guix/gnu at c93b89e5914daf2cde806247ec49928f3712e2ad - guix

mirror of https://git.savannah.gnu.org/git/guix.git synced 2026-04-06 21:20:33 +02:00

Files

Ian Eure c93b89e591 gnu: librewolf: Update to 145.0.1-2 [security-fixes].

Contains fixes for:
CVE-2025-13021: Incorrect boundary conditions in the Graphics: WebGPU
                component
CVE-2025-13022: Incorrect boundary conditions in the Graphics: WebGPU
                component
CVE-2025-13012: Race condition in the Graphics component
CVE-2025-13023: Sandbox escape due to incorrect boundary conditions in
                the Graphics: WebGPU component
CVE-2025-13016: Incorrect boundary conditions in the JavaScript:
                WebAssembly component
CVE-2025-13024: JIT miscompilation in the JavaScript Engine: JIT
                component
CVE-2025-13025: Incorrect boundary conditions in the Graphics: WebGPU
                component
CVE-2025-13026: Sandbox escape due to incorrect boundary conditions in
                the Graphics: WebGPU component
CVE-2025-13017: Same-origin policy bypass in the DOM: Notifications
                component
CVE-2025-13018: Mitigation bypass in the DOM: Security component
CVE-2025-13019: Same-origin policy bypass in the DOM: Workers
                component
CVE-2025-13013: Mitigation bypass in the DOM: Core & HTML component
CVE-2025-13020: Use-after-free in the WebRTC: Audio/Video component
CVE-2025-13014: Use-after-free in the Audio/Video component
CVE-2025-13015: Spoofing issue in Firefox
CVE-2025-13027: Memory safety bugs fixed in Firefox 145 and
                Thunderbird 145

* gnu/packages/librewolf.scm (librewolf): Update to 145.0.1-2.

Change-Id: Ibc74847cb0bbf3ca31cd91ebead1459199a1b364

2025-11-25 21:45:56 -08:00