Summary: | www-client/firefox crashes with dev-libs/nss-3.90.x | ||
---|---|---|---|
Product: | Gentoo Linux | Reporter: | Sébastien P. <sebastien.picavet> |
Component: | Current packages | Assignee: | Mozilla Gentoo Team <mozilla> |
Status: | RESOLVED DUPLICATE | ||
Severity: | normal | CC: | sebastien.picavet |
Priority: | Normal | Keywords: | PATCH, UPSTREAM |
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://bugzilla.mozilla.org/show_bug.cgi?id=1890199 | ||
See Also: |
https://bugs.gentoo.org/show_bug.cgi?id=925027 https://bugs.gentoo.org/show_bug.cgi?id=907932 https://bugzilla.mozilla.org/show_bug.cgi?id=1836925 |
||
Whiteboard: | |||
Package list: | Runtime testing required: | --- | |
Attachments: | Commit that solve the issue in nss-3.91 and works in nss-3.90.2 too |
Description
Sébastien P.
2024-04-07 19:23:46 UTC
Please assign this bug to juippis Created attachment 889768 [details, diff]
Commit that solve the issue in nss-3.91 and works in nss-3.90.2 too
Isn't this a dupe of bug 928401? *** This bug has been marked as a duplicate of bug 928401 *** Yes, you are right. I did not see it since it was never quote in 925027/forum. We talked a lot about that issue on 925027. Sadly 928401/925027 were not linked and I did not check keyword dev-libs/nss. I would argue that I added a lot of information (upstream/patch), but let's copy that. Thanks! I'm not sure how to advance from here though. Would be great to get 3.90.3 rolling as stable, but it might cause a lot of confusion for people downgrading from 3.99 to 3.90.3. Then again I don't want to stabilize nss "rapid" releases monthly either. Maybe, just maybe, now'd be a great time to push 3.90.2-r1 instead with the fix and stabilize that. What a mess in any case. Hi, Yes, it is a mess. And I add it a bit because I did not see https://bugs.gentoo.org/show_bug.cgi?id=928401 before creating this one^^. We may probably continue on 928401 to avoid more mess. I do not know what is the best. Downgrade is mandatory since it is better to stabilise ESR. Wait 3.90.3 (could be fixed by upstream or with this patch)? => in that case, just to keep in mind this bug/928401 and close it before. Do it right now on 3.90.2-r1? => in that case, better to avoid this bug/928401 in the future but we (you) may remove this patch in 3.90.3 ebuild. In case of a new CVE like CVE-2023-5388, it may be better better to stabilise version with the patch first (3.90.2-r1) so it should be easier to upgrade to 3.90.3+patch. As you want, if you create a stablereq, please put me in the CC list so I can check with my CPU. |