[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
bug#32026: [PATCH v3 10/11] gnu: nss-next: Update to 3.88.1 [fixes CVE-2
|
From: |
Maxim Cournoyer |
|
Subject: |
bug#32026: [PATCH v3 10/11] gnu: nss-next: Update to 3.88.1 [fixes CVE-2023-0767]. |
|
Date: |
Sat, 18 Feb 2023 15:45:55 -0500 |
|
User-agent: |
Gnus/5.13 (Gnus v5.13) Emacs/28.2 (gnu/linux) |
Hi,
Tobias Geerinckx-Rice <me@tobias.gr> writes:
> Maxim Cournoyer 写道:
>> It's already been pushed for nss-next, and Tobias has taken care of
>> grafting our main 'nss' package, which has many dependents. See
>> commits
>> 246a3d90eac82966b691bdca4660ab9c5d802631 and
>> b04ee227a47419291391a2b6e857e41ed1c32155, respectively.
>
> Grafting such a big version jump made me nervous.
>
> I did so anyway, partially on Mozilla's assurance (FWIW) that it's
> ABI-compatible, but mainly because I dare not vouch for a single
> cherry-pick to 3.81 actually keeping users safe.
>
> I'd much rather deal with ABI bug reports than the alternative :-)
Sounds a reasonable gamble, thank you!
--
Thanks,
Maxim
- bug#32026: [PATCH v3 04/11] gnu: icecat: Make language packs reproducible., (continued)
- bug#32026: [PATCH v3 03/11] gnu: Define UPSTREAM-FIREFOX-SOURCE at the top level., Maxim Cournoyer, 2023/02/17
- bug#32026: [PATCH v3 05/11] gnu: Add icecat-l10n and icedove-l10n., Maxim Cournoyer, 2023/02/17
- bug#32026: [PATCH v3 06/11] gnu: icedove: Automatically load system-provided extensions., Maxim Cournoyer, 2023/02/17
- bug#32026: [PATCH v3 08/11] gnu: icedove: Use the locale of the system., Maxim Cournoyer, 2023/02/17
- bug#32026: [PATCH v3 10/11] gnu: nss-next: Update to 3.88.1 [fixes CVE-2023-0767]., Maxim Cournoyer, 2023/02/17
bug#32026: [PATCH v3 11/11] gnu: icecat: Unbundle nss and nspr., Maxim Cournoyer, 2023/02/17
bug#32026: [PATCH v3 07/11] gnu: Add language packs to icecat and icedove., Maxim Cournoyer, 2023/02/17
bug#32026: [PATCH v3 09/11] gnu: icecat: Remove gtk+-2 input., Maxim Cournoyer, 2023/02/17