From 0c1074816bab76ee06729301314b72ffd5c39188 Mon Sep 17 00:00:00 2001
From: Than Ngo <than@redhat.com>
Date: Thu, 4 Jan 2024 14:41:31 +0100
Subject: [PATCH] - new gn update, drop workaround for broken gn on epel 8/9 -
 update to 120.0.6099.199    * CVE-2024-0222: Use after free in ANGLE    *
 CVE-2024-0223: Heap buffer overflow in ANGLE    * CVE-2024-0224: Use after
 free in WebAudio    * CVE-2024-0225: Use after free in WebGPU

---
 chromium.spec | 14 +++++++++-----
 sources       |  2 +-
 2 files changed, 10 insertions(+), 6 deletions(-)

diff --git a/chromium.spec b/chromium.spec
index dcfcea81..9170bccb 100644
--- a/chromium.spec
+++ b/chromium.spec
@@ -22,10 +22,6 @@
 
 # enable|disble bootstrap
 %global bootstrap 0
-# workaround for broken gn on epel 8/9
-%if 0%{?rhel} == 8 || 0%{?rhel} == 9
-%global bootstrap 1
-%endif
 
 # Fancy build status, so we at least know, where we are..
 # %1 where
@@ -289,7 +285,7 @@
 %endif
 
 Name:	chromium%{chromium_channel}
-Version: 120.0.6099.129
+Version: 120.0.6099.199
 Release: 1%{?dist}
 Summary: A WebKit (Blink) powered web browser that Google doesn't want you to use
 Url: http://www.chromium.org/Home
@@ -1770,6 +1766,14 @@ getent group chrome-remote-desktop >/dev/null || groupadd -r chrome-remote-deskt
 %{chromium_path}/chromedriver
 
 %changelog
+* Thu Jan 04 2024 Than Ngo <than@redhat.com> - 120.0.6099.199-1
+- new gn update, drop workaround for broken gn on epel 8/9
+- update to 120.0.6099.199
+   * CVE-2024-0222: Use after free in ANGLE
+   * CVE-2024-0223: Heap buffer overflow in ANGLE
+   * CVE-2024-0224: Use after free in WebAudio
+   * CVE-2024-0225: Use after free in WebGPU
+
 * Thu Dec 21 2023 Than Ngo <than@redhat.com> - 120.0.6099.129-1
 - update to 120.0.6099.129
   * High CVE-2023-7024: Heap buffer overflow in WebRTC
diff --git a/sources b/sources
index e5dcfa54..5424a4b1 100644
--- a/sources
+++ b/sources
@@ -2,4 +2,4 @@ SHA512 (node-v20.6.1-linux-arm64.tar.xz) = adfcaf2c22614797fd69fb46d94c1cbf64dea
 SHA512 (node-v20.6.1-linux-x64.tar.xz) = 7e15c05041a9a50f0046266aadb2e092a5aefbec19be1c7c809471add520cb57c7df3c47d88b1888b29bf2979dca3c92adddfd965370fa2a9da4ea02186464fd
 SHA512 (linux-arm64-0.19.2.tgz) = 8a0d8fec6786fffcd6954d00820037a55d61e60762c74300df0801f8db27057562c221a063bedfb8df56af9ba80abb366336987e881782c5996e6f871abd3dc6
 SHA512 (linux-x64-0.19.2.tgz) = a31cc74c4bfa54f9b75d735a1cfc944d3b5efb7c06bfba9542da9a642ae0b2d235ea00ae84d3ad0572c406405110fe7b61377af0fd15803806ef78d20fc6f05d
-SHA512 (chromium-120.0.6099.129-clean.tar.xz) = e10336abc6e6cf7602dd1674cae9610ee68d50a93eccfcfa2da7dbdabff3f5725cafac74fda2c00eb4e8111a849d97f9721e7651376d465057741cfd67d8c0a8
+SHA512 (chromium-120.0.6099.199-clean.tar.xz) = b15493f351d9cef938ae0a8b3603dd23554449ea1c8982c0476793b88466b768108e00cfa8c9a9449f4358f97438ff10564f6e952af1fa097ee9e3b5a9139aa4