alioth/nixpkgs
3
0
Fork 0
forked from mirrors/nixpkgs
Code Releases Activity
nixpkgs/pkgs/applications/networking/browsers
History
Andreas Rammhold 246d2848ff
firefox-esr-60: 60.2.1 -> 60.2.2 [critical security fixes] 
This update bumps the package to the latest stable version containing a
few security fixes:

- CVE-2018-12386: Type confusion in JavaScript
  A vulnerability in register allocation in JavaScript can lead to type
  confusion, allowing for an arbitrary read and write. This leads to
  remote code execution inside the sandboxed content process when
  triggered.

- CVE-2018-12387
  A vulnerability where the JavaScript JIT compiler inlines
  Array.prototype.push with multiple arguments that results in the stack
  pointer being off by 8 bytes after a bailout. This leaks a memory
  address to the calling function which can be used as part of an
  exploit inside the sandboxed content process.

Source: https://www.mozilla.org/en-US/security/advisories/mfsa2018-24/
2018-10-03 09:51:13 +02:00
..
arora
browsh browsh: 1.4.10 -> 1.4.13 2018-09-28 15:32:02 -07:00
chromium
conkeror
dillo
elinks
eolie eolie: 0.9.36 -> 0.9.37 (#47345) 2018-09-25 20:16:03 +02:00
falkon
firefox firefox-esr-60: 60.2.1 -> 60.2.2 [critical security fixes] 2018-10-03 09:51:13 +02:00
firefox-bin firefox-bin: 62.0.2 -> 62.0.3 [critical security fixes] 2018-10-03 09:35:54 +02:00
google-chrome google-chrome: fix native inputs, otherwise uses wrong patchelf 2018-09-28 11:43:16 -05:00
links2
luakit
lynx
midori
mozilla-plugins mozilla-plugins/trezor: remove applications/networking/browsers/mozilla-plugins/trezor 2018-09-29 12:24:43 +02:00
opera
otter otter-browser: 0.9.96 -> 0.9.99.3 (#46217) 2018-09-28 21:09:26 +02:00
palemoon
qtchan
qutebrowser
surf
tor-browser-bundle
tor-browser-bundle-bin
uzbl
vimb
vimprobable2
vivaldi vivaldi: 1.15.1147.64-1 -> 2.0.1309.29-2 2018-09-27 00:50:57 +02:00
w3m