gnu: icedove: Update to 102.3.1 [security fixes].

Fixes CVE-2022-39236, CVE-2022-39249, CVE-2022-39250 and CVE-2022-39251. * gnu/packages/gnuzilla.scm (icedove): Update to 102.3.1.
2022-10-04 20:36:24 +02:00 · 2022-10-04 20:36:24 +02:00 · 1c821a3a63
commit 1c821a3a63
parent ecee392ef1
1 changed files with 4 additions and 4 deletions
--- a/gnu/packages/gnuzilla.scm
+++ b/gnu/packages/gnuzilla.scm
@ -1240,11 +1240,11 @@ (define (runpaths-of-input label)
       (cpe-version . ,(first (string-split version #\-)))))))

 ;; Update this together with icecat!
-(define %icedove-build-id "20220920000000") ;must be of the form YYYYMMDDhhmmss
+(define %icedove-build-id "20220928000000") ;must be of the form YYYYMMDDhhmmss
 (define-public icedove
  (package
    (name "icedove")
-    (version "102.3.0")
+    (version "102.3.1")
    (source icecat-source)
    (properties
     `((cpe-name . "thunderbird_esr")))
@ -1531,7 +1531,7 @@ (define-public icedove
        ;; in the Thunderbird release tarball.  We don't use the release
        ;; tarball because it duplicates the Icecat sources and only adds the
        ;; "comm" directory, which is provided by this repository.
-        ,(let ((changeset "04f60827c1b53ab86121c7d122d3a8216219ff9f"))
+        ,(let ((changeset "07a17b101f904a686bbdf798ba2e820079a8323f"))
           (origin
             (method hg-fetch)
             (uri (hg-reference
@ -1540,7 +1540,7 @@ (define-public icedove
             (file-name (string-append "thunderbird-" version "-checkout"))
             (sha256
              (base32
-               "078jrxpzqj45l84i39a9fq023j71ngca5gs2ngpjsbily51bzx09")))))
+               "16wlpcv1n64crcgk4gcl92r37dlpw26izvam82pbp5f8c25amlnk")))))
       ("cargo" ,(force rust-1.59-promise) "cargo")
       ("clang" ,clang)
       ("llvm" ,llvm)