Hello community, here is the log from the commit of package chromium for openSUSE:Factory checked in at 2016-05-29 03:13:16 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/chromium (Old) and /work/SRC/openSUSE:Factory/.chromium.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "chromium" Changes: -------- --- /work/SRC/openSUSE:Factory/chromium/chromium.changes 2016-05-19 12:15:33.000000000 +0200 +++ /work/SRC/openSUSE:Factory/.chromium.new/chromium.changes 2016-05-29 03:14:10.000000000 +0200 @@ -1,0 +2,33 @@ +Thu May 26 04:09:46 UTC 2016 - [email protected] + +- Update to Chromium 51.0.2704.63 [boo#981886] + * Security fixes: + - CVE-2016-1672: Cross-origin bypass in extension bindings + - CVE-2016-1673: Cross-origin bypass in Blink + - CVE-2016-1674: Cross-origin bypass in extensions + - CVE-2016-1675: Cross-origin bypass in Blink + - CVE-2016-1676: Cross-origin bypass in extension bindings + - CVE-2016-1677: Type confusion in V8 + - CVE-2016-1678: Heap overflow in V8 + - CVE-2016-1679: Heap use-after-free in V8 bindings + - CVE-2016-1680: Heap use-after-free in Skia + - CVE-2016-1681: Heap overflow in PDFium + - CVE-2016-1682: CSP bypass for ServiceWorker + - CVE-2016-1683: Out-of-bounds access in libxslt + - CVE-2016-1684: Integer overflow in libxslt + - CVE-2016-1685: Out-of-bounds read in PDFium + - CVE-2016-1686: Out-of-bounds read in PDFium + - CVE-2016-1687: Information leak in extensions + - CVE-2016-1688: Out-of-bounds read in V8 + - CVE-2016-1689: Heap buffer overflow in media + - CVE-2016-1690: Heap use-after-free in Autofill + - CVE-2016-1691: Heap buffer-overflow in Skia + - CVE-2016-1692: Limited cross-origin bypass in ServiceWorker + - CVE-2016-1693: HTTP Download of Software Removal Tool + - CVE-2016-1694: HPKP pins removed on cache clearance + - CVE-2016-1695: Various fixes from internal audits, fuzzing + and other initiatives +- drop chromium-50.0.2661.75-export_blink_Platform_symbols_in_shared_library_builds.patch + now upstream + +------------------------------------------------------------------- Old: ---- chromium-50.0.2661.102.tar.xz chromium-50.0.2661.75-export_blink_Platform_symbols_in_shared_library_builds.patch New: ---- chromium-51.0.2704.63.tar.xz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ chromium.spec ++++++ --- /var/tmp/diff_new_pack.ddPk6Q/_old 2016-05-29 03:14:26.000000000 +0200 +++ /var/tmp/diff_new_pack.ddPk6Q/_new 2016-05-29 03:14:26.000000000 +0200 @@ -18,7 +18,7 @@ %define chromium_no_dlopen 1 Name: chromium -Version: 50.0.2661.102 +Version: 51.0.2704.63 Release: 0 Summary: Google's opens source browser project License: BSD-3-Clause and LGPL-2.1+ @@ -58,7 +58,6 @@ Patch12: fix_building_widevinecdm_with_chromium.patch # PATCH-FIX-OPENSUSE fix_network_api_crash.patch - Fix crash in network API, e.g. when using chromecast extension Patch14: fix_network_api_crash.patch -Patch15: chromium-50.0.2661.75-export_blink_Platform_symbols_in_shared_library_builds.patch # archlinux arm enhancement patches Patch100: arm-webrtc-fix.patch Patch101: chromium-arm-r0.patch @@ -253,7 +252,6 @@ %patch11 -p1 %patch12 -p1 %patch14 -%patch15 -p1 #Upstream fixes ++++++ chromium-50.0.2661.102.tar.xz -> chromium-51.0.2704.63.tar.xz ++++++ /work/SRC/openSUSE:Factory/chromium/chromium-50.0.2661.102.tar.xz /work/SRC/openSUSE:Factory/.chromium.new/chromium-51.0.2704.63.tar.xz differ: char 26, line 1 ++++++ fix_building_widevinecdm_with_chromium.patch ++++++ --- /var/tmp/diff_new_pack.ddPk6Q/_old 2016-05-29 03:14:26.000000000 +0200 +++ /var/tmp/diff_new_pack.ddPk6Q/_new 2016-05-29 03:14:26.000000000 +0200 @@ -1,16 +1,9 @@ -Index: beta.wily/chrome/common/chrome_content_client.cc -=================================================================== ---- beta.wily.orig/chrome/common/chrome_content_client.cc -+++ beta.wily/chrome/common/chrome_content_client.cc -@@ -158,10 +158,7 @@ void ComputeBuiltInPlugins(std::vector<c - widevine_cdm.is_out_of_process = true; - widevine_cdm.path = path; - widevine_cdm.name = kWidevineCdmDisplayName; -- widevine_cdm.description = kWidevineCdmDescription + -- std::string(" (version: ") + -- WIDEVINE_CDM_VERSION_STRING + ")"; -- widevine_cdm.version = WIDEVINE_CDM_VERSION_STRING; -+ widevine_cdm.description = kWidevineCdmDescription; - content::WebPluginMimeType widevine_cdm_mime_type( - kWidevineCdmPluginMimeType, - kWidevineCdmPluginExtension, +--- chromium-48.0.2564.82.orig/third_party/widevine/cdm/stub/widevine_cdm_version.h 2016-01-14 01:05:17.000000000 +0200 ++++ chromium-48.0.2564.82/third_party/widevine/cdm/stub/widevine_cdm_version.h 2016-01-21 19:18:51.287978456 +0200 +@@ -12,4 +12,6 @@ + + #define WIDEVINE_CDM_AVAILABLE + ++#define WIDEVINE_CDM_VERSION_STRING "@WIDEVINE_VERSION@" ++ + #endif // WIDEVINE_CDM_VERSION_H_
