SlackwareThis Forum is for the discussion of Slackware Linux.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
As you might have heard, a recent critical vulnerability was discovered in Firefox 3.6.
Any word on a Slackware patch coming soon?
I'd prefer to use a Slackware package rather than the actual Mozilla release, but I also don't like browsing the web with a remote code execution bug in my browser.
Or is Slackware unaffected by this? Please correct me if I'm wrong.
There is a security fix for Slackware 12.2 but that was for FF 3.05.
Quote:
Here are the details from the Slackware 12.2 ChangeLog:
+--------------------------+
Sat Mar 6 18:57:32 UTC 2010
patches/packages/mozilla-firefox-3.0.18-i686-1.tgz: Upgraded.
Upgraded to firefox-3.0.18.
This fixes some security issues.
For more information, see: http://www.mozilla.org/security/know...firefox30.html
(* Security fix *)
+--------------------------+
And yes, it's quite nasty and has been out there for about a month.
The bug is in the parser for downloadable fonts, so I believe that going into about:config and changing gfx.downloadable_fonts.enable to false will help mitigate the risk until the team have had time to put a new package together.
I downloaded the sources and built my own 3.6.2 package yesterday as I didn't want to wait.
On almost any Slackware mirror on the /source/xap/mozilla-firefox/ dir
Depending on your Slackware version, here's a starting point
(Your mileage may vary, I'm running -current and it runs great, but it's up to you make sure it will work with the version you're running. You should have at least a minimal understanding of the way a Slackbuild works. Sbo is a different proyect (No support for this particular unofficial customization) but their How-To may help getting started using slackbuilds.
Good luck!
Does this mean the slackbuild wont work on my 32 bit machine? Could i just change the numbers? Also, do slackbuilds effectively do the compiling and installing for you? I wanna have go at compiling something, just a bit nervous.
Once again sorry for the hijack, but i am trying to get FF 3.6.2 and this seems like a very relevant thread.
While it is possible (and frankly easy) to roll my own updated Firefox using a new source file and the SlackBuild script in the sources, it would be nice to have an official update.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.