Re: [blfs-book] [BLFS Trac] #10495: chromium-67.0.3396.79

2018-06-13 Thread BLFS Trac via blfs-book 
#10495: chromium-67.0.3396.79
--+
 Reporter:  bdubbs@…  |   Owner:  blfs-book
 Type:  defect|  Status:  new
 Priority:  high  |   Milestone:  8.3
Component:  BOOK  | Version:  SVN
 Severity:  normal|  Resolution:
 Keywords:|
--+

Comment (by ken@…):

 I started to take a look at this, to see if I could do it. The constexpr
 patch has been applied upstream. The directory third_party/WebKit/Source/
 re warning messages does not exist.

 AFAICS kerberos is only required because we force it on. I do not have
 kerberos, so tried turning it off.

 Apparently, widevine might be a reason for people to use chromium. First
 attempt to use gn failed

 {{{
 ERROR at //third_party/widevine/cdm/BUILD.gn:14:1: Assertion failed.
 assert(!enable_widevine || is_win || is_mac || is_chromecast,
 ^-
 Component updated CDM only supported on Windows and Mac for now.
 See //chrome/BUILD.gn:318:9: which caused the file to be included.
 }}}

 There is a chromium-widevine-r2.patch at Arch,
 
[https://git.archlinux.org/svntogit/packages.git/tree/trunk?h=packages/chromium]
 : with that applied gn completes, but ninja very quickly fails:

 {{{
 mkdir -p third_party/node/linux/node-linux-x64/bin &&
 > ln -s /usr/bin/node third_party/node/linux/node-linux-x64/bin/ &&
 > ninja -C out/Release chrome chrome_sandbox chromedriver
 widevinecdmadapter
 ninja: Entering directory `out/Release'
 ninja: error: unknown target 'widevinecdmadapter'
 }}}

--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

Re: [blfs-book] [BLFS Trac] #10495: chromium-67.0.3396.79 (was: chromium-66.0.3359.117)

2018-06-11 Thread BLFS Trac via blfs-book 
#10495: chromium-67.0.3396.79
--+
 Reporter:  bdubbs@…  |   Owner:  blfs-book
 Type:  defect|  Status:  new
 Priority:  high  |   Milestone:  8.3
Component:  BOOK  | Version:  SVN
 Severity:  normal|  Resolution:
 Keywords:|
--+
Changes (by ken@…):

 * priority:  normal => high
 * type:  enhancement => defect


Old description:

> New major version.

New description:

 Vulnerability fixes. While investigating a firefox vulnerability, I got to
 https://security-tracker.debian.org/tracker/CVE-2018-6126 where it turns
 out that the vulnerability was originally found in chromium (or perhaps in
 chrome).

 According to that, it is fixed in 67.0.3396.62. But Arch's security report
 says it is fixed in 67.0.3396.79.

 Looking at qtwebengine there are lots more vulnerabilities addressed by
 upstream patches to the chromium code.

 I don't know my way around chromium, but a .tar.gz for .79 is currently on
 about the fourth page of https://github.com/chromium/chromium/releases

--

--
Ticket URL: 
BLFS Trac 
Beyond Linux From Scratch
-- 
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page