- update to 120.0.6099.109

* High CVE-2023-6702: Type Confusion in V8
   * High CVE-2023-6703: Use after free in Blink
   * High CVE-2023-6704: Use after free in libavif
   * High CVE-2023-6705: Use after free in WebRTC
   * High CVE-2023-6706: Use after free in FedCM
   * Medium CVE-2023-6707: Use after free in CSS
i8ce changed/i9e/chromium-120.0.6099.109-1.el9.inferit
Arkady L. Shane 1 year ago
parent a566fd4c42
commit e7f53876b1
Signed by: tigro
GPG Key ID: 1EC08A25C9DB2503

@ -1,4 +1,4 @@
edcfe1eec21ecfee709a1783199797ca5d7760a2 SOURCES/chromium-120.0.6099.71.tar.xz 045d87e42e9a0d2386a3902505bbf355bd9bf43c SOURCES/chromium-120.0.6099.109.tar.xz
dea187019741602d57aaf189a80abba261fbd2aa SOURCES/linux-x64-0.19.2.tgz dea187019741602d57aaf189a80abba261fbd2aa SOURCES/linux-x64-0.19.2.tgz
7e5d2c7864c5c83ec789b59c77cd9c20d2594916 SOURCES/linux-arm64-0.19.2.tgz 7e5d2c7864c5c83ec789b59c77cd9c20d2594916 SOURCES/linux-arm64-0.19.2.tgz
769196d081c6a0ad37f1c63dec56febfff3370de SOURCES/node-v20.6.1-linux-x64.tar.xz 769196d081c6a0ad37f1c63dec56febfff3370de SOURCES/node-v20.6.1-linux-x64.tar.xz
@ -6,3 +6,5 @@ dea187019741602d57aaf189a80abba261fbd2aa SOURCES/linux-x64-0.19.2.tgz
8e9bc55cce3899627b2810ecfe87116c5a9147b5 SOURCES/chromium-browser-gost-icons.tar.xz 8e9bc55cce3899627b2810ecfe87116c5a9147b5 SOURCES/chromium-browser-gost-icons.tar.xz
6b05665ad62c12ff4ef7dc056a95e012221dee5a SOURCES/msspi-061bce0709523afaad3ea4ffa7c0bff96b5592c0.tar.gz 6b05665ad62c12ff4ef7dc056a95e012221dee5a SOURCES/msspi-061bce0709523afaad3ea4ffa7c0bff96b5592c0.tar.gz
511df3accd6823b50b133a5548670098ae1afddc SOURCES/chromium-gost-acea4dd67875ea46a340f6fd2274c631ab132523.tar.gz 511df3accd6823b50b133a5548670098ae1afddc SOURCES/chromium-gost-acea4dd67875ea46a340f6fd2274c631ab132523.tar.gz
268086831adfbead80789f8acd206e6f100a4bdf SOURCES/chromium-gost-67d65619d138e125c59fe36f458fb440b061ef2f.tar.gz
feede7756fe80d065dec7a30b6786d4af0b25939 SOURCES/msspi-78f4c728303ba8c863c45fc1fda595b0b56741b8.tar.gz

6
.gitignore vendored

@ -1,8 +1,8 @@
SOURCES/chromium-120.0.6099.109.tar.xz
SOURCES/linux-x64-0.19.2.tgz SOURCES/linux-x64-0.19.2.tgz
SOURCES/linux-arm64-0.19.2.tgz SOURCES/linux-arm64-0.19.2.tgz
SOURCES/node-v20.6.1-linux-x64.tar.xz SOURCES/node-v20.6.1-linux-x64.tar.xz
SOURCES/node-v20.6.1-linux-arm64.tar.xz SOURCES/node-v20.6.1-linux-arm64.tar.xz
SOURCES/chromium-browser-gost-icons.tar.xz SOURCES/chromium-browser-gost-icons.tar.xz
SOURCES/chromium-gost-acea4dd67875ea46a340f6fd2274c631ab132523.tar.gz SOURCES/chromium-gost-67d65619d138e125c59fe36f458fb440b061ef2f.tar.gz
SOURCES/msspi-061bce0709523afaad3ea4ffa7c0bff96b5592c0.tar.gz SOURCES/msspi-78f4c728303ba8c863c45fc1fda595b0b56741b8.tar.gz
SOURCES/chromium-120.0.6099.71.tar.xz

@ -216,17 +216,12 @@
# enable gtk3 by default # enable gtk3 by default
%global gtk3 1 %global gtk3 1
# enable|disable system brotli
# disable system brotli due to old system brotli on el and fedora < 38
%global bundlebrotli 1
%if 0%{?fedora} > 38
%global bundlebrotli 0
%endif
# Chromium's fork of ICU is now something we can't unbundle. # Chromium's fork of ICU is now something we can't unbundle.
# This is left here to ease the change if that ever switches. # This is left here to ease the change if that ever switches.
%global bundleicu 1 %global bundleicu 1
# system libre2.so is not supported with use_custom_libcxx=true
# because the library's interface relies on libstdc++'s std::string and std::vector.
%global bundlere2 1 %global bundlere2 1
# The libxml_utils code depends on the specific bundled libxml checkout # The libxml_utils code depends on the specific bundled libxml checkout
@ -234,6 +229,8 @@
# 2017-06-08. # 2017-06-08.
%global bundlelibxml 1 %global bundlelibxml 1
%global bundlelibaom 1
# Fedora's Python 2 stack is being removed, we use the bundled Python libraries # Fedora's Python 2 stack is being removed, we use the bundled Python libraries
# This can be revisited once we upgrade to Python 3 # This can be revisited once we upgrade to Python 3
%global bundlepylibs 0 %global bundlepylibs 0
@ -256,14 +253,19 @@
%global bundlelibdrm 1 %global bundlelibdrm 1
%global bundlefontconfig 1 %global bundlefontconfig 1
%global bundleffmpegfree 1 %global bundleffmpegfree 1
%global bundlelibaom 1 %global bundlebrotli 1
%else %else
# Chromium really wants to use its bundled harfbuzz. Sigh.
%if 0%{?fedora} > 37 %if 0%{?fedora} > 37
%global bundleharfbuzz 0 %global bundleharfbuzz 0
%else %else
%global bundleharfbuzz 1 %global bundleharfbuzz 1
%endif %endif
# disable system brotli due to old system brotli on el and fedora < 38
%if 0%{?fedora} > 38
%global bundlebrotli 0
%else
%global bundlebrotli 1
%endif
%global bundleopus 0 %global bundleopus 0
%global bundlelibusbx 0 %global bundlelibusbx 0
%global bundlelibwebp 0 %global bundlelibwebp 0
@ -272,22 +274,15 @@
%global bundlelibdrm 0 %global bundlelibdrm 0
%global bundlefontconfig 0 %global bundlefontconfig 0
%global bundleffmpegfree 0 %global bundleffmpegfree 0
%global bundlelibaom 1
%global bundlelibwebp 1
# system freetype on fedora > 36
%if 0%{?fedora}
%global bundlefreetype 0 %global bundlefreetype 0
%else
%global bundlefreetype 1
%endif
%endif %endif
%if %{with gost} %if %{with gost}
# Build with GOST patches # Build with GOST patches
# https://github.com/deemru/chromium-gost/ # https://github.com/deemru/chromium-gost/
%global gost_build 1 %global gost_build 1
%define chromium_gost_commit acea4dd67875ea46a340f6fd2274c631ab132523 %define chromium_gost_commit 67d65619d138e125c59fe36f458fb440b061ef2f
%define msspi_commit 061bce0709523afaad3ea4ffa7c0bff96b5592c0 %define msspi_commit 78f4c728303ba8c863c45fc1fda595b0b56741b8
%define chromium_path_gost %{_builddir}/chromium-gost %define chromium_path_gost %{_builddir}/chromium-gost
%endif %endif
@ -325,7 +320,7 @@
%endif %endif
Name: chromium%{chromium_channel} Name: chromium%{chromium_channel}
Version: 120.0.6099.71 Version: 120.0.6099.109
Release: 1%{?dist}.inferit Release: 1%{?dist}.inferit
Summary: A WebKit (Blink) powered web browser that Google doesn't want you to use Summary: A WebKit (Blink) powered web browser that Google doesn't want you to use
Url: http://www.chromium.org/Home Url: http://www.chromium.org/Home
@ -537,8 +532,8 @@ Source50: https://upload.wikimedia.org/wikipedia/commons/f/f1/Yandex_logo_2021_R
%if %{with gost} %if %{with gost}
# GOST # GOST
Source101: https://github.com/deemru/chromium-gost/archive/%{chromium_gost_commit}.tar.gz?/chromium-gost-%{chromium_gost_commit}.tar.gz Source101: https://github.com/deemru/chromium-gost/archive/%{chromium_gost_commit}.tar.gz#/chromium-gost-%{chromium_gost_commit}.tar.gz
Source102: https://github.com/deemru/msspi/archive/%{msspi_commit}.tar.gz?/msspi-%{msspi_commit}.tar.gz Source102: https://github.com/deemru/msspi/archive/%{msspi_commit}.tar.gz#/msspi-%{msspi_commit}.tar.gz
Source103: chromium-browser-gost-icons.tar.xz Source103: chromium-browser-gost-icons.tar.xz
%endif %endif
@ -1322,10 +1317,14 @@ CHROMIUM_CORE_GN_DEFINES+=' enable_nacl=false'
CHROMIUM_CORE_GN_DEFINES+=' system_libdir="%{_lib}"' CHROMIUM_CORE_GN_DEFINES+=' system_libdir="%{_lib}"'
%if %{official_build} %if %{official_build}
CHROMIUM_CORE_GN_DEFINES+=' is_official_build=true chrome_pgo_phase=0' CHROMIUM_CORE_GN_DEFINES+=' is_official_build=true'
sed -i 's|OFFICIAL_BUILD|GOOGLE_CHROME_BUILD|g' tools/generate_shim_headers/generate_shim_headers.py sed -i 's|OFFICIAL_BUILD|GOOGLE_CHROME_BUILD|g' tools/generate_shim_headers/generate_shim_headers.py
%endif %endif
%if 0%{?rhel} || 0%{?fedora} < 39
CHROMIUM_CORE_GN_DEFINES+=' chrome_pgo_phase=0'
%endif
%if %{cfi} %if %{cfi}
CHROMIUM_CORE_GN_DEFINES+=' is_cfi=true' CHROMIUM_CORE_GN_DEFINES+=' is_cfi=true'
@ -1908,6 +1907,15 @@ getent group chrome-remote-desktop >/dev/null || groupadd -r chrome-remote-deskt
%endif %endif
%changelog %changelog
* Sun Dec 17 2023 Arkady L. Shane <tigro@msvsphere-os.ru> - 120.0.6099.109-1.inferit
- update to 120.0.6099.109
* High CVE-2023-6702: Type Confusion in V8
* High CVE-2023-6703: Use after free in Blink
* High CVE-2023-6704: Use after free in libavif
* High CVE-2023-6705: Use after free in WebRTC
* High CVE-2023-6706: Use after free in FedCM
* Medium CVE-2023-6707: Use after free in CSS
* Tue Dec 12 2023 Arkady L. Shane <tigro@msvsphere-os.ru> - 120.0.6099.71-1.inferit * Tue Dec 12 2023 Arkady L. Shane <tigro@msvsphere-os.ru> - 120.0.6099.71-1.inferit
- Updateo to 20.0.6099.71 - Updateo to 20.0.6099.71

Loading…
Cancel
Save