| Summary: | multiple security vulnerabilities in www-client/firefox-52.5.0 (ESR) fixed in 52.5.2. | ||
|---|---|---|---|
| Product: | Gentoo Security | Reporter: | Christian D. <ThyrusG> |
| Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
| Status: | RESOLVED DUPLICATE | ||
| Severity: | normal | ||
| Priority: | Normal | ||
| Version: | unspecified | ||
| Hardware: | All | ||
| OS: | Linux | ||
| URL: | https://www.mozilla.org/en-US/security/advisories/mfsa2017-28/ | ||
| Whiteboard: | |||
| Package list: | Runtime testing required: | --- | |
|
Description
Christian D.
2017-12-10 11:28:06 UTC
Simply renaming the ebuild unfortunately does not do the trick. The source downloads and builds all right, but the install fails:
cp: cannot stat '/var/tmp/portage/www-client/firefox-52.5.2/files/gentoo-default-prefs.js-1': No such file or directory
* ERROR: www-client/firefox-52.5.2::local failed (install phase):
* (no error message)
*
* Call stack:
* ebuild.sh, line 124: Called src_install
* environment, line 5151: Called die
* The specific snippet of code:
* cp "${FILESDIR}"/gentoo-default-prefs.js-1 "${BUILD_OBJ_DIR}/dist/bin/browser/defaults/preferences/all-gentoo.js" || die;
I guess the maintainers must know what the "gentoo-default-prefs" thing is about, I certainly don't.
(In reply to Christian D. from comment #0) Thank you for the report Christian, CVE-2017-7843 is already addressed in bug 639854. Please be patient, maintainers are still working on v57. Thank you *** This bug has been marked as a duplicate of bug 639854 *** |
