openSUSE Build Service

Dominique Leuenberger (dimstar_suse) accepted request 1034894 from

Andreas Stieger (AndreasStieger) over 1 year ago (revision 357)

- Chromium 107.0.5304.110 (boo#1205221)
  * CVE-2022-3885: Use after free in V8
  * CVE-2022-3886: Use after free in Speech Recognition
  * CVE-2022-3887: Use after free in Web Workers
  * CVE-2022-3888: Use after free in WebCodecs
  * CVE-2022-3889: Type Confusion in V8
  * CVE-2022-3890: Heap buffer overflow in Crashpad

Dominique Leuenberger (dimstar_suse) accepted request 1031906 from

Andreas Stieger (AndreasStieger) over 1 year ago (revision 356)

- Chromium 107.0.5304.87 (boo#1204819)
- Chromium 107.0.5304.68 (boo#1204732)

Dominique Leuenberger (dimstar_suse) accepted request 1010169 from

Andreas Stieger (AndreasStieger) over 1 year ago (revision 355)

- Chromium 106.0.5249.119 (boo#1204223)
  * CVE-2022-3445: Use after free in Skia
  * CVE-2022-3446: Heap buffer overflow in WebSQL
  * CVE-2022-3447: Inappropriate implementation in Custom Tabs
  * CVE-2022-3448: Use after free in Permissions API
  * CVE-2022-3449: Use after free in Safe Browsing
  * CVE-2022-3450: Use after free in Peer Connection

Richard Brown (RBrownFactory) accepted request 1008596 from

Andreas Stieger (AndreasStieger) over 1 year ago (revision 354)

Dominique Leuenberger (dimstar_suse) accepted request 1007437 from

Andreas Stieger (AndreasStieger) over 1 year ago (revision 353)

Chromium 106.0.5249.91 (boo#1203808)

Dominique Leuenberger (dimstar_suse) accepted request 1003596 from

Andreas Stieger (AndreasStieger) over 1 year ago (revision 352)

chromium 105.0.5195.127 (boo#1203419)

Dominique Leuenberger (dimstar_suse) accepted request 1001897 from

Callum Farmer (gmbr3) over 1 year ago (revision 351)

boo#1203102 boo#1202964

Dominique Leuenberger (dimstar_suse) accepted request 1000605 from

Callum Farmer (gmbr3) over 1 year ago (revision 350)

Dominique Leuenberger (dimstar_suse) accepted request 998611 from

Callum Farmer (gmbr3) over 1 year ago (revision 349)

Dominique Leuenberger (dimstar_suse) accepted request 998184 from

Andreas Stieger (AndreasStieger) over 1 year ago (revision 348)

- Chromium 104.0.5112.101 (boo#1202509):
  * CVE-2022-2852: Use after free in FedCM
  * CVE-2022-2854: Use after free in SwiftShader
  * CVE-2022-2855: Use after free in ANGLE
  * CVE-2022-2857: Use after free in Blink
  * CVE-2022-2858: Use after free in Sign-In Flow
  * CVE-2022-2853: Heap buffer overflow in Downloads
  * CVE-2022-2856: Insufficient validation of untrusted input in Intents
  * CVE-2022-2859: Use after free in Chrome OS Shell
  * CVE-2022-2860: Insufficient policy enforcement in Cookies
  * CVE-2022-2861: Inappropriate implementation in Extensions API

Dominique Leuenberger (dimstar_suse) accepted request 997378 from

Callum Farmer (gmbr3) over 1 year ago (revision 347)

- Re-enable our version of chrome-wrapper
- Set no sandbox if root is being used (https://crbug.com/638180)

Dominique Leuenberger (dimstar_suse) accepted request 994138 from

Callum Farmer (gmbr3) almost 2 years ago (revision 346)

boo#1202075

Richard Brown (RBrownFactory) accepted request 991005 from

Callum Farmer (gmbr3) almost 2 years ago (revision 345)

- Switch back to Clang so that we can use BTI on aarch64
  * Gold is too old - doesn't understand BTI
  * LD crashes on aarch64
- Re-enable LTO
- Prepare move to FFmpeg 5 for new channel layout
  (requires 5.1+)

Richard Brown (RBrownFactory) accepted request 990359 from

Andreas Stieger (AndreasStieger) almost 2 years ago (revision 344)

- Chromium 103.0.5060.134 (boo#1201679):
  * CVE-2022-2477 : Use after free in Guest View
  * CVE-2022-2478 : Use after free in PDF
  * CVE-2022-2479 : Insufficient validation of untrusted input in File
  * CVE-2022-2480 : Use after free in Service Worker API
  * CVE-2022-2481: Use after free in Views
  * CVE-2022-2163: Use after free in Cast UI and Toolbar
  * Various fixes from internal audits, fuzzing and other initiatives

Dominique Leuenberger (dimstar_suse) accepted request 988024 from

Andreas Stieger (AndreasStieger) almost 2 years ago (revision 343)

- Chromium 103.0.5060.114 (boo#1201216)
  * CVE-2022-2294: Heap buffer overflow in WebRTC
  * CVE-2022-2295: Type Confusion in V8
  * CVE-2022-2296: Use after free in Chrome OS Shell (forwarded request 988023 from AndreasStieger)

Dominique Leuenberger (dimstar_suse) accepted request 987738 from

Andreas Stieger (AndreasStieger) almost 2 years ago (revision 342)

Dominique Leuenberger (dimstar_suse) accepted request 985033 from

Callum Farmer (gmbr3) almost 2 years ago (revision 341)

Dominique Leuenberger (dimstar_suse) accepted request 982060 from

Andreas Stieger (AndreasStieger) almost 2 years ago (revision 340)

- Chromium 102.0.5005.115 (boo#1200423)
  * CVE-2022-2007: Use after free in WebGPU
  * CVE-2022-2008: Out of bounds memory access in WebGL
  * CVE-2022-2010: Out of bounds read in compositing
  * CVE-2022-2011: Use after free in ANGLE

Dominique Leuenberger (dimstar_suse) accepted request 981322 from

Callum Farmer (gmbr3) almost 2 years ago (revision 339)

GTK4

Dominique Leuenberger (dimstar_suse) accepted request 980324 from

Callum Farmer (gmbr3) almost 2 years ago (revision 338)

disable arm cfi

Places

Revisions of chromium

Places