
CVE-2024-8387: Memory safety bugs fixed in Firefox 130, Firefox ESR 128.2, and Thunderbird 128.2
CVE-2024-8389: Memory safety bugs fixed in Firefox 130

* gnu/packages/librewolf.scm (librewolf): Update to 130.0.1-1.

Change-Id: I764e6e66c5bfdc14a87b7ea59c29780a1f16769a
Signed-off-by: Andrew Tropin <andrew@trop.in>
2024-09-24 11:03:22 +04:00
..
bootloader
build file-systems: Add support for exFAT. 2024-09-01 02:00:00 +02:00
home home: services: shepherd: Replace use of deprecated ‘action’ procedure. 2024-09-16 00:16:20 +02:00
installer installer: Create ext4 file systems with ‘-O large_dir’. 2024-08-31 19:06:38 +02:00
machine
packages gnu: librewolf: Update to 130.0.1-1. [security fixes] 2024-09-24 11:03:22 +04:00
services services: file-system: Do not try to unmount /dev and /. 2024-09-19 19:03:08 +02:00
system images: wsl2: Update comment. 2024-09-08 02:00:00 +02:00
tests services: agate: Change variable names and add system test. 2024-08-31 19:06:39 +02:00
artwork.scm
bootloader.scm
ci.scm
compression.scm
home.scm
image.scm
installer.scm
local.mk gnu: Add gemrb-0.9.3. 2024-09-21 09:38:48 +02:00
machine.scm
packages.scm
services.scm services: Warn about unprivileged privileged-programs. 2024-09-08 02:00:00 +02:00
system.scm
tests.scm