update to 119.0.6045.123, include following security fixes:

high CVE-2023-5996: Use after free in WebAudio
i9e-gost-119.0.6045.159
Arkady L. Shane 1 year ago
parent 40abfe0b0f
commit 196de17727
Signed by: tigro
GPG Key ID: 8D1597B4AD3AFAA0

@ -1,4 +1,4 @@
1c151588ef3b9bd6a93381286bca29f9b1dba96b SOURCES/chromium-119.0.6045.105.tar.xz
df45906bbf86530822cd761e67761b24aa12fb7c SOURCES/chromium-119.0.6045.123.tar.xz
dea187019741602d57aaf189a80abba261fbd2aa SOURCES/linux-x64-0.19.2.tgz
7e5d2c7864c5c83ec789b59c77cd9c20d2594916 SOURCES/linux-arm64-0.19.2.tgz
769196d081c6a0ad37f1c63dec56febfff3370de SOURCES/node-v20.6.1-linux-x64.tar.xz

2
.gitignore vendored

@ -1,4 +1,4 @@
SOURCES/chromium-118.0.5993.117.tar.xz
SOURCES/chromium-119.0.6045.123.tar.xz
SOURCES/linux-x64-0.19.2.tgz
SOURCES/linux-arm64-0.19.2.tgz
SOURCES/node-v20.6.1-linux-x64.tar.xz

@ -263,7 +263,7 @@
%endif
Name: chromium%{chromium_channel}
Version: 119.0.6045.105
Version: 119.0.6045.123
Release: 1%{?dist}.inferit
Summary: A WebKit (Blink) powered web browser that Google doesn't want you to use
Url: http://www.chromium.org/Home
@ -371,7 +371,7 @@ Patch130: chromium-119-revert-av1enc-el9.patch
# file conflict with old kernel on el8/el9
Patch140: chromium-118-dma_buf_export_sync_file-conflict.patch
# fixes for old clang version in fedora < 38 end epel (old clang <= 15)
# fixes for old clang version in fedora < 38 end epel < 9 (old clang <= 15)
# compiler build errors, no matching constructor for initialization
Patch300: chromium-119-no_matching_constructor.patch
Patch301: chromium-115-compiler-SkColor4f.patch
@ -730,19 +730,13 @@ Requires: u2f-hidraw-policy
Requires: chromium-common%{_isa} = %{version}-%{release}
# rhel 7: ia32 x86_64
# rhel 8+: ia32, x86_64, aarch64
# fedora 32 or older: ia32, x86_64, aarch64
# fedora 33+: x86_64 aarch64 only
# rhel 7: x86_64
# rhel 8+ and fedora 37+: x86_64 aarch64
%if 0%{?rhel} == 7
ExclusiveArch: x86_64
%else
%if 0%{?fedora} > 32
ExclusiveArch: x86_64 aarch64
%else
ExclusiveArch: x86_64 aarch64
%endif
%endif
# FIXME
%if "%{_lib}" == "lib64"
@ -770,7 +764,7 @@ Provides: bundled(expat) = 2.2.0
Provides: bundled(fdmlibm) = 5.3
# Don't get too excited. MPEG and other legally problematic stuff is stripped out.
Provides: bundled(ffmpeg) = 5.1.2
Provides: bundled(ffmpeg) = 6.0
%if %{bundlelibaom}
Provides: bundled(libaom)
@ -1003,7 +997,7 @@ udev.
%endif
%if %{clang}
%if 0%{?rhel} || 0%{?fedora} < 38
%if 0%{?rhel} < 9 || 0%{?fedora} < 38
%patch -P300 -p1 -b .no_matching_constructor
%patch -P301 -p1 -b .workaround_clang-SkColor4f
%patch -P302 -p1 -b .workaround_clang_bug-structured_binding
@ -1730,6 +1724,12 @@ getent group chrome-remote-desktop >/dev/null || groupadd -r chrome-remote-deskt
%{chromium_path}/chromedriver
%changelog
* Fri Nov 10 2023 Arkady L. Shane <tigro@msvsphere-os.ru> - 119.0.6045.123-1.inferit
- update to 119.0.6045.123, include following security fixes:
high CVE-2023-5996: Use after free in WebAudio
- enable debuginfo
- sync patches with upstream
* Thu Nov 2 2023 Arkady L. Shane <tigro@msvsphere-os.ru> - 119.0.6045.105-1.inferit
- Update to 119.0.6045.105

Loading…
Cancel
Save