diff --git a/.chromium.metadata b/.chromium.metadata index 1ecc0f36..46e65fdc 100644 --- a/.chromium.metadata +++ b/.chromium.metadata @@ -1,4 +1,4 @@ -088b64ba65b6a5b6d8d2d1e9788559a00c65dd34 SOURCES/chromium-128.0.6613.119.tar.xz +8877a957a7e572e6a9ea71be791fa6b87200db62 SOURCES/chromium-128.0.6613.137.tar.xz ccd15016324e640c40f6fc01ab076dc52196ea54 SOURCES/msspi-e91bd46306cc7044b2903cd07b788c13c36481e3.tar.xz 9bd36edf9f2e882aad828ad88faa7b9d02566cea SOURCES/Chromium-Gost-648cc5b901f2447b9b12bc5b09b962ec802b025a.tar.xz dea187019741602d57aaf189a80abba261fbd2aa SOURCES/linux-x64-0.19.2.tgz diff --git a/.gitignore b/.gitignore index 24be3899..b26bbd35 100644 --- a/.gitignore +++ b/.gitignore @@ -1,4 +1,4 @@ -SOURCES/chromium-128.0.6613.119.tar.xz +SOURCES/chromium-128.0.6613.137.tar.xz SOURCES/linux-x64-0.19.2.tgz SOURCES/linux-arm64-0.19.2.tgz SOURCES/node-v20.6.1-linux-x64.tar.xz diff --git a/SPECS/chromium.spec b/SPECS/chromium.spec index da4ae0bf..146d1f50 100644 --- a/SPECS/chromium.spec +++ b/SPECS/chromium.spec @@ -335,8 +335,8 @@ %endif Name: chromium%{chromium_channel} -Version: 128.0.6613.119 -Release: 1%{?dist}.inferit +Version: 128.0.6613.137 +Release: 1%{?dist}.inferit.1 Summary: A WebKit (Blink) powered web browser that Google doesn't want you to use Url: http://www.chromium.org/Home License: BSD-3-Clause AND LGPL-2.1-or-later AND Apache-2.0 AND IJG AND MIT AND GPL-2.0-or-later AND ISC AND OpenSSL AND (MPL-1.1 OR GPL-2.0-only OR LGPL-2.0-only) @@ -457,7 +457,6 @@ Patch386: 0004-third_party-crashpad-port-curl-transport-ppc64.patch Patch387: HACK-third_party-libvpx-use-generic-gnu.patch Patch388: HACK-debian-clang-disable-skia-musttail.patch Patch389: HACK-debian-clang-disable-base-musttail.patch - Patch390: 0001-Add-ppc64-target-to-libaom.patch Patch391: 0001-Add-pregenerated-config-for-libaom-on-ppc64.patch @@ -466,50 +465,6 @@ Patch393: 0003-third_party-libvpx-Add-ppc64-generated-config.patch # Enabling VSX causes artifacts to appear in VP9 videos Patch394: 0004-third_party-libvpx-work-around-ambiguous-vsx.patch -Patch359: add-ppc64-architecture-string.patch -Patch360: 0001-linux-seccomp-bpf-ppc64-glibc-workaround-in-SIGSYS-h.patch -Patch361: 0001-sandbox-Enable-seccomp_bpf-for-ppc64.patch -Patch362: 0001-services-service_manager-sandbox-linux-Fix-TCGETS-de.patch -Patch363: 0001-sandbox-linux-bpf_dsl-Update-syscall-ranges-for-ppc6.patch -Patch364: 0001-sandbox-linux-Implement-partial-support-for-ppc64-sy.patch -Patch365: 0001-sandbox-linux-Update-IsSyscallAllowed-in-broker_proc.patch -Patch366: 0001-sandbox-linux-Update-syscall-helpers-lists-for-ppc64.patch -Patch367: 0002-sandbox-linux-bpf_dsl-Modify-seccomp_macros-to-add-s.patch -Patch368: 0003-sandbox-linux-system_headers-Update-linux-seccomp-he.patch -Patch369: 0004-sandbox-linux-system_headers-Update-linux-signal-hea.patch -Patch370: 0005-sandbox-linux-seccomp-bpf-Add-ppc64-syscall-stub.patch -Patch371: 0005-sandbox-linux-update-unit-test-for-ppc64.patch -Patch372: 0006-sandbox-linux-disable-timedwait-time64-ppc64.patch -Patch373: 0007-sandbox-linux-add-ppc64-stat.patch -Patch374: Sandbox-linux-services-credentials.cc-PPC.patch -Patch375: 0008-sandbox-fix-ppc64le-glibc234.patch - -Patch376: 0001-third_party-angle-Include-missing-header-cstddef-in-.patch -Patch377: 0001-Add-PPC64-support-for-boringssl.patch -Patch378: 0001-third_party-libvpx-Properly-generate-gni-on-ppc64.patch -Patch379: 0001-third_party-lss-Don-t-look-for-mmap2-on-ppc64.patch -Patch380: 0001-third_party-pffft-Include-altivec.h-on-ppc64-with-SI.patch -Patch381: 0002-Add-PPC64-generated-files-for-boringssl.patch -Patch382: 0002-third_party-lss-kernel-structs.patch -Patch383: 0001-swiftshader-fix-build.patch -Patch384: Rtc_base-system-arch.h-PPC.patch - -Patch383: Rtc_base-system-arch.h-PPC.patch - -Patch384: 0002-Include-cstddef-to-fix-build.patch -Patch385: 0004-third_party-crashpad-port-curl-transport-ppc64.patch - -Patch386: HACK-third_party-libvpx-use-generic-gnu.patch -Patch387: HACK-debian-clang-disable-skia-musttail.patch - -Patch388: 0001-Add-ppc64-target-to-libaom.patch -Patch389: 0001-Add-pregenerated-config-for-libaom-on-ppc64.patch - -Patch390: 0002-third_party-libvpx-Remove-bad-ppc64-config.patch -Patch391: 0003-third_party-libvpx-Add-ppc64-generated-config.patch -# Enabling VSX causes artifacts to appear in VP9 videos -Patch394: 0004-third_party-libvpx-work-around-ambiguous-vsx.patch - # Enable VSX acceleration in Skia. Requires POWER8 or higher. Patch395: skia-vsx-instructions.patch @@ -2194,6 +2149,13 @@ getent group chrome-remote-desktop >/dev/null || groupadd -r chrome-remote-deskt %endif %changelog +* Wed Sep 11 2024 Arkady L. Shane - 128.0.6613.137-1.inferit +- update to 128.0.6613.137 + * High CVE-2024-8636: Heap buffer overflow in Skia + * High CVE-2024-8637: Use after free in Media Router + * High CVE-2024-8638: Type Confusion in V8 + * High CVE-2024-8639: Use after free in Autofill + * Mon Sep 02 2024 Arkady L. Shane - 128.0.6613.119-1.inferit - update to 128.0.6613.119 * High CVE-2024-8362: Use after free in WebAudio.