Author: ken Date: Mon Mar 19 14:09:55 2018 New Revision: 19973 Log: Firefox-59.0.1 : fixes vulnerability from out of bounds read of malformed vorbis file in internal copy of libvorbis, revealed at recent Pwn2Own contest.
Modified: trunk/BOOK/introduction/welcome/changelog.xml trunk/BOOK/packages.ent trunk/BOOK/xsoft/graphweb/firefox.xml Modified: trunk/BOOK/introduction/welcome/changelog.xml ============================================================================== --- trunk/BOOK/introduction/welcome/changelog.xml Mon Mar 19 11:36:14 2018 (r19972) +++ trunk/BOOK/introduction/welcome/changelog.xml Mon Mar 19 14:09:55 2018 (r19973) @@ -45,6 +45,10 @@ <para>March 19th, 2018</para> <itemizedlist> <listitem> + <para>[ken] - Update to firefox-59.0.1 (security fix). Fixes + <ulink url="&blfs-ticket-root;10557">#10557</ulink>.</para> + </listitem> + <listitem> <para>[timtas] - Update to NetworkManager-1.10.6. Fixes <ulink url="&blfs-ticket-root;10518">#10518</ulink>.</para> </listitem> Modified: trunk/BOOK/packages.ent ============================================================================== --- trunk/BOOK/packages.ent Mon Mar 19 11:36:14 2018 (r19972) +++ trunk/BOOK/packages.ent Mon Mar 19 14:09:55 2018 (r19973) @@ -730,7 +730,7 @@ <!-- Chapter 43 --> <!ENTITY chromium-version "64.0.3282.186"> <!ENTITY epiphany-version "3.26.6"> -<!ENTITY firefox-version "59.0"> +<!ENTITY firefox-version "59.0.1"> <!ENTITY flashplayer-version "27.0.0.187"> <!ENTITY qupzilla-version "2.2.5"> <!ENTITY seamonkey-version "2.49.2"> Modified: trunk/BOOK/xsoft/graphweb/firefox.xml ============================================================================== --- trunk/BOOK/xsoft/graphweb/firefox.xml Mon Mar 19 11:36:14 2018 (r19972) +++ trunk/BOOK/xsoft/graphweb/firefox.xml Mon Mar 19 14:09:55 2018 (r19973) @@ -7,12 +7,12 @@ <!-- <!ENTITY firefox-download-http "&mozilla-http;/firefox/releases/&firefox-version;/source/firefox-&firefox-version;.source.tar.xz"> --> - <!ENTITY firefox-hgversion "c61f5f5ead48c78a80c80db5c489bdc7cfaf8175"> + <!ENTITY firefox-hgversion "3db9e3d52b17563efca181ccbb50deb8660c59ae"> <!-- use tinyurl to get a much shorter link for the wget example --> - <!ENTITY firefox-tiny "https://tinyurl.com/firefox-59-0-tar-bz2"> + <!ENTITY firefox-tiny "https://tinyurl.com/firefox-59-0-1-tar-bz2"> <!ENTITY firefox-download-http "&mozilla-hg;&firefox-hgversion;.tar.bz2"> <!ENTITY firefox-download-ftp " "> - <!ENTITY firefox-md5sum "2dfc59e6adccea41b5fb87c2d9456d4e"> + <!ENTITY firefox-md5sum "5aff0df363d778ebe0e572d6c9f13dbe"> <!ENTITY firefox-size "291 MB"> <!-- NB with stylo, much of the build uses rust, and therefore cargo files. But when building 58.0 on rustc-1.22.1 the extra files, if any, seem to be minimal --> -- http://lists.linuxfromscratch.org/listinfo/blfs-book FAQ: http://www.linuxfromscratch.org/blfs/faq.html Unsubscribe: See the above information page