From e7f53876b1778b664188ebfdbf7d9753289d65bc Mon Sep 17 00:00:00 2001 From: tigro Date: Sun, 17 Dec 2023 22:28:44 +0300 Subject: [PATCH] - update to 120.0.6099.109 * High CVE-2023-6702: Type Confusion in V8 * High CVE-2023-6703: Use after free in Blink * High CVE-2023-6704: Use after free in libavif * High CVE-2023-6705: Use after free in WebRTC * High CVE-2023-6706: Use after free in FedCM * Medium CVE-2023-6707: Use after free in CSS --- .chromium.metadata | 4 +++- .gitignore | 6 +++--- SPECS/chromium.spec | 52 ++++++++++++++++++++++++++------------------- 3 files changed, 36 insertions(+), 26 deletions(-) diff --git a/.chromium.metadata b/.chromium.metadata index cb1a9a79..857c7b93 100644 --- a/.chromium.metadata +++ b/.chromium.metadata @@ -1,4 +1,4 @@ -edcfe1eec21ecfee709a1783199797ca5d7760a2 SOURCES/chromium-120.0.6099.71.tar.xz +045d87e42e9a0d2386a3902505bbf355bd9bf43c SOURCES/chromium-120.0.6099.109.tar.xz dea187019741602d57aaf189a80abba261fbd2aa SOURCES/linux-x64-0.19.2.tgz 7e5d2c7864c5c83ec789b59c77cd9c20d2594916 SOURCES/linux-arm64-0.19.2.tgz 769196d081c6a0ad37f1c63dec56febfff3370de SOURCES/node-v20.6.1-linux-x64.tar.xz @@ -6,3 +6,5 @@ dea187019741602d57aaf189a80abba261fbd2aa SOURCES/linux-x64-0.19.2.tgz 8e9bc55cce3899627b2810ecfe87116c5a9147b5 SOURCES/chromium-browser-gost-icons.tar.xz 6b05665ad62c12ff4ef7dc056a95e012221dee5a SOURCES/msspi-061bce0709523afaad3ea4ffa7c0bff96b5592c0.tar.gz 511df3accd6823b50b133a5548670098ae1afddc SOURCES/chromium-gost-acea4dd67875ea46a340f6fd2274c631ab132523.tar.gz +268086831adfbead80789f8acd206e6f100a4bdf SOURCES/chromium-gost-67d65619d138e125c59fe36f458fb440b061ef2f.tar.gz +feede7756fe80d065dec7a30b6786d4af0b25939 SOURCES/msspi-78f4c728303ba8c863c45fc1fda595b0b56741b8.tar.gz diff --git a/.gitignore b/.gitignore index 1793f7b1..09edbe1d 100644 --- a/.gitignore +++ b/.gitignore @@ -1,8 +1,8 @@ +SOURCES/chromium-120.0.6099.109.tar.xz SOURCES/linux-x64-0.19.2.tgz SOURCES/linux-arm64-0.19.2.tgz SOURCES/node-v20.6.1-linux-x64.tar.xz SOURCES/node-v20.6.1-linux-arm64.tar.xz SOURCES/chromium-browser-gost-icons.tar.xz -SOURCES/chromium-gost-acea4dd67875ea46a340f6fd2274c631ab132523.tar.gz -SOURCES/msspi-061bce0709523afaad3ea4ffa7c0bff96b5592c0.tar.gz -SOURCES/chromium-120.0.6099.71.tar.xz +SOURCES/chromium-gost-67d65619d138e125c59fe36f458fb440b061ef2f.tar.gz +SOURCES/msspi-78f4c728303ba8c863c45fc1fda595b0b56741b8.tar.gz diff --git a/SPECS/chromium.spec b/SPECS/chromium.spec index d9329586..c938a6dd 100644 --- a/SPECS/chromium.spec +++ b/SPECS/chromium.spec @@ -216,17 +216,12 @@ # enable gtk3 by default %global gtk3 1 -# enable|disable system brotli -# disable system brotli due to old system brotli on el and fedora < 38 -%global bundlebrotli 1 -%if 0%{?fedora} > 38 -%global bundlebrotli 0 -%endif - # Chromium's fork of ICU is now something we can't unbundle. # This is left here to ease the change if that ever switches. %global bundleicu 1 +# system libre2.so is not supported with use_custom_libcxx=true +# because the library's interface relies on libstdc++'s std::string and std::vector. %global bundlere2 1 # The libxml_utils code depends on the specific bundled libxml checkout @@ -234,6 +229,8 @@ # 2017-06-08. %global bundlelibxml 1 +%global bundlelibaom 1 + # Fedora's Python 2 stack is being removed, we use the bundled Python libraries # This can be revisited once we upgrade to Python 3 %global bundlepylibs 0 @@ -256,14 +253,19 @@ %global bundlelibdrm 1 %global bundlefontconfig 1 %global bundleffmpegfree 1 -%global bundlelibaom 1 +%global bundlebrotli 1 %else -# Chromium really wants to use its bundled harfbuzz. Sigh. %if 0%{?fedora} > 37 %global bundleharfbuzz 0 %else %global bundleharfbuzz 1 %endif +# disable system brotli due to old system brotli on el and fedora < 38 +%if 0%{?fedora} > 38 +%global bundlebrotli 0 +%else +%global bundlebrotli 1 +%endif %global bundleopus 0 %global bundlelibusbx 0 %global bundlelibwebp 0 @@ -272,22 +274,15 @@ %global bundlelibdrm 0 %global bundlefontconfig 0 %global bundleffmpegfree 0 -%global bundlelibaom 1 -%global bundlelibwebp 1 -# system freetype on fedora > 36 -%if 0%{?fedora} %global bundlefreetype 0 -%else -%global bundlefreetype 1 -%endif %endif %if %{with gost} # Build with GOST patches # https://github.com/deemru/chromium-gost/ %global gost_build 1 -%define chromium_gost_commit acea4dd67875ea46a340f6fd2274c631ab132523 -%define msspi_commit 061bce0709523afaad3ea4ffa7c0bff96b5592c0 +%define chromium_gost_commit 67d65619d138e125c59fe36f458fb440b061ef2f +%define msspi_commit 78f4c728303ba8c863c45fc1fda595b0b56741b8 %define chromium_path_gost %{_builddir}/chromium-gost %endif @@ -325,7 +320,7 @@ %endif Name: chromium%{chromium_channel} -Version: 120.0.6099.71 +Version: 120.0.6099.109 Release: 1%{?dist}.inferit Summary: A WebKit (Blink) powered web browser that Google doesn't want you to use Url: http://www.chromium.org/Home @@ -537,8 +532,8 @@ Source50: https://upload.wikimedia.org/wikipedia/commons/f/f1/Yandex_logo_2021_R %if %{with gost} # GOST -Source101: https://github.com/deemru/chromium-gost/archive/%{chromium_gost_commit}.tar.gz?/chromium-gost-%{chromium_gost_commit}.tar.gz -Source102: https://github.com/deemru/msspi/archive/%{msspi_commit}.tar.gz?/msspi-%{msspi_commit}.tar.gz +Source101: https://github.com/deemru/chromium-gost/archive/%{chromium_gost_commit}.tar.gz#/chromium-gost-%{chromium_gost_commit}.tar.gz +Source102: https://github.com/deemru/msspi/archive/%{msspi_commit}.tar.gz#/msspi-%{msspi_commit}.tar.gz Source103: chromium-browser-gost-icons.tar.xz %endif @@ -1322,10 +1317,14 @@ CHROMIUM_CORE_GN_DEFINES+=' enable_nacl=false' CHROMIUM_CORE_GN_DEFINES+=' system_libdir="%{_lib}"' %if %{official_build} -CHROMIUM_CORE_GN_DEFINES+=' is_official_build=true chrome_pgo_phase=0' +CHROMIUM_CORE_GN_DEFINES+=' is_official_build=true' sed -i 's|OFFICIAL_BUILD|GOOGLE_CHROME_BUILD|g' tools/generate_shim_headers/generate_shim_headers.py %endif +%if 0%{?rhel} || 0%{?fedora} < 39 +CHROMIUM_CORE_GN_DEFINES+=' chrome_pgo_phase=0' +%endif + %if %{cfi} CHROMIUM_CORE_GN_DEFINES+=' is_cfi=true' @@ -1908,6 +1907,15 @@ getent group chrome-remote-desktop >/dev/null || groupadd -r chrome-remote-deskt %endif %changelog +* Sun Dec 17 2023 Arkady L. Shane - 120.0.6099.109-1.inferit +- update to 120.0.6099.109 + * High CVE-2023-6702: Type Confusion in V8 + * High CVE-2023-6703: Use after free in Blink + * High CVE-2023-6704: Use after free in libavif + * High CVE-2023-6705: Use after free in WebRTC + * High CVE-2023-6706: Use after free in FedCM + * Medium CVE-2023-6707: Use after free in CSS + * Tue Dec 12 2023 Arkady L. Shane - 120.0.6099.71-1.inferit - Updateo to 20.0.6099.71