Ian Eure <ian@HIDDEN>
to control <at> debbugs.gnu.org.
Full text available.
Received: (at submit) by debbugs.gnu.org; 18 May 2025 21:43:42 +0000
From debbugs-submit-bounces <at> debbugs.gnu.org Sun May 18 17:43:42 2025
Received: from localhost ([127.0.0.1]:32981 helo=debbugs.gnu.org)
by debbugs.gnu.org with esmtp (Exim 4.84_2)
(envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>)
id 1uGlnJ-0004Yl-NK
for submit <at> debbugs.gnu.org; Sun, 18 May 2025 17:43:42 -0400
Received: from lists.gnu.org ([2001:470:142::17]:38560)
by debbugs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256)
(Exim 4.84_2) (envelope-from <ian@HIDDEN>) id 1uGlnG-0004YR-CW
for submit <at> debbugs.gnu.org; Sun, 18 May 2025 17:43:39 -0400
Received: from eggs.gnu.org ([2001:470:142:3::10])
by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256)
(Exim 4.90_1) (envelope-from <ian@HIDDEN>) id 1uGlnA-0004N6-RI
for guix-patches@HIDDEN; Sun, 18 May 2025 17:43:32 -0400
Received: from fhigh-a2-smtp.messagingengine.com ([103.168.172.153])
by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256)
(Exim 4.90_1) (envelope-from <ian@HIDDEN>) id 1uGln8-0007Oa-Fq
for guix-patches@HIDDEN; Sun, 18 May 2025 17:43:32 -0400
Received: from phl-compute-08.internal (phl-compute-08.phl.internal
[10.202.2.48])
by mailfhigh.phl.internal (Postfix) with ESMTP id B34F411400F8;
Sun, 18 May 2025 17:43:27 -0400 (EDT)
Received: from phl-mailfrontend-01 ([10.202.2.162])
by phl-compute-08.internal (MEProxy); Sun, 18 May 2025 17:43:27 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=retrospec.tv; h=
cc:cc:content-transfer-encoding:content-type:date:date:from:from
:in-reply-to:message-id:mime-version:reply-to:subject:subject:to
:to; s=fm2; t=1747604607; x=1747691007; bh=j0qCtQu8Uxo7xgCToHJCk
GWtzMLhUUwxEavzrk3yjdQ=; b=Ic5m/4vbB1N0EDmq5xJ6yRpgDqOw5RAq1nhGR
E0sRRaK7lJTAC2BP7ccwTHI2BkHNvabDSfU05PKrYg06/f/LtjM4/oJ8vpgRkE+O
cDV7lZT0GKCb58LKu6/Kqx1b//u8/r7kqu+zbKuaW8wxfFszzOAz4DZtywteh/B+
c7UNzN/61+DN5Etc1aTn/0RWyEMOT3QGiagZovrqulfGxwZQqzgsSw4P6pWfFdgk
/GJfTUnKqUoEtO0C8MNmswaG7opCicpLIVjqm2fiiAeJowONxbdq1tj5S4D9sDA4
JaWZXroRX2JHS0+iyQjcBLHQMRuDHtPNu3wkbYTp42sdmE4wA==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=
messagingengine.com; h=cc:cc:content-transfer-encoding
:content-type:date:date:feedback-id:feedback-id:from:from
:in-reply-to:message-id:mime-version:reply-to:subject:subject:to
:to:x-me-proxy:x-me-sender:x-me-sender:x-sasl-enc; s=fm3; t=
1747604607; x=1747691007; bh=j0qCtQu8Uxo7xgCToHJCkGWtzMLhUUwxEav
zrk3yjdQ=; b=AFsApG/9jy6j1WGWbfOBT+MFvkhPk1wejHbgmnot855qNK+t21E
W2E49OAKEJ5ywBNG0AC5U1aJEBynLV9P+TPIJm1KAiNESD8BLQPSxiTo3lANy0AS
uv2v+JMaW7YTdNj4cvY0XPOd35ZQPQxLoszYZoUnKJwTQVBL2bHnO4TwV18Wzgbl
XY3GRP4REHLGmSkoqIf+sHH38Bg/u4SP3m5I52tQPUqmjL9Nx/fU8t5mzLRVv3us
rEN71E+eWS/D0a5xKKs9YdkwyqA3k0htFYHawhFkvj3Ppz1ePs6t08c1nPtxqEAh
Qs4MOaqeEZY6lnMIC1hmtQQqCKV1gWoldSw==
X-ME-Sender: <xms:f1QqaIgdMeKW_omH1QLTfEBdsRaJB5VCZcxXRPc2NRGEzRr0G0ur6A>
<xme:f1QqaBDfx-AJboNoBM-WNruRsfkD2X5j1FsaU26NmOQ_ow0HoZw80WScCJxordrHD
yPF44a6iiQ4N7G_aw>
X-ME-Received: <xmr:f1QqaAGyosGe-a6klZx1SAVYIeM3c41cPookBm22F27H99SCBQEz04b3djO0NPiYOhxP9YgHbvS8GCe4MWGkdZmt1kmNIskP3U1ccFrJgKmS>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgeefvddrtddtgdefudelieduucetufdoteggodetrf
dotffvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdggtfgfnhhsuhgsshgtrhhisggv
pdfurfetoffkrfgpnffqhgenuceurghilhhouhhtmecufedttdenucenucfjughrpefhvf
evufffkffoggfgsedtkeertdertddtnecuhfhrohhmpefkrghnucfguhhrvgcuoehirghn
sehrvghtrhhoshhpvggtrdhtvheqnecuggftrfgrthhtvghrnhephfeiveeliedukeffhe
fhleeijedtveelleetgefggfehkeeljeehtdeguddvvefgnecuvehluhhsthgvrhfuihii
vgeptdenucfrrghrrghmpehmrghilhhfrhhomhepihgrnhesrhgvthhrohhsphgvtgdrth
hvpdhnsggprhgtphhtthhopedvpdhmohguvgepshhmthhpohhuthdprhgtphhtthhopehg
uhhigidqphgrthgthhgvshesghhnuhdrohhrghdprhgtphhtthhopehirghnsehrvghtrh
hoshhpvggtrdhtvh
X-ME-Proxy: <xmx:f1QqaJQcAtoO9PMiywhw-vS-y2cXOfTH6rYr_BgsZXyoWfAiPW5tBg>
<xmx:f1QqaFznRqWVa484xpzItTS-KjjFmS7FJoSWduMV6mJAewAqwKJJ6A>
<xmx:f1QqaH7Gw6TAJm9AV1QCVstFEPUhKDqOeydDvJKz9QxJEvi3WMwB2A>
<xmx:f1QqaCxJdr5Gu1eBO53SabwnKmVuWVvCSsahRxAcZ4wlup-e3lzslA>
<xmx:f1QqaKzGKFmfANthU5skhfmww26u7X4de96WqBc3tj7Il84O4cB5XWOg>
Feedback-ID: id9014242:Fastmail
Received: by mail.messagingengine.com (Postfix) with ESMTPA; Sun,
18 May 2025 17:43:26 -0400 (EDT)
From: Ian Eure <ian@HIDDEN>
To: guix-patches@HIDDEN
Subject: [PATCH] gnu: librewolf: Update to 138.0.4-1 [security fixes].
Date: Sun, 18 May 2025 14:43:21 -0700
Message-ID: <20250518214321.26115-1-ian@HIDDEN>
X-Mailer: git-send-email 2.49.0
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
Received-SPF: pass client-ip=103.168.172.153; envelope-from=ian@HIDDEN;
helo=fhigh-a2-smtp.messagingengine.com
X-Spam_score_int: -37
X-Spam_score: -3.8
X-Spam_bar: ---
X-Spam_report: (-3.8 / 5.0 requ) BAYES_00=-1.9, DKIM_SIGNED=0.1,
DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1,
RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H5=-1, RCVD_IN_MSPIKE_WL=-0.01,
RCVD_IN_VALIDITY_CERTIFIED_BLOCKED=0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001,
SPF_HELO_PASS=-0.001, SPF_PASS=-0.001 autolearn=ham autolearn_force=no
X-Spam_action: no action
X-Spam-Score: 0.7 (/)
X-Debbugs-Envelope-To: submit
Cc: Ian Eure <ian@HIDDEN>
X-BeenThere: debbugs-submit <at> debbugs.gnu.org
X-Mailman-Version: 2.1.18
Precedence: list
List-Id: <debbugs-submit.debbugs.gnu.org>
List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>,
<mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe>
List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/>
List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org>
List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help>
List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>,
<mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe>
Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org
Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org>
X-Spam-Score: -0.3 (/)
Fixes:
CVE-2025-4918: Out-of-bounds access when resolving Promise objects
CVE-2025-4919: Out-of-bounds access when optimizing linear sums
* gnu/packages/librewolf.scm (librewolf): Update to 138.0.4-1.
Change-Id: I2c2b7b5a043b37b60f0378f115f0f31fa3993618
---
gnu/packages/librewolf.scm | 8 ++++----
1 file changed, 4 insertions(+), 4 deletions(-)
diff --git a/gnu/packages/librewolf.scm b/gnu/packages/librewolf.scm
index 063a89420fe..db4a7673858 100644
--- a/gnu/packages/librewolf.scm
+++ b/gnu/packages/librewolf.scm
@@ -207,17 +207,17 @@ (define rust-librewolf rust-1.82)
;; Update this id with every update to its release date.
;; It's used for cache validation and therefore can lead to strange bugs.
;; ex: date '+%Y%m%d%H%M%S'
-(define %librewolf-build-id "20250502155055")
+(define %librewolf-build-id "20250518101454")
(define-public librewolf
(package
(name "librewolf")
- (version "138.0.3-1")
+ (version "138.0.4-1")
(source
(make-librewolf-source
#:version version
- #:firefox-hash "1r0kam26cz5rz39n6zcc2hrbav6dxlfrsa0qhhfjlnv33ns3lzx2"
- #:librewolf-hash "1bf9sa5radjr7g6ng7kqy2ss13c0q6vkq9dfzj5y998ifxw19s4c"
+ #:firefox-hash "0mjh2if31ibx68a66cvxh5sa20xb78gdn9wdw0wv745dinq0vlrz"
+ #:librewolf-hash "1g4r2k8z5i25gcc8gfspixbi21dddyk4yg6wv7nya44swy51j7r9"
#:l10n firefox-l10n))
(build-system gnu-build-system)
(arguments
--
2.49.0
Ian Eure <ian@HIDDEN>:guix-patches@HIDDEN.
Full text available.guix-patches@HIDDEN:bug#78487; Package guix-patches.
Full text available.
GNU bug tracking system
Copyright (C) 1999 Darren O. Benham,
1997 nCipher Corporation Ltd,
1994-97 Ian Jackson.