This morning, I’ve been seeing a lot of “Firefox exploits” in various news sites including [SNIP LIST]. This makes me to think “hmm, how long do we have to wait until Fedora Project releases their official Firefox updates?” “Is there a faster way of getting the latest Firefox build like RIGHT NOW?”
Yeah, brah. Just what I was wondering. See also "More Details on Arbitrary Code Execution Vulnerability".
The answer is YES! We can build Firefox 1.0.4 RPM from Mozilla/Firefox Nighlty Build Tree.
Oh. Smack. Let's do it.
First, I followed instructions in "HOWTO: How to create rpmbuild directory". You can probably skip this part if you don't mind a root-based RPM build, but I'll be wanting to do some Fedora RPM hacking later on so I might as well. As root, I installed the rpmdevtools RPM
# wget ftp://download.fedora.redhat.com/pub/fedora/linux/extras/3/i386/fedora-rpmdevtools-1.0-1.noarch.rpm # rpm -i fedora-rpmdevtools-1.0-1.noarch.rpm
Then as my own user:
There'll be no output, but you should now find:
$ ls rpmbuild/ BUILD RPMS SOURCES SPECS SRPMS $ cd ~/rpmbuild/SOURCES/ $ wget http://ftp.mozilla.org/pub/mozilla.org/firefox/nightly/latest-aviary1.0.1/firefox-1.0.4.en-US.linux-i686.tar.gz
Right now this build is the same as the release candidate announced by Asa Dotzler.
$ wget http://fedoranews.org/tchung/firefox/nightly/20050509/firefox.desktop $ wget http://fedoranews.org/tchung/firefox/nightly/20050509/firefox.png $ cd ../SPECS/ $ wget http://fedoranews.org/tchung/firefox/nightly/20050509/firefox.spec $ cd $ rpmbuild -ba ~/rpmbuild/SPECS/firefox.spec $ sudo rpm -Uvh ~/rpmbuild/RPMS/i386/firefox-1.0.4-20050509.i386.rpm
You might have to su to root rather than sudo on that last command, depending on your set-up. Now just checking:
$ rpm -q firefox firefox-1.0.4-20050509
Bet! There goes that round of 'spoits (let's hope).