Commit Graph

3348 Commits

Author SHA1 Message Date
Michael Weiss
310316701f
Merge pull request #79242 from primeos/chromium
chromium: 79.0.3945.130 -> 80.0.3987.87
2020-02-07 15:15:28 +01:00
Bruno Bigras
e57e4ea0cf next: 1.3.4 -> 1.4.0 2020-02-05 23:18:59 -05:00
Michael Weiss
272041b85a
chromium: 79.0.3945.130 -> 80.0.3987.87
https://chromereleases.googleblog.com/2020/02/stable-channel-update-for-desktop.html

This update includes 56 security fixes.

CVEs:
CVE-2020-6381 CVE-2020-6382 CVE-2019-18197 CVE-2019-19926 CVE-2020-6385
CVE-2019-19880 CVE-2019-19925 CVE-2020-6387 CVE-2020-6388 CVE-2020-6389
CVE-2020-6390 CVE-2020-6391 CVE-2020-6392 CVE-2020-6393 CVE-2020-6394
CVE-2020-6395 CVE-2020-6396 CVE-2020-6397 CVE-2020-6398 CVE-2020-6399
CVE-2020-6400 CVE-2020-6401 CVE-2020-6402 CVE-2020-6403 CVE-2020-6404
CVE-2020-6405 CVE-2020-6406 CVE-2019-19923 CVE-2020-6408 CVE-2020-6409
CVE-2020-6410 CVE-2020-6411 CVE-2020-6412 CVE-2020-6413 CVE-2020-6414
CVE-2020-6415 CVE-2020-6416 CVE-2020-6417
2020-02-05 00:20:16 +01:00
Michele Guerini Rocco
96358710f7
qutebrowser: 1.9.0 -> 1.10.0 (#79172) 2020-02-04 11:24:07 +01:00
Florian Klink
a1bcf2c90e
Merge pull request #77426 from lheckemann/remove-otter
otter-browser: remove
2020-02-02 22:29:35 +01:00
Linus Heckemann
c99e248f3c otter-browser: remove
I have no interest in maintaining this anymore and it has no other maintainers.
2020-02-02 22:28:20 +01:00
kjuvi
8698e55e1f ephemeral: 6.1.1 -> 6.2.0 2020-01-31 10:27:44 +01:00
Michael Weiss
4ad78e64ff
chromium: Add myself (@primeos) as provisional maintainer
I don't really have the hardware resources nor time to do this properly,
but I'll try to keep a watch on Chromium (updates, PRs, and issues)
until we've found a new team [0].
Testing will be performed on a best effort basis (no guarantees :o).

I've also briefly documented the current maintainer
roles/responsibilities and added `meta.longDescription`.

[0]: https://github.com/NixOS/nixpkgs/issues/78450
2020-01-28 23:08:21 +01:00
Michael Weiss
cccfd1092f
chromium: 79.0.3945.117 -> 79.0.3945.130
https://chromereleases.googleblog.com/2020/01/stable-channel-update-for-desktop_16.html

This update includes 11 security fixes.

CVEs: CVE-2020-6378 CVE-2020-6379 CVE-2020-6380 CVE-2020-0601
2020-01-26 23:58:14 +01:00
Marek Mahut
a341264465
Merge pull request #78237 from r-ryantm/auto-update/opera
opera: 65.0.3467.48 -> 66.0.3515.36
2020-01-26 13:22:23 +01:00
Michael Weiss
2932d787ec
Merge pull request #77299 from ivan/chromium-79.0.3945.117
chromium: 79.0.3945.88 -> 79.0.3945.117
2020-01-25 01:12:31 +01:00
Ryan Mulligan
0e1e99d42d
Merge pull request #78248 from r-ryantm/auto-update/palemoon
palemoon: 28.8.0 -> 28.8.1
2020-01-22 08:18:18 -08:00
R. RyanTM
3aa2742e2b palemoon: 28.8.0 -> 28.8.1 2020-01-22 07:48:38 +00:00
R. RyanTM
9bc06937b5 opera: 65.0.3467.48 -> 66.0.3515.36 2020-01-22 04:52:54 +00:00
taku0
249e3d0ef3 firefox-esr: 68.4.1esr -> 68.4.2esr 2020-01-21 20:04:04 +09:00
taku0
57aed520d8 firefox: 72.0.1 -> 72.0.2 2020-01-21 19:59:34 +09:00
taku0
7187891a17 firefox-bin: 72.0.1 -> 72.0.2 2020-01-21 19:55:44 +09:00
Ivan Kozik
76ab11518d treewide: Remove myself from maintainers on some packages (#78027) 2020-01-19 12:18:34 -05:00
Francesco Zanini
2a6b2342df
captive-browser: runs on all platforms 2020-01-19 10:27:27 +01:00
Tim Steinbach
ba059b9a23
vivaldi: 2.10.1745.26-1 -> 2.10.1745.27-1 2020-01-18 11:51:07 -05:00
taku0
2becf7ffed flashplayer: 32.0.0.303 -> 32.0.0.314 2020-01-14 15:13:06 +09:00
Tim Steinbach
8665adc902
vivaldi: 2.10.1745.23-1 -> 2.10.1745.26-1 2020-01-10 20:48:43 -05:00
Mario Rodas
28eefd1ae2
Merge pull request #77245 from turboMaCk/google-talk-plugin-sha1-to-sha256
google_talk_plugin: sha1 -> sha256
2020-01-10 20:38:35 -05:00
Florian Klink
0e75514442 firefoxPackages.icecat: mark as insecure
It's based on 60.3.0, whose support ended around October 2019.
2020-01-10 20:19:19 +01:00
Graham Christensen
5a437278d0
Merge pull request #77458 from emilazy/tor-browser-bundle-bin-9.0.4
tor-browser-bundle-bin: 9.0.3 -> 9.0.4
2020-01-10 13:59:20 -05:00
Emily
05c0695c6b tor-browser-bundle-bin: 9.0.3 -> 9.0.4 2020-01-10 18:57:02 +00:00
adisbladis
7750fd5555
firefox-beta-bin: 72.0b3 -> 73.0b3 2020-01-10 18:40:53 +00:00
adisbladis
7a023738dd
firefox-devedition-bin: 72.0b11 -> 73.0b3 2020-01-10 18:40:10 +00:00
Florian Klink
1efaa03d95 firefoxPackages.tor-browser*, tor-browser-bundle: remove
These are all based on firefox versions with known vulnerabilities
exploited in the wild.

We seriously shouldn't ship this in nixpkgs, especially not for
sensitive applications as the Tor Browser.

`tor-browser-bundle` is just a wrapper around
`firefoxPackages.tor-browser`, so let's remove it too.

`tor-browser-bundle-bin` is the much safer bet, which is individually
downloaded from `dist.torproject.org` and just `patchelf`-ed locally to
work on NixOS.

Co-Authored-By: Alyssa Ross <hi@alyssa.is>
Co-Authored-By: Andreas Rammhold <andreas@rammhold.de>
Co-Authored-By: Graham Christensen <graham@grahamc.com>
2020-01-10 18:34:22 +01:00
Vladimír Čunát
f703a3a04a
firefox-esr-60: mark as vulnerable
The last release was in September, so it's surely "vulnerable" now.
https://www.mozilla.org/en-US/firefox/60.9.0/releasenotes/

This is the same appproach we've taken for esr-52.
2020-01-10 17:08:01 +01:00
Florian Klink
0c26ef9e76
Merge pull request #77425 from emmanuelrosa/qutebrowser-1.9
qutebrowser: 1.8.3 -> 1.9.0
2020-01-10 11:35:13 +01:00
Emmanuel Rosa
216dea5b9d qutebrowser: 1.8.3 -> 1.9.0
Closes #77360
2020-01-10 16:05:17 +07:00
Joachim F
ec1f3aba86
Merge pull request #77340 from dtzWill/update/tor-browser-bundle-bin-9.0.3
tor-browser-bundle-bin: 9.0.2 -> 9.0.3
2020-01-09 17:25:29 +00:00
Daniel Frank
0271b2c9a0 firefox-bin: 72.0 -> 72.0.1 [security] CVE-2019-17026 2020-01-09 15:02:34 +01:00
Andreas Rammhold
b4983fe20b
firefox: fix build of >=72 on aarch64 2020-01-08 23:39:26 +01:00
Andreas Rammhold
204d32a746
firefox-esr-68: 68.4.0esr -> 68.4.1esr 2020-01-08 23:39:26 +01:00
Andreas Rammhold
aab1f2dfe2
firefox: 72.0 -> 72.0.1 2020-01-08 23:39:26 +01:00
Will Dietz
19879a7f7b
tor-browser-bundle-bin: 9.0.2 -> 9.0.3
https://blog.torproject.org/new-release-tor-browser-903
2020-01-08 15:51:18 -06:00
Andreas Rammhold
40018e5987
firefox: 71.0 -> 72.0 2020-01-08 17:06:35 +01:00
Andreas Rammhold
2ad59bdf8c firefox-esr-68: 68.3.0esr -> 68.4.0esr 2020-01-08 14:48:30 +01:00
Andreas Rammhold
a36a9127bb firefox-devedition-bin: 72.0b11 -> 73.0b2 2020-01-08 14:48:30 +01:00
Andreas Rammhold
47804d55b4 firefox-beta-bin: 72.0b4 -> 73.0b2 2020-01-08 14:48:30 +01:00
Andreas Rammhold
1064ac96b9 firefix-bin: 71.0 -> 72.0 2020-01-08 14:48:30 +01:00
Andreas Rammhold
6d8208e373 firefox: prepare for firefox 72 2020-01-08 14:48:30 +01:00
Ivan Kozik
b8fa6dd0ac chromium: 79.0.3945.88 -> 79.0.3945.117
CVE-TBD: Use after free in audio

https://chromereleases.googleblog.com/2020/01/stable-channel-update-for-desktop.html
2020-01-08 08:42:54 +00:00
Marek Fajkus
741db8c3b0
google_talk_plugin: sha1 -> sha256
related https://github.com/NixOS/nixpkgs/issues/77238
2020-01-07 20:17:32 +01:00
adisbladis
e41e1822a0
firefox-devedition-bin: 72.0b4 -> 72.0b11 2020-01-03 13:16:37 +00:00
lewo
72d4651b59
Merge pull request #76838 from nlewo/next-fix
next: set next-gtk-webkit as a propagated build input
2020-01-03 11:28:41 +01:00
Antoine Eiche
b66452693b next: set next-gtk-webkit as a propagated build input
Because this reference is unfortunately not detected by Nix.

Fixes #76834.
2020-01-03 09:50:12 +01:00
Frederik Rietdijk
f08e3e38d4 Merge master into staging-next 2020-01-02 21:41:13 +01:00