mirror/guix
mirror/guix
1
Fork 0
mirror of https://https.git.savannah.gnu.org/git/guix.git/ synced 2025-07-13 10:30:43 +02:00
Code Releases Activity
guix/gnu/packages/patches/librewolf-neuter-locale-download.patch
Ian Eure 280aa6b57d
gnu: librewolf: Update to 132.0-1 [security fixes]. 
New upstream version.  The 132.0-2-1 release switches to the firefox-l10n
repository, necessitating rework of locale handling.

131.0.3-1 fixes CVEs:

CVE-2024-9936: Undefined behavior in selection node cache

132.0-1 fixes CVEs:

CVE-2024-10458: Permission leak via embed or object elements
CVE-2024-10459: Use-after-free in layout with accessibility
CVE-2024-10460: Confusing display of origin for external protocol
                handler prompt
CVE-2024-10461: XSS due to Content-Disposition being ignored in
                multipart/x-mixed-replace response
CVE-2024-10462: Origin of permission prompt could be spoofed by long
                URL
CVE-2024-10463: Cross origin video frame leak
CVE-2024-10468: Race conditions in IndexedDB
CVE-2024-10464: History interface could have been used to cause a
                Denial of Service condition in the browser
CVE-2024-10465: Clipboard "paste" button persisted across tabs
CVE-2024-10466: DOM push subscription message could hang Firefox
CVE-2024-10467: Memory safety bugs fixed in Firefox 132, Thunderbird
                132, Firefox ESR 128.4, and Thunderbird 128.4

* gnu/packages/librewolf.scm (librewolf): Update to 132.0-1.

Change-Id: I4afbcb496a8b0a329254762259cd1598d574761e
Signed-off-by: Ludovic Courtès <ludo@gnu.org>
2024-11-06 17:23:35 +01:00

17 lines
870 B
Diff
Raw Permalink Blame History

diff --git a/scripts/librewolf-patches.py b/scripts/librewolf-patches.py
index 48dc6bc..01a6c58 100755
--- a/scripts/librewolf-patches.py
+++ b/scripts/librewolf-patches.py
@@ -147,12 +147,6 @@ def librewolf_patches():
with open(file, "w") as f:
f.write("{}-{}".format(version,release))
- print("-> Downloading locales from https://github.com/mozilla-l10n/firefox-l10n")
- with TemporaryDirectory() as tmpdir:
- exec(f"wget -qO {tmpdir}/l10n.zip 'https://codeload.github.com/mozilla-l10n/firefox-l10n/zip/refs/heads/main'")
- exec(f"unzip -qo {tmpdir}/l10n.zip -d {tmpdir}/l10n")
- exec(f"mv {tmpdir}/l10n/firefox-l10n-main lw/l10n")
-
print("-> Patching appstrings.properties")
# Why is "Firefox" hardcoded there???
exec("find . -path '*/appstrings.properties' -exec sed -i s/Firefox/LibreWolf/ {} \;")
View git blame Copy permalink