guix/gnu at a38d71b2e55711f547d468b0df641fc4488074d0 - guix

mirror of https://git.savannah.gnu.org/git/guix.git synced 2026-04-06 21:20:33 +02:00

Files

Ian Eure a38d71b2e5 gnu: librewolf: Update to 135.0-1 [security fixes].

New upstream version.  Contains fixes for:

CVE-2025-1009: Use-after-free in XSLT
CVE-2025-1010: Use-after-free in Custom Highlight
CVE-2025-1018: Fullscreen notification is not displayed when
               fullscreen is re-requested
CVE-2025-1011: A bug in WebAssembly code generation could result in a
               crash
CVE-2025-1012: Use-after-free during concurrent delazification
CVE-2025-1019: Fullscreen notification not properly displayed
CVE-2025-1013: Potential opening of private browsing tabs in normal
               browsing windows
CVE-2025-1014: Certificate length was not properly checked
CVE-2025-1016: Memory safety bugs fixed in Firefox 135, Thunderbird
               135, Firefox ESR 115.20, Firefox ESR 128.7, Thunderbird
               115.20, and Thunderbird 128.7
CVE-2025-1017: Memory safety bugs fixed in Firefox 135, Thunderbird
               135, Firefox ESR 128.7, and Thunderbird 128.7
CVE-2025-1020: Memory safety bugs fixed in Firefox 135 and Thunderbird
               135

* gnu/packages/librewolf.scm (librewolf): Update to 135.0-1.

Change-Id: I7054fc9df31d59bb0d42e02b1f359cf3e6c1a43d

2025-02-14 16:02:57 -08:00