Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package chromium for openSUSE:Factory
checked in at 2024-10-18 15:53:03
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/chromium (Old)
and /work/SRC/openSUSE:Factory/.chromium.new.19354 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "chromium"
Fri Oct 18 15:53:03 2024 rev:434 rq:1208638 version:130.0.6723.58
Changes:
--------
--- /work/SRC/openSUSE:Factory/chromium/chromium.changes 2024-10-03
17:45:02.539892582 +0200
+++ /work/SRC/openSUSE:Factory/.chromium.new.19354/chromium.changes
2024-10-18 15:54:03.579248984 +0200
@@ -1,0 +2,39 @@
+Sat Oct 12 10:45:36 UTC 2024 - Andreas Stieger <andreas.stie...@gmx.de>
+
+- Chromium 130.0.6723.58 (boo#1231694)
+ * CVE-2024-9954: Use after free in AI
+ * CVE-2024-9955: Use after free in Web Authentication
+ * CVE-2024-9956: Inappropriate implementation in Web Authentication
+ * CVE-2024-9957: Use after free in UI
+ * CVE-2024-9958: Inappropriate implementation in PictureInPicture
+ * CVE-2024-9959: Use after free in DevTools
+ * CVE-2024-9960: Use after free in Dawn
+ * CVE-2024-9961: Use after free in Parcel Tracking
+ * CVE-2024-9962: Inappropriate implementation in Permissions
+ * CVE-2024-9963: Insufficient data validation in Downloads
+ * CVE-2024-9964: Inappropriate implementation in Payments
+ * CVE-2024-9965: Insufficient data validation in DevTools
+ * CVE-2024-9966: Inappropriate implementation in Navigations
+- modified patches:
+ * exclude_ymp.patch update context
+ * chromium-125-compiler.patch update context
+ * chromium-125-lp155-typename.patch drop hunks for rewritten
+ proto_fetcher.h
+ * chromium-127-bindgen.patch update context
+- added patches:
+ * chromium-130-missing-includes.patch include optional, stack
+ * chromium-130-no-hardware_destructive_interference_size.patch
+ workaround for older libcpp
+- drop from keeplibs:
+ courgette/third_party dropped upstream
+- add to keepllibs:
+ third_party/fast_float needed by v8/src/numbers/conversion.cc
+
+-------------------------------------------------------------------
+Sat Oct 12 10:07:57 UTC 2024 - Andreas Stieger <andreas.stie...@gmx.de>
+
+- Chromium 129.0.6668.100 (boo#1231420)
+ * CVE-2024-9602: Type Confusion in V8
+ * CVE-2024-9603: Type Confusion in V8
+
+-------------------------------------------------------------------
Old:
----
chromium-129.0.6668.89.tar.xz
New:
----
chromium-130-missing-includes.patch
chromium-130-no-hardware_destructive_interference_size.patch
chromium-130.0.6723.58.tar.xz
BETA DEBUG BEGIN:
New:- added patches:
* chromium-130-missing-includes.patch include optional, stack
* chromium-130-no-hardware_destructive_interference_size.patch
New: * chromium-130-missing-includes.patch include optional, stack
* chromium-130-no-hardware_destructive_interference_size.patch
workaround for older libcpp
BETA DEBUG END:
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ chromium.spec ++++++
--- /var/tmp/diff_new_pack.Z7lJPl/_old 2024-10-18 15:54:29.304327060 +0200
+++ /var/tmp/diff_new_pack.Z7lJPl/_new 2024-10-18 15:54:29.308327227 +0200
@@ -96,7 +96,7 @@
%define n_suffix %{nil}
%endif
Name: chromium%{n_suffix}
-Version: 129.0.6668.89
+Version: 130.0.6723.58
Release: 0
Summary: Google's open source browser project
License: BSD-3-Clause AND LGPL-2.1-or-later
@@ -149,6 +149,8 @@
Patch362: chromium-127-clang17-traitors.patch
Patch363: chromium-127-constexpr.patch
Patch364: chromium-129-revert-AVFMT_FLAG_NOH264PARSE.patch
+Patch365: chromium-130-missing-includes.patch
+Patch366: chromium-130-no-hardware_destructive_interference_size.patch
BuildRequires: SDL-devel
BuildRequires: bison
BuildRequires: cups-devel
@@ -484,7 +486,6 @@
buildtools/third_party/libc++abi
buildtools/third_party/libunwind
chrome/third_party/mozilla_security_manager
- courgette/third_party
net/third_party/mozilla_security_manager
net/third_party/nss
net/third_party/quic
@@ -566,6 +567,7 @@
third_party/eigen3
third_party/emoji-segmenter
third_party/farmhash
+ third_party/fast_float
third_party/fdlibm
third_party/fft2d
third_party/flatbuffers
++++++ chromium-125-compiler.patch ++++++
--- /var/tmp/diff_new_pack.Z7lJPl/_old 2024-10-18 15:54:29.616340135 +0200
+++ /var/tmp/diff_new_pack.Z7lJPl/_new 2024-10-18 15:54:29.672342482 +0200
@@ -253,8 +253,8 @@
+config("symbols") { }
+config("xsymbols") {
rustflags = []
+ configs = []
if (is_win) {
- if (is_clang) {
@@ -2835,7 +2707,8 @@ config("symbols") {
# Minimal symbols.
# This config guarantees to hold symbol for stack trace which are shown to
user
++++++ chromium-125-lp155-typename.patch ++++++
--- /var/tmp/diff_new_pack.Z7lJPl/_old 2024-10-18 15:54:29.824348853 +0200
+++ /var/tmp/diff_new_pack.Z7lJPl/_new 2024-10-18 15:54:29.872350864 +0200
@@ -308,44 +308,4 @@
CallbackCommand<LockType, CallbackReturnValue> callback,
base::OnceCallback<void(CompletionCallbackArg)> on_complete,
CallbackReturnValue arg_for_shutdown,
-Index:
chromium-123.0.6312.46/components/supervised_user/core/browser/proto_fetcher.h
-===================================================================
----
chromium-123.0.6312.46.orig/components/supervised_user/core/browser/proto_fetcher.h
-+++
chromium-123.0.6312.46/components/supervised_user/core/browser/proto_fetcher.h
-@@ -424,7 +424,7 @@ class RetryingFetcherImpl final : public
- RetryingFetcherImpl(const RetryingFetcherImpl&) = delete;
- RetryingFetcherImpl& operator=(const RetryingFetcherImpl&) = delete;
-
-- void Start(ProtoFetcher<Response>::Callback callback) override {
-+ void Start(typename ProtoFetcher<Response>::Callback callback) override {
- callback_ = std::move(callback);
- Retry();
- }
-@@ -469,7 +469,7 @@ class RetryingFetcherImpl final : public
- }
-
- // Client callback.
-- TypedProtoFetcher<Response>::Callback callback_;
-+ typename TypedProtoFetcher<Response>::Callback callback_;
-
- // Retry controls.
- base::OneShotTimer timer_;
-@@ -490,7 +490,7 @@ class ParallelFetchManager {
- // Deferred fetcher is required because it should be started after it is
- // stored internally.
- using Fetcher = ProtoFetcher<Response>;
-- using KeyType = base::IDMap<std::unique_ptr<Fetcher>>::KeyType;
-+ using KeyType = typename base::IDMap<std::unique_ptr<Fetcher>>::KeyType;
-
- public:
- // Provides fresh instances of a deferred fetcher for each fetch.
-@@ -506,7 +506,7 @@ class ParallelFetchManager {
-
- // Starts the fetch. Underlying fetcher is stored internally, and will be
- // cleaned up after finish or when this manager is destroyed.
-- void Fetch(const Request& request, Fetcher::Callback callback) {
-+ void Fetch(const Request& request, typename Fetcher::Callback callback) {
- CHECK(callback) << "Use base::DoNothing() instead of empty callback.";
- KeyType key = requests_in_flight_.Add(MakeFetcher(request));
- requests_in_flight_.Lookup(key)->Start(
++++++ chromium-127-bindgen.patch ++++++
--- /var/tmp/diff_new_pack.Z7lJPl/_old 2024-10-18 15:54:30.044358072 +0200
+++ /var/tmp/diff_new_pack.Z7lJPl/_new 2024-10-18 15:54:30.080359582 +0200
@@ -35,10 +35,11 @@
]
}
-@@ -46,59 +37,6 @@ rust_bindgen("crabbyavif_libyuv_bindings
+@@ -39,61 +39,6 @@
bindgen_flags = [
"no-doc-comments",
"generate=functions,types,vars,methods,constructors,destructors",
+- "allowlist-item=AR30ToAB30",
- "allowlist-item=ARGBAttenuate",
- "allowlist-item=ARGBUnattenuate",
- "allowlist-item=Convert16To8Plane",
@@ -77,6 +78,7 @@
- "allowlist-item=I444AlphaToARGBMatrix",
- "allowlist-item=I444ToARGBMatrix",
- "allowlist-item=I444ToRGB24Matrix",
+- "allowlist-item=P010ToAR30Matrix",
- "allowlist-item=ScalePlane",
- "allowlist-item=ScalePlane_12",
- "allowlist-item=YuvConstants",
++++++ chromium-130-missing-includes.patch ++++++
---
chromium-130.0.6723.6/components/ip_protection/common/ip_protection_data_types.h
2024/09/19 15:30:27 1.1
+++
chromium-130.0.6723.6/components/ip_protection/common/ip_protection_data_types.h
2024/09/19 15:30:36
@@ -5,6 +5,8 @@
#ifndef COMPONENTS_IP_PROTECTION_COMMON_IP_PROTECTION_DATA_TYPES_H_
#define COMPONENTS_IP_PROTECTION_COMMON_IP_PROTECTION_DATA_TYPES_H_
+#include <optional>
+
#include "base/time/time.h"
namespace ip_protection {
---
chromium-131.0.6724.0/third_party/blink/renderer/platform/image-decoders/skia/skia_image_decoder_base.cc
2024/09/23 08:47:18 1.1
+++
chromium-131.0.6724.0/third_party/blink/renderer/platform/image-decoders/skia/skia_image_decoder_base.cc
2024/09/23 08:47:25
@@ -5,6 +5,7 @@
#include
"third_party/blink/renderer/platform/image-decoders/skia/skia_image_decoder_base.h"
#include <limits>
+#include <stack>
#include "third_party/blink/renderer/platform/image-decoders/segment_stream.h"
#include "third_party/skia/include/codec/SkCodec.h"
++++++ chromium-130-no-hardware_destructive_interference_size.patch ++++++
diff --git a/components/media_router/common/providers/cast/channel/enum_table.h
b/components/media_router/common/providers/cast/channel/enum_table.h
index 18fd272c6a9d8..20dc7d913e1c5 100644
--- a/components/media_router/common/providers/cast/channel/enum_table.h
+++ b/components/media_router/common/providers/cast/channel/enum_table.h
@@ -12,7 +12,6 @@
#include <cstdint>
#include <cstring>
-#include <new>
#include <optional>
#include <ostream>
#include <string_view>
@@ -368,7 +367,8 @@ class EnumTable {
private:
#ifdef ARCH_CPU_64_BITS
- alignas(std::hardware_destructive_interference_size)
+ // Align the data on a cache line boundary.
+ alignas(64)
#endif
std::initializer_list<Entry> data_;
bool is_sorted_;
++++++ chromium-129.0.6668.89.tar.xz -> chromium-130.0.6723.58.tar.xz ++++++
/work/SRC/openSUSE:Factory/chromium/chromium-129.0.6668.89.tar.xz
/work/SRC/openSUSE:Factory/.chromium.new.19354/chromium-130.0.6723.58.tar.xz
differ: char 15, line 1
++++++ exclude_ymp.patch ++++++
--- /var/tmp/diff_new_pack.Z7lJPl/_old 2024-10-18 15:54:30.916394618 +0200
+++ /var/tmp/diff_new_pack.Z7lJPl/_new 2024-10-18 15:54:30.944395791 +0200
@@ -1,11 +1,11 @@
--- a/third_party/blink/common/mime_util/mime_util.cc 2013-08-25
10:12:05.428599992 +0200
+++ b/third_party/blink/common/mime_util/mime_util.cc 2013-08-25
10:12:05.428599992 +0200
@@ -79,6 +79,7 @@
- "text/x-csv",
- "text/x-vcf",
- "text/rtf",
-+ "text/x-suse-ymp",
- "text/comma-separated-values",
- "text/csv",
- "text/tab-separated-values",
+ "text/x-csv",
+ "text/x-vcf",
+ "text/rtf",
++ "text/x-suse-ymp",
+ "text/comma-separated-values",
+ "text/csv",
+ "text/tab-separated-values",
