-
Committer:
Chad MILLER
-
Date:
2017-03-17 18:40:04 UTC
-
mfrom:
(1334.1.12 zesty-working)
-
Revision ID:
chad.miller@canonical.com-20170317184004-k8egg6ml6vpot73j
* Upstream beta: 58.0.3029.19
* debian/patches/screen_capturer: applied by upstream.
* debian/patches/gtk-ui-stdmove: applied by upstream.
* Upstream release: 57.0.2987.98.
- CVE-2017-5030: Memory corruption in V8.
- CVE-2017-5031: Use after free in ANGLE.
- CVE-2017-5032: Out of bounds write in PDFium.
- CVE-2017-5029: Integer overflow in libxslt.
- CVE-2017-5034: Use after free in PDFium.
- CVE-2017-5035: Incorrect security UI in Omnibox.
- CVE-2017-5036: Use after free in PDFium.
- CVE-2017-5037: Multiple out of bounds writes in ChunkDemuxer.
- CVE-2017-5039: Use after free in PDFium.
- CVE-2017-5040: Information disclosure in V8.
- CVE-2017-5041: Address spoofing in Omnibox.
- CVE-2017-5033: Bypass of Content Security Policy in Blink.
- CVE-2017-5042: Incorrect handling of cookies in Cast.
- CVE-2017-5038: Use after free in GuestView.
- CVE-2017-5043: Use after free in GuestView.
- CVE-2017-5044: Heap overflow in Skia.
- CVE-2017-5045: Information disclosure in XSS Auditor.
- CVE-2017-5046: Information disclosure in Blink.
* debian/rules: Fix armhf float ABI and remove unnecessary envvars.
(LP: #1673276)
* debian/rules, debian/control: Use clang.
* debian/control: Drop binary arch "any" and explicitly list four.
* debian/patches/arm64-support: arm64 gcc needs toolchain information.
* debian/patches/memory-free-assertion-failure: discover memory management
assertion failures.
* debian/rules: Avoid field trial experiments to get stable code.
(closes: LP#1667125)
* debian/patches/enable-chromecast-by-default: (LP: #1621753)
* debian/rules: no longer use gconf. (LP: #1669100)