Branch: refs/heads/release-15.09
Home: https://github.com/NixOS/nixpkgs
Commit: a888bbacb1d37c800b183fad1e721da31206864b
https://github.com/NixOS/nixpkgs/commit/a888bbacb1d37c800b183fad1e721da31206864b
Author: Scott R. Parish <[email protected]>
Date: 2016-06-20 (Mon, 20 Jun 2016)
Changed paths:
M pkgs/applications/networking/browsers/chromium/common.nix
M pkgs/applications/networking/browsers/chromium/upstream-info.nix
Log Message:
-----------
chromium: Update to latest stable, beta, and dev channels
stable 51.0.2704.63 => 51.0.2704.103
beta 51.0.2704.63 => 52.0.2743.41
dev 52.0.2743.10 => 53.0.2767.4
This addresses 15 security fixes, including:
* High CVE-2015-1696: Cross-origin bypass in Extension bindings. Credit to
anonymous.
* High CVE-2015-1697: Cross-origin bypass in Blink. Credit to Mariusz
Mlynski.
* Medium CVE-2016-1698: Information leak in Extension bindings. Credit to
Rob Wu.
* Medium CVE-2016-1699: Parameter sanitization failure in DevTools. Credit
to Gregory Panakkal.
* Medium CVE-2016-1700: Use-after-free in Extensions. Credit to Rob Wu.
* Medium CVE-2016-1701: Use-after-free in Autofill. Credit to Rob Wu.
* Medium CVE-2016-1702: Out-of-bounds read in Skia. Credit to cloudfuzzer.
See: http://googlechromereleases.blogspot.com/2016/06/stable-channel-update.html
(cherry picked from commit 1f1f0f049b229bfe3a8be11fe4b964d33100c7e4)
Reason: 18 Security fixes for the stable channel.
_______________________________________________
nix-commits mailing list
[email protected]
http://lists.science.uu.nl/mailman/listinfo/nix-commits
