Update Icecat to FF 102.15.1 to fix mfsa2023-40

  • Done
  • quality assurance status badge
Details
2 participants
  • Dr. Arne Babenhauserheide
  • Tobias Geerinckx-Rice
Owner
unassigned
Submitted by
Dr. Arne Babenhauserheide
Severity
normal
D
D
Dr. Arne Babenhauserheide wrote on 18 Sep 2023 12:58
(address . guix-patches@gnu.org)
877conrbk2.fsf@web.de
Hi,

the attached patch updates the base version of icecat to 102.15.1 to get
the fix of the critical webp vulnerability in Firefox (and every other
browser out there).
From 21a46f22b9b0d49e5d556e296716fc3b6db6b2e0 Mon Sep 17 00:00:00 2001
Message-ID: <21a46f22b9b0d49e5d556e296716fc3b6db6b2e0.1695034689.git.arne_bab@web.de>
From: Arne Babenhauserheide <arne_bab@web.de>
Date: Mon, 18 Sep 2023 12:56:18 +0200
Subject: [PATCH] Update icecat to FF 102.15.1 to fix mfsa2023-40

* gnu/packages/gnuzilla.scm (%icecat-base-version): update to 102.15.1 to fix
* gnu/packages/gnuzilla.scm (icecat-source): update upstream hash to 102.15.1
---
gnu/packages/gnuzilla.scm | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)

Toggle diff (62 lines)
diff --git a/gnu/packages/gnuzilla.scm b/gnu/packages/gnuzilla.scm
index 6e2f9729cf..e700931d28 100644
--- a/gnu/packages/gnuzilla.scm
+++ b/gnu/packages/gnuzilla.scm
@@ -518,7 +518,7 @@ (define all-mozilla-locales
;; XXXX: Workaround 'snippet' limitations.
(define computed-origin-method (@@ (guix packages) computed-origin-method))
-(define %icecat-base-version "102.15.0")
+(define %icecat-base-version "102.15.1")
(define %icecat-version (string-append %icecat-base-version "-guix0-preview1"))
(define %icecat-build-id "20230829000000") ;must be of the form YYYYMMDDhhmmss
@@ -540,7 +540,7 @@ (define icecat-source
"firefox-" upstream-firefox-version ".source.tar.xz"))
(sha256
(base32
- "1bs6hxfsb77cbi238wvizq2iw4mlgz29m0sd027sz8zm1025kyl1"))))
+ "04q1fjninm9lw721xgv0c2fknicc24s8iaimkabwcfwmcnvly689"))))
;; The upstream-icecat-base-version may be older than the
;; %icecat-base-version.

base-commit: e2a7c227dea5b361e2ebdbba24b923d1922a79d0
prerequisite-patch-id: e26acb8280f31db9b663b6fc444a2229fc5b588e
prerequisite-patch-id: db5cc62f7d04f3ed3014ae984fe732f3b6db8d17
prerequisite-patch-id: 3a0bf9ef6f27f1d92537c5e9ee5c38c7d6ced99e
prerequisite-patch-id: 088a72da8c11e5d1c7087b4a5e8bb9c4a3b9b2af
prerequisite-patch-id: 1b4787e17ec6ab62978615e1d3804a1024c5e1a0
prerequisite-patch-id: f814d9756faa5d91a68b81654606c66b4cf389e5
prerequisite-patch-id: f2dbed3e6da49472bd141c9fa40de2d2208130fb
prerequisite-patch-id: 2dbf557994da4a264566b67294f7f3f8e2931f5f
prerequisite-patch-id: 912a76fac540b98d5683ba1886a7d62f0963cd9f
prerequisite-patch-id: f6a9bfd16b8952c73b7a6d97be70013a290815d7
prerequisite-patch-id: e50c1aaa1d401bba32a49d2e1fb1661746543d09
prerequisite-patch-id: 1f63cb516bc5c9772ae808371528006fca20dcad
prerequisite-patch-id: 1ac04f0120fb6c4f106d05bee88103debb815b41
prerequisite-patch-id: eeff242fb5e41c8c83b3daadd0965e58eb6670ba
prerequisite-patch-id: 3812c9ac1252d9d20e8485462be155156f302a54
prerequisite-patch-id: 9d3dd155c91ab334999c03fefab04f361ea4d8b5
prerequisite-patch-id: f5b09b934b65fe45bdfd1273baa3bb949ed52cca
prerequisite-patch-id: 61a9b3943bdbe5cb6a4aa978888ceb64088f9a14
prerequisite-patch-id: 3f9d50361fb537607c33d09115366aec05160688
prerequisite-patch-id: 765c77b7c31f24491149665a066d2906f8da8d33
prerequisite-patch-id: 2b92c37e3aa74152a7aa226e1fbd5f2735037dc0
prerequisite-patch-id: 2a3123ab0786108f26e25c45fc4c545b99b6dd27
prerequisite-patch-id: 891a2458a90ea90113c576df5029514f5143366e
prerequisite-patch-id: 1a08957a2fd3e3637ed7f3cf3f44c9f8194d6668
prerequisite-patch-id: d382210c915c0a809cb709cba45a4542d60c4d20
prerequisite-patch-id: d424ad2c4c4bf14becb025c67757f48d4a6ae6b5
prerequisite-patch-id: 07e1c90231819e0b963645b041522e53891fd344
prerequisite-patch-id: 124009dec6dad63add19bf258f71bdb127078ecb
prerequisite-patch-id: 0afa33c8e0e2aca07da2782e04d259d3f8c498c5
prerequisite-patch-id: 205bb6c05a145eb9137e8623687418089351e73e
prerequisite-patch-id: 7138f72403701b9749a0a587f1807030d730c00d
prerequisite-patch-id: 39bd665160a5e62aaa4ea94ad2e3ca30f31e2127
prerequisite-patch-id: d5d0cdab2914d5d4b80f7e9e541c8f76b6e313d6
prerequisite-patch-id: 9b22cdb1bd10f6f0231168f7223d5b700830ad48
prerequisite-patch-id: cd1ddd3e6d24b1488271cfbdc28dc6619552306e
prerequisite-patch-id: 8b5cef14cf4c6b27783c8f5ed9b8802bf11b15c5
--
2.41.0
Best wishes,
Arne
--
Unpolitisch sein
heißt politisch sein,
ohne es zu merken.
draketo.de
-----BEGIN PGP SIGNATURE-----

iQJEBAEBCAAuFiEE801qEjXQSQPNItXAE++NRSQDw+sFAmUILb0QHGFybmVfYmFi
QHdlYi5kZQAKCRAT741FJAPD68SeEADCwJe26/pEnuScyuWJwzafzLRV3uEmndRK
hmg1D+IbReAzV8D3yA+3mOvYtPL1gC/tiUvStgi0K8Y+DkIzSXCd6vVf+QFuO+wm
smT0yzfoO2OXEVAKQ5RfkHmkLpxB51rLyWqSb51unuBtHs1XR8SzOIuZfQ1pPAXR
9kY0URaXttY5hdmTWW2ovLzXehElMQIrTVczYjJMLkNPXbLkLb77cGIe5nMnOzuX
PoQW6vJREcmEPM+n0P77yNsKuDsVgXJylk8SjqPCfyXGv6oO2Wg04IMvrlwAoJYS
OkDaeIjrYJDa6h7B3X247CO8gQZiimJFzD46Y18I6jOFSf/FqMmYHVRV/dhmcFP2
Lues7BXqdaapbOf972Ye+lFJjaLXm+aH7duxj/d+n0NfsgdG4NYfuMuGRINBPLeK
NzdrEjWfpr6jX56/+8pLkTMActHFw0F0Hi010r8YhihhAnmbLLgogRCqvwiyUs0H
rqm++4mnZNp7k1FKK99Ql1X1TnsLKHnpoxvlJIWawTXq/gl5/n//mxg+TjG1f7Wi
JVCbdE18fPiq/pQ16LeqGqK5Zd2He9amAqYNBnFo5x8H/XVFsqowd8b0cAEYoDr+
yJu/kSGqol4WS38UL8y8n9mlPKoOgIZvZ6vmcx2X2XiTcUM+j3xsCvrlpSJA1uuw
m5JKcVkNF4jEBAEBCAAuFiEE3Si95tmHXKvOSosd3M8NswvBBUgFAmUILb0QHGFy
bmVfYmFiQHdlYi5kZQAKCRDczw2zC8EFSHtJA/9Lji+MZ9P/Yw3Zk20rL1UJiNRp
ezlTDyM0oWerJNIl1D0bKuQAlgS5z6MaP5FsZAU6z/nSigG+scE6ZOU68N5j48ua
7OMyJMEybPuLuC4It/5GPqg94dxUDNRvNbnfawpBin+plolxqYGdUTu9ho0I7NkL
0c2LnoKMon8ue3dcDg==
=UP8Y
-----END PGP SIGNATURE-----

T
T
Tobias Geerinckx-Rice wrote on 18 Sep 2023 16:28
(address . 66069-done@debbugs.gnu.org)
893375851d4f878347304511d552ada4@tobias.gr
Hi Arne,

Pushed to master as 3d9ebc7b2ed24312fd6a0916c203f7b86d57753d, with the
commit message edited to better respect our conventions:

gnu: icecat: Update to 102.15.1 [security fixes].

This fixes fix mfsa2023-40, a critical webp vulnerability.

* gnu/packages/gnuzilla.scm (%icecat-base-version, icecat-source):
Update to 102.15.1.

Thanks for the prompt fix!

T G-R

Sent from a Web browser. Excuse or enjoy my brevity.
Closed
?