dc7c702c4e
chromium: 94.0.4606.81 -> 95.0.4638.54
...
https://chromereleases.googleblog.com/2021/10/stable-channel-update-for-desktop_19.html
This update includes 19 security fixes.
CVEs:
CVE-2021-37981 CVE-2021-37982 CVE-2021-37983 CVE-2021-37984
CVE-2021-37985 CVE-2021-37986 CVE-2021-37987 CVE-2021-37988
CVE-2021-37989 CVE-2021-37990 CVE-2021-37991 CVE-2021-37992
CVE-2021-37993 CVE-2021-37996 CVE-2021-37994 CVE-2021-37995
(cherry picked from commit 820b99a77d8ea33313a88852384b840e1fadf0df)
2021-10-19 22:29:22 +02:00
12c7b8e13e
chromiumBeta: 95.0.4638.49 -> 95.0.4638.54
...
(cherry picked from commit 338e629f0c230df830c879ea491f84e894a87fd0)
2021-10-19 22:29:21 +02:00
98b786b341
chromiumDev: Fix the build
...
(cherry picked from commit b0581c2699cf4f4fb7da2098385372739d4d8955)
2021-10-19 22:29:19 +02:00
0f95b33218
chromiumDev: 96.0.4662.6 -> 96.0.4664.9
...
(cherry picked from commit df1531f3dc0ed37b82bb11a96fdbae9e076bf429)
2021-10-19 22:29:17 +02:00
10828b560b
chromium: Drop Python 2
...
Yay, finally!... \o/ :)
Upstream issue: https://crbug.com/942720
(cherry picked from commit ae522fb7f98cb92f8ac92df91ac0be8b02fb33ee)
2021-10-19 22:29:16 +02:00
2bf603406b
chromiumBeta: 95.0.4638.40 -> 95.0.4638.49
...
(cherry picked from commit d7e522e8032c1774cf65f0cb07ab935340971d7f)
2021-10-19 22:29:14 +02:00
101abfd618
chromium: Start dropping Python 2
...
(cherry picked from commit 7e6d80740d01dd42f1684cbb64d0f236e69dd3c8)
2021-10-19 22:29:13 +02:00
6011e236a5
chromiumDev: 96.0.4655.0 -> 96.0.4662.6
...
(cherry picked from commit 35a26a5b210eb0ac5656f21adee96281339a1b36)
2021-10-19 22:29:11 +02:00
05a460398d
chromiumBeta: 95.0.4638.32 -> 95.0.4638.40
...
(cherry picked from commit a15be1c5f65b15d75a4e30a82340ed34d538e449)
2021-10-19 22:29:09 +02:00
fc512032a7
chromiumBeta: 95.0.4638.17 -> 95.0.4638.32
...
(cherry picked from commit a41e19ca718eeabc2e9205e72608f50a933e9648)
2021-10-19 22:29:08 +02:00
d7c4b627a7
chromiumDev: 96.0.4651.0 -> 96.0.4655.0
...
(cherry picked from commit 1f7f87396ca180543b997a3a8806212da8a3fd67)
2021-10-19 22:29:07 +02:00
a161b1460d
google-chrome: add pipewire dependency
...
chromium derivation already depends on pipewire. This is required to
share your screen on wayland
(cherry picked from commit 29efb76ab6480426ce8c1f7bd8e341f0249a61cc)
2021-10-19 22:29:05 +02:00
37c13136ac
chromiumDev: 95.0.4638.17 -> 96.0.4651.0
...
(cherry picked from commit eba807d5949801334cf4742423e8a7d5eb161d26)
2021-10-19 22:29:04 +02:00
b0522cfa67
signal-desktop: 5.19.0 -> 5.20.0
...
(cherry picked from commit 9b3ef21bff420b87aa00418dbe1037ed5f5fd322)
2021-10-17 09:09:18 +00:00
f32fb0fec6
alpine: 2.24 → 2.25
...
(cherry picked from commit e849909813eddce351baa0429a98299da80c77e6)
2021-10-16 18:56:17 +00:00
102423a3c6
Merge pull request #141420 from NixOS/backport-141364-to-release-21.05
...
[Backport release-21.05] element-{web,desktop}: 1.9.0 -> 1.9.2
2021-10-16 15:45:04 +02:00
44ef22423f
element-desktop: regenerate yarn deps with yarn2nix from 21.05
2021-10-16 15:07:13 +02:00
9d7b660576
element-desktop: 1.9.0 -> 1.9.2
...
ChangeLog: https://github.com/vector-im/element-desktop/releases/tag/v1.9.2
(cherry picked from commit 6f2e2dc7795d20073fa62c1c98f2daf7b8ee6587)
2021-10-16 15:05:56 +02:00
ba0a1ce211
element-web: 1.9.0 -> 1.9.2
...
ChangeLog: https://github.com/vector-im/element-web/releases/tag/v1.9.2
(cherry picked from commit b021b8bebd9c8b5e66450519d06fb500e6ac48b8)
2021-10-16 15:05:56 +02:00
e882bcae43
[Backport release-21.05] teamviewer: fix #96633 , #44307 and #97148 + 15.15.5 -> 15.18.5 -> 15.22.3 ( #141439 )
...
* teamviewer: fix issue #96633
Fix teamviewer's breakage post 15.5.3 -> 15.15.5.
Teamviewer client was no longer able to connect to its backing
server as it now uses dbus to do so. Following changes were
required:
- add missing dbus and polkit service/policy files to package.
- add missing dbus lib to `LD_LIBRARY_PATH`.
Changes to the nixos module as a separate changeset.
(cherry picked from commit 506966d15658d8a411f364f47bbc0f3f9366dba3)
* nixos/teamviewer: fix issue #96633
Add teamviewer package as a dbus package now that the
client / server communication depends on dbus.
(cherry picked from commit 200e959995fa8088b5722bc8255109c03f2a4f78)
* nixos/teamviewer: fix issue #44307
Move to a forefront launch of the daemon. Doing so allowed us
to move the service from forking to simple to avoid the
missing pid error log.
Also:
- Make the dbus dependency explicit.
(cherry picked from commit 953bbc0d7373102cf89625dc3bb7ab8e91134069)
* teamviewer: 15.15.5 -> 15.18.5
Upgrading to the last version still using qt5.14. Later version
will be using qt5.15 which is not in 21.05 stable branch.
This fixes us the crash observed in 15.15.5 when stopping
the service.
(cherry picked from commit db889eb9137a859eedfc5b402de84271c0659662)
* teamviewer: refactor executable wrapping
This centralizes `PATH` and `LD_LIBRARY_PATH`, avoid multiple
layers of wrappers.
Refactor as suggested by @Artturin in PR provided patch:
<https://github.com/NixOS/nixpkgs/pull/140076#issuecomment-934770391 >.
(cherry picked from commit c55bc5bfd3377d54f5b6153d09c033cceadfcc05)
* teamviewer: fix 97148 (busybox installed issue)
Simply add `coreutils` as a runtime dependency which will
prevent teamviewer from using incomplete busybox implementation
of expected gnu binaries.
As suggested by @Artturin in PR comment:
<https://github.com/NixOS/nixpkgs/pull/140076#issuecomment-934770391 >.
(cherry picked from commit 4fb188e1d190f2e08053dba3e2e95fff1e29183a)
* teamviewer: 15.18.5 -> 15.22.3
Required move from libsForQt514 -> libsForQt515.
Note that this changset won't be backportable to 21.05.
(cherry picked from commit 975ab7f3a02ac0232afe7920a8f7d78fc22d5ccb)
Co-authored-by: Raymond Gauthier <jraygauthier@gmail.com>
2021-10-13 05:17:24 +03:00
2ec9c0824a
ungoogled-chromium: 94.0.4606.71 -> 94.0.4606.81
...
(cherry picked from commit 383928815fd9fc828b7bb43c1f3edeeb50ab08e4)
2021-10-10 20:07:02 +00:00
b68a066466
chromium: 94.0.4606.71 -> 94.0.4606.81
...
https://chromereleases.googleblog.com/2021/10/stable-channel-update-for-desktop.html
This update includes 4 security fixes.
CVEs:
CVE-2021-37977 CVE-2021-37978 CVE-2021-37979 CVE-2021-37980
(cherry picked from commit d406bca7461e94cb3c9544e7ccfb3c3bba6df1d2)
2021-10-08 21:38:26 +00:00
96cf5a2b2d
Merge pull request #140785 from risicle/ris-onionshare-known-vulnerabilities-r21.05
...
[21.05] onionshare: mark as vulnerable to CVE-2021-41867, CVE-2021-41868
2021-10-07 20:33:54 +01:00
b1f47c7167
Merge pull request #140654 from kini/backport/zoom-us-version-updates
2021-10-07 19:16:47 +00:00
215c25348c
Merge pull request #140759 from mweinelt/21.05/firefox
2021-10-07 10:39:40 +02:00
4600fc24a2
signal-desktop: 5.18.1 -> 5.19.0
...
(cherry picked from commit b9bc0b9480b619d3d41cd0ad38d0850ccd3294ae)
2021-10-06 19:07:32 +00:00
751c22c7f5
onionshare: mark as vulnerable to CVE-2021-41867, CVE-2021-41868
...
bumping to a fixed version would require bumping tor, and patching
doesn't appear simple.
2021-10-06 18:32:43 +01:00
36a05ec28e
Merge pull request #140680 from NixOS/backport-140659-to-release-21.05
...
[Backport release-21.05] signal-desktop: 5.18.0 -> 5.18.1
2021-10-06 19:15:06 +02:00
9fc7bea600
firefox-bin: 92.0.1 -> 93.0
...
(cherry picked from commit 50bf075202f773a18227c8e19872317fa85953a8)
2021-10-06 15:00:32 +02:00
93e9e59d63
firefox-esr-78: 78.14.0esr -> 78.15.0esr
...
(cherry picked from commit e4574610ca25c4c69e97f57de02acc2a484154ba)
2021-10-06 15:00:23 +02:00
e09bee748f
firefox-esr-91: 91.1.0esr -> 91.2.0esr
...
(cherry picked from commit 1edb8c9622ea3a4157e27ce6577c4590d11aaaee)
2021-10-06 14:59:54 +02:00
5c7df0b18c
firefox: 92.0.1 -> 93.0
...
(cherry picked from commit 7dfcaf5e73feebe12606dbc4c08128af75797fa4)
2021-10-06 14:59:13 +02:00
980a9792cd
Merge pull request #140653 from alyssais/firefox-bin-21.05
2021-10-06 14:55:29 +02:00
991271a13e
signal-desktop: 5.18.0 -> 5.18.1
...
(cherry picked from commit d98ed0520bbc858398e6385a22e3e1591ffebf62)
2021-10-05 20:57:06 +00:00
a73053ed88
firefox-bin: fix license
...
The Mozilla Trademark Policy is not a license, and applies equally to
our own source builds of Firefox, so it doesn't make sense to mark the
package as unfree because of that.
Quoting <about:license>:
> Binaries of this product have been made available to you by the
> Mozilla Project under the Mozilla Public License 2.0 (MPL).
Since all this does is download a large binary and wrap it, there's
still no point in it ending up in cache.nixos.org, so disable it on
Hydra now that Hydra would otherwise try to build it.
(cherry picked from commit 6a71c7eb1acc70e5cc023dc7e1c9d1a144b9ca82)
2021-10-05 20:02:37 +00:00
9177707228
firefox-bin: 92.0 -> 92.0.1
...
(cherry picked from commit b256715457b6078d729c64bf91596f808a67e28e)
2021-10-05 17:52:04 +00:00
da7dc9f0fe
firefox-bin-unwrapped: 91.0.2 -> 92.0
...
(cherry picked from commit 0247d6f9228789ee440d89ac60c3dd81d80e64c6)
2021-10-05 17:51:02 +00:00
3b736b932c
zoom-us: 5.7.31792.0820 -> 5.8.0.16
...
Old versions have been blacklisted serverside.
(cherry picked from commit 54c3a9d6f8a5da4b2e3bff7d75599f6f212a3db0)
2021-10-05 10:08:41 -07:00
0be7f243d7
zoom-us: 5.7.29123.0808 -> 5.7.31792.0820
...
Old versions have been blacklisted serverside.
(cherry picked from commit 5bb77e3ad96139efe668e81baea2ca064485f4d2)
2021-10-05 10:08:26 -07:00
c486a1117b
zoom-us: 5.7.28991.0726 -> 5.7.29123.0808
...
Old versions have been blacklisted serverside.
(cherry picked from commit cc7a5e69e396a7860398f3b7b9b33f423b731577)
2021-10-05 10:08:09 -07:00
cab4612319
zoom-us: 5.7.28852.0718 -> 5.7.28991.0726
...
Old versions have been blacklisted serverside.
(cherry picked from commit 8d3fd95037d7283bea828e0b08169c7bcb8fded0)
2021-10-05 10:01:11 -07:00
a3903d58c2
brave: 1.25.68 -> 1.30.87
...
this fixes many high-severity CVEs
(cherry picked from commit b2f46b6e80c80953a64927bb9333cdef94ccbffe)
2021-10-04 08:56:59 +02:00
9de38b8522
Merge pull request #138803 from NixOS/backport-138020-to-release-21.05
...
[Backport release-21.05] tor-browser-bundle-bin: 10.5.5 -> 10.5.6
2021-10-03 19:55:46 +02:00
7bc4490174
Merge pull request #140262 from NixOS/backport-140195-to-release-21.05
...
[Backport release-21.05] ungoogled-chromium: 94.0.4606.61 -> 94.0.4606.71
2021-10-03 13:50:59 +02:00
400994665e
Merge #140243 : Revert "fragments: init at 1.5"
...
...into release-21.05
2021-10-02 18:49:48 +02:00
438faef08c
ungoogled-chromium: 94.0.4606.61 -> 94.0.4606.71
...
(cherry picked from commit 360707c5d67a16b26a881237024da3b9305f38aa)
2021-10-02 10:16:06 +00:00
c3e1395498
Revert part of "Merge #140069 : transmission: fixes ..."
...
This reverts commit ff12d5283292609f3d9b
2021-10-02 11:06:48 +02:00
670ee4d5b6
chromium: 94.0.4606.61 -> 94.0.4606.71
...
https://chromereleases.googleblog.com/2021/09/stable-channel-update-for-desktop_30.html
This update includes 4 security fixes. Google is aware the exploits for
CVE-2021-37975 and CVE-2021-37976 exist in the wild.
CVEs:
CVE-2021-37974 CVE-2021-37975 CVE-2021-37976
(cherry picked from commit ce50eda3949fa3149aea4f0f556dbb63f48e4288)
2021-10-02 08:07:36 +00:00
7dc32438a8
Revert "[Backport release-21.05] fragments: init at 1.5"
2021-10-02 08:58:27 +02:00
ff12d52832
Merge #140069 : transmission: fixes to make a test work
...
...into release-21.05
2021-10-01 17:45:52 +02:00
Michael Weiss
José Luis Lafuente
Fabián Heredia Montiel
Maximilian Bosch
github-actions[bot]
Robert Scott
Doron Behar
Martin Weinelt
Martin Weinelt
Alyssa Ross
Tim Steinbach
Clemens Lutz
Emmanuel Rosa
R. RyanTM
Vanilla
Michael Adler
Vladimír Čunát