~chromium-team/chromium-browser/focal-stable : changes

~chromium-team/chromium-browser/focal-stable » Changes to debian/rules from revision 1550

From Revision 1550 to 1356

Rev	Summary	Authors	Date
1504	* Upstream release: 75.0.3770.80 * Upstream release: 75.0.3770.80 - CVE-2019-5828: Use after free in ServiceWorker. - CVE-2019-5829: Use after free in Download Manager. - CVE-2019-5830: Incorrectly credentialed requests in CORS. - CVE-2019-5831: Incorrect map processing in V8. - CVE-2019-5832: Incorrect CORS handling in XHR. - CVE-2019-5833: Inconsistent security UI placement. - CVE-2019-5834: URL spoof in Omnibox on iOS. - CVE-2019-5835: Out of bounds read in Swiftshader. - CVE-2019-5836: Heap buffer overflow in Angle. - CVE-2019-5837: Cross-origin resources size disclosure in Appcache. - CVE-2019-5838: Overly permissive tab access in Extensions. - CVE-2019-5839: Incorrect handling of certain code points in Blink. - CVE-2019-5840: Popup blocker bypass. * Install the chromium snap in place of the debian packages, and make the wrapper script rename the desktop file in well-known desktop launchers (currently GNOME Shell and Unity)	Olivier Tilloy	5 years ago
1495	* debian/control: remove libgnome-keyring-dev build dependen... * debian/control: remove libgnome-keyring-dev build dependency (LP: #1828192) * debian/rules: build with use_gnome_keyring=false * debian/known_gn_gen_args-*: change use_gnome_keyring build flag to false	Olivier Tilloy	5 years ago
1487	* Upstream release: 74.0.3729.108 * Upstream release: 74.0.3729.108 - CVE-2019-5805: Use after free in PDFium. - CVE-2019-5806: Integer overflow in Angle. - CVE-2019-5807: Memory corruption in V8. - CVE-2019-5808: Use after free in Blink. - CVE-2019-5809: Use after free in Blink. - CVE-2019-5810: User information disclosure in Autofill. - CVE-2019-5811: CORS bypass in Blink. - CVE-2019-5812: URL spoof in Omnibox on iOS. - CVE-2019-5813: Out of bounds read in V8. - CVE-2019-5814: CORS bypass in Blink. - CVE-2019-5815: Heap buffer overflow in Blink. - CVE-2019-5816: Exploit persistence extension on Android. - CVE-2019-5817: Heap buffer overflow in Angle on Windows. - CVE-2019-5818: Uninitialized value in media reader. - CVE-2019-5819: Incorrect escaping in developer tools. - CVE-2019-5820: Integer overflow in PDFium. - CVE-2019-5821: Integer overflow in PDFium. - CVE-2019-5822: CORS bypass in download manager. - CVE-2019-5823: Forced navigation from service worker. * debian/patches/add-missing-limits-include.patch: removed, no longer needed * debian/patches/default-allocator: refreshed * debian/patches/fix-build-with-libstdc++.patch: removed, no longer needed * debian/patches/fix-extra-arflags.patch: refreshed * debian/patches/fix-sqrtf-missing-definition.patch: removed, no longer needed * debian/patches/gn-no-last-commit-position.patch: refreshed * debian/patches/revert-Xclang-instcombine-lower-dbg-declare.patch: refreshed * debian/patches/search-credit.patch: refreshed * debian/patches/set-rpath-on-chromium-executables.patch: refreshed * debian/patches/title-bar-default-system.patch-v35: refreshed * debian/patches/widevine-enable-version-string.patch: refreshed	Olivier Tilloy	5 years ago
1477	* Upstream release: 73.0.3683.75 * Upstream release: 73.0.3683.75 - CVE-2019-5787: Use after free in Canvas. - CVE-2019-5788: Use after free in FileAPI. - CVE-2019-5789: Use after free in WebMIDI. - CVE-2019-5790: Heap buffer overflow in V8. - CVE-2019-5791: Type confusion in V8. - CVE-2019-5792: Integer overflow in PDFium. - CVE-2019-5793: Excessive permissions for private API in Extensions. - CVE-2019-5794: Security UI spoofing. - CVE-2019-5795: Integer overflow in PDFium. - CVE-2019-5796: Race condition in Extensions. - CVE-2019-5797: Race condition in DOMStorage. - CVE-2019-5798: Out of bounds read in Skia. - CVE-2019-5799: CSP bypass with blob URL. - CVE-2019-5800: CSP bypass with blob URL. - CVE-2019-5801: Incorrect Omnibox display on iOS. - CVE-2019-5802: Security UI spoofing. - CVE-2019-5803: CSP bypass with Javascript URLs'. - CVE-2019-5804: Command line command injection on Windows. * debian/patches/add-missing-cstring-include.patch: removed, no longer needed * debian/patches/additional-search-engines.patch: removed, no longer needed * debian/patches/configuration-directory.patch: refreshed * debian/patches/disable-sse2: refreshed * debian/patches/fix-extra-arflags.patch: refreshed * debian/patches/fix-ffmpeg-ia32-build.patch: refreshed * debian/patches/gn-no-last-commit-position.patch: refreshed * debian/patches/revert-Xclang-instcombine-lower-dbg-declare.patch: refreshed * debian/patches/search-credit.patch: updated * debian/patches/set-rpath-on-chromium-executables.patch: refreshed * debian/patches/title-bar-default-system.patch-v35: refreshed * debian/patches/widevine-enable-version-string.patch: refreshed	Olivier Tilloy	6 years ago
1465	* debian/rules: build with use_custom_libcxx=false because t... * debian/rules: build with use_custom_libcxx=false because the custom libc++ embedded in chromium 72's tarball is too old for the version of clang in disco (8.0.0 RC2, see http://lists.llvm.org/pipermail/llvm-dev/2019-February/130174.html)	Olivier Tilloy	6 years ago
1463	* debian/rules: install the chromedriver executable in /usr/... * debian/rules: install the chromedriver executable in /usr/bin, where python{,3}-selenium and other packages expect it by default (LP: #1667208) * debian/control: make chromium-chromedriver provide "chromium-driver" * debian/chromium-chromedriver.{dirs,install}: removed, no longer needed * debian/tests/{chromium-version,html5test}: remove custom driver path	Olivier Tilloy	6 years ago
1462	* debian/rules: restore old keepalive snippet to prevent bui... * debian/rules: restore old keepalive snippet to prevent builds from timing out during the link phase (this happens often enough on armhf, Launchpad builders have an inactivity timeout of 150 minutes)	Olivier Tilloy	6 years ago
1439	* Upstream release: 70.0.3538.67 * Upstream release: 70.0.3538.67 - CVE-2018-17462: Sandbox escape in AppCache. - CVE-2018-17463: Remote code execution in V8. - CVE to be assigned: Heap buffer overflow in Little CMS in PDFium. - CVE-2018-17464: URL spoof in Omnibox. - CVE-2018-17465: Use after free in V8. - CVE-2018-17466: Memory corruption in Angle. - CVE-2018-17467: URL spoof in Omnibox. - CVE-2018-17468: Cross-origin URL disclosure in Blink. - CVE-2018-17469: Heap buffer overflow in PDFium. - CVE-2018-17470: Memory corruption in GPU Internals. - CVE-2018-17471: Security UI occlusion in full screen mode. - CVE-2018-17472: iframe sandbox escape on iOS. - CVE-2018-17473: URL spoof in Omnibox. - CVE-2018-17474: Use after free in Blink. - CVE-2018-17475: URL spoof in Omnibox. - CVE-2018-17476: Security UI occlusion in full screen mode. - CVE-2018-5179: Lack of limits on update() in ServiceWorker. - CVE-2018-17477: UI spoof in Extensions. * debian/rules: - remove enable_google_now build flag - remove use_gtk3 build flag * debian/patches/arm-neon.patch: refreshed * debian/patches/chromium_useragent.patch: refreshed * debian/patches/configuration-directory.patch: refreshed * debian/patches/define__libc_malloc.patch: refreshed * debian/patches/disable-sse2: refreshed * debian/patches/fix-extra-arflags.patch: refreshed * debian/patches/revert-Xclang-instcombine-lower-dbg-declare.patch: refreshed * debian/patches/search-credit.patch: refreshed * debian/patches/set-rpath-on-chromium-executables.patch: refreshed * debian/patches/suppress-newer-clang-warning-flags.patch: refreshed * debian/patches/swiftshader-default-visibility.patch: replaced by debian/patches/swiftshader-upstream-entry-points.patch * debian/patches/widevine-other-locations: refreshed * debian/known_gn_gen_args-*: - remove enable_google_now build flag - remove use_gtk3 build flag	Olivier Tilloy	6 years ago
1434	* debian/rules: exclude more build artifacts from the binary... * debian/rules: exclude more build artifacts from the binary package	Olivier Tilloy	6 years ago
1425	* Upstream release: 68.0.3440.75 * Upstream release: 68.0.3440.75 - CVE-2018-6153: Stack buffer overflow in Skia. - CVE-2018-6154: Heap buffer overflow in WebGL. - CVE-2018-6155: Use after free in WebRTC. - CVE-2018-6156: Heap buffer overflow in WebRTC. - CVE-2018-6157: Type confusion in WebRTC. - CVE-2018-6158: Use after free in Blink. - CVE-2018-6159: Same origin policy bypass in ServiceWorker. - CVE-2018-6160: URL spoof in Chrome on iOS. - CVE-2018-6161: Same origin policy bypass in WebAudio. - CVE-2018-6162: Heap buffer overflow in WebGL. - CVE-2018-6163: URL spoof in Omnibox. - CVE-2018-6164: Same origin policy bypass in ServiceWorker. - CVE-2018-6165: URL spoof in Omnibox. - CVE-2018-6166: URL spoof in Omnibox. - CVE-2018-6167: URL spoof in Omnibox. - CVE-2018-6168: CORS bypass in Blink. - CVE-2018-6169: Permissions bypass in extension installation. - CVE-2018-6170: Type confusion in PDFium. - CVE-2018-6171: Use after free in WebBluetooth. - CVE-2018-6172: URL spoof in Omnibox. - CVE-2018-6173: URL spoof in Omnibox. - CVE-2018-6174: Integer overflow in SwiftShader. - CVE-2018-6175: URL spoof in Omnibox. - CVE-2018-6176: Local user privilege escalation in Extensions. - CVE-2018-6177: Cross origin information leak in Blink. - CVE-2018-6178: UI spoof in Extensions. - CVE-2018-6179: Local file information leak in Extensions. - CVE-2018-6044: Request privilege escalation in Extensions. - CVE-2018-4117: Cross origin information leak in Blink. * debian/rules: - remove enable_webrtc build flag - make ninja less verbose to reduce build log size * debian/chromium-browser.sh.in: parse flashplugin manifest with Python 3 (LP: #1772448) * debian/patches/add-missing-base-namespace.patch: added * debian/patches/chromium_useragent.patch: refreshed * debian/patches/configuration-directory.patch: refreshed * debian/patches/disable-sse2: refreshed * debian/patches/enable-chromecast-by-default.patch: refreshed * debian/patches/fix-crashpad-linux-compat.patch: removed, no longer needed * debian/patches/fix-extra-arflags.patch: updated * debian/patches/fix-ffmpeg-ia32-build.patch: updated * debian/patches/last-commit-position: refreshed * debian/patches/revert-clang-nostdlib++.patch: removed, no longer needed * debian/patches/revert-Xclang-instcombine-lower-dbg-declare.patch: updated * debian/patches/search-credit.patch: refreshed * debian/patches/set-rpath-on-chromium-executables.patch: refreshed * debian/patches/suppress-newer-clang-warning-flags.patch: updated * debian/patches/title-bar-default-system.patch-v35: refreshed * debian/patches/touch-v35: refreshed * debian/known_gn_gen_args-*: remove enable_webrtc build flag	Olivier Tilloy	6 years ago
1421	* Upstream release: 67.0.3396.62 * Upstream release: 67.0.3396.62 - CVE-2018-6123: Use after free in Blink. - CVE-2018-6124: Type confusion in Blink. - CVE-2018-6125: Overly permissive policy in WebUSB. - CVE-2018-6126: Heap buffer overflow in Skia. - CVE-2018-6127: Use after free in indexedDB. - CVE-2018-6128: uXSS in Chrome on iOS. - CVE-2018-6129: Out of bounds memory access in WebRTC. - CVE-2018-6130: Out of bounds memory access in WebRTC. - CVE-2018-6131: Incorrect mutability protection in WebAssembly. - CVE-2018-6132: Use of uninitialized memory in WebRTC. - CVE-2018-6133: URL spoof in Omnibox. - CVE-2018-6134: Referrer Policy bypass in Blink. - CVE-2018-6135: UI spoofing in Blink. - CVE-2018-6136: Out of bounds memory access in V8. - CVE-2018-6137: Leak of visited status of page in Blink. - CVE-2018-6138: Overly permissive policy in Extensions. - CVE-2018-6139: Restrictions bypass in the debugger extension API. - CVE-2018-6140: Restrictions bypass in the debugger extension API. - CVE-2018-6141: Heap buffer overflow in Skia. - CVE-2018-6142: Out of bounds memory access in V8. - CVE-2018-6143: Out of bounds memory access in V8. - CVE-2018-6144: Out of bounds memory access in PDFium. - CVE-2018-6145: Incorrect escaping of MathML in Blink. - CVE-2018-6147: Password fields not taking advantage of OS protections in Views. * debian/patches/additional-search-engines.patch: refreshed * debian/patches/configuration-directory.patch: refreshed * debian/patches/default-allocator: refreshed * debian/patches/disable-sse2: updated * debian/patches/fix-crashpad-linux-compat.patch: added * debian/patches/fix-extra-arflags.patch: added * debian/patches/revert-clang-nostdlib++.patch: refreshed * debian/patches/revert-Xclang-instcombine-lower-dbg-declare.patch: refreshed * debian/patches/search-credit.patch: refreshed * debian/patches/set-rpath-on-chromium-executables.patch: refreshed * debian/patches/skia-disable-neon.patch: removed, no longer needed * debian/patches/skia-undef-HWCAP_CRC32.patch: refreshed * debian/patches/suppress-newer-clang-warning-flags.patch: updated * debian/patches/widevine-allow-enable.patch: added * debian/patches/widevine-other-locations: updated	Olivier Tilloy	6 years ago
1420	* debian/rules: stop installing an outdated chromium-browser... * debian/rules: stop installing an outdated chromium-browser.svg icon (LP: #1771847) * debian/chromium-browser.svg: removed (outdated)	Olivier Tilloy	6 years ago
1411	* debian/rules: do not build with use_custom_libcxx=false af... * debian/rules: do not build with use_custom_libcxx=false after all, this didn't work on xenial and older because the system libstdc++ was too old, and we'd rather stick to the same build options on all supported releases, where possible * debian/patches/libcxxabi-arm-ehabi-fix.patch: added (LP: #1768653)	Olivier Tilloy	6 years ago
1407	* Upstream release: 66.0.3359.117 * Upstream release: 66.0.3359.117 - CVE-2018-6085: Use after free in Disk Cache. - CVE-2018-6086: Use after free in Disk Cache. - CVE-2018-6087: Use after free in WebAssembly. - CVE-2018-6088: Use after free in PDFium. - CVE-2018-6089: Same origin policy bypass in Service Worker. - CVE-2018-6090: Heap buffer overflow in Skia. - CVE-2018-6091: Incorrect handling of plug-ins by Service Worker. - CVE-2018-6092: Integer overflow in WebAssembly. - CVE-2018-6093: Same origin bypass in Service Worker. - CVE-2018-6094: Exploit hardening regression in Oilpan. - CVE-2018-6095: Lack of meaningful user interaction requirement before file upload. - CVE-2018-6096: Fullscreen UI spoof. - CVE-2018-6097: Fullscreen UI spoof. - CVE-2018-6098: URL spoof in Omnibox. - CVE-2018-6099: CORS bypass in ServiceWorker. - CVE-2018-6100: URL spoof in Omnibox. - CVE-2018-6101: Insufficient protection of remote debugging prototol in DevTools. - CVE-2018-6102: URL spoof in Omnibox. - CVE-2018-6103: UI spoof in Permissions. - CVE-2018-6104: URL spoof in Omnibox. - CVE-2018-6105: URL spoof in Omnibox. - CVE-2018-6106: Incorrect handling of promises in V8. - CVE-2018-6107: URL spoof in Omnibox. - CVE-2018-6108: URL spoof in Omnibox. - CVE-2018-6109: Incorrect handling of files by FileAPI. - CVE-2018-6110: Incorrect handling of plaintext files via file://. - CVE-2018-6111: Heap-use-after-free in DevTools. - CVE-2018-6112: Incorrect URL handling in DevTools. - CVE-2018-6113: URL spoof in Navigation. - CVE-2018-6114: CSP bypass. - CVE-2018-6115: SmartScreen bypass in downloads. - CVE-2018-6116: Incorrect low memory handling in WebAssembly. - CVE-2018-6117: Confusing autofill settings. - CVE-2018-6084: Incorrect use of Distributed Objects in Google Software Updater on MacOS. * debian/rules: - remove use_system_sqlite build flag - bootstrap the build (build gn) with clang - build with use_custom_libcxx=false to force the use of the system libstdc++ - force rtc_use_h264=true (LP: #1763662) * debian/patches/add-missing-blink-tools.patch: added * debian/patches/configuration-directory.patch: refreshed * debian/patches/default-allocator: refreshed * debian/patches/disable-sse2: refreshed * debian/patches/last-commit-position: refreshed * debian/patches/revert-clang-nostdlib++.patch: refreshed * debian/patches/revert-Xclang-instcombine-lower-dbg-declare.patch: refreshed * debian/patches/search-credit.patch: refreshed * debian/patches/set-rpath-on-chromium-executables.patch: refreshed * debian/patches/skia-disable-neon.patch: added * debian/patches/suppress-newer-clang-warning-flags.patch: updated * debian/patches/touch-v35: refreshed * debian/patches/widevine-other-locations: refreshed * debian/known_gn_gen_args-*: remove use_system_sqlite build flag	Olivier Tilloy	6 years ago
1403	* Upstream release: 65.0.3325.146 * Upstream release: 65.0.3325.146 - CVE-2018-6058: Use after free in Flash. - CVE-2018-6059: Use after free in Flash. - CVE-2018-6060: Use after free in Blink. - CVE-2018-6061: Race condition in V8. - CVE-2018-6062: Heap buffer overflow in Skia. - CVE-2018-6057: Incorrect permissions on shared memory. - CVE-2018-6063: Incorrect permissions on shared memory. - CVE-2018-6064: Type confusion in V8. - CVE-2018-6065: Integer overflow in V8. - CVE-2018-6066: Same Origin Bypass via canvas. - CVE-2018-6067: Buffer overflow in Skia. - CVE-2018-6068: Object lifecycle issues in Chrome Custom Tab. - CVE-2018-6069: Stack buffer overflow in Skia. - CVE-2018-6070: CSP bypass through extensions. - CVE-2018-6071: Heap bufffer overflow in Skia. - CVE-2018-6072: Integer overflow in PDFium. - CVE-2018-6073: Heap bufffer overflow in WebGL. - CVE-2018-6074: Mark-of-the-Web bypass. - CVE-2018-6075: Overly permissive cross origin downloads. - CVE-2018-6076: Incorrect handling of URL fragment identifiers in Blink. - CVE-2018-6077: Timing attack using SVG filters. - CVE-2018-6078: URL Spoof in OmniBox. - CVE-2018-6079: Information disclosure via texture data in WebGL. - CVE-2018-6080: Information disclosure in IPC call. - CVE-2018-6081: XSS in interstitials. - CVE-2018-6082: Circumvention of port blocking. - CVE-2018-6083: Incorrect processing of AppManifests. * debian/rules: remove use_gconf build flag * debian/patches/3-chrome-xid.patch: removed, unused * debian/patches/5-desktop-integration-settings.patch: removed, unused * debian/patches/6-passwordless-install-support.patch: removed, unused * debian/patches/7-npapi-permission-not-defaults-to-unauthorized.patch: removed, unused * debian/patches/additional-search-engines.patch: refreshed * debian/patches/breakpad: removed, unused * debian/patches/cups-include-deprecated-ppd: removed, unused * debian/patches/define__libc_malloc.patch: refreshed * debian/patches/disable-sse2: updated * debian/patches/display-scaling-default-value: removed, unused * debian/patches/do-not-use-bundled-clang: removed, unused * debian/patches/enable-chromecast-by-default.patch: refreshed * debian/patches/enable_vaapi_on_linux.diff: removed, unused * debian/patches/flash-redirection: removed, unused * debian/patches/format-flag.patch: removed, unused * debian/patches/gpu_default_disabled: removed, unused * debian/patches/gsettings-display-scaling: removed, unused * debian/patches/ld-memory-32bit.patch: removed, unused * debian/patches/linker-asneeded-bug.patch: removed, unused * debian/patches/lp-translations-paths: removed, unused * debian/patches/mir-ozone-module: removed, unused * debian/patches/mir-support: removed, unused * debian/patches/revert-Xclang-instcombine-lower-dbg-declare.patch: refreshed * debian/patches/search-credit.patch: refreshed * debian/patches/set-rpath-on-chromium-executables.patch: refreshed * debian/patches/suppress-newer-clang-warning-flags.patch: refreshed * debian/patches/title-bar-default-system.patch-v35: refreshed * debian/patches/wayland-ozone: removed, unused * debian/patches/xdg-settings-multiexec-desktopfiles.patch: removed, unused * debian/known_gn_gen_args-*: remove use_gconf build flag	Olivier Tilloy	7 years ago
1396	* Upstream release: 64.0.3282.119 * Upstream release: 64.0.3282.119 - CVE-2018-6031: Use after free in PDFium. - CVE-2018-6032: Same origin bypass in Shared Worker. - CVE-2018-6033: Race when opening downloaded files. - CVE-2018-6034: Integer overflow in Blink. - CVE-2018-6035: Insufficient isolation of devtools from extensions. - CVE-2018-6036: Integer underflow in WebAssembly. - CVE-2018-6037: Insufficient user gesture requirements in autofill. - CVE-2018-6038: Heap buffer overflow in WebGL. - CVE-2018-6039: XSS in DevTools. - CVE-2018-6040: Content security policy bypass. - CVE-2018-6041: URL spoof in Navigation. - CVE-2018-6042: URL spoof in OmniBox. - CVE-2018-6043: Insufficient escaping with external URL handlers. - CVE-2018-6045: Insufficient isolation of devtools from extensions. - CVE-2018-6046: Insufficient isolation of devtools from extensions. - CVE-2018-6047: Cross origin URL leak in WebGL. - CVE-2018-6048: Referrer policy bypass in Blink. - CVE-2017-15420: URL spoofing in Omnibox. - CVE-2018-6049: UI spoof in Permissions. - CVE-2018-6050: URL spoof in OmniBox. - CVE-2018-6051: Referrer leak in XSS Auditor. - CVE-2018-6052: Incomplete no-referrer policy implementation. - CVE-2018-6053: Leak of page thumbnails in New Tab Page. - CVE-2018-6054: Use after free in WebUI. * debian/control: update reference URL for chromedriver * debian/rules: - remove enable_hotwording build flag - exclude build artifacts from the binary package (LP: #1742653) * debian/patches/add-missing-cstddef-include.patch: added * debian/patches/configuration-directory.patch: refreshed * debian/patches/disable-sse2: refreshed * debian/patches/enable-chromecast-by-default.patch: refreshed * debian/patches/fix-ffmpeg-ia32-build.patch: added * debian/patches/last-commit-position: refreshed * debian/patches/no-xlocale-header.patch: removed, no longer needed * debian/patches/revert-clang-nostdlib++.patch: updated * debian/patches/revert-Xclang-instcombine-lower-dbg-declare.patch: refreshed * debian/patches/search-credit.patch: refreshed * debian/patches/set-rpath-on-chromium-executables.patch: refreshed * debian/patches/suppress-newer-clang-warning-flags.patch: updated * debian/patches/title-bar-default-system.patch-v35: refreshed * debian/patches/touch-v35: refreshed * debian/patches/widevine-other-locations: updated (LP: #1738149) * debian/known_gn_gen_args-*: remove enable_hotwording build flag	Olivier Tilloy	7 years ago
1394	* Upstream release: 63.0.3239.132 * Upstream release: 63.0.3239.132 * debian/rules: do not install files used for building only (LP: #1742653)	Olivier Tilloy	7 years ago
1390	* Upstream release: 63.0.3239.84 * Upstream release: 63.0.3239.84 - CVE-2017-15407: Out of bounds write in QUIC. - CVE-2017-15408: Heap buffer overflow in PDFium. - CVE-2017-15409: Out of bounds write in Skia. - CVE-2017-15410: Use after free in PDFium. - CVE-2017-15411: Use after free in PDFium. - CVE-2017-15412: Use after free in libXML. - CVE-2017-15413: Type confusion in WebAssembly. - CVE-2017-15415: Pointer information disclosure in IPC call. - CVE-2017-15416: Out of bounds read in Blink. - CVE-2017-15417: Cross origin information disclosure in Skia. - CVE-2017-15418: Use of uninitialized value in Skia. - CVE-2017-15419: Cross origin leak of redirect URL in Blink. - CVE-2017-15420: URL spoofing in Omnibox. - CVE-2017-15422: Integer overflow in ICU. - CVE-2017-15423: Issue with SPAKE implementation in BoringSSL. - CVE-2017-15424: URL Spoof in Omnibox. - CVE-2017-15425: URL Spoof in Omnibox. - CVE-2017-15426: URL Spoof in Omnibox. - CVE-2017-15427: Insufficient blocking of JavaScript in Omnibox. * debian/rules: - replace allow_posix_link_time_opt=false by use_lld=false, is_cfi=false and use_thin_lto=false - rename use_vulcanize GN flag to optimize_webui - generate the man page as it's not being built with chromium any longer (since commit 64b961499bebc54fe48478f5e37477252c7887fa) * debian/patches/arm-neon.patch: refreshed * debian/patches/disable-sse2: refreshed * debian/patches/fix-gn-bootstrap.patch: removed, no longer needed * debian/patches/fix_building_widevinecdm_with_chromium.patch: replaced by debian/patches/widevine-revision.patch * debian/patches/glibc-2-26-changes.patch: renamed to debian/patches/no-xlocale-header.patch and updated * debian/patches/revert-Xclang-instcombine-lower-dbg-declare.patch: added * debian/patches/search-credit.patch: refreshed * debian/patches/set-rpath-on-chromium-executables.patch: updated * debian/patches/suppress-newer-clang-warning-flags.patch: updated * debian/patches/touch-v35: refreshed * debian/patches/use-clang-versioned.patch: refreshed * debian/patches/widevine-other-locations: updated (LP: #1652110) * debian/patches/widevine-revision.patch: added (LP: #1652110)	Olivier Tilloy	7 years ago
1371	* Upstream release: 61.0.3163.79 * Upstream release: 61.0.3163.79 - CVE-2017-5111: Use after free in PDFium. - CVE-2017-5112: Heap buffer overflow in WebGL. - CVE-2017-5113: Heap buffer overflow in Skia. - CVE-2017-5114: Memory lifecycle issue in PDFium. - CVE-2017-5115: Type confusion in V8. - CVE-2017-5116: Type confusion in V8. - CVE-2017-5117: Use of uninitialized value in Skia. - CVE-2017-5118: Bypass of Content Security Policy in Blink. - CVE-2017-5119: Use of uninitialized value in Skia. - CVE-2017-5120: Potential HTTPS downgrade during redirect navigation. * debian/control: - bump Standards-Version to 4.0.0 - add build dependency on llvm * debian/rules: build with is_component_build=false, is_official_build=true, allow_posix_link_time_opt=false and fatal_linker_warnings=false * debian/patches/additional-search-engines.patch: refreshed * debian/patches/define__libc_malloc.patch: added * debian/patches/disable-sse2: refreshed * debian/patches/enable-chromecast-by-default.patch: refreshed * debian/patches/fix-compilation-for-atk.patch: added * debian/patches/fix-gn-bootstrap.patch: updated * debian/patches/fix_building_widevinecdm_with_chromium.patch: refreshed * debian/patches/make-base-numerics-build-with-gcc.patch: added * debian/patches/revert-llvm-ar.patch: removed, no longer needed * debian/patches/search-credit.patch: refreshed * debian/patches/skia-undef-HWCAP_CRC32.patch: added * debian/patches/title-bar-default-system.patch-v35: refreshed * debian/tests/chromium-version: fix test shutdown * debian/tests/html5test: - fix test shutdown - update test expectations	Olivier Tilloy	7 years ago
1356	* Upstream release: 59.0.3071.86 * Upstream release: 59.0.3071.86 - CVE-2017-5070: Type confusion in V8. - CVE-2017-5071: Out of bounds read in V8. - CVE-2017-5072: Address spoofing in Omnibox. - CVE-2017-5073: Use after free in print preview. - CVE-2017-5074: Use after free in Apps Bluetooth. - CVE-2017-5075: Information leak in CSP reporting. - CVE-2017-5086: Address spoofing in Omnibox. - CVE-2017-5076: Address spoofing in Omnibox. - CVE-2017-5077: Heap buffer overflow in Skia. - CVE-2017-5078: Possible command injection in mailto handling. - CVE-2017-5079: UI spoofing in Blink. - CVE-2017-5080: Use after free in credit card autofill. - CVE-2017-5081: Extension verification bypass. - CVE-2017-5082: Insufficient hardening in credit card editor. - CVE-2017-5083: UI spoofing in Blink. - CVE-2017-5085: Inappropriate javascript execution on WebUI pages. * debian/patches/additional-search-engines.patch: refreshed * debian/patches/chromium_useragent.patch: refreshed * debian/patches/disable-sse2: refreshed * debian/patches/enable-chromecast-by-default.patch: renamed, and really enable chromecast (LP: #1621753) * debian/patches/fix_building_widevinecdm_with_chromium.patch: refreshed * debian/patches/last-commit-position: refreshed * debian/patches/search-credit.patch: refreshed * debian/patches/series: refreshed * debian/patches/snapshot-library-link: refreshed * debian/patches/stdatomic: refreshed * debian/patches/touch-v35: refreshed * debian/patches/use-gcc-versioned: refreshed * debian/patches/fix-gn-bootstrap.patch: removed, no longer needed * debian/patches/revert-llvm-ar.patch: added * debian/patches/linux-dma-buf.patch: added * debian/control: - bump Standards-Version to 3.9.8 - remove build dependency on libgtk2.0-dev - remove build dependency on libgconf2-dev * debian/rules: - build with GTK3 by default to match upstream (https://bugs.chromium.org/p/chromium/issues/detail?id=79722) - do not build with GConf support (LP: #1669100) * debian/apport/chromium-browser.py: - fetch info about libgtk-3-0 - do not fetch GConf key values * debian/tests/: - removed stale autopkgtests - added new autopkgtests based on chromium's new headless mode debian/source/include-binaries: updated to reflect new binary data in tests	Olivier Tilloy	7 years ago

Older »