guix/gnu/packages/librewolf.scm at 87b90f04891c88cf871bd02d76088f0b3bb2df1e

mirror of https://git.savannah.gnu.org/git/guix.git synced 2026-04-27 12:40:32 +02:00

Files

Ian Eure 08b7a61448 gnu: librewolf: Update to 144.0-1 [security-fixes].

Firefox 144.0 contains fixes for:
CVE-2025-11708: Use-after-free in MediaTrackGraphImpl::GetInstance()
CVE-2025-11709: Out of bounds read/write in a privileged process
                triggered by WebGL textures
CVE-2025-11710: Cross-process information leaked due to malicious IPC
                messages
CVE-2025-11711: Some non-writable Object properties could be modified
CVE-2025-11716: Sandboxed iframes allowed links to open in external
                apps (Android only)
CVE-2025-11717: The password edit screen was not hidden in Android
                card view
CVE-2025-11712: An OBJECT tag type attribute overrode browser behavior
                on web resources without a content-type
CVE-2025-11718: Address bar could be spoofed on Android using
                visibilitychange
CVE-2025-11713: Potential user-assisted code execution in “Copy as
                cURL” command
CVE-2025-11719: Use-after-free caused by the native messaging web
                extension API on Windows
CVE-2025-11720: Spoofing risk in Android custom tabs
CVE-2025-11714: Memory safety bugs fixed in Firefox ESR 115.29,
                Firefox ESR 140.4, Thunderbird ESR 140.4, Firefox 144
                and Thunderbird 144
CVE-2025-11715: Memory safety bugs fixed in Firefox ESR 140.4,
                Thunderbird ESR 140.4, Firefox 144 and Thunderbird 144
CVE-2025-11721: Memory safety bug fixed in Firefox 144 and Thunderbird
                144

* gnu/packages/librewolf.scm (librewolf): Update to 144.0-1.

Change-Id: I39e97cde24d820882c79a137997a5252e6e70421

2025-10-21 16:52:39 -07:00

30 KiB

Raw Blame History

View Raw

30 KiB Raw Blame History

30 KiB

Raw Blame History