Revisions of nodejs-electron
Björn Bidar (Thaodan)
committed
(revision 18)
- New upstream release 29.3.3 * Fixed an issue where fs.createWriteStream could write out of order. * Avoid some crashes when launching new process if Electron package is upgraded while apps are running * Fix use after free in V8 (CVE-2024-3914 bsc#1222958) * Fix use after free in Angle (CVE-2024-4558 bsc#1224045) * a11y: avoid clearing/resetting focus on an already focused element. - Build all translations for devtools, not just Chinese. * more-locales.patch * devtools-frontend-compress_files-oom.patch - Change version number to reflect this is a git snapshot. Upstream removed the tag (gh#electron/electron#42025) due to their CI being broken (gh#electron/electron#42005) but AFAIK there isn't anything wrong with the code itself so we're still publishing it. - New upstream relese 29.3.2 * Fixes an issue where console.log() in AudioWorkletGlobalScope produced incorrect output. * electron doesn't paint on offscreen-render mode after gpu process crashed * fix type confusion in ANGLE (CVE-2024-4058) - Disable custom malloc due to bizarre segfaults (bsc#1223366) - x86_64 Tumbleweed and Fedora: increase debuginfo quality - Update to electron 29.3.1 * ABI break: NODE_MODULE_VERSION is now 121 * Chromium 122.0.6261.156 * Node 20.9.0 * V8 12.2 * The deprecated gpu-process-crashed event on app has been removed. * The deprecated renderer-process-crashed event on app and crashed event on WebContents and <webview> have been removed. * Added WebContentsView and BaseWindow, replacing the now-deprecated BrowserView APIs. * Added new webUtils.getPathForFile method to replace File.path augmentation. * see https://www.electronjs.org/blog/electron-29-0 and https://github.com/electron/electron/releases/tag/v29.0.0 for more * Security fixes for Angle (CVE-2024-3516) and Compositing (CVE-2024-3157) - Drop upstreamed patches * atspi.patch * chromium-117-blink-BUILD-mnemonic.patch * local_frame-local_frame_client-incomplete-WebBackgroundResourceFetchAssets.patch * node-upgrade-llhttp-to-8.patch * policy_templates-deterministic.patch * v8-hide-private-symbols.patch * web_local_frame_client-incomplete-WebBackgroundResourceFetchAssets.patch - Add patches to fix build errors * aarch64-Xclang.patch * absl2023-encapsulated_web_transport-StrCat.patch * boringssl-internal-addc-cxx.patch * chromium-122-avoid-SFINAE-TypeConverter.patch * chromium-122-BookmarkNode-missing-operator.patch * distributed_point_functions-aes_128_fixed_key_hash-missing-StrCat.patch * distributed_point_functions-evaluate_prg_hwy-signature.patch * fake_ssl_socket_client-Wlto-type-mismatch.patch * grid_sizing_tree-Wchanges-meaning.patch * hit_test_request-missing-optional.patch * InternalAllocator-too-many-initializers.patch * mt21_util-flax-vector-conversions.patch * plus_address_types-missing-optional.patch * race_network_request_write_buffer_manager-missing-optional.patch * resolution_monitor-missing-bitset.patch * script_promise_resolver-explicit-specialization.patch * search_engine_choice_service-missing-optional.patch * system-yuv.patch - Replace abseil-remove-unused-targets.patch with chromium-122-abseil-shims.patch - Remove dead code from third_party/ * aom-vpx-no-thread-wrapper.patch * remove-dawn.patch * remove-openscreen.patch * remove-password-manager-and-policy.patch * remove-puffin.patch * remove-rust.patch * remove AFL-2.0, BSD-Protection and IJG from licence list, because the relevant libraries (xdg-mime, bsdiff and iccjpeg) are no longer shipped. - Leap, Fedora: use bundled re2 * drop replace-StringPiece-with-string_view.patch - Fedora 38: use bundled abseil * drop pending_task_safety_flag-abseil-2022-nullability.patch * drop thread_annotations-fix-build-with-system-abseil.patch - Leap 15.5: Reverse upstream changes to build with old wayland * wayland-proto-31-cursor-shape.patch - Leap 15.5/6: Reverse upstream changes to build with old ffmpeg * Cr122-ffmpeg-new-channel-layout.patch - aarch64: reduce debuginfo due to linker OOM - New upstream release 28.3.0 * Added proxy configuring support for requests made with net module from utility process. * Fix out of bounds memory access in V8 (CVE-2024-3159 bsc#1222260) - Add CVE-2024-30261-undici-fetch-integrity.patch (fixes CVE-2024-30261 bsc#1222603) - Add backported CVE-2024-30260-undici-clear-proxy-authorization.patch (CVE-2024-30260 bsc#1222530) - New upstream release 28.2.10 * Fixed crash in Notification::Close() under libnotify 0.8.x with portal environment. * Fixed usage of Storage.{get|set|clear}Cookies via the Chrome DevTools Protocol. * Security fixes (bsc#1222035): + Use after free in Angle (CVE-2024-2883) + Type confusion in WebAssembly (CVE-2024-2887) + Use after free in WebCodecs (CVE-2024-2886) - New upstream release 28.2.9 * Fix object lifecycle issue in V8 (CVE-2024-2625 bsc#1221732) * Fixes an issue where the serial-port-added event improperly respected filters set by serial.requestPort() - Fedora 39: use system vulkan-memory-allocator - New upstream release 28.2.8 * no user-visible changes - Leap 15.6: link libvulkan.so instead of dlopening it - aarch64, riscv64: fix build with LLVM 18 * swiftshader-llvm18-LLVMReactor-getInt8PtrTy.patch gh#llvm/llvm-project#71029 * swiftshader-llvm18-LLVMJIT-Host.patch gh#llvm/llvm-project#74261 * swiftshader-llvm18-LLVMJIT-CodeGenOptLevel.patch gh#llvm/llvm-project#66295 - New upstream release 28.2.7 * Fix out of memory access in V8 (CVE-2024-2173 bsc#1221105) * Fixed chrome://process-internals failing to load - Correct bogus ASCII unit separator in licence field (bsc#1221251 gh#rpm-software-management/rpm#1644)
Björn Bidar (Thaodan)
committed
(revision 17)
- New upstream release 28.2.6 * Fixed a crash that can result from some kinds of dynamic imports. * Fixed saving traces from devtools performance panel. - Do not suppress compiler warnings in third_party/electron_node (bsc#1220571 rh#2142177) * add node-compiler.patch
Björn Bidar (Thaodan)
committed
(revision 16)
Regen tarball, remove removed build option
Björn Bidar (Thaodan)
committed
(revision 15)
- New upstream release 28.2.5 * Fix use after free in Mojo (CVE-2024-1670 bsc#1220131) - aarch64: use bfd linker (bsc#1210687) and enable LTO - Update to version 28.2.4: * ABI break: NODE_MODULE_VERSION is now 119 * Chromium 120.0.6099.291 * Node 18.18.2 * V8 12.0 * The ipcRenderer.sendTo() method has been removed. * The scroll-touch-{begin,end,edge} events have been removed. * Setting backgroundThrottling to false will disable frames throttling in the BrowserWindow for all WebContents displayed by it. * Enabled ESM support. * The UtilityProcess API now supports ESM entrypoints. * Added several properties to the display object including detected, maximumCursorSize, and nativeOrigin. * Added support for ELECTRON_OZONE_PLATFORM_HINT environment variable on Linux. * see https://www.electronjs.org/blog/electron-28-0 and https://github.com/electron/electron/releases/tag/v28.0.0 for more - Drop upstreamed patches: * absl-make_unique-missing-include.patch * async_shared_storage_database_impl-missing-absl-WrapUnique.patch * autofill_i18n_parsing_expressions-constexpr.patch * chromium-system-libusb.patch * computed_style_base-nbsp.patch * CVE-2023-38552-node-integrity-checks-according-to-policies.patch * CVE-2023-39333-node-create_dynamic_module-code-injection.patch * CVE-2023-45143-undici-cookie-leakage.patch * decoder_buffer_side_data-missing-uint8_t.patch * electron_api_app-GetPathConstant-non-constexpr.patch * electron_browser_context-missing-variant.patch * flatbuffers.gn * libsecret.gn * highway.gn * kwallet_dbus-missing-uint8_t.patch * mojo_ukm_recorder-missing-WrapUnique.patch * page_content_annotations_common-remove-tflite.patch * Partial-migration-from-imp-to-importlib.patch * partition_root-attribute.patch * quiche-missing-absl-includes.patch * replace_gn_files-system-libs.patch * sensor_reading-missing-int64_t-size_t.patch * services-network-optional-explicit-constructor.patch * simple_font_data-freetype-include.patch * utf_string_conversion_utils-missing-numeric_limits.patch * vulkan_memory_allocator.gn * vulkan_memory_allocator-upgrade.patch * vulkan_memory_allocator-vk_mem_alloc-missing-snprintf.patch - Add patches to fix build errors: * atspi.patch * local_frame-local_frame_client-incomplete-WebBackgroundResourceFetchAssets.patch * v8-instance-type-inl-constexpr-used-before-its-definition.patch * web_local_frame_client-incomplete-WebBackgroundResourceFetchAssets.patch - Adjust brotli-remove-shared-dictionary.patch to disable the offending code which is now live, and enable this patch only on systems with old brotli. - Conditionally add pending_task_safety_flag-abseil-2022-nullability.patch to make electron buildable with old abseil. - Use bundled avif everywhereas chromium now uses features available only in development snapshots. - Bundle minizip on Fedora 40 due to the system version not including necessary headers (rh#2240599 gh#zlib-ng/minizip-ng#447) * add bundled-minizip.patch - Add backported patches to fix ftbfs with new abseil and icu: * quiche-missing-absl-includes.patch * text_break_iterator-icu74-breakAllLineBreakClassTable-should-be-consistent.patch - New upstream release 27.3.3 * CSS style -webkit-app-region: drag; has no effect in full screen mode. * Fixed an issue where crashes in node::Environment destruction potentially wouldn't be propagated to the NodeService exit handler. * Fixed an issue where zoom level settings did not persist per-session for webviews. * Security fixes (bsc#1219661): + heap buffer overflow in Skia (CVE-2024-1283) + use after free in Mojo (CVE-2024-1284) - Fix Angle being incorrectly built without swiftshader support. - Leap 15.6: use system spirv and avif, disable harfbuzz-replace-{chromium-scoped-type,HbScopedPointer}.patch
Björn Bidar (Thaodan)
committed
(revision 14)
- New upstream release 27.3.2 * Fixed an issue where select-usb-device did not respect the filter option in navigator.usb.requestDevice() * Add an extra field to process.versions to attach information about the build vendor * Multiple security fixes for Blink, RTC and Network - New upstream release 27.3.1 * Apply module search paths restriction on worker and child process * Fix use after free in Web Audio (CVE-2024-0807 bsc#1219118)
Björn Bidar (Thaodan)
committed
(revision 13)
- New upstream release 27.3.0 * Added net module to utility process - Fix crash in media::FFmpegGlue::OpenContext (chromium-118-sigtrap_system_ffmpeg.patch)
Björn Bidar (Thaodan)
committed
(revision 12)
- New upstream release 27.2.3 * Security fixes for V8 (bsc#1218892): CVE-2024-0517 CVE-2024-0518 - Use system spirv on 15.6 - Build using gcc13 on Leap * drop keyboard_util-gcc12-invalid-constexpr.patch - Drop support for 15.4 and Fedora 37 and remove relevant vendored libraries from tarball. - New upstream release 27.2.2 * Fixed a crash resultant from trying to listen to power-related events before the ready event was emitted on Linux * Fix multiple vulnerabilities in Chromium (bsc#1218533): CVE-2024-0222 CVE-2024-0223 CVE-2024-0224 - New upstream release 27.2.1 * Fix multiple security issues in Chromium and V8 (bsc#1218048): CVE-2023-6702 CVE-2023-6703 CVE-2023-6705 CVE-2023-6706 CVE-2023-6707 * Fix use after free in AVIF (CVE-2023-6704 bsc#1218303) (except Tumbleweed) - New upstream release 27.2.0 * Added an option in protocol.registerSchemesAsPrivileged to allow V8 code cache in custom schemes. * Fixed an issue where font requests were incorrectly being sent to dev tools multiple times per resource. * Fixed save to file option not working in performance tab of devtools. * Fix use after free in MediaStream (CVE-2023-6508) * Fix heap buffer overflow in WebRTC (CVE-2023-7024 bsc#1218302)
Björn Bidar (Thaodan)
committed
(revision 11)
- New upstream release 27.1.3 * Chromium 118.0.5993.159 * Fix integer overflow in Skia (CVE-2023-6345) * Fix use after free in WebAudio (CVE-2023-6346) * Fix use after free in Mojo (CVE-2023-6347) * [Leap and Fedora only] Fix use after free in avif (CVE-2023-6350 bsc#1217614) - Hide more private symbols in trap-handler (v8-hide-private-symbols.patch) - New upstream release 27.1.2 * no user-visible changes - Do not build some unused code in //third_party/perfetto. - New upstream release 27.1.0 * Chromium 118.0.5993.144 * Added keyboardLock to ses.setPermissionRequestHandler(handler). * Fixed "will-navigate" not being emitted when pressing links in chrome: pages. - Drop chromium-ffmpeg-first-dts.patch also on Fedora 37 (rh#2240127) - Drop no longer relevant electron-version-from-env.patch - Add libxml-2.12-xmlCtxtGetLastError-const.patch to fix ftbfs with new libxml (rh#2250062) - Fedora 38+: allow using fixed ffmpeg-libs with electron - Disable chromium-ffmpeg-first-dts.patch on Fedora 38+ to fix some MP4 videos not playing (rh#2240127) - Fix non-deterministic build in cloud_policy.pb.cc (bsc#1041090) * add policy_templates-deterministic.patch - New upstream release 27.0.4 * Chromium 118.0.5993.129 * Fixed an issue where WebViews could sometimes crash on unload * obsolete crash_gpu_process_and_clear_shader_cache_when_skia_reports.patch - Use system jinja2 for building * add computed_style_base-nbsp.patch * update system-pydeps.patch - Leap: use python 3.11 for building (was 3.6) - Add backported crash_gpu_process_and_clear_shader_cache_when_skia_reports.patch * fixes “Skia shader compilation error” after some Mesa updates due to stale shader cache (bsc#1214274) - New upstream release 27.0.3 * Updated Chromium to 118.0.5993.120 * Fixed an issue where navigator.keyboard.lock() did not work per latest expected behavior
Björn Bidar (Thaodan)
committed
(revision 10)
fix build
Björn Bidar (Thaodan)
committed
(revision 9)
- New upstream release 27.0.2 * Functions called over the contextBridge are now called with the expected receiver (this). - Do not build some Chromium features not used by Electron. - New upstream release 27.0.1 * Updated Chromium to 118.0.5993.89. * Fixed an issue where calling loadURL during some webContents url loading events could crash. * Fixed an issue where fully occluded windows would return an empty image from webContents.capturePage() * Fixed some redundant permission dialogs while screen sharing on Wayland. - Fix typo installing icon file to wrong folder. - Update to 27.0.0: * ABI break: NODE_MODULE_VERSION is now 118 * Chromium 118.0.5993.32 * Node 18.17.1 * V8 11.8 * The deprecated color scheme changed events in systemPreferences have been removed. * The systemPreferences.getAppLevelAppearance, systemPreferences.setAppLevelAppearance and systemPreferences.appLevelAppearance APIs have been removed, as well as the alternate-selected-control-text value for systemPreferences.getColor. * see https://www.electronjs.org/blog/electron-27-0 and https://www.electronjs.org/blog/electron-26-0 for new features - Drop upstreamed patches * absl-uint128-do-not-assume-abi.patch * cpu-missing-uint8_t.patch * electron-24-components-missing-headers.patch * mojom-python3.12-imp.patch * re2-11-StringPiece.patch * swiftshader-llvm17.patch - (Fedora) switch to bundled avif as Chromium no longer builds with avif 0.x * drop avif_image_decoder-AVIF_PIXEL_FORMAT_COUNT.patch * drop avif_image_decoder-libavif-1-mode.patch * drop avif_image_decoder-repetitionCount-clli.patch - Drop no longer relevant chromium-86-fix-vaapi-on-intel.patch - (Leap and Fedora) reverse upstream changes to build with re2 10 * replace-StringPiece-with-string_view.patch - (Fedora <39) reverse upstream changes to build with icu 71 * v8-icu73-alt_calendar.patch * v8-icu73-simple-case-folding.patch - Reverse upstream changes to build against old brotli * brotli-remove-shared-dictionary.patch - Add patches to fix build errors * absl-make_unique-missing-include.patch * autofill_i18n_parsing_expressions-constexpr.patch * chromium-117-blink-BUILD-mnemonic.patch * decoder_buffer_side_data-missing-uint8_t.patch * disable-tests.patch * keyboard_util-gcc12-invalid-constexpr.patch * kwallet_dbus-missing-uint8_t.patch * material_color_utilities-tones-missing-round.patch * page_content_annotations_common-remove-tflite.patch * partition_root-attribute.patch * perfetto-numeric_storage-double_t.patch * sensor_reading-missing-int64_t-size_t.patch * simple_font_data-freetype-include.patch * utf_string_conversion_utils-missing-numeric_limits.patch
Björn Bidar (Thaodan)
committed
(revision 8)
- Add backported security patches: * CVE-2023-38552 bsc#1216272 CVE-2023-38552-node-integrity-checks-according-to-policies.patch * CVE-2023-39333 bsc#1216273 CVE-2023-39333-node-create_dynamic_module-code-injection.patch * CVE-2023-45143 bsc#1216205 CVE-2023-45143-undici-cookie-leakage.patch - Build against Wayland 21 also on Leap 15.4 now that it's available * drop wayland-WL-SINCE-VERSION.patch * drop wayland_data_drag_controller-WL_SURFACE_OFFSET_SINCE_VERSION.patch - Use system simdutf on Fedora ≥38 * system-simdutf.patch - Use system vulkan-memory-allocator on Fedora 40/Rawhide * vulkan_memory_allocator.gn * vulkan_memory_allocator-upgrade.patch - New upstream release 25.9.1 * Fixed an issue where calling loadURL during some webContents url loading events could crash. * Fixed deprecated gpu-process-crashed / renderer-process-crashed events being emitted twice and with incorrect arguments. - Desktop integration cleanup: * edit .desktop file to not show Electron in start menu as it is useless when run by itself * drop electron-logo-symbolic.svg and instead use upstream supplied icon * do not install icon twice (icon.patch) * do not create /{etc,usr/share}/webapps directories which do not belong here * do not recommend noto-coloremoji-fonts, if an app needs it it should pull it by itself. - New upstream release 25.9.0 * Added support for chrome.scripting extension APIs. * Fixed BrowserView.setBounds calls not painting view in new bounds in some cases. * Fixed an issue where webContents.print could fail when options is a frozen object. - Do not export internal v8 apis used by no known application (v8-hide-private-symbols.patch) - Add backported swiftshader-llvm17.patch to fix ftbfs on arm64 - Drop 647d3d2.patch no longer relevant - Disable chromium-ffmpeg-first-dts.patch on openSUSE as it breaks playback of some videos and is no longer needed. * In its place add chromium-94-ffmpeg-roll.patch for Leap only. - New upstream release 25.8.4 * Detect system dark theme preference via xdg settings portal on Linux. * Fix heap buffer overflow in libvpx (CVE-2023-5217) (only Fedora 37 and Leap) - Do not build webextensions support which we do not use * add backported build-without-extensions.patch - New upstream release 25.8.3 * Fixed a redundant permission popup while fetching screens and windows using desktopCapturer.getSources() on Wayland * Fixed crash on shutdown in tls sockets with Node.js HTTP/2 connections. - Use icu 73 on Leap * drop NumberFormat-icu71-incrementExact.patch * drop intl-objects-icu71-UNUM_APPROXIMATELY_SIGN_FIELD.patch * drop v8-regexp-parser-UCHAR_BASIC_EMOJI.patch * drop v8-icu69-FormattedNumberRange-no-default-constructible.patch - Fix unresolvable build on Leap 15.6 - New upstream release 25.8.2 * Fixed an issue where chrome://gpu failed to load. * Fixed an issue where accelerators representing DOM keys were not correctly converted in webContents.sendInputEvent(). - Drop chrome-gpu-does-not-load.patch applied upstream - New upstream release 25.8.1 * Fixed an error where listening to certain chrome.tabs events would throw incorrectly. * Fixed problem with promise resolved to early when browser initiated in-page navigation. * Security fixes for Networks (CVE-2023-4763), V8 (CVE-2023-4762) and FedCM (CVE-2023-4761) - Update to 25.8.0 * ABI break: NODE_MODULE_VERSION is now 116 * Chromium 114.0.5735.289 * Node 18.15.0 * V8 11.4 * Removed BrowserWindow scroll-touch-* events (since Electron 23) * Removed webContents.{de,in}crementCapturerCount(stayHidden, stayAwake) (since Electron 23) * Removed JXL image format support (since Electron 23) * API Changed: nativeImage.createThumbnailFromPath(path, size) (since Electron 24) - Use bundled aom and vpx on Fedora ≤37 and Leap - Drop support for Fedora 36 which is EOL - Drop upstreamed patches * CVE-2022-43548.patch * aggregatable_attribution_utils-do-not-assume-abseil-ABI.patch * angle-ShaderVars-missing-uint32_t.patch * attribution_response_parsing-do-not-assume-abseil-ABI.patch * blink-gcc13-missing-headers.patch * bluetooth_uuid-missing-uint8_t.patch * broker_file_permission-missing-uint64_t.patch * chromium-108-abseil-shims.patch * components-gcc13-missing-headers.patch * crashpad-elf_image_reader-ProgramHeaderTableSpecific-expected-unqualified-id.patch * d0aa9ad.patch * document_loader-private-DecodedBodyData.patch * effect_paint_property_node-Wchanges-meaning.patch * electron_serial_delegate-ambiguous-Observer.patch * extensions-gcc13-missing-headers.patch * first_party_set_parser-IssueWithMetadata-no-known-conversion.patch * gpu_feature_info-missing-uint32_t.patch * half_float-Wstrict-aliasing.patch * ipcz-buffer_id-Wnarrowing.patch * ipcz-safe_math-Wuninitialized.patch * net-gcc13-missing-headers.patch * net-third_party-quiche-gcc13-missing-headers.patch * one_writer_seqlock-missing-uintptr_t.patch * openscreen-gcc13-missing-headers.patch * passwords_counter-Wsubobject-linkage.patch * perfetto-uuid-missing-uint8_t.patch * print_dialog_gtk-no-kEnableOopPrintDriversJobPrint.patch * profiler-missing-uintptr_t.patch * reproducible-config.gypi.patch * select_file_dialog_linux_kde-Wodr.patch * shim_headers-fix-ninja.patch * static_constructors-Wstrict-aliasing.patch * string_hasher-type-pun-UB-causes-heap-corruption.patch * swiftshader-Constants-Wstrict-aliasing.patch * swiftshader-Half-Wstrict-aliasing.patch * swiftshader-LRUCache-missing-uint64_t.patch * target_property-missing-uint32_t.patch * ui-gcc13-missing-headers.patch * unzip-Wsubobject-linkage.patch * v8_initializer-PageAllocator-fpermissive.patch * vector_math_impl-Wstrict-aliasing.patch * web_contents_impl-Wsubobject-linkage.patch * webgl_image_conversion-Wstrict-aliasing.patch * webrtc-base64-missing-uint8_t.patch * xr_cube_map-Wstrict-aliasing.patch - Drop no longer relevant patches` * chromium-norar.patch * electron-13-fix-sql-virtualcursor-type.patch * enable-jxl.patch * system-jsoncpp.patch - Add patches to build with system libs * abseil-remove-unused-targets.patch * highway.gn * system-wayland.patch - Add patches to fix build errors * absl-uint128-do-not-assume-abi.patch * cpu-missing-uint8_t.patch * electron-24-components-missing-headers.patch * electron_api_app-GetPathConstant-non-constexpr.patch * electron_browser_context-missing-variant.patch * mojo_ukm_recorder-missing-WrapUnique.patch - Conditionally reverse upstream changes to build against stable avif * avif_image_decoder-repetitionCount-clli.patch - …and harfbuzz 4 * harfbuzz-replace-HbScopedPointer.patch - …and icu 69 * v8-regexp-parser-UCHAR_BASIC_EMOJI.patch - …and wayland 19 * wayland-WL-SINCE-VERSION.patch * wayland_data_drag_controller-WL_SURFACE_OFFSET_SINCE_VERSION.patch - Add backported chrome-gpu-does-not-load.patch - Add avif_image_decoder-libavif-1-mode.patch to fix ftbfs with new libavif - New upstream release 22.3.23 * Security fixes for V8 (CVE-2023-4427) and CSS (CVE-2023-4428) - New upstream release 22.3.22 * Fixed decorations for tiled windows on Wayland. * Security fixes for V8 (CVE-2023-4355, CVE-2023-4352), Skia (CVE-2023-4354), ANGLE (CVE-2023-4353), and Network (CVE-2023-4351) - Clean up third_party/… in tarball. * drop chromium-99-pdfium-system-libtiff.patch which is dead code - New upstream release 22.3.21 * Fixed unnecessary package.json check on built-in modules. - Disabled video hardware acceleration (vaapi) and use system libvpx everywhere. This is not a web browser where users regularly watch 4K videos, and i think the need to vendor dependencies and increased buildtime is not worth it. - Use system dav1d and libjxl on Leap 15.5 as they're available now. - Fix unreasolvabe build and use llhttp 8 on Fedora 37.
Björn Bidar (Thaodan)
committed
(revision 7)
- New upstream release 22.3.20 * Security fixes for ipcz (CVE-2023-3732) and WebRTC (CVE-2023-3728). - Add backported re2-11-StringPiece.patch to fix FTBFS. - New upstream release 22.3.17 * Security fixes: CVE-2023-3422, CVE-2023-3421, CVE-2023-3420. - Add mojom-python3.12-imp.patch and Partial-migration-from-imp-to-importlib.patch to fix ftbfs on Rawhide - New upstream release 22.3.14 * Security fixes for WebRTC: CVE-2023-3215, CVE-2023-0698, CVE-2023-0932 * Security fix for V8: CVE-2023-3216 - New upstream release 22.3.13 * Security fixes: CVE-2023-3079, CVE-2023-2724, CVE-2023-2723, CVE-2023-2725, CVE-2023-2721, CVE-2023-2936, CVE-2023-2935, CVE-2023-2930
Björn Bidar (Thaodan)
committed
(revision 6)
- Set rtc_use_h264 to true so H264 works in webrtc streams - New upstream release 22.3.11 * Fix ScopedObservation use after free in BubbleDialogDelegate::AnchorWidgetObserver - Re-enable use of flat_map in ANGLE. - New upstream release 22.3.9 * Fixed drag-and-drop crash on Wayland - Correct bogus export of private symbols from chrome_crashpad_handler executable * add another section and note to chromium-102-compiler.patch * add rdynamic.patch
Björn Bidar (Thaodan)
committed
(revision 5)
- Set rtc_use_h264 to true so H264 works in webrtc streams. - New upstream release 22.3.8 * Fixed crash when executing eval in the utility process. - Drop ‘Revert-e2c4acd-apply-csp-correctly-when-contextIsolation-false.patch’ due to proper upstream fix in this release.
Björn Bidar (Thaodan)
committed
(revision 4)
- Fix unresolvable build on Fedora 38 - New upstream release 22.3.7 * Fixed an issue which made defaultFontFamily in webPreferences have no effect * Fixed broken defaults in shell.openExternal() options. * v8: Make Error.captureStackTrace() a no-op for global object (CVE-2023-2033) * Blink: Use ScriptState::Scope instead of setting HandleScope. (CVE-2023-2133) * Blink: Stop supporting { handleEvent }. (CVE-2023-2134) * Dev tools: Retain DevToolsAgentHost after ForceDetachAllSessions() (CVE-2023-2135) * Skia: Enforce program stack limits on function parameters (CVE-2023-2136) - Disable thread_annotations-fix-build-with-system-abseil.patch on Tumbleweed to fix FTBFS with Abseil 20230125. - Add Revert-e2c4acd-apply-csp-correctly-when-contextIsolation-false.patch * revert changes causing crash of VSCode: https://github.com/microsoft/vscode/pull/179991 - New upstream release 22.3.6 * Fixed an issue with Content-Security-Policy not being correctly enforced when sandbox: false and contextIsolation: false. (CVE-2023-23623) * Fixed a memory leak in v8.serialize() when running Node.js within Electron. * Viz: Add CHECKs in HostFrameSinkManager (CVE-2023-1810) * Blink: Move the edit commands to an on stack variable (CVE-2023-1811) - Fix download tarball script wrongly setting GPU_LISTS_VERSION to zero - Change 647d3d2.patch to fix FTBFS on aarch64 Fedora - Fix unresolvable build on Fedora 37 >>>>>>> .new
Björn Bidar (Thaodan)
committed
(revision 3)
- Set rtc_use_h264 to true so H264 works in webrtc streams.
Björn Bidar (Thaodan)
committed
(revision 2)
Björn Bidar (Thaodan)
committed
(revision 1)
Displaying all 18 revisions