I've somehow not received Mark's email yet. I'm using Mark's IceCat package on GuixSD. You can find the reproducible package definition here: https://git.savannah.gnu.org/cgit/guix.git/tree/gnu/packages/gnuzilla.scm?id=v0.14.0-437-gd633f2f62#n402
You can install Guix in any computer to run IceCat, or even switch to the GuixSD distro. On Tue, Dec 26, 2017 at 12:54 PM, Antonio Trande <[email protected]> wrote: > Hi Mark. > > On 26/12/2017 03:15, Mark H Weaver wrote: > > Gammel Holte <[email protected]> writes: > > > >> On Thu, Dec 21, 2017 at 5:33 PM, Antonio Trande <[email protected]> > wrote: > >> Will Icecat be upgraded still? > >> > >> I was wondering the same thing. As much as I dislike the latest moves > >> by Mozilla [1] and as much as I like GNU and IceCat, I'm a bit worried > >> by the lack of maintenance of the project. > >> > >> IceCat is quite lagging behind Firefox ESR now. HEAD is 52.3.0, > >> whereas Firefox ESR is already at 52.5.2. > > > > I agree that this is a very serious problem. GNU IceCat is my primary > > web browser, and I worry a *lot* about computer security. > > > > As defacto maintainer of the IceCat package in GNU Guix, I have a > > solution for myself and for other GNU Guix users. Whenever Mozilla > > issues a security advisory, I search for the associated fixes in the > > upstream mozilla-esr52 source repository, and apply them to our packages > > in GNU Guix. At the time of this writing, we include 69 patches > > cherry-picked from upstream Firefox ESR, including all fixes from 52.5.2 > > that I deemed to be possibly relevant to security. > > > > Where do you find all release related patches? > > -- > --- > Antonio Trande > Fedora Project > mailto 'sagitter at fedoraproject dot org' > GPG key: 0x5E212EE1D35568BE > GPG key server: https://keys.fedoraproject.org/ > >
-- http://gnuzilla.gnu.org
