alioth/nixpkgs
3
0
Fork 0
forked from mirrors/nixpkgs
Code Releases Activity
208942 commits 217 branches 121 tags 4.5 GiB
Commit graph

3318 commits

Author SHA1 Message Date
Florian Klink 1efaa03d95 firefoxPackages.tor-browser*, tor-browser-bundle: remove 
These are all based on firefox versions with known vulnerabilities
exploited in the wild.

We seriously shouldn't ship this in nixpkgs, especially not for
sensitive applications as the Tor Browser.

`tor-browser-bundle` is just a wrapper around
`firefoxPackages.tor-browser`, so let's remove it too.

`tor-browser-bundle-bin` is the much safer bet, which is individually
downloaded from `dist.torproject.org` and just `patchelf`-ed locally to
work on NixOS.

Co-Authored-By: Alyssa Ross <hi@alyssa.is>
Co-Authored-By: Andreas Rammhold <andreas@rammhold.de>
Co-Authored-By: Graham Christensen <graham@grahamc.com>
 2020-01-10 18:34:22 +01:00
Vladimír Čunát f703a3a04a
firefox-esr-60: mark as vulnerable 
The last release was in September, so it's surely "vulnerable" now.
https://www.mozilla.org/en-US/firefox/60.9.0/releasenotes/

This is the same appproach we've taken for esr-52.
 2020-01-10 17:08:01 +01:00
Florian Klink 0c26ef9e76
Merge pull request #77425 from emmanuelrosa/qutebrowser-1.9 
qutebrowser: 1.8.3 -> 1.9.0
 2020-01-10 11:35:13 +01:00
Emmanuel Rosa 216dea5b9d qutebrowser: 1.8.3 -> 1.9.0 
Closes #77360
 2020-01-10 16:05:17 +07:00
Joachim F ec1f3aba86
Merge pull request #77340 from dtzWill/update/tor-browser-bundle-bin-9.0.3 
tor-browser-bundle-bin: 9.0.2 -> 9.0.3
 2020-01-09 17:25:29 +00:00
Daniel Frank 0271b2c9a0 firefox-bin: 72.0 -> 72.0.1 [security] CVE-2019-17026 2020-01-09 15:02:34 +01:00
Andreas Rammhold b4983fe20b
firefox: fix build of >=72 on aarch64 2020-01-08 23:39:26 +01:00
Andreas Rammhold 204d32a746
firefox-esr-68: 68.4.0esr -> 68.4.1esr 2020-01-08 23:39:26 +01:00
Andreas Rammhold aab1f2dfe2
firefox: 72.0 -> 72.0.1 2020-01-08 23:39:26 +01:00
Will Dietz 19879a7f7b
tor-browser-bundle-bin: 9.0.2 -> 9.0.3 
https://blog.torproject.org/new-release-tor-browser-903
 2020-01-08 15:51:18 -06:00
Andreas Rammhold 40018e5987
firefox: 71.0 -> 72.0 2020-01-08 17:06:35 +01:00
Andreas Rammhold 2ad59bdf8c firefox-esr-68: 68.3.0esr -> 68.4.0esr 2020-01-08 14:48:30 +01:00
Andreas Rammhold a36a9127bb firefox-devedition-bin: 72.0b11 -> 73.0b2 2020-01-08 14:48:30 +01:00
Andreas Rammhold 47804d55b4 firefox-beta-bin: 72.0b4 -> 73.0b2 2020-01-08 14:48:30 +01:00
Andreas Rammhold 1064ac96b9 firefix-bin: 71.0 -> 72.0 2020-01-08 14:48:30 +01:00
Andreas Rammhold 6d8208e373 firefox: prepare for firefox 72 2020-01-08 14:48:30 +01:00
adisbladis e41e1822a0
firefox-devedition-bin: 72.0b4 -> 72.0b11 2020-01-03 13:16:37 +00:00
lewo 72d4651b59
Merge pull request #76838 from nlewo/next-fix 
next: set next-gtk-webkit as a propagated build input
 2020-01-03 11:28:41 +01:00
Antoine Eiche b66452693b next: set next-gtk-webkit as a propagated build input 
Because this reference is unfortunately not detected by Nix.

Fixes #76834.
 2020-01-03 09:50:12 +01:00
Frederik Rietdijk f08e3e38d4 Merge master into staging-next 2020-01-02 21:41:13 +01:00
Christoph Neidahl f7bd1742f1 palemoon: use gcc7, remove build notification 
Changes as requested in https://github.com/NixOS/nixpkgs/pull/69206
 2019-12-31 04:32:43 +01:00
Maximilian Bosch 5ed6a9c70d
firefox: fix for structured attrs 2019-12-31 00:59:00 +01:00
Robin Gloster ab0cfd9e03
treewide: NIX_*_COMPILE -> string 2019-12-31 00:10:18 +01:00
Frederik Rietdijk 6d059becd3 Merge gcc-9 into staging (#68029) 2019-12-30 16:38:38 +01:00
Bernardo Meurer 5a3c1eda46 browsh: 1.5.2 -> 1.6.4 2019-12-28 14:23:42 +01:00
Franz Pletz 77b6c3cd06
Merge remote-tracking branch 'origin/master' into gcc-9 2019-12-26 14:17:36 +01:00
Mario Rodas 3efe39d2cc
Merge pull request #75436 from taku0/flashplayer-32.0.0.303 
flashplayer: 32.0.0.293 -> 32.0.0.303
 2019-12-25 13:40:59 -05:00
Ryan Mulligan 54ae894129
Merge pull request #76357 from r-ryantm/auto-update/palemoon 
palemoon: 28.7.2 -> 28.8.0
 2019-12-24 06:02:35 -08:00
R. RyanTM 918ca56e74 palemoon: 28.7.2 -> 28.8.0 2019-12-23 21:17:14 -08:00
Tim Steinbach 4072b0a81c
vivaldi: 2.10.1745.21-1 -> 2.10.1745.23-1 2019-12-23 19:25:37 -05:00
worldofpeace 2dd7d4dd44 treewide: pantheon updateScript 2019-12-22 18:20:55 -05:00
zowoq c6d11ef7f3 brave: 1.0.0 -> 1.1.23 2019-12-21 13:35:19 +10:00
Tim Steinbach 6f845885c4
vivaldi: 2.9.1705.41-1 -> 2.10.1745.21-1 2019-12-20 11:28:50 -05:00
Ivan Kozik 5dd4f1d0b9 chromium: 79.0.3945.79 -> 79.0.3945.88 
https://chromereleases.googleblog.com/2019/12/stable-channel-update-for-desktop_17.html

CVE-2019-13767
 2019-12-18 04:56:50 +00:00
Graham Christensen aa4a1b01d5
Merge pull request #75516 from ivan/chromium-79.0.3945.79 
chromium: 78.0.3904.108 -> 79.0.3945.79
 2019-12-15 14:48:34 -05:00
Andrew Childs b29e3582ac chromium: add thefloweringash (myself) as maintainer 
I have an interest in making Chromium available on Aarch64. I'm adding
myself here on a recommendation from @ivan [1].

[1] https://github.com/NixOS/nixpkgs/pull/74015#issuecomment-565780595
 2019-12-15 21:34:22 +09:00
worldofpeace be13df6c76
Merge pull request #75465 from worldofpeace/gnome-args 
doc/gnome: update wrapper args example, remove proliferated uses
 2019-12-15 00:13:17 -05:00
worldofpeace abe3475df8 treewide: remove bash snippets in flags 
Co-Authored-By: Jan Tojnar <jtojnar@gmail.com>
 2019-12-15 00:10:41 -05:00
Ivan Kozik af006f9ff3 chromium: fix enableWideVine for v79 which needs the manifest.json in WidevineCdm/ 2019-12-15 04:56:01 +00:00
Ivan Kozik 3d71db8abb chromium: explain enable_widevine = true 2019-12-15 04:55:59 +00:00
Ivan Kozik 950230bc84 chromium: remove enableNaCl option 
This hasn't worked since 2016 (https://github.com/NixOS/nixpkgs/issues/13983)
and is being removed very soon, per "Q4 2019" in
https://developer.chrome.com/native-client/migration

(It's staying around for "Chrome Apps", but those only run on ChromeOS now.)

earth.google.com users can use https://earth.google.com/web/?beta=1 to get
the wasm version instead of the PNaCl version.
 2019-12-15 04:55:30 +00:00
Ivan Kozik ec75ea3329 chromium: use llvmPackages_9 to more closely match upstream 2019-12-15 04:35:36 +00:00
Ivan Kozik 46d252f1f1 chromium: fix GL support by not using the ANGLE GL implementation 2019-12-15 04:35:23 +00:00
cap e99248632e tor-browser-bundle-bin: add cap to maintainers 2019-12-13 20:20:52 +01:00
cap fca98ea5be tor-browser-bundle-bin: 9.0.1 -> 9.0.2 2019-12-13 20:12:23 +01:00
Ivan Kozik 14b40e291d chromium: 78.0.3904.108 -> 79.0.3945.79 
https://chromereleases.googleblog.com/2019/12/stable-channel-update-for-desktop.html

CVE-2019-13725 CVE-2019-13726 CVE-2019-13727 CVE-2019-13728
CVE-2019-13729 CVE-2019-13730 CVE-2019-13732 CVE-2019-13734
CVE-2019-13735 CVE-2019-13764 CVE-2019-13736 CVE-2019-13737
CVE-2019-13738 CVE-2019-13739 CVE-2019-13740 CVE-2019-13741
CVE-2019-13742 CVE-2019-13743 CVE-2019-13744 CVE-2019-13745
CVE-2019-13746 CVE-2019-13747 CVE-2019-13748 CVE-2019-13749
CVE-2019-13750 CVE-2019-13751 CVE-2019-13752 CVE-2019-13753
CVE-2019-13754 CVE-2019-13755 CVE-2019-13756 CVE-2019-13757
CVE-2019-13758 CVE-2019-13759 CVE-2019-13761 CVE-2019-13762
CVE-2019-13763

The new widevine patch was taken from
https://git.archlinux.org/svntogit/packages.git/plain/trunk/chromium-widevine.patch?h=packages/chromium
 2019-12-11 15:55:21 +00:00
taku0 b16d72e61b flashplayer: 32.0.0.293 -> 32.0.0.303 2019-12-10 21:54:15 +09:00
adisbladis 7559235792
firefox-beta-bin: 72.0b1 -> 72.0b4 2019-12-09 11:33:42 +00:00
adisbladis e8777e45e4
firefox-devedition-bin: 72.0b1 -> 72.0b4 2019-12-09 11:33:38 +00:00
Franz Pletz a1e4ee6d4f
firefox: fix indexedDB for 71.0 
Adapted original patch[0] to also fix dom localstorage.

[0]: https://bugzilla.mozilla.org/show_bug.cgi?id=1601707#c6
 2019-12-07 19:28:47 +01:00