From: Raspbian automatic forward porter <root@raspbian.org>
Date: Sun, 5 Apr 2026 13:30:45 +0000 (+0100)
Subject: Merge version 140.8.0esr-1+rpi1 and 140.9.0esr-1 to produce 140.9.0esr-1+rpi1
X-Git-Tag: archive/raspbian/140.9.0esr-1+rpi1^0
X-Git-Url: https://dgit.raspbian.org/?a=commitdiff_plain;h=87a7a2ff4488a854808a701700773e87a4730fcd;p=firefox-esr.git

Merge version 140.8.0esr-1+rpi1 and 140.9.0esr-1 to produce 140.9.0esr-1+rpi1
---

87a7a2ff4488a854808a701700773e87a4730fcd
diff --cc debian/changelog
index 4257152f9f0,86f570c09d1..727a525b5b6
--- a/debian/changelog
+++ b/debian/changelog
@@@ -1,41 -1,18 +1,57 @@@
- firefox-esr (140.8.0esr-1+rpi1) forky-staging; urgency=medium
++firefox-esr (140.9.0esr-1+rpi1) forky-staging; urgency=medium
 +
 +  [changes brought forward from 60.3.0esr-1+rpi1 by Peter Michael Green <plugwash@raspbian.org> at Wed, 05 Dec 2018 06:56:52 +0000]
 +  * Hack broken rust target selection so it produces the right target
 +    on raspbian.
 +  * Fix clean target.
 +
 +  [changes introduce in 60.8.0esr-1+rpi1 by Peter Michael Green]
 +  * Use a fake homedir for build (Closes: 933757).
 +
 +  [changes introduced in 68.2.0esr-1+rpi1 by Peter Michael Green]
 +  * Disable webrtc, it seems to fail to build on raspbian.
 +  * Try to disable Neon
 +
 +  [changes introduced in 78.3.0esr-2+rpi1 by Peter Michael Green]
 +  * Clean up pycache directories.
 +  * Disable neon in qcms.
 +
 +  [changes brought over from thunderbird 1:91.3.2-1+rpi1 by Peter Michael Green]
 +  * Use a #define instead of a typedef for double_t in fdlibm to prevent conflicting
 +    definitions error.
 +
 +  [changes brought over from thunderbird 1:102.1.1-1+rpi1 by Peter Michael Green]
 +  * Disable more armv7/neon stuff.
 +
 +  [changes introduced in 102.2.0esr-1+rpi1 by Peter Michael Green]
 +  * Disable jit (or at least try to)
 +    + Pass disable-jit from debian/rules
 +    + Nerf jit detection in s/moz.configure
 +
 +  [changes introduced in 115.3.0esr-1+rpi1 by Peter Michael Green]
 +  * Disable conflicting include in js/src/jit/shared/AtomicOperations-shared-jit.cpp
 +
 +  [changes introduced in 128.11.0esr-1+rpi1 by Peter Michael Green]
 +  * Update rust target hack to accomodate changes in upstream target selection.
 +  * Workaround asm bug with bx lr (see: https://github.com/EmbarkStudios/crash-handling/issues/5)
 +
-  -- Raspbian forward porter <root@raspbian.org>  Fri, 06 Mar 2026 09:27:50 +0000
++ -- Raspbian forward porter <root@raspbian.org>  Sun, 05 Apr 2026 13:30:38 +0000
++
+ firefox-esr (140.9.0esr-1) unstable; urgency=medium
+ 
+   * New upstream release.
+   * Fixes for mfsa2026-22, also known as:
+     CVE-2026-4684, CVE-2026-4685, CVE-2026-4686, CVE-2026-4688,
+     CVE-2026-4689, CVE-2026-4690, CVE-2026-4691, CVE-2026-4692,
+     CVE-2026-4693, CVE-2026-4694, CVE-2026-4695, CVE-2026-4696,
+     CVE-2026-4697, CVE-2026-4698, CVE-2026-4699, CVE-2026-4700,
+     CVE-2026-4701, CVE-2026-4702, CVE-2026-4704, CVE-2026-4705,
+     CVE-2026-4706, CVE-2026-4707, CVE-2026-4708, CVE-2026-4709,
+     CVE-2026-4710, CVE-2026-4713, CVE-2026-4714, CVE-2026-4715,
+     CVE-2026-4716, CVE-2026-4717, CVE-2025-59375, CVE-2026-4718,
+     CVE-2026-4719, CVE-2026-4720, CVE-2026-4721.
+ 
+  -- Mike Hommey <glandium@debian.org>  Wed, 25 Mar 2026 08:43:49 +0900
  
  firefox-esr (140.8.0esr-1) unstable; urgency=medium