Commit Graph

217 Commits

Author SHA1 Message Date
Marius Bakke bd51224936
gnu: nss, nss-certs: Update to 3.32.
This release includes minor code changes and many certificate updates:
<https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.32_release_notes>

* gnu/packages/certs.scm (nss-certs): Update to 3.32.
* gnu/packages/gnuzilla.scm (nss): Update to 3.32.
[arguments]: Prevent another test file from being installed.
* gnu/packages/patches/nss-pkgconfig.patch: Adjust.
2017-07-28 00:07:28 +02:00
Marius Bakke 6571754462
gnu: nspr: Update to 4.16.
* gnu/packages/gnuzilla.scm (nspr): Update to 4.16.
2017-07-27 22:15:27 +02:00
Mark H Weaver a2bda5e4e3
gnu: icecat: Add more fixes from upstream mozilla-esr52.
* gnu/packages/gnuzilla.scm (icecat)[source]: Add selected fixes from
the upstream mozilla-esr52 repository.
2017-07-14 12:48:14 -04:00
Mark H Weaver d07d292808
gnu: icecat: Add more fixes from upstream mozilla-esr52.
* gnu/packages/gnuzilla.scm (icecat)[source]: Add selected fixes from the
upstream mozilla-esr52 repository.
2017-06-28 06:09:59 -04:00
Arun Isaac 148585c240
gnu: Move contents of zip module into compression module.
* gnu/packages/zip.scm (zip, unzip, zziplib, perl-zip): Move to...
* gnu/packages/compression.scm: ...here.
* gnu/packages/zip.scm: Delete file.
* gnu/local.mk (GNU_SYSTEM_MODULES): Unregister deleted file.
* po/packages/POTFILES.in: Unregister deleted file.
* gnu/packages/{audio, avr, bioinformatics, busybox, cdrom, ci, compression,
docbook, documentation, fonts, fpga, game-development, games, gl, gnome,
gnuzilla, graphics, guile, haskell, image, java, kodi, ldc, libreoffice,
markup, maths, mc, monitoring, music, php, pretty-print, python, scheme,
smalltalk, statistics, synergy, tex, textutils, video, web-browsers, xml,
zip}.scm, guix/build-system/{ant, font}.scm, guix/{download, packages}.scm:
Adapt module import.
2017-06-20 18:10:35 +05:30
Mark H Weaver 89727ada52
gnu: icecat: Add security fixes from upstream mozilla-esr52.
This adds fixes for CVE-2017-7757, CVE-2017-7758, and the remaining
5 patches for CVE-2017-5470.

* gnu/packages/gnuzilla.scm (icecat)[source]: Add selected fixes from the
upstream mozilla-esr52 repository, through ESR 52.2.
2017-06-14 02:23:25 -04:00
Mark H Weaver 449bff2b79
gnu: icecat: Rename patches to indicate CVE assignments.
This documents that we include fixes for the following CVEs: CVE-2017-5472,
CVE-2017-7749, CVE-2017-7750, CVE-2017-7751, CVE-2017-7752, CVE-2017-7754,
CVE-2017-7756, CVE-2017-7764, CVE-2017-7765, CVE-2017-7778, and that we
include 15 out of 20 patches for CVE-2017-5470.

* gnu/packages/gnuzilla.scm (icecat)[source]: Rename existing patches to
indicate their CVE assignments.
2017-06-14 02:23:18 -04:00
Marius Bakke a10040e09b
gnu: nss, nss-certs: Update to 3.31.
Release notes:
<https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.31_release_notes>

* gnu/packages/certs.scm (nss-certs): Update to 3.31.
* gnu/packages/gnuzilla.scm (nss): Likewise.
[source]<patches>: Remove upstream 'nss-disable-long-b64-tests' patch.
[arguments]<#:phases>: Move armhf timeout substitution ...
* gnu/packages/patches/nss-increase-test-timeout.patch: ... here.
* gnu/packages/patches/nss-disable-long-b64-tests.patch: Delete file.
* gnu/local.mk (dist_patch_DATA): Remove it.
2017-06-12 21:31:12 +02:00
Marius Bakke c4395e782e
gnu: nspr: Update to 4.15.
* gnu/packages/gnuzilla.scm (nspr): Update to 4.15.
2017-06-12 21:24:47 +02:00
Mark H Weaver d771ba62f8
gnu: icecat: Add more fixes from upstream mozilla-esr52.
* gnu/packages/gnuzilla.scm (icecat)[source]: Add selected fixes from the
upstream mozilla-esr52 repository.
2017-05-27 03:06:39 -04:00
Clément Lassieur 29f381bac7
gnu: Add mozjs-38 (Mozilla SpiderMonkey 38).
* gnu/packages/gnuzilla.scm (mozjs-38): New variable.
* gnu/packages/patches/mozjs38-pkg-config-version.patch,
gnu/packages/patches/mozjs38-shell-version.patch,
gnu/packages/patches/mozjs38-tracelogger.patch,
gnu/packages/patches/mozjs38-version-detection.patch: New files.
* gnu/local.mk (dist_patch_DATA): Add them.

Co-authored-by: ng0 <ng0@no-reply.pragmatique.xyz>
2017-05-08 17:25:44 +02:00
Mark H Weaver 0fd8e6d39f
gnu: icecat: Update to 52.1.0-gnu1. Add fixes from upstream ESR 52.1.1.
* gnu/packages/gnuzilla.scm (icecat): Update to 52.1.0-gnu1.  Remove patches
that are included in the new release.  In the snippet, don't try to remove
dom/devicestorage, which has since been removed upstream.  Add selected fixes
from upstream mozilla-esr52, up to the ESR 52.1.1 release.
* gnu/packages/patches/icecat-bug-1299500-pt10.patch: Delete file.
* gnu/local.mk (dist_patch_DATA): Remove it.
2017-05-06 23:34:54 -04:00
Mark H Weaver ee3401d018
gnu: icecat: Add more fixes from upstream mozilla-esr52.
* gnu/packages/gnuzilla.scm (icecat)[source]: Add selected fixes from the
upstream mozilla-esr52 repository.
2017-05-02 04:19:03 -04:00
Marius Bakke 769df80ded
gnu: nss: Further increase test timeouts on armhf.
* gnu/packages/gnuzilla.scm (nss)[arguments]<#:phases>: Add a substitution
when target platform is armhf.
2017-04-23 11:34:45 +02:00
Clément Lassieur 6e75740f89
gnu: icecat: Fix GTK 3 file chooser crash.
* gnu/packages/gnuzilla.scm (icecat)[arguments]: Add a 'wrap-program' phase to
set XDG_DATA_DIRS.
2017-04-21 21:05:28 +02:00
Mark H Weaver 002c3e6dd6
gnu: icecat: Update to 52.0.2-gnu1; add fixes from ESR 52.1.
* gnu/packages/gnuzilla.scm (icecat): Update to 52.0.2-gnu1.
[source]: Remove all patches except "icecat-avoid-bundled-libraries.patch".
Add selected fixes from the upstream mozilla-esr52 repository, up to 52.1.
Remove "dom/devicestorage" in the snippet.
[inputs]: Remove gstreamer and gst-plugins-base.  Add ffmpeg and gtk+3.  Move
yasm to native-inputs.
[native-inputs]: Add autoconf-2.13 and yasm.
[arguments]: In configure-flags, remove the following switches which are no
longer accepted: --enable-{pango,svg,canvas,mathml,gstreamer=1.0} and
"--disable-gnomevfs".  Use "--enable-default-toolkit=cairo-gtk3" to switch to
Gtk+3.  Remove the 'remove-h264parse-from-blacklist' phase.  Adapt the
'arrange-to-link-libxul-with-libraries-it-might-dlopen' phase as needed.  In
the 'configure' phase, set the AUTOCONF environment variable.
(mozilla-patch): Update the URL pattern to fetch from the mozilla-esr52
repository.
* gnu/packages/patches/icecat-avoid-bundled-libraries.patch: Adapt to mozilla-esr52.
* gnu/packages/patches/icecat-binutils.patch: Remove file.
* gnu/packages/patches/icecat-bug-1299500-pt10.patch: New file.
* gnu/local.mk (dist_patch_DATA): Remove "icecat-binutils.patch".
Add "icecat-bug-1299500-pt10.patch".
2017-04-21 00:04:45 -04:00
Mark H Weaver 6be43d95b5
gnu: nss: Disable long b64 tests.
Suggested by Marius Bakke <mbakke@fastmail.com> in
<https://lists.gnu.org/archive/html/guix-devel/2017-04/msg00440.html>.

* gnu/packages/patches/nss-disable-long-b64-tests.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add it.
* gnu/packages/gnuzilla.scm (nss)[source]: Add patch.
2017-04-21 00:04:42 -04:00
Mark H Weaver 1aa9e42214
gnu: nss: Update to 3.30.2 [fixes CVE-2017-5461].
* gnu/packages/gnuzilla.scm (nss): Update to 3.30.2.
2017-04-21 00:04:40 -04:00
Mark H Weaver ad00ac6811
gnu: icecat: Label patches that have since been assigned CVEs.
Label patches that address the following CVEs: CVE-2017-5429, CVE-2017-5432,
CVE-2017-5433, CVE-2017-5434, CVE-2017-5435, CVE-2017-5436, CVE-2017-5438,
CVE-2017-5439, CVE-2017-5440, CVE-2017-5441, CVE-2017-5442, CVE-2017-5443,
CVE-2017-5444, CVE-2017-5445, CVE-2017-5446, CVE-2017-5447, CVE-2017-5448,
CVE-2017-5459, CVE-2017-5460, CVE-2017-5464, CVE-2017-5465, and CVE-2017-5469.

* gnu/packages/gnuzilla.scm (icecat)[source][patches]: Add comments indicating
CVE assignments.
2017-04-19 20:38:24 -04:00
Marius Bakke 8bbd50e968
Revert "gnu: nss, nss-certs: Update to 3.30.1."
This version fails to build on some architectures:

https://lists.gnu.org/archive/html/guix-devel/2017-04/msg00365.html
https://bugzilla.mozilla.org/show_bug.cgi?id=1351459

This reverts commit 96e98d51a7.
2017-04-18 00:29:03 +02:00
Clément Lassieur 483ab08f84
gnu: icecat: Use system ICU.
* gnu/packages/gnuzilla.scm (icecat)[arguments] <#:configure-flags>: Remove
comment for "--with-system-icu".
2017-04-17 20:41:17 +02:00
Mark H Weaver d24b989424
gnu: icecat: Add more fixes from mozilla-esr45.
* gnu/packages/gnuzilla.scm (icecat)[source]: Add fixes from the upstream
mozilla-esr45 repository.
2017-04-12 21:40:05 -04:00
Marius Bakke 96e98d51a7
gnu: nss, nss-certs: Update to 3.30.1.
* gnu/packages/certs.scm (nss-certs): Update to 3.30.1.
* gnu/packages/gnuzilla.scm (nss): Update to 3.30.1.
2017-04-09 23:52:24 +02:00
Clément Lassieur 8db947169f
gnu: icecat: Use bundled ICU to avoid crashes.
* gnu/packages/gnuzilla.scm (icecat)[arguments] <#:configure-flags>:
Temporarily comment out "--with-system-icu".
2017-04-04 20:18:38 +02:00
Clément Lassieur cca906754d
gnu: icecat: Re-enable parallel build.
* gnu/packages/gnuzilla.scm (icecat)[arguments]: Re-enable parallel build.
2017-04-04 20:18:38 +02:00
Marius Bakke 26bad5d7eb
gnu: nss, nss-certs: Update to 3.30.
* gnu/packages/gnuzilla.scm (nss): Update to 3.30.
* gnu/packages/certs.scm (nss-certs): Update to 3.30.
* gnu/packages/patches/nss-increase-test-timeout.patch: Adjust patch context.
2017-04-03 19:25:57 +02:00
Marius Bakke 84157bb8bf
Merge branch 'master' into core-updates
Most conflicts are from 6fd52309b8.
2017-03-30 22:59:53 +02:00
Tobias Geerinckx-Rice 6fd52309b8
gnu: Use HTTPS for almost all gnu.org HOME-PAGEs.
All HTTP gnu.org (and supported subdomain) HOME-PAGEs changed to HTTPS.
2017-03-30 01:30:16 +02:00
Mark H Weaver 2abf6371cc
gnu: icecat: Add fixes from mozilla-esr45; use skia by default.
* gnu/packages/gnuzilla.scm (icecat)[source][patches]: Add fixes from
the upstream mozilla-esr45 repository.
[arguments]: Add 'use-skia-by-default' phase.
2017-03-29 19:03:38 -04:00
Efraim Flashner 04952bd732
gnu: nspr: Use 'modify-phases' syntax.
* gnu/packages/gnuzilla.scm (nspr)[arguments]: Use 'modify-phases'
syntax.
2017-03-28 09:38:27 +03:00
Efraim Flashner 84fb4bd907
gnu: nspr: Update to 4.14.
* gnu/packages/gnuzilla.scm (nspr): Update to 4.14.
2017-03-28 09:38:14 +03:00
Efraim Flashner aaac423cc4
gnu: mozjs@24: Use more inherited fields.
* gnu/packages/gnuzilla.scm (mozjs@24)[arguments]: Use
'substitute-keyword-arguments', override inherited 'configure.
[native-inputs]: Remove field to use inherited native-inputs.
[propagated-inputs]: Same.
2017-03-28 09:35:29 +03:00
Efraim Flashner 56486b3a40
gnu: mozjs@17: Use 'modify-phases' syntax.
* gnu/packages/gnuzilla.scm (mozjs@17)[arguments]: Use 'modify-phases'
syntax.
2017-03-28 09:35:24 +03:00
Efraim Flashner f403c6761b
gnu: mozjs@17: Add missing inputs.
* gnu/packages/gnuzilla.scm (mozjs@17)[native-inputs]: Add pkg-config.
[propagated-inputs]: Add nspr.
[inputs]: Add zlib.
2017-03-28 09:34:58 +03:00
Efraim Flashner a64b7da513
gnu: mozjs@17: Add support for aarch64-linux.
* gnu/packages/gnuzilla.scm (mozjs@17)[source]: Add patch.
[arguments]: Add phase deleting slow test, add configure argument for
building on aarch64-linux.
* gnu/packages/patches/mozjs17-aarch64-support.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add it.
2017-03-28 09:34:53 +03:00
Efraim Flashner 26f38d313b
gnu: mozjs@24: Add aarch64-support.
* gnu/packages/gnuzilla.scm (mozjs@24)[source]: Add patch.
[arguments]: Add flag for building on aarch64-linux, delete failing test.
* gnu/packages/patches/mozjs24-aarch64-support.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add it.
2017-03-28 09:34:44 +03:00
Mark H Weaver f67337e23e
Merge branch 'master' into core-updates 2017-03-19 18:52:12 -04:00
Mark H Weaver 6191fef4e0
gnu: icecat: Add selected fixes from upstream mozilla-esr45.
* gnu/packages/gnuzilla.scm (icecat)[source][patches]: Add selected fixes from
the upstream mozilla-esr45 repository.
2017-03-19 15:55:06 -04:00
Marius Bakke b8f99f4ae3
gnu: nss, nss-certs: Update to 3.29.3.
* gnu/packages/gnuzilla.scm (nss): Update to 3.29.3.
* gnu/packages/certs.scm (nss-certs): Update to 3.29.3.
2017-03-15 17:57:51 +01:00
Marius Bakke d027b0011f
gnu: nss: Increase test timeouts.
* gnu/packages/patches/nss-increase-test-timeout.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add it.
* gnu/packages/gnuzilla.scm (nss)[source]: Use it.
2017-03-15 17:56:05 +01:00
Marius Bakke 1461dd2410
Revert "Revert "gnu: nss: Build for aarch64-linux with 64-bit support.""
This reverts commit adb984d23c.
2017-03-15 17:53:27 +01:00
Marius Bakke db3c06d511
gnu: nss: Use 'modify-phases' syntax.
* gnu/packages/gnuzilla.scm (nss)[arguments]: Use 'modify-phases'.
2017-03-15 17:53:24 +01:00
Marius Bakke 796d2f2d0b
Revert "gnu: nss: Use 'modify-phases' syntax."
This reverts commit 87f1c7efc1.
2017-03-14 22:29:18 +01:00
Marius Bakke 031349075a
Revert "gnu: nss, nss-certs: Update to 3.29.3."
Hydra failed to build this version. See discussion at
https://lists.gnu.org/archive/html/guix-devel/2017-03/msg00408.html.

This reverts commit 4f3dcdd99b.
2017-03-14 22:26:18 +01:00
Marius Bakke 4f3dcdd99b
gnu: nss, nss-certs: Update to 3.29.3.
* gnu/packages/gnuzilla.scm (nss): Update to 3.29.3.
* gnu/packages/certs.scm (nss-certs): Update to 3.29.3.
2017-03-13 18:21:22 +01:00
Marius Bakke 87f1c7efc1
gnu: nss: Use 'modify-phases' syntax.
* gnu/packages/gnuzilla.scm (nss)[arguments]: Use 'modify-phases'.
2017-03-13 18:21:22 +01:00
Mark H Weaver 1fa8a51ecc
gnu: icecat: Add fixes from upstream Firefox ESR 45.8.0.
Includes fixes for CVE-2017-5398, CVE-2017-5400, CVE-2017-5401, CVE-2017-5402,
CVE-2017-5404, CVE-2017-5405, CVE-2017-5407, CVE-2017-5408, CVE-2017-5409, and
CVE-2017-5410.

* gnu/packages/gnuzilla.scm (icecat)[source]: Add selected fixes from the
upstream mozilla-esr45 repository.
2017-03-09 03:58:29 -05:00
Mark H Weaver c9b631aef4
gnu: icecat: Update to 45.7.0-gnu1.
* gnu/packages/gnuzilla.scm (icecat): Update to 45.7.0-gnu1.  Remove patches
included in 45.7.0.
2017-03-09 03:58:27 -05:00
Marius Bakke 3b175eab84
gnu: nss, nss-certs: Update to 3.29.2.
* gnu/packages/certs.scm (nss-certs): Update to 3.29.2.
* gnu/packages/gnuzilla.scm (nss): Update to 3.29.2.
* gnu/packages/patches/nss-pkgconfig.patch: Adapt to context changes.
2017-03-03 17:26:24 +01:00
Leo Famulari 728f36202d
gnu: nspr: Update to 4.13.1.
* gnu/packages/gnuzilla.scm (nspr): Update to 4.13.1.
2017-03-03 17:23:04 +01:00
Marius Bakke e8fc1a0dcf
gnu: libevent: Update to 2.1.8 [security fixes].
* gnu/packages/libevent.scm (libevent): Update to 2.1.8.
[inputs]: Change 'python-wrapper' to 'python-2'. Move 'which' to ...
[native-inputs]: ... here. New field.
(libevent-2.0): New variable.
* gnu/packages/patches/libevent-2.1-dns-tests.patch,
  gnu/packages/patches/libevent-2.0-evdns-fix-remote-stack-overread.patch
  gnu/packages/patches/libevent-2.0-evdns-fix-searching-empty-hostnames.patch
  gnu/packages/patches/libevent-2.0-evutil-fix-buffer-overflow.patch: New files.
* gnu/local.mk (dist_patch_DATA): Add them.
* gnu/packages/gnuzilla.scm (icecat)[inputs]: Change 'libevent' to 'libevent-2.0'.
2017-02-01 02:42:12 +01:00
Mark H Weaver ad91454281
gnu: icecat: Add more fixes from upstream mozilla-esr45.
Includes fixes for CVE-2017-5373, CVE-2017-5375, CVE-2017-5376, CVE-2017-5378,
CVE-2017-5380, CVE-2017-5383, CVE-2017-5386, CVE-2017-5390, and CVE-2017-5396.

* gnu/packages/gnuzilla.scm (icecat)[source]: Rename existing patches to
reflect newly announced CVE assignments.  Add selected fixes from upstream
mozilla-esr45.
2017-01-25 02:23:15 -05:00
Ludovic Courtès 89e34644d9
gnu: Move Kerberos implemetations to (gnu packages kerberos).
* gnu/packages/mit-krb5.scm: Remove.
* gnu/packages/shishi.scm: Remove.
* gnu/packages/kerberos.scm: New file, from the concatenation of these
two.
* gnu/local.mk (GNU_SYSTEM_MODULES): Adjust accordingly.
* gnu/packages/admin.scm, gnu/packages/cyrus-sasl.scm,
gnu/packages/gnome.scm, gnu/packages/gnuzilla.scm,
gnu/packages/gsasl.scm, gnu/packages/java.scm,
gnu/packages/networking.scm, gnu/packages/nfs.scm,
gnu/packages/onc-rpc.scm, gnu/packages/ssh.scm,
gnu/packages/web.scm: Adjust accordingly.
2017-01-19 00:11:15 +01:00
Mark H Weaver 757768035b
gnu: icecat: Add more fixes from upstream mozilla-esr45.
* gnu/packages/gnuzilla.scm (icecat)[source]: Add selected patches from
the upstream mozilla-esr45 repository.
2017-01-15 16:11:25 -05:00
Leo Famulari dca73a742c
Revert "gnu: nss: Add comment about test failures in NSS 3.27.2"
This reverts commit 4f6ff977c2.
2017-01-11 11:23:39 -05:00
Mark H Weaver 86c41ec3e4
gnu: icecat: Add fixes from upstream mozilla-esr45.
* gnu/packages/gnuzilla.scm (icecat)[source][patches]: Add selected fixes
from the upstream mozilla-esr45 repository.
2017-01-08 20:36:29 -05:00
Mark H Weaver 989862005a
gnu: icecat: Rename patches that have been assigned CVEs.
* gnu/packages/gnuzilla.scm (icecat)[source][patches]: Rename patches that
have since been assigned CVEs.
2017-01-08 20:36:27 -05:00
Leo Famulari 9385f0e9cb
Revert "gnu: nspr: Update to 4.13.1."
There were many reports that NSS failed to build with this change.

This reverts commit 707c65aad7.
2017-01-07 15:38:30 -05:00
Leo Famulari 707c65aad7
gnu: nspr: Update to 4.13.1.
* gnu/packages/gnuzilla.scm (nspr): Update to 4.13.1.
2017-01-06 13:09:05 -05:00
Leo Famulari 4f6ff977c2
gnu: nss: Add comment about test failures in NSS 3.27.2
* gnu/packages/gnuzilla.scm (nss): Add comment.
2016-12-20 14:44:53 -05:00
Leo Famulari 6eda11de44
Revert "gnu: nss, nss-certs: Update to 3.27.2."
This reverts commit 7ab3ea4266.
2016-12-20 14:35:21 -05:00
Mark H Weaver 48ef3f9d9c
gnu: icecat: Label patches that have since been assigned CVEs.
Document that the following CVEs are fixed: CVE-2016-9893, CVE-2016-9895,
CVE-2016-9897, CVE-2016-9898, CVE-2016-9899, CVE-2016-9900, CVE-2016-9901,
CVE-2016-9902, CVE-2016-9904, and CVE-2016-9905.  Note that these are all of
the CVEs fixed in Firefox ESR 45.6.

* gnu/packages/gnuzilla.scm (icecat)[source]: Add comments to patches that
have since been assigned CVEs.
2016-12-14 19:55:26 -05:00
Leo Famulari 7ab3ea4266
gnu: nss, nss-certs: Update to 3.27.2.
* gnu/packages/gnuzilla.scm (nss): Update to 3.27.2.
* gnu/packages/certs.scm (nss-certs): Update to 3.27.2.
2016-12-14 10:19:32 -05:00
Mark H Weaver 56c394ee43
gnu: icecat: Add more fixes from upstream mozilla-esr45.
* gnu/packages/gnuzilla.scm (icecat)[sources]: Add more fixes from the
upstream mozilla-esr45 repository.
2016-12-10 15:22:38 -05:00
Mark H Weaver 5bdec7d634
gnu: icecat: Update to 45.5.1-gnu1.
* gnu/packages/gnuzilla.scm (icecat): Update to 45.5.1-gnu1.
[source]: Remove temporary URI for 45.3 beta.  Fix URI computation.  Remove
outdated patches.  Add more cherry-picked bug fixes from upstream
mozilla-esr45.  Use 'list' instead of quasiquote in 'patches' field.
2016-12-03 12:29:53 -05:00
Mark H Weaver 9689e71d2f
gnu: icecat: Add fixes for CVE-2016-9079 and other bugs.
* gnu/packages/gnuzilla.scm (icecat)[source][patches]: Add fixes for
CVE-2016-9079 and other selected fixes from the upstream mozilla-esr45
repository.
2016-11-30 20:51:05 -05:00
Tobias Geerinckx-Rice 7cba7647a5
gnu: icecat: Use libjpeg-turbo instead of bundled libjpeg.
* gnu/packages/gnuzilla.scm (icecat)[source]: Remove bundled libjpeg, which
is actually libjpeg-turbo.
[inputs]: Add libjpeg-turbo.
[arguments]: Use it.
2016-11-29 19:15:47 +01:00
Mark H Weaver 2f63e087fe
Revert "gnu: icecat: Enable gtk3 support."
This reverts commit eaf72e218e.

IceCat misbehaves with gtk+3, most notably the scroll bar handles are
invisible.  Here we revert back to gtk+2 until these problems can be
addressed.
2016-11-16 22:34:11 -05:00
Mark H Weaver 9cdb405b81
gnu: icecat: Remove unneeded patch.
This is a followup to commit 1a87aa7567.

* gnu/packages/gnuzilla.scm (icecat)[sources][patches]: Remove patch for
CVE-2016-5296, which is for a bundled copy of pixman that is
subsequently deleted by a snippet.
2016-11-16 14:14:25 -05:00
Mark H Weaver 1a87aa7567
gnu: icecat: Add fixes from Firefox ESR 45.5.0.
Includes fixes for CVE-2016-5290, CVE-2016-5291, CVE-2016-5297, CVE-2016-9064,
and CVE-2016-9066.

* gnu/packages/gnuzilla.scm (icecat)[source][patches]: Add fixes for
aforementioned CVEs and other selected fixes from Firefox ESR 45.5.0.  Note
that the first six patches of CVE-2016-5290 and the patch for CVE-2016-9066
were already present, but were labeled by mozilla bug number instead of CVE.
* gnu/packages/patches/icecat-CVE-2016-9064.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add it.
2016-11-16 13:04:02 -05:00
Leo Famulari 40330e555f
gnu: icecat: Fix build with binutils >= 2.26.
* gnu/packages/patches/icecat-binutils.patch: New patch.
* gnu/local.mk (dist_patch_DATA): Add it.
* gnu/packages/gnuzilla.scm (icecat)[source]: Use it.
2016-10-31 20:59:40 -04:00
Leo Famulari 062c7e43ed
Merge branch 'master' into core-updates 2016-10-29 21:44:44 -04:00
David Craven eaf72e218e
gnu: icecat: Enable gtk3 support.
* gnu/packages/gnuzilla.scm (icecat)[inputs]: Add gtk+.
  [arguments]: Use --enable-default-toolkit=cairo-gtk3.
2016-10-30 01:03:09 +02:00
Mark H Weaver 9bc79c118e
gnu: icecat: Use normal 'sqlite'.
* gnu/packages/gnuzilla.scm (icecat)[inputs]: Use normal 'sqlite'.
2016-10-12 09:28:49 -04:00
Mark H Weaver bfb48f4f33
gnu: icecat: Update to 45.3.0-gnu1-beta. Add fixes from Firefox ESR 45.4.0.
Includes fixes for CVE-2016-5250, CVE-2016-5257, CVE-2016-5261, CVE-2016-5270,
CVE-2016-5272, CVE-2016-5274, CVE-2016-5276, CVE-2016-5277, CVE-2016-5278,
CVE-2016-5280, CVE-2016-5281, and CVE-2016-5284.

* gnu/packages/gnuzilla.scm (mozilla-patch): New procedure.
(icecat): Update to 45.3.0-gnu1.
[source]: Add alternate source URI for the beta release.  Update patches.
[inputs]: Replace 'sqlite' input with a customized sqlite with
SQLITE_ENABLE_DBSTAT_VTAB support.
[native-inputs]: Add 'which'.
* gnu/packages/patches/icecat-avoid-bundled-includes.patch: Rename to...
* gnu/packages/patches/icecat-avoid-bundled-libraries.patch: ... and adapt
to version 45.
* gnu/packages/patches/icecat-CVE-2016-2818-pt1.patch,
gnu/packages/patches/icecat-CVE-2016-2818-pt2.patch,
gnu/packages/patches/icecat-CVE-2016-2818-pt3.patch,
gnu/packages/patches/icecat-CVE-2016-2818-pt4.patch,
gnu/packages/patches/icecat-CVE-2016-2818-pt5.patch,
gnu/packages/patches/icecat-CVE-2016-2818-pt6.patch,
gnu/packages/patches/icecat-CVE-2016-2818-pt7.patch,
gnu/packages/patches/icecat-CVE-2016-2818-pt8.patch,
gnu/packages/patches/icecat-CVE-2016-2818-pt9.patch,
gnu/packages/patches/icecat-CVE-2016-2819.patch,
gnu/packages/patches/icecat-CVE-2016-2821.patch,
gnu/packages/patches/icecat-CVE-2016-2824.patch,
gnu/packages/patches/icecat-CVE-2016-2828.patch,
gnu/packages/patches/icecat-CVE-2016-2831.patch: Delete files.
* gnu/local.mk (dist_patch_DATA): Update accordingly.
2016-10-11 12:59:26 -04:00
Leo Famulari 6a4cbc6f12
gnu: nss-certs and nss: Update to 3.27.1.
* gnu/packages/certs.scm (nss-certs): Update to 3.27.1.
* gnu/packages/gnuzilla.scm (nss): Update to 3.27.1.
2016-10-05 20:04:50 -04:00
Mark H Weaver e9b718a05a
gnu: nss: Increase build timeout to 60 hours.
* gnu/packages/gnuzilla.scm (nss)[properties]: Increase build timeout to
60 hours.
2016-10-03 22:05:32 -04:00
Vincent Legoll d002121b5e
gnu: nss-certs and nss: Update to 3.26
* gnu/packages/certs.scm (nss-certs): Update to 3.26.
* gnu/packages/gnuzilla.scm (nss): Update to 3.26.

Signed-off-by: Leo Famulari <leo@famulari.name>
2016-09-15 09:43:09 -04:00
Andreas Enge e309c75610
Merge remote-tracking branch 'origin/master' into core-updates 2016-07-28 11:08:55 +02:00
Alex Griffin 88a8ce87a4
gnu: icecat: Install icons.
* gnu/packages/gnuzilla.scm (icecat)[arguments]: Add
'install-icons' phase.

Signed-off-by: Ludovic Courtès <ludo@gnu.org>
2016-07-26 14:53:16 +02:00
Andreas Enge 14656f4495
Merge remote-tracking branch 'origin/master' into core-updates 2016-07-25 21:58:36 +02:00
Andreas Enge a308c2339a
gnu: icecat: Disable parallel build.
* gnu/packages/gnuzilla.scm (icecat)[arguments]: Disable parallel build.
2016-07-24 18:40:46 +02:00
Andreas Enge 238e5642d4
gnu: icecat: Update to 38.8.0-gnu2.
* gnu/packages/gnuzilla.scm (icecat): Update to 38.8.0-gnu2.
2016-07-24 17:28:36 +02:00
Leo Famulari d778fa5ff6
gnu: mozjs: Disable parallel build.
* gnu/packages/gnuzilla.scm (mozjs)[arguments]: Add
'#:parallel-build? #f'.
2016-07-22 17:44:31 -04:00
宋文武 2d02a7789a
gnu: mozjs-24: Disable parallel build.
* gnu/packages/gnuzilla.scm (mozjs-24)[arguments]: Add
'#:parallel-build? #f'.
2016-07-02 10:43:45 +08:00
Ludovic Courtès 01497dfe6c
Merge branch 'master' into core-updates 2016-06-27 09:30:01 +02:00
Ludovic Courtès 09b87aff46
gnu: Adjust to yasm change of module.
This is a followup to 15a3fffc59.

* gnu/packages/gnuzilla.scm,
gnu/packages/gstreamer.scm, gnu/packages/kodi.scm,
gnu/packages/video.scm: Adjust import list to yasm move.
2016-06-21 12:27:50 +02:00
Mark H Weaver 98d9182205
gnu: icecat: Add fixes for CVE-2016-{2818,2819,2821,2824,2828,2831}.
* gnu/packages/patches/icecat-CVE-2016-2818-pt1.patch,
gnu/packages/patches/icecat-CVE-2016-2818-pt2.patch,
gnu/packages/patches/icecat-CVE-2016-2818-pt3.patch,
gnu/packages/patches/icecat-CVE-2016-2818-pt4.patch,
gnu/packages/patches/icecat-CVE-2016-2818-pt5.patch,
gnu/packages/patches/icecat-CVE-2016-2818-pt6.patch,
gnu/packages/patches/icecat-CVE-2016-2818-pt7.patch,
gnu/packages/patches/icecat-CVE-2016-2818-pt8.patch,
gnu/packages/patches/icecat-CVE-2016-2818-pt9.patch,
gnu/packages/patches/icecat-CVE-2016-2819.patch,
gnu/packages/patches/icecat-CVE-2016-2821.patch,
gnu/packages/patches/icecat-CVE-2016-2824.patch,
gnu/packages/patches/icecat-CVE-2016-2828.patch,
gnu/packages/patches/icecat-CVE-2016-2831.patch: New files.
* gnu/local.mk (dist_patch_DATA): Add them.
* gnu/packages/gnuzilla.scm (icecat)[source]: Add patches.
2016-06-08 14:26:54 -04:00
Ludovic Courtès 6cde5c34a1
gnu: icecat: Install '.desktop' entry.
Fixes <http://bugs.gnu.org/23094>.
Reported by Danny Milosavljevic <dannym@scratchpost.org>.

* gnu/packages/gnuzilla.scm (icecat)[arguments]: Add
'install-desktop-entry' phase.
2016-06-02 19:11:14 +02:00
Ludovic Courtès 99effc8faa
lint: Honor 'cpe-name' and 'cpe-version' package properties.
* guix/scripts/lint.scm (package-name->cpe-name): Remove.
(package-vulnerabilities): Honor 'cpe-name' and 'cpe-version'
properties.
* gnu/packages/grub.scm (grub)[properties]: New field.
* gnu/packages/gnuzilla.scm (icecat)[properties]: Add 'cpe-name' and
'cpe-version'.
* doc/guix.texi (Invoking guix lint): Mention 'cpe-name'.
2016-05-17 18:15:53 +02:00
Mark H Weaver ef06d54a9b
gnu: icecat: Update to 38.8.0-gnu1.
* gnu/packages/patches/icecat-CVE-2016-2805.patch,
gnu/packages/patches/icecat-CVE-2016-2807-pt1.patch,
gnu/packages/patches/icecat-CVE-2016-2807-pt2.patch,
gnu/packages/patches/icecat-CVE-2016-2807-pt3.patch,
gnu/packages/patches/icecat-CVE-2016-2807-pt4.patch,
gnu/packages/patches/icecat-CVE-2016-2807-pt5.patch,
gnu/packages/patches/icecat-CVE-2016-2808.patch,
gnu/packages/patches/icecat-CVE-2016-2814.patch,
gnu/packages/patches/icecat-re-enable-DHE-cipher-suites.patch,
gnu/packages/patches/icecat-update-bundled-graphite2.patch: Delete files.
* gnu/local.mk (dist_patch_DATA): Remove them.
* gnu/packages/gnuzilla.scm (icecat): Update to 38.8.0-gnu1.
[source] Remove deleted patches.
2016-05-12 18:15:07 -04:00
Mark H Weaver dde2a94c09 gnu: icecat: Add fixes for CVE-2016-{2805,2807,2808,2814} etc.
* gnu/packages/patches/icecat-CVE-2016-2805.patch,
gnu/packages/patches/icecat-CVE-2016-2807-pt1.patch,
gnu/packages/patches/icecat-CVE-2016-2807-pt2.patch,
gnu/packages/patches/icecat-CVE-2016-2807-pt3.patch,
gnu/packages/patches/icecat-CVE-2016-2807-pt4.patch,
gnu/packages/patches/icecat-CVE-2016-2807-pt5.patch,
gnu/packages/patches/icecat-CVE-2016-2808.patch,
gnu/packages/patches/icecat-CVE-2016-2814.patch,
gnu/packages/patches/icecat-update-bundled-graphite2: New files.
* gnu/local.mk (dist_patch_DATA): Add them.
* gnu/packages/gnuzilla.scm (icecat)[source]: Add patches.

icecat fixup
2016-04-28 10:25:19 -04:00
Mark H Weaver 3161f6a4ec gnu: nss: Update to 3.23.
* gnu/packages/gnuzilla.scm (nss): Update to 3.23.
[arguments]: In the 'install' phase, remove libgtest1.so from the
output.
2016-04-28 10:25:18 -04:00
Mark H Weaver b3107888aa gnu: nspr: Update to 4.12.
* gnu/packages/gnuzilla.scm (nspr): Update to 4.12.
2016-04-28 10:25:18 -04:00
Ludovic Courtès 63e8bb12a4 gnu-maintenance: Move FTP directory info to 'properties' fields.
* guix/gnu-maintenance.scm (ftp-server/directory): Rewrite to honor
PACKAGE's properties.  Remove list of quirks.
(releases): Add #:server and #:directory parameters.  Remove call
to 'ftp-server/directory'.
(latest-release): Likewise.
(latest-release*): Add call to 'ftp-server/directory'.  Honor
'upstream-name' property of PACKAGE.
* gnu/packages/fonts.scm (font-gnu-freefont-ttf): Add 'properties'
field.
* gnu/packages/gnupg.scm (libgpg-error, libgcrypt, libassuan):
(libksba, gnupg): Likewise.
* gnu/packages/gnuzilla.scm (icecat): Likewise.
* gnu/packages/package-management.scm (guix-0.10.0): Likewise.
* gnu/packages/pretty-print.scm (source-highlight): Likewise.
* gnu/packages/scheme.scm (mit-scheme): Likewise.
* gnu/packages/telephony.scm (ucommon): Likewise.
* gnu/packages/tls.scm (gnutls): Likewise.
2016-04-15 00:32:18 +02:00
Alex Kost fc1adab148 gnu: packages: Use 'search-patches' everywhere.
* gnu/packages/abiword.scm: Use 'search-patches' for 'patches' field.
* gnu/packages/acl.scm: Likewise.
* gnu/packages/admin.scm: Likewise.
* gnu/packages/algebra.scm: Likewise.
* gnu/packages/animation.scm: Likewise.
* gnu/packages/apr.scm: Likewise.
* gnu/packages/audacity.scm: Likewise.
* gnu/packages/audio.scm: Likewise.
* gnu/packages/autotools.scm: Likewise.
* gnu/packages/avahi.scm: Likewise.
* gnu/packages/backup.scm: Likewise.
* gnu/packages/base.scm: Likewise.
* gnu/packages/bash.scm: Likewise.
* gnu/packages/bioinformatics.scm: Likewise.
* gnu/packages/cdrom.scm: Likewise.
* gnu/packages/ci.scm: Likewise.
* gnu/packages/cmake.scm: Likewise.
* gnu/packages/cpio.scm: Likewise.
* gnu/packages/cross-base.scm: Likewise.
* gnu/packages/dico.scm: Likewise.
* gnu/packages/doxygen.scm: Likewise.
* gnu/packages/ebook.scm: Likewise.
* gnu/packages/elf.scm: Likewise.
* gnu/packages/emacs.scm: Likewise.
* gnu/packages/engineering.scm: Likewise.
* gnu/packages/firmware.scm: Likewise.
* gnu/packages/flashing-tools.scm: Likewise.
* gnu/packages/fltk.scm: Likewise.
* gnu/packages/ftp.scm: Likewise.
* gnu/packages/games.scm: Likewise.
* gnu/packages/gawk.scm: Likewise.
* gnu/packages/gcc.scm: Likewise.
* gnu/packages/gd.scm: Likewise.
* gnu/packages/ghostscript.scm: Likewise.
* gnu/packages/glib.scm: Likewise.
* gnu/packages/gnome.scm: Likewise.
* gnu/packages/gnucash.scm: Likewise.
* gnu/packages/gnunet.scm: Likewise.
* gnu/packages/gnupg.scm: Likewise.
* gnu/packages/gnuzilla.scm: Likewise.
* gnu/packages/graphics.scm: Likewise.
* gnu/packages/grub.scm: Likewise.
* gnu/packages/gtk.scm: Likewise.
* gnu/packages/guile.scm: Likewise.
* gnu/packages/icu4c.scm: Likewise.
* gnu/packages/idutils.scm: Likewise.
* gnu/packages/image.scm: Likewise.
* gnu/packages/imagemagick.scm: Likewise.
* gnu/packages/irc.scm: Likewise.
* gnu/packages/ldc.scm: Likewise.
* gnu/packages/libcanberra.scm: Likewise.
* gnu/packages/libevent.scm: Likewise.
* gnu/packages/libreoffice.scm: Likewise.
* gnu/packages/libunwind.scm: Likewise.
* gnu/packages/libusb.scm: Likewise.
* gnu/packages/linux.scm: Likewise.
* gnu/packages/lirc.scm: Likewise.
* gnu/packages/llvm.scm: Likewise.
* gnu/packages/lsh.scm: Likewise.
* gnu/packages/lua.scm: Likewise.
* gnu/packages/lxqt.scm: Likewise.
* gnu/packages/mail.scm: Likewise.
* gnu/packages/maths.scm: Likewise.
* gnu/packages/mcrypt.scm: Likewise.
* gnu/packages/messaging.scm: Likewise.
* gnu/packages/mit-krb5.scm: Likewise.
* gnu/packages/mp3.scm: Likewise.
* gnu/packages/multiprecision.scm: Likewise.
* gnu/packages/music.scm: Likewise.
* gnu/packages/ninja.scm: Likewise.
* gnu/packages/nvi.scm: Likewise.
* gnu/packages/ocaml.scm: Likewise.
* gnu/packages/orpheus.scm: Likewise.
* gnu/packages/ots.scm: Likewise.
* gnu/packages/parallel.scm: Likewise.
* gnu/packages/patchutils.scm: Likewise.
* gnu/packages/pcre.scm: Likewise.
* gnu/packages/pdf.scm: Likewise.
* gnu/packages/perl.scm: Likewise.
* gnu/packages/plotutils.scm: Likewise.
* gnu/packages/polkit.scm: Likewise.
* gnu/packages/pulseaudio.scm: Likewise.
* gnu/packages/python.scm: Likewise.
* gnu/packages/qemu.scm: Likewise.
* gnu/packages/qt.scm: Likewise.
* gnu/packages/ratpoison.scm: Likewise.
* gnu/packages/rdf.scm: Likewise.
* gnu/packages/readline.scm: Likewise.
* gnu/packages/rush.scm: Likewise.
* gnu/packages/scheme.scm: Likewise.
* gnu/packages/screen.scm: Likewise.
* gnu/packages/sdl.scm: Likewise.
* gnu/packages/slim.scm: Likewise.
* gnu/packages/ssh.scm: Likewise.
* gnu/packages/tcl.scm: Likewise.
* gnu/packages/tcsh.scm: Likewise.
* gnu/packages/texinfo.scm: Likewise.
* gnu/packages/tls.scm: Likewise.
* gnu/packages/tor.scm: Likewise.
* gnu/packages/tv.scm: Likewise.
* gnu/packages/valgrind.scm: Likewise.
* gnu/packages/version-control.scm: Likewise.
* gnu/packages/video.scm: Likewise.
* gnu/packages/vpn.scm: Likewise.
* gnu/packages/vtk.scm: Likewise.
* gnu/packages/w3m.scm: Likewise.
* gnu/packages/web.scm: Likewise.
* gnu/packages/wicd.scm: Likewise.
* gnu/packages/wm.scm: Likewise.
* gnu/packages/xdisorg.scm: Likewise.
* gnu/packages/xfce.scm: Likewise.
* gnu/packages/xiph.scm: Likewise.
* gnu/packages/xml.scm: Likewise.
* gnu/packages/xorg.scm: Likewise.
* gnu/packages/zip.scm: Likewise.
2016-04-14 10:38:21 +03:00
Efraim Flashner 58e87f66ce gnu: icecat: Update to 38.7.1-gnu1.
* gnu/packages/gnuzilla.scm (icecat): Update to 38.7.1-gnu1.
[sources]: Remove numerous patches.
* gnu/packages/patches/icecat-CVE-2015-4477.patch,
gnu/packages/patches/icecat-CVE-2015-7207.patch,
gnu/packages/patches/icecat-CVE-2016-1952-pt01.patch,
gnu/packages/patches/icecat-CVE-2016-1952-pt02.patch,
gnu/packages/patches/icecat-CVE-2016-1952-pt03.patch,
gnu/packages/patches/icecat-CVE-2016-1952-pt04.patch,
gnu/packages/patches/icecat-CVE-2016-1952-pt05.patch,
gnu/packages/patches/icecat-CVE-2016-1952-pt06.patch,
gnu/packages/patches/icecat-CVE-2016-1954.patch,
gnu/packages/patches/icecat-CVE-2016-1960.patch,
gnu/packages/patches/icecat-CVE-2016-1961.patch,
gnu/packages/patches/icecat-CVE-2016-1962.patch,
gnu/packages/patches/icecat-CVE-2016-1964.patch,
gnu/packages/patches/icecat-CVE-2016-1965.patch,
gnu/packages/patches/icecat-CVE-2016-1966.patch,
gnu/packages/patches/icecat-CVE-2016-1974.patch,
gnu/packages/patches/icecat-icecatbug-1248851.patch,
gnu/packages/patches/icecat-update-graphite2.patch,
gnu/packages/patches/icecat-update-graphite2-pt2.patch: Remove files.
* gnu-system.am (dist_patch_DATA): Remove them.
2016-04-10 08:40:42 +03:00
Mark H Weaver c3499ad6b8 gnu: icecat: Add several security fixes.
* gnu/packages/patches/icecat-CVE-2015-4477.patch,
gnu/packages/patches/icecat-CVE-2015-7207.patch,
gnu/packages/patches/icecat-CVE-2016-1952-pt01.patch,
gnu/packages/patches/icecat-CVE-2016-1952-pt02.patch,
gnu/packages/patches/icecat-CVE-2016-1952-pt03.patch,
gnu/packages/patches/icecat-CVE-2016-1952-pt04.patch,
gnu/packages/patches/icecat-CVE-2016-1952-pt05.patch,
gnu/packages/patches/icecat-CVE-2016-1952-pt06.patch,
gnu/packages/patches/icecat-CVE-2016-1954.patch,
gnu/packages/patches/icecat-CVE-2016-1960.patch,
gnu/packages/patches/icecat-CVE-2016-1961.patch,
gnu/packages/patches/icecat-CVE-2016-1962.patch,
gnu/packages/patches/icecat-CVE-2016-1964.patch,
gnu/packages/patches/icecat-CVE-2016-1965.patch,
gnu/packages/patches/icecat-CVE-2016-1966.patch,
gnu/packages/patches/icecat-CVE-2016-1974.patch,
gnu/packages/patches/icecat-bug-1248851.patch: New files.
* gnu-system.am (dist_patch_DATA): Add them.
* gnu/packages/gnuzilla.scm (icecat)[source]: Add patches.
2016-03-10 10:52:41 -05:00
Mark H Weaver b134a80c36 gnu: icecat: Update bundled graphite2 to 1.3.6 [unspecified security fixes].
* gnu/packages/patches/icecat-update-graphite2-pt2.patch: New file.
* gnu-system.am (dist_patch_DATA): Add it.
* gnu/packages/gnuzilla.scm (icecat)[source]: Add patch.
2016-03-02 15:13:15 -05:00
Mark H Weaver bd009cd95d gnu: nss: Update to 3.21.1.
* gnu/packages/gnuzilla.scm (nss): Update to 3.21.1.
2016-03-02 15:13:14 -05:00