From f30bbc29cac0afc0a20ccf465aaf6dc35b5d3509 Mon Sep 17 00:00:00 2001
From: Than Ngo <than@redhat.com>
Date: Thu, 23 Jan 2025 13:01:33 +0100
Subject: [PATCH] - Update to 132.0.6834.110   * High CVE-2025-0611: Object
 corruption in V8   * High CVE-2025-0612: Out of bounds memory access in V8 -
 Drop el8 workaround

---
 chromium-132-el8-ffmpeg.patch | 52 -----------------------------------
 chromium.spec                 | 13 +++++----
 clean_ffmpeg.sh               |  5 ++++
 sources                       |  2 +-
 4 files changed, 13 insertions(+), 59 deletions(-)
 delete mode 100644 chromium-132-el8-ffmpeg.patch

diff --git a/chromium-132-el8-ffmpeg.patch b/chromium-132-el8-ffmpeg.patch
deleted file mode 100644
index d824d69f..00000000
--- a/chromium-132-el8-ffmpeg.patch
+++ /dev/null
@@ -1,52 +0,0 @@
---- /dev/null	2025-01-15 17:59:31.105999986 +0100
-+++ chromium-132.0.6834.83/third_party/ffmpeg/libavcodec/aarch64/autorename_libavcodec_aarch64_vorbisdsp_init.c	2025-01-07 20:49:01.000000000 +0100
-@@ -0,0 +1,2 @@
-+// Automatically generated on Tue Oct 22 17:56:01 2024. See crbug.com/495833.
-+#include "vorbisdsp_init.c"
---- /dev/null	2025-01-15 23:08:30.985344485 +0100
-+++ chromium-132.0.6834.83/third_party/ffmpeg/libavutil/aarch64/autorename_libavutil_aarch64_cpu.c	2025-01-07 20:49:01.000000000 +0100
-@@ -0,0 +1,2 @@
-+// Automatically generated on Tue Oct 22 17:56:01 2024. See crbug.com/495833.
-+#include "cpu.c"
---- /dev/null	2025-01-16 08:50:44.906000351 +0100
-+++ chromium-132.0.6834.83/third_party/ffmpeg/libavutil/aarch64/autorename_libavutil_aarch64_float_dsp_init.c	2025-01-07 20:49:01.000000000 +0100
-@@ -0,0 +1,2 @@
-+// Automatically generated on Tue Oct 22 17:56:01 2024. See crbug.com/495833.
-+#include "float_dsp_init.c"
---- /dev/null	2025-01-16 08:50:44.906000351 +0100
-+++ chromium-132.0.6834.83/third_party/ffmpeg/libavcodec/aarch64/autorename_libavcodec_aarch64_videodsp_init.c	2025-01-07 20:49:01.000000000 +0100
-@@ -0,0 +1,2 @@
-+// Automatically generated on Tue Oct 22 17:56:01 2024. See crbug.com/495833.
-+#include "videodsp_init.c"
---- /dev/null	2025-01-16 10:42:07.086999986 +0100
-+++ chromium-132.0.6834.83/third_party/ffmpeg/libavutil/aarch64/cpu_sve.S	2025-01-07 20:49:01.000000000 +0100
-@@ -0,0 +1,29 @@
-+/*
-+ * Copyright (c) 2023 Martin Storsjo
-+ *
-+ * This file is part of FFmpeg.
-+ *
-+ * FFmpeg is free software; you can redistribute it and/or
-+ * modify it under the terms of the GNU Lesser General Public
-+ * License as published by the Free Software Foundation; either
-+ * version 2.1 of the License, or (at your option) any later version.
-+ *
-+ * FFmpeg is distributed in the hope that it will be useful,
-+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
-+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
-+ * Lesser General Public License for more details.
-+ *
-+ * You should have received a copy of the GNU Lesser General Public
-+ * License along with FFmpeg; if not, write to the Free Software
-+ * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA
-+ */
-+
-+#include "config.h"
-+#include "asm.S"
-+
-+ENABLE_SVE
-+
-+function ff_aarch64_sve_length, export=1
-+        cntb            x0
-+        ret
-+endfunc
diff --git a/chromium.spec b/chromium.spec
index cb186e4b..d36dcb2c 100644
--- a/chromium.spec
+++ b/chromium.spec
@@ -276,8 +276,8 @@
 %endif
 
 Name:	chromium%{chromium_channel}
-Version: 132.0.6834.83
-Release: 2%{?dist}
+Version: 132.0.6834.110
+Release: 1%{?dist}
 Summary: A WebKit (Blink) powered web browser that Google doesn't want you to use
 Url: http://www.chromium.org/Home
 License: BSD-3-Clause AND LGPL-2.1-or-later AND Apache-2.0 AND IJG AND MIT AND GPL-2.0-or-later AND ISC AND OpenSSL AND (MPL-1.1 OR GPL-2.0-only OR LGPL-2.0-only)
@@ -331,9 +331,6 @@ Patch151: chromium-131-qt-ui.patch
 # revert, it causes ramdom crash on aarch64
 Patch300: chromium-131-revert-decommit-pooled-pages-by-default.patch
 
-# Workaround for build error on el8 aarch64
-Patch304: chromium-132-el8-ffmpeg.patch
-
 # disable memory tagging (epel8 on aarch64) due to new feature IFUNC-Resolver
 # it is not supported in old glibc < 2.30, error: fatal error: 'sys/ifunc.h' file not found
 Patch305: chromium-124-el8-arm64-memory_tagging.patch
@@ -1046,7 +1043,6 @@ Qt6 UI for chromium.
 
 %if 0%{?rhel} == 8
 %ifarch aarch64
-%patch -P304 -p1 -b .el8-ffmpeg
 %patch -P305 -p1 -b .el8-memory_tagging
 %patch -P306 -p1 -b .el8-ifunc-header
 %endif
@@ -1923,6 +1919,11 @@ getent group chrome-remote-desktop >/dev/null || groupadd -r chrome-remote-deskt
 %endif
 
 %changelog
+* Thu Jan 23 2025 Than Ngo <than@redhat.com> - 132.0.6834.110-1
+- Update to 132.0.6834.110
+  * High CVE-2025-0611: Object corruption in V8
+  * High CVE-2025-0612: Out of bounds memory access in V8
+
 * Thu Jan 16 2025 Fedora Release Engineering <releng@fedoraproject.org> - 132.0.6834.83-2
 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
 
diff --git a/clean_ffmpeg.sh b/clean_ffmpeg.sh
index 4b3de8a4..f26b2fe0 100755
--- a/clean_ffmpeg.sh
+++ b/clean_ffmpeg.sh
@@ -236,6 +236,8 @@ manual_files=" libavcodec/aarch64/h264pred_neon.S \
 		libavcodec/aarch64/neon.S \
 		libavcodec/aarch64/vorbisdsp_neon.S \
 		libavcodec/aarch64/autorename_libavcodec_aarch64_vorbisdsp_neon.S \
+		libavcodec/aarch64/autorename_libavcodec_aarch64_vorbisdsp_init.c \
+		libavcodec/aarch64/autorename_libavcodec_aarch64_videodsp_init.c \
 		libavcodec/aarch64/vorbisdsp_init.c \
 		libavcodec/aarch64/vp8dsp_neon.S \
 		libavcodec/x86/hpeldsp.asm \
@@ -271,8 +273,11 @@ manual_files=" libavcodec/aarch64/h264pred_neon.S \
 		libavformat/version.c \
 		libavutil/aarch64/asm.S \
 		libavutil/aarch64/cpu.c \
+		libavutil/aarch64/cpu_sve.S \
 		libavutil/aarch64/float_dsp_init.c \
 		libavutil/aarch64/float_dsp_neon.S \
+		libavutil/aarch64/autorename_libavutil_aarch64_cpu.c \
+		libavutil/aarch64/autorename_libavutil_aarch64_float_dsp_init.c \
 		libavutil/aarch64/autorename_libavutil_aarch64_float_dsp_neon.S \
 		libavutil/aarch64/tx_float_neon.S \
 		libavutil/aarch64/timer.h \
diff --git a/sources b/sources
index 689207a9..032d2751 100644
--- a/sources
+++ b/sources
@@ -2,4 +2,4 @@ SHA512 (node-v20.6.1-linux-arm64.tar.xz) = adfcaf2c22614797fd69fb46d94c1cbf64dea
 SHA512 (node-v20.6.1-linux-x64.tar.xz) = 7e15c05041a9a50f0046266aadb2e092a5aefbec19be1c7c809471add520cb57c7df3c47d88b1888b29bf2979dca3c92adddfd965370fa2a9da4ea02186464fd
 SHA512 (linux-arm64-0.19.2.tgz) = 8a0d8fec6786fffcd6954d00820037a55d61e60762c74300df0801f8db27057562c221a063bedfb8df56af9ba80abb366336987e881782c5996e6f871abd3dc6
 SHA512 (linux-x64-0.19.2.tgz) = a31cc74c4bfa54f9b75d735a1cfc944d3b5efb7c06bfba9542da9a642ae0b2d235ea00ae84d3ad0572c406405110fe7b61377af0fd15803806ef78d20fc6f05d
-SHA512 (chromium-132.0.6834.83-clean.tar.xz) = af32ca08dcf9e4a9d2c0553079bd3dfe9d27ecb2fc7572843192f519f37364d7d4ccaad987250b45c8ff0c19b9c1bb9c83930cbb1792e3a3ef001cff8c9765a7
+SHA512 (chromium-132.0.6834.110-clean.tar.xz) = 070ebff19ac4c7d3f00f1493d65546e09e49a4ea1df675e58af045a079a024ecabf2fa5aafe2945ec0487da23704516c7a3b155ebc497275c321eeca95664a08