~chromium-team/chromium-browser/xenial-stable

Viewing all changes in revision 1392.

  • Committer: Olivier Tilloy
  • Date: 2019-03-12 21:09:57 UTC
  • mfrom: (1277.1.106 xenial-beta)
  • Revision ID: olivier.tilloy@canonical.com-20190312210957-nztcv2dik73fl3sf
* Upstream release: 73.0.3683.75
  - CVE-2019-5787: Use after free in Canvas.
  - CVE-2019-5788: Use after free in FileAPI.
  - CVE-2019-5789: Use after free in WebMIDI.
  - CVE-2019-5790: Heap buffer overflow in V8.
  - CVE-2019-5791: Type confusion in V8.
  - CVE-2019-5792: Integer overflow in PDFium.
  - CVE-2019-5793: Excessive permissions for private API in Extensions.
  - CVE-2019-5794: Security UI spoofing.
  - CVE-2019-5795: Integer overflow in PDFium.
  - CVE-2019-5796: Race condition in Extensions.
  - CVE-2019-5797: Race condition in DOMStorage.
  - CVE-2019-5798: Out of bounds read in Skia.
  - CVE-2019-5799: CSP bypass with blob URL.
  - CVE-2019-5800: CSP bypass with blob URL.
  - CVE-2019-5801: Incorrect Omnibox display on iOS.
  - CVE-2019-5802: Security UI spoofing.
  - CVE-2019-5803: CSP bypass with Javascript URLs'.
  - CVE-2019-5804: Command line command injection on Windows.
* debian/patches/additional-search-engines.patch: removed, no longer needed
* debian/patches/closure-compiler-java-no-client-vm.patch: refreshed
* debian/patches/configuration-directory.patch: refreshed
* debian/patches/constexpr-errors-with-old-clang.patch: added
* debian/patches/disable-sse2: refreshed
* debian/patches/fix-extra-arflags.patch: refreshed
* debian/patches/fix-ffmpeg-ia32-build.patch: refreshed
* debian/patches/fix-ptrace-header-include.patch: added
* debian/patches/gn-no-last-commit-position.patch: refreshed
* debian/patches/no-new-ninja-flag.patch: refreshed
* debian/patches/revert-Xclang-instcombine-lower-dbg-declare.patch: refreshed
* debian/patches/search-credit.patch: updated
* debian/patches/set-rpath-on-chromium-executables.patch: refreshed
* debian/patches/suppress-newer-clang-warning-flags.patch: updated
* debian/patches/title-bar-default-system.patch-v35: refreshed
* debian/patches/use-clang-versioned.patch: refreshed
* debian/patches/widevine-enable-version-string.patch: refreshed

expand all expand all

Show diffs side-by-side

added added

removed removed

Lines of Context: