3
0
Fork 0
forked from mirrors/nixpkgs
Commit graph

568 commits

Author SHA1 Message Date
Andreas Rammhold 246d2848ff
firefox-esr-60: 60.2.1 -> 60.2.2 [critical security fixes]
This update bumps the package to the latest stable version containing a
few security fixes:

- CVE-2018-12386: Type confusion in JavaScript
  A vulnerability in register allocation in JavaScript can lead to type
  confusion, allowing for an arbitrary read and write. This leads to
  remote code execution inside the sandboxed content process when
  triggered.

- CVE-2018-12387
  A vulnerability where the JavaScript JIT compiler inlines
  Array.prototype.push with multiple arguments that results in the stack
  pointer being off by 8 bytes after a bailout. This leaks a memory
  address to the calling function which can be used as part of an
  exploit inside the sandboxed content process.

Source: https://www.mozilla.org/en-US/security/advisories/mfsa2018-24/
2018-10-03 09:51:13 +02:00
Andreas Rammhold e7785f1148
firefox: 62.0.2 -> 62.0.3 [critical security fixes]
This update bumps the package to the latest stable version containing a
few security fixes:

- CVE-2018-12386: Type confusion in JavaScript
  A vulnerability in register allocation in JavaScript can lead to type
  confusion, allowing for an arbitrary read and write. This leads to
  remote code execution inside the sandboxed content process when
  triggered.

- CVE-2018-12387
  A vulnerability where the JavaScript JIT compiler inlines
  Array.prototype.push with multiple arguments that results in the stack
  pointer being off by 8 bytes after a bailout. This leaks a memory
  address to the calling function which can be used as part of an
  exploit inside the sandboxed content process.

Source: https://www.mozilla.org/en-US/security/advisories/mfsa2018-24/
2018-10-03 09:51:13 +02:00
Pavol Rusnak 62b15996a7
mozilla-plugins/trezor: remove applications/networking/browsers/mozilla-plugins/trezor
trezor-mozilla-plugin is no longer maintained software

package pkgs/servers/trezord should be used instead
2018-09-29 12:24:43 +02:00
taku0 e5778a9991 firefox-esr: 60.2.0esr -> 60.2.1esr 2018-09-24 09:13:03 +09:00
taku0 da9823672f firefox: 61.0.2 -> 62.0.2 2018-09-22 03:13:50 +09:00
taku0 0a3f07077b firefox-esr: 60.1.0esr -> 60.2.0esr, mark 52.9.0esr insecure 2018-09-07 08:14:48 +09:00
taku0 26cbfe1035 firefox: 61.0.2 -> 62.0 2018-09-04 21:16:46 +09:00
John Ericson 2c2f1e37d4 reewide: Purge all uses stdenv.system and top-level system
It is deprecated and will be removed after 18.09.
2018-08-30 17:20:32 -04:00
Matthew Bauer 7974e45689 firefox: readd --disable-xcode-checks
Only works on version 61 apparently, but it is needed.
2018-08-23 13:09:16 -05:00
Matthew Bauer 090985a443
firefox: remove --disable-xcode-checks
Apparently it's not needed anymore!
2018-08-22 13:26:05 -05:00
Jan Malakhovski cad8fc3447
firefoxPackages: avoid BINDGEN_CFLAGS on some versions
... to fix build; vcunat included the old ESR firefox, too.
2018-08-21 15:32:39 +02:00
Vladimír Čunát 4ea21ac6fb
firefox: finish adding default for execdir
0c633ccf26 just wasn't complete.  Now evaluation works for me again.
2018-08-17 20:59:53 +02:00
Vladimír Čunát 14aa936ec5
Merge branch 'staging-next' into staging 2018-08-17 20:53:27 +02:00
Matthew Bauer 0c633ccf26 firefox: add default for execdir
not all of the browsers have this set
2018-08-14 22:34:46 -05:00
Vladimír Čunát ded9a4b1aa
Merge branch 'staging-next' into staging
Commits from master, conflict resolutions, etc.
2018-08-13 20:57:50 +02:00
Sarah Brofeldt feee2235b5 firefoxWrapper: Fail if deprecated enableVLC option exists 2018-08-12 18:55:49 +02:00
Matthew Bauer 08655b16f2 firefox: fix darwin wrapper
- add execdir passthru
  usually this is /bin on macOS it is different.
2018-08-11 22:54:48 -05:00
Matthew Bauer 8fba05403a firefox: build on darwin
Fixes #30285

Some things done:

- Add macOS frameworks needed
- Fix RUST_BINDGEN handling. We need to pass all of NIX_CFLAGS_COMPILE
  to rust bindgen
- Add custom install phase for darwin
2018-08-11 22:54:48 -05:00
Matthew Bauer 4b71fe6d86 firefox: cleanup expression
- Add a few more macOS frameworks needed
- Fix RUST_BINDGEN handling. We need to pass all of NIX_CFLAGS_COMPILE
  to rust bindgen
2018-08-11 22:54:48 -05:00
Matthew Bauer 0edb441a0e firefox: build on darwin
Fixes #30285
2018-08-11 22:54:48 -05:00
Vladimír Čunát 838d63eced
Merge #44885: firefox*: 61.0.1 -> 61.0.2 2018-08-11 19:47:02 +02:00
taku0 743677310a firefox: 61.0.1 -> 61.0.2 2018-08-09 03:13:10 +09:00
Matthew Bauer c6d55e92bb firefoxPackages: add licenses
tor-browser is bsd3
firefox is mpl20
2018-08-06 10:15:59 -04:00
Silvan Mosberger 49bc1adb26
firefox: Add enableBukubrow config option 2018-07-30 23:02:32 +02:00
volth 52f53c69ce pkgs/*: remove unreferenced function arguments 2018-07-21 02:48:04 +00:00
Matthew Bauer 76999cc40e treewide: remove aliases in nixpkgs
This makes the command ‘nix-env -qa -f. --arg config '{skipAliases =
true;}'’ work in Nixpkgs.

Misc...

- qtikz: use libsForQt5.callPackage

  This ensures we get the right poppler.

- rewrites:

  docbook5_xsl -> docbook_xsl_ns
  docbook_xml_xslt -> docbook_xsl

diffpdf: fixup
2018-07-18 23:25:20 -04:00
taku0 900617bd30 firefox, firefox-bin: add dependencies for flashplayer 2018-07-12 22:05:52 +09:00
Thomas Tuegel c3f0dcfb52
wrapFirefox: select correct browserpass output
The browserpass native messaging host is in the `bin` output. This may have
changed recently.
2018-07-07 14:11:19 -05:00
taku0 09918a6570
firefox: 61.0 -> 61.0.1 2018-07-06 20:30:51 +02:00
SLNOS 3b7d8d83e8 tor-browser: 52.8.1esr-7.5-1 -> 52.9.0esr-7.5-2 2018-07-02 02:39:36 +00:00
Vladimír Čunát 2059bf9e39
Merge older staging with added firefox-related updates 2018-06-29 21:06:39 +02:00
Vladimír Čunát 2f4001f41a
Merge #42729: firefox-61 and related updates (security)
(cherry picked from commit 8ad921dc94)
Fast-forwarded to get to master sooner.
2018-06-29 20:58:13 +02:00
Tad Fisher c1740904ae firefox: add u2f support 2018-06-24 18:49:30 -07:00
Yegor Timoshenko 47066f0776
Merge pull request #40893 from bkchr/plasma_5_13
plasma5: 5.12 -> 5.13
2018-06-15 12:50:28 +00:00
Vladimír Čunát 31530c185e
Merge a subset of staging (security)
In particular, this contains Firefox-related and libgcrypt updates.
Other larger rebuilds would apparently need lots of time to catch up
on Hydra, due to nontrivial rebuilds in other branches than staging.
2018-06-15 08:48:02 +02:00
Bastian Köcher 84999e76e0 firefox: Add enablePlasmaBrowserIntegration config option 2018-06-13 14:35:15 +02:00
SLNOS bb3984f709 tor-browser: drop 7.0.x expression 2018-06-11 15:10:00 +00:00
SLNOS de117c1ef9 tor-browser: 52.8.0esr-7.5-1 -> 52.8.1esr-7.5-1 2018-06-11 15:10:00 +00:00
taku0 72361967a6 firefox-esr: 52.8.0esr -> 52.8.1esr, 60.0.1esr -> 60.0.2esr 2018-06-07 21:33:14 +09:00
taku0 58e48ffd9f firefox: 60.0.1 -> 60.0.2 2018-06-07 21:33:14 +09:00
Tuomas Tynkkynen 2760b24462 Merge remote-tracking branch 'upstream/master' into staging 2018-05-26 19:01:18 +03:00
SLNOS d3b0cb379f tor-browser: 52.7.3esr-7.5-1 -> 52.8.0esr-7.5-1, 52.7.0esr-8.0-1 -> 52.8.0esr-8.0-1 2018-05-25 23:57:09 +00:00
taku0 2f076b403a firefox-esr: 60.0esr -> 60.0.1esr 2018-05-18 14:31:32 +00:00
taku0 f2b3cdd950 firefox: 60.0 -> 60.0.1 2018-05-18 14:24:44 +00:00
Andreas Rammhold 780d122d72
firefox: fix build on aarch64 with version >= 60
The firefox build fails with an error referring to ssse2 which doesn't
exist on aarch64.
2018-05-16 21:08:19 +02:00
taku0 873af991ef firefox-esr: 52.7.4esr -> 52.8.0esr, 60.0esr 2018-05-12 19:51:04 +09:00
taku0 38bf731db4 firefox: 59.0.3 -> 60.0 2018-05-12 19:51:04 +09:00
taku0 c1db0cdc4b firefox: use fetchzip instead of fetchurl 2018-05-12 19:51:03 +09:00
taku0 ae85f48652 firefox-esr: 52.7.3esr -> 52.7.4esr 2018-05-12 19:51:03 +09:00
taku0 459312c423 firefox: 59.0.2 -> 59.0.3 2018-05-12 19:51:03 +09:00