- update to 120.0.6099.109

* High CVE-2023-6702: Type Confusion in V8
   * High CVE-2023-6703: Use after free in Blink
   * High CVE-2023-6704: Use after free in libavif
   * High CVE-2023-6705: Use after free in WebRTC
   * High CVE-2023-6706: Use after free in FedCM
   * Medium CVE-2023-6707: Use after free in CSS

.chromium.metadata

@@ -1,4 +1,4 @@
-edcfe1eec21ecfee709a1783199797ca5d7760a2  SOURCES/chromium-120.0.6099.71.tar.xz
+045d87e42e9a0d2386a3902505bbf355bd9bf43c  SOURCES/chromium-120.0.6099.109.tar.xz
 dea187019741602d57aaf189a80abba261fbd2aa  SOURCES/linux-x64-0.19.2.tgz
 7e5d2c7864c5c83ec789b59c77cd9c20d2594916  SOURCES/linux-arm64-0.19.2.tgz
 769196d081c6a0ad37f1c63dec56febfff3370de  SOURCES/node-v20.6.1-linux-x64.tar.xz
@@ -6,3 +6,5 @@ dea187019741602d57aaf189a80abba261fbd2aa  SOURCES/linux-x64-0.19.2.tgz
 8e9bc55cce3899627b2810ecfe87116c5a9147b5  SOURCES/chromium-browser-gost-icons.tar.xz
 6b05665ad62c12ff4ef7dc056a95e012221dee5a  SOURCES/msspi-061bce0709523afaad3ea4ffa7c0bff96b5592c0.tar.gz
 511df3accd6823b50b133a5548670098ae1afddc  SOURCES/chromium-gost-acea4dd67875ea46a340f6fd2274c631ab132523.tar.gz
+268086831adfbead80789f8acd206e6f100a4bdf  SOURCES/chromium-gost-67d65619d138e125c59fe36f458fb440b061ef2f.tar.gz
+feede7756fe80d065dec7a30b6786d4af0b25939  SOURCES/msspi-78f4c728303ba8c863c45fc1fda595b0b56741b8.tar.gz

.gitignore

@@ -1,8 +1,8 @@
+SOURCES/chromium-120.0.6099.109.tar.xz
 SOURCES/linux-x64-0.19.2.tgz
 SOURCES/linux-arm64-0.19.2.tgz
 SOURCES/node-v20.6.1-linux-x64.tar.xz
 SOURCES/node-v20.6.1-linux-arm64.tar.xz
 SOURCES/chromium-browser-gost-icons.tar.xz
-SOURCES/chromium-gost-acea4dd67875ea46a340f6fd2274c631ab132523.tar.gz
+SOURCES/chromium-gost-67d65619d138e125c59fe36f458fb440b061ef2f.tar.gz
-SOURCES/msspi-061bce0709523afaad3ea4ffa7c0bff96b5592c0.tar.gz
+SOURCES/msspi-78f4c728303ba8c863c45fc1fda595b0b56741b8.tar.gz
-SOURCES/chromium-120.0.6099.71.tar.xz

SPECS/chromium.spec

@@ -216,17 +216,12 @@
 # enable gtk3 by default
 %global gtk3 1
 
-# enable|disable system brotli
-# disable system brotli due to old system brotli on el and fedora < 38
-%global bundlebrotli 1
-%if 0%{?fedora} > 38
-%global bundlebrotli 0
-%endif
-
 # Chromium's fork of ICU is now something we can't unbundle.
 # This is left here to ease the change if that ever switches.
 %global bundleicu 1
 
+# system libre2.so is not supported with use_custom_libcxx=true
+# because the library's interface relies on libstdc++'s std::string and std::vector.
 %global bundlere2 1
 
 # The libxml_utils code depends on the specific bundled libxml checkout
@@ -234,6 +229,8 @@
 # 2017-06-08.
 %global bundlelibxml 1
 
+%global bundlelibaom 1
+
 # Fedora's Python 2 stack is being removed, we use the bundled Python libraries
 # This can be revisited once we upgrade to Python 3
 %global bundlepylibs 0
@@ -256,14 +253,19 @@
 %global bundlelibdrm 1
 %global bundlefontconfig 1
 %global bundleffmpegfree 1
-%global bundlelibaom 1
+%global bundlebrotli 1
 %else
-# Chromium really wants to use its bundled harfbuzz. Sigh.
 %if 0%{?fedora} > 37
 %global bundleharfbuzz 0
 %else
 %global bundleharfbuzz 1
 %endif
+# disable system brotli due to old system brotli on el and fedora < 38
+%if 0%{?fedora} > 38
+%global bundlebrotli 0
+%else
+%global bundlebrotli 1
+%endif
 %global bundleopus 0
 %global bundlelibusbx 0
 %global bundlelibwebp 0
@@ -272,22 +274,15 @@
 %global bundlelibdrm 0
 %global bundlefontconfig 0
 %global bundleffmpegfree 0
-%global bundlelibaom 1
-%global bundlelibwebp 1
-# system freetype on fedora > 36
-%if 0%{?fedora}
 %global bundlefreetype 0
-%else
-%global bundlefreetype 1
-%endif
 %endif
 
 %if %{with gost}
 # Build with GOST patches
 # https://github.com/deemru/chromium-gost/
 %global gost_build 1
-%define chromium_gost_commit acea4dd67875ea46a340f6fd2274c631ab132523
+%define chromium_gost_commit 67d65619d138e125c59fe36f458fb440b061ef2f
-%define msspi_commit 061bce0709523afaad3ea4ffa7c0bff96b5592c0
+%define msspi_commit 78f4c728303ba8c863c45fc1fda595b0b56741b8
 %define chromium_path_gost %{_builddir}/chromium-gost
 %endif
 
@@ -325,7 +320,7 @@
 %endif
 
 Name:	chromium%{chromium_channel}
-Version: 120.0.6099.71
+Version: 120.0.6099.109
 Release: 1%{?dist}.inferit
 Summary: A WebKit (Blink) powered web browser that Google doesn't want you to use
 Url: http://www.chromium.org/Home
@@ -537,8 +532,8 @@ Source50: https://upload.wikimedia.org/wikipedia/commons/f/f1/Yandex_logo_2021_R
 
 %if %{with gost}
 # GOST
-Source101:	https://github.com/deemru/chromium-gost/archive/%{chromium_gost_commit}.tar.gz?/chromium-gost-%{chromium_gost_commit}.tar.gz
+Source101:	https://github.com/deemru/chromium-gost/archive/%{chromium_gost_commit}.tar.gz#/chromium-gost-%{chromium_gost_commit}.tar.gz
-Source102:	https://github.com/deemru/msspi/archive/%{msspi_commit}.tar.gz?/msspi-%{msspi_commit}.tar.gz
+Source102:	https://github.com/deemru/msspi/archive/%{msspi_commit}.tar.gz#/msspi-%{msspi_commit}.tar.gz
 Source103:	chromium-browser-gost-icons.tar.xz
 %endif
 
@@ -1322,10 +1317,14 @@ CHROMIUM_CORE_GN_DEFINES+=' enable_nacl=false'
 CHROMIUM_CORE_GN_DEFINES+=' system_libdir="%{_lib}"'
 
 %if %{official_build}
-CHROMIUM_CORE_GN_DEFINES+=' is_official_build=true chrome_pgo_phase=0'
+CHROMIUM_CORE_GN_DEFINES+=' is_official_build=true'
 sed -i 's|OFFICIAL_BUILD|GOOGLE_CHROME_BUILD|g' tools/generate_shim_headers/generate_shim_headers.py
 %endif
 
+%if 0%{?rhel} || 0%{?fedora} < 39
+CHROMIUM_CORE_GN_DEFINES+=' chrome_pgo_phase=0'
+%endif
+
 %if %{cfi}
 CHROMIUM_CORE_GN_DEFINES+=' is_cfi=true'
 
@@ -1908,6 +1907,15 @@ getent group chrome-remote-desktop >/dev/null || groupadd -r chrome-remote-deskt
 %endif
 
 %changelog
+* Sun Dec 17 2023 Arkady L. Shane <tigro@msvsphere-os.ru> - 120.0.6099.109-1.inferit
+- update to 120.0.6099.109
+   * High CVE-2023-6702: Type Confusion in V8
+   * High CVE-2023-6703: Use after free in Blink
+   * High CVE-2023-6704: Use after free in libavif
+   * High CVE-2023-6705: Use after free in WebRTC
+   * High CVE-2023-6706: Use after free in FedCM
+   * Medium CVE-2023-6707: Use after free in CSS
+
 * Tue Dec 12 2023 Arkady L. Shane <tigro@msvsphere-os.ru> - 120.0.6099.71-1.inferit
 - Updateo to 20.0.6099.71