Commit graph

3363 commits

Author SHA1 Message Date
Andreas Rammhold
8019df98f8 firefox: 72.0.2 -> 73.0 2020-02-11 01:19:26 +01:00
Andreas Rammhold
187d6912a8 firefox: prepare for 73.0 2020-02-11 01:19:26 +01:00
Silvan Mosberger
349b471469 Merge pull request #79297 from arcnmx/pr-firefox-extension-links
firefox: resolve relative nativeMessagingHosts links
2020-02-10 00:15:19 +01:00
Florian Klink
9bf7d51047 conkeror: remove package
Conkeror doesn't work with any secure firefox release.
Please move to some of the alternatives suggested at
http://conkeror.org/Alternatives.
2020-02-09 22:48:27 +01:00
Florian Klink
84af9839e0 firefoxPackages.*, firefox-esr*, icecat: add aliases 2020-02-09 22:33:33 +01:00
Florian Klink
94b2596540 firefox: simplify derivation
with firefox 64 being the latest version, and the removal of
"tor-browser/icecat-like" variants, we can greatly simplify the common
firefox derivation.
2020-02-09 22:33:33 +01:00
Florian Klink
e3659c50fc firefoxPackages.firefox-esr-52: remove package
firefoxPackages.firefox-esr-52 was removed as it's an unsupported ESR
with open security issues. If you need it because you need to run some
plugins not having been ported to WebExtensions API, import it from an
older nixpkgs checkout still containing it.
2020-02-09 22:33:33 +01:00
Florian Klink
9704fbec86 firefoxPackages.icecat[-52]: remove package
firefoxPackages.icecat was removed as even its latest upstream version
is based on an unsupported ESR release with open security issues.
2020-02-09 22:33:33 +01:00
Florian Klink
83fff69fca firefoxPackages.firefox-esr-60: remove
There's not really a reason to ship an unsupported ESR variant of
firefox, and if one really needs it, it's also possible to just checkout
an older version of nixpkgs.
2020-02-09 22:33:33 +01:00
Florian Klink
c173d663fd firefoxPackages.*: use config.allowAliases 2020-02-09 22:33:33 +01:00
Ryan Mulligan
61140bc7e9
Merge pull request #79587 from r-ryantm/auto-update/palemoon
palemoon: 28.8.1 -> 28.8.2.1
2020-02-09 08:34:24 -08:00
R. RyanTM
eab57b9266 opera: 66.0.3515.36 -> 66.0.3515.72 2020-02-09 13:58:32 +01:00
PanAeon
eee784a1bb conkeror: pin to firefox-esr-52 (#72090) 2020-02-09 02:43:38 -05:00
R. RyanTM
9bf6c5d7da palemoon: 28.8.1 -> 28.8.2.1 2020-02-09 04:41:55 +00:00
Michael Weiss
310316701f
Merge pull request #79242 from primeos/chromium
chromium: 79.0.3945.130 -> 80.0.3987.87
2020-02-07 15:15:28 +01:00
Bruno Bigras
e57e4ea0cf next: 1.3.4 -> 1.4.0 2020-02-05 23:18:59 -05:00
arcnmx
c7a58a7ba7 firefox: resolve relative nativeMessagingHosts links 2020-02-05 14:29:52 -08:00
Michael Weiss
272041b85a
chromium: 79.0.3945.130 -> 80.0.3987.87
https://chromereleases.googleblog.com/2020/02/stable-channel-update-for-desktop.html

This update includes 56 security fixes.

CVEs:
CVE-2020-6381 CVE-2020-6382 CVE-2019-18197 CVE-2019-19926 CVE-2020-6385
CVE-2019-19880 CVE-2019-19925 CVE-2020-6387 CVE-2020-6388 CVE-2020-6389
CVE-2020-6390 CVE-2020-6391 CVE-2020-6392 CVE-2020-6393 CVE-2020-6394
CVE-2020-6395 CVE-2020-6396 CVE-2020-6397 CVE-2020-6398 CVE-2020-6399
CVE-2020-6400 CVE-2020-6401 CVE-2020-6402 CVE-2020-6403 CVE-2020-6404
CVE-2020-6405 CVE-2020-6406 CVE-2019-19923 CVE-2020-6408 CVE-2020-6409
CVE-2020-6410 CVE-2020-6411 CVE-2020-6412 CVE-2020-6413 CVE-2020-6414
CVE-2020-6415 CVE-2020-6416 CVE-2020-6417
2020-02-05 00:20:16 +01:00
Michele Guerini Rocco
96358710f7
qutebrowser: 1.9.0 -> 1.10.0 (#79172) 2020-02-04 11:24:07 +01:00
Florian Klink
a1bcf2c90e
Merge pull request #77426 from lheckemann/remove-otter
otter-browser: remove
2020-02-02 22:29:35 +01:00
Linus Heckemann
c99e248f3c otter-browser: remove
I have no interest in maintaining this anymore and it has no other maintainers.
2020-02-02 22:28:20 +01:00
kjuvi
8698e55e1f ephemeral: 6.1.1 -> 6.2.0 2020-01-31 10:27:44 +01:00
Michael Weiss
4ad78e64ff
chromium: Add myself (@primeos) as provisional maintainer
I don't really have the hardware resources nor time to do this properly,
but I'll try to keep a watch on Chromium (updates, PRs, and issues)
until we've found a new team [0].
Testing will be performed on a best effort basis (no guarantees :o).

I've also briefly documented the current maintainer
roles/responsibilities and added `meta.longDescription`.

[0]: https://github.com/NixOS/nixpkgs/issues/78450
2020-01-28 23:08:21 +01:00
Michael Weiss
cccfd1092f
chromium: 79.0.3945.117 -> 79.0.3945.130
https://chromereleases.googleblog.com/2020/01/stable-channel-update-for-desktop_16.html

This update includes 11 security fixes.

CVEs: CVE-2020-6378 CVE-2020-6379 CVE-2020-6380 CVE-2020-0601
2020-01-26 23:58:14 +01:00
Marek Mahut
a341264465
Merge pull request #78237 from r-ryantm/auto-update/opera
opera: 65.0.3467.48 -> 66.0.3515.36
2020-01-26 13:22:23 +01:00
Michael Weiss
2932d787ec
Merge pull request #77299 from ivan/chromium-79.0.3945.117
chromium: 79.0.3945.88 -> 79.0.3945.117
2020-01-25 01:12:31 +01:00
Ryan Mulligan
0e1e99d42d
Merge pull request #78248 from r-ryantm/auto-update/palemoon
palemoon: 28.8.0 -> 28.8.1
2020-01-22 08:18:18 -08:00
R. RyanTM
3aa2742e2b palemoon: 28.8.0 -> 28.8.1 2020-01-22 07:48:38 +00:00
R. RyanTM
9bc06937b5 opera: 65.0.3467.48 -> 66.0.3515.36 2020-01-22 04:52:54 +00:00
taku0
249e3d0ef3 firefox-esr: 68.4.1esr -> 68.4.2esr 2020-01-21 20:04:04 +09:00
taku0
57aed520d8 firefox: 72.0.1 -> 72.0.2 2020-01-21 19:59:34 +09:00
taku0
7187891a17 firefox-bin: 72.0.1 -> 72.0.2 2020-01-21 19:55:44 +09:00
Ivan Kozik
76ab11518d treewide: Remove myself from maintainers on some packages (#78027) 2020-01-19 12:18:34 -05:00
Francesco Zanini
2a6b2342df
captive-browser: runs on all platforms 2020-01-19 10:27:27 +01:00
Tim Steinbach
ba059b9a23
vivaldi: 2.10.1745.26-1 -> 2.10.1745.27-1 2020-01-18 11:51:07 -05:00
taku0
2becf7ffed flashplayer: 32.0.0.303 -> 32.0.0.314 2020-01-14 15:13:06 +09:00
Tim Steinbach
8665adc902
vivaldi: 2.10.1745.23-1 -> 2.10.1745.26-1 2020-01-10 20:48:43 -05:00
Mario Rodas
28eefd1ae2
Merge pull request #77245 from turboMaCk/google-talk-plugin-sha1-to-sha256
google_talk_plugin: sha1 -> sha256
2020-01-10 20:38:35 -05:00
Florian Klink
0e75514442 firefoxPackages.icecat: mark as insecure
It's based on 60.3.0, whose support ended around October 2019.
2020-01-10 20:19:19 +01:00
Graham Christensen
5a437278d0
Merge pull request #77458 from emilazy/tor-browser-bundle-bin-9.0.4
tor-browser-bundle-bin: 9.0.3 -> 9.0.4
2020-01-10 13:59:20 -05:00
Emily
05c0695c6b tor-browser-bundle-bin: 9.0.3 -> 9.0.4 2020-01-10 18:57:02 +00:00
adisbladis
7750fd5555
firefox-beta-bin: 72.0b3 -> 73.0b3 2020-01-10 18:40:53 +00:00
adisbladis
7a023738dd
firefox-devedition-bin: 72.0b11 -> 73.0b3 2020-01-10 18:40:10 +00:00
Florian Klink
1efaa03d95 firefoxPackages.tor-browser*, tor-browser-bundle: remove
These are all based on firefox versions with known vulnerabilities
exploited in the wild.

We seriously shouldn't ship this in nixpkgs, especially not for
sensitive applications as the Tor Browser.

`tor-browser-bundle` is just a wrapper around
`firefoxPackages.tor-browser`, so let's remove it too.

`tor-browser-bundle-bin` is the much safer bet, which is individually
downloaded from `dist.torproject.org` and just `patchelf`-ed locally to
work on NixOS.

Co-Authored-By: Alyssa Ross <hi@alyssa.is>
Co-Authored-By: Andreas Rammhold <andreas@rammhold.de>
Co-Authored-By: Graham Christensen <graham@grahamc.com>
2020-01-10 18:34:22 +01:00
Vladimír Čunát
f703a3a04a
firefox-esr-60: mark as vulnerable
The last release was in September, so it's surely "vulnerable" now.
https://www.mozilla.org/en-US/firefox/60.9.0/releasenotes/

This is the same appproach we've taken for esr-52.
2020-01-10 17:08:01 +01:00
Florian Klink
0c26ef9e76
Merge pull request #77425 from emmanuelrosa/qutebrowser-1.9
qutebrowser: 1.8.3 -> 1.9.0
2020-01-10 11:35:13 +01:00
Emmanuel Rosa
216dea5b9d qutebrowser: 1.8.3 -> 1.9.0
Closes #77360
2020-01-10 16:05:17 +07:00
Joachim F
ec1f3aba86
Merge pull request #77340 from dtzWill/update/tor-browser-bundle-bin-9.0.3
tor-browser-bundle-bin: 9.0.2 -> 9.0.3
2020-01-09 17:25:29 +00:00
Daniel Frank
0271b2c9a0 firefox-bin: 72.0 -> 72.0.1 [security] CVE-2019-17026 2020-01-09 15:02:34 +01:00
Andreas Rammhold
b4983fe20b
firefox: fix build of >=72 on aarch64 2020-01-08 23:39:26 +01:00