alioth/nixpkgs
3
0
Fork 0
forked from mirrors/nixpkgs
Code Releases Activity
241754 commits 217 branches 121 tags 4.5 GiB
Commit graph

761 commits

Author SHA1 Message Date
Renaud e77a6ec5e4
Merge pull request #70853 from taku0/flashplayer-32.0.0.270 
flashplayer: 32.0.0.255 -> 32.0.0.270 [Critical security fixes]
 2019-10-15 19:55:56 +02:00
Herwig Hochleitner 13e3b03d1b chromium: restore versionRange utility 
This partially reverts commit
f45798e544.

cc @ivan I'd like to have that left in, because it's very useful for
gcc compiles, when necessary patches often span multiple releases,
i.e. for aarch64 builds
 2019-10-11 23:00:29 +02:00
Ivan Kozik f45798e544 chromium: 77.0.3865.90 -> 77.0.3865.120 
CVE-2019-13693 CVE-2019-13694 CVE-2019-13695 CVE-2019-13696
CVE-2019-13697

Disable jumbo mode because upstream dropped support for it.
(See chromium-dev "We're removing support for the jumbo build")

This makes builds take about 3x as long, but we have no alternative.
 2019-10-11 22:32:18 +02:00
taku0 09ef6dc625 flashplayer: add maintainer 2019-10-09 21:13:14 +09:00
taku0 8948290cec flashplayer: 32.0.0.255 -> 32.0.0.270 2019-10-09 15:13:12 +09:00
Graham Christensen 8dbca5e3ca
Merge pull request #69054 from ivan/chromium-77.0.3865.90 
chromium: 77.0.3865.75 -> 77.0.3865.90
 2019-09-19 18:01:06 -04:00
Ivan Kozik 5456def6b3 chromiumDev: fix widevine support 
Upstream moved libwidevinecdm.so from
./opt/google/chrome-unstable/libwidevinecdm.so
to
./opt/google/chrome-unstable/WidevineCdm/_platform_specific/linux_x64/libwidevinecdm.so
 2019-09-19 00:05:30 +00:00
Ivan Kozik 44957a9f30 chromiumDev: fix build by disabling jumbo 
This fixes:

FAILED: obj/chrome/browser/ui/ui/ui_jumbo_3.o
../../third_party/llvm-build/Release+Asserts/bin/clang++ -MMD -MF obj/chrome/browser/ui/ui/ui_jumbo_3.o.d -DUSE_DBUS -DUSE_UDEV -DUSE_AURA=1 -DUSE_GLIB=1 -DUSE_NSS_CERTS=1 -DUSE_X11=1 -D_FILE_OFFSET_BITS=64 -D_LARGEFILE_SOURCE -D_LARGEFILE64_SOURCE -D_GNU_SOURCE -DCR_CLANG_REVISION=\"371202-8455294f-1\" -D__STDC_CONSTANT_MACROS -D__STDC_FORMAT_MACROS -D_FORTIFY_SOURCE=2 -D_LIBCPP_ABI_UNSTABLE -D_LIBCPP_DISABLE_VISIBILITY_ANNOTATIONS -D_LIBCXXABI_DISABLE_VISIBILITY_ANNOTATIONS -D_LIBCPP_ENABLE_NODISCARD -DCR_LIBCXX_REVISION=361348 -DNDEBUG -DNVALGRIND -DDYNAMIC_ANNOTATIONS_ENABLED=0 -DUSE_CUPS -DGLIB_VERSION_MAX_ALLOWED=GLIB_VERSION_2_32 -DGLIB_VERSION_MIN_REQUIRED=GLIB_VERSION_2_26 -DENABLE_IPC_FUZZER -DTOOLKIT_VIEWS=1 -DVK_NO_PROTOTYPES -DGL_GLEXT_PROTOTYPES -DUSE_GLX -DUSE_EGL -DSYNC_PASSWORD_REUSE_DETECTION_ENABLED -DON_FOCUS_PING_ENABLED -DEXPAT_RELATIVE_PATH -DGOOGLE_PROTOBUF_NO_RTTI -DGOOGLE_PROTOBUF_NO_STATIC_INITIALIZER -DHAVE_PTHREAD -DLEVELDB_PLATFORM_CHROMIUM=1 -DLEVELDB_PLATFORM_CHROMIUM=1 -DU_USING_ICU_NAMESPACE=0 -DU_ENABLE_DYLOAD=0 -DUSE_CHROMIUM_ICU=1 -DU_STATIC_IMPLEMENTATION -DICU_UTIL_DATA_IMPL=ICU_UTIL_DATA_FILE -DUCHAR_TYPE=uint16_t -DWEBRTC_NON_STATIC_TRACE_EVENT_HANDLERS=0 -DWEBRTC_CHROMIUM_BUILD -DWEBRTC_POSIX -DWEBRTC_LINUX -DABSL_ALLOCATOR_NOTHROW=1 -DNO_MAIN_THREAD_WRAPPING -DV8_USE_EXTERNAL_STARTUP_DATA -DSK_GL -DSK_HAS_PNG_LIBRARY -DSK_HAS_WEBP_LIBRARY -DSK_USER_CONFIG_HEADER=\"../../skia/config/SkUserConfig.h\" -DSK_HAS_JPEG_LIBRARY -DSK_VULKAN_HEADER=\"../../skia/config/SkVulkanConfig.h\" -DSK_VULKAN=1 -DSK_SUPPORT_GPU=1 -DSK_GPU_WORKAROUNDS_HEADER=\"gpu/config/gpu_driver_bug_workaround_autogen.h\" -DVK_NO_PROTOTYPES -DV8_DEPRECATION_WARNINGS -DI18N_ADDRESS_VALIDATION_DATA_URL=\"https://chromium-i18n.appspot.com/ssl-aggregate-address/\" -DPERFETTO_IMPLEMENTATION -I. -I../.. -Igen -Igen/shim_headers/snappy_shim -I../../third_party/libyuv/include -Igen/shim_headers/libpng_shim -Igen/shim_headers/libwebp_shim -I../../third_party/khronos -I../../gpu -I../../third_party/vulkan/include -Igen/shim_headers/opus_shim -Igen/third_party/dawn -I../../third_party/dawn/src/include -Igen/shim_headers/flac_shim -I../../third_party/protobuf/src -Igen/protoc_out -I../../third_party/protobuf/src -I../../third_party/boringssl/src/include -I../../third_party/cacheinvalidation/overrides -I../../third_party/cacheinvalidation/src -Igen/third_party/metrics_proto -I../../third_party/leveldatabase -I../../third_party/leveldatabase/src -I../../third_party/leveldatabase/src/include -I../../third_party/ced/src -I../../third_party/icu/source/common -I../../third_party/icu/source/i18n -I../../third_party/webrtc_overrides -I../../third_party/webrtc -Igen/third_party/webrtc -I../../third_party/abseil-cpp -I../../third_party/skia -I../../third_party/vulkan/include -I../../third_party/skia/third_party/vulkanmemoryallocator -I../../third_party/vulkan/include -I../../third_party/libwebm/source -I../../v8/include -Igen/v8/include -I../../third_party/perfetto/include -Igen/third_party/perfetto/build_config -Igen/third_party/perfetto -Igen/third_party/perfetto -Igen/third_party/perfetto -Igen/third_party/perfetto -Igen/third_party/perfetto -Igen/third_party/perfetto -I../../third_party/re2/src -I../../third_party/mesa_headers -Igen -Igen -Igen -Igen -I../../third_party/libaddressinput/src/cpp/include -Igen/components/sync/protocol -I../../third_party/flatbuffers/src/include -I../../third_party/perfetto -I../../third_party/perfetto/include -Igen/third_party/perfetto/build_config -I../../third_party/brotli/include -I../../third_party/zlib -I../../third_party/fontconfig/src -Igen -Igen -Igen -Igen -Igen -fno-strict-aliasing --param=ssp-buffer-size=4 -fstack-protector -funwind-tables -fPIC -pthread -fcolor-diagnostics -fmerge-all-constants -fcrash-diagnostics-dir=../../tools/clang/crashreports -Xclang -mllvm -Xclang -instcombine-lower-dbg-declare=0 -fcomplete-member-pointers -m64 -march=x86-64 -Wno-builtin-macro-redefined -D__DATE__= -D__TIME__= -D__TIMESTAMP__= -no-canonical-prefixes -Wall -Wextra -Wimplicit-fallthrough -Wthread-safety -Wextra-semi -Wno-missing-field-initializers -Wno-unused-parameter -Wno-c++11-narrowing -Wno-unneeded-internal-declaration -Wno-undefined-var-template -Wno-ignored-pragma-optimize -Wno-implicit-int-float-conversion -Wno-xor-used-as-pow -Wno-c99-designator -Wno-reorder-init-list -Wno-final-dtor-non-final-class -O2 -fno-ident -fdata-sections -ffunction-sections -fno-omit-frame-pointer -g0 -fvisibility=hidden -Wheader-hygiene -Wstring-conversion -Wtautological-overlap-compare -Wexit-time-destructors -I/nix/store/fn0ag3ahbrjjjbsqb2846x321zj4jika-glib-2.60.7-dev/include -I/nix/store/fn0ag3ahbrjjjbsqb2846x321zj4jika-glib-2.60.7-dev/include/glib-2.0 -I/nix/store/ilk1606qj4pqzsplnnzycsxpzl6pjss8-glib-2.60.7/lib/glib-2.0/include -Wno-shorten-64-to-32 -Wno-header-guard -I/nix/store/c3i4il1c0n9mjhzm1dsvcw8h8d973s0b-nspr-4.21-dev/include -I/nix/store/qk3racv0a2967wsk0g9ps9wlbfn17faj-nss-3.46-dev/include/nss -I/nix/store/v85mz845m1hv2xlhp0zvxv36pmsfbc3q-dbus-1.12.16-dev/include/dbus-1.0 -I/nix/store/j3sv2g9s6dnlh672rwx0mmlkcm37v1k8-dbus-1.12.16-lib/lib/dbus-1.0/include -std=c++14 -fno-exceptions -fno-rtti -nostdinc++ -isystem../../buildtools/third_party/libc++/trunk/include -isystem../../buildtools/third_party/libc++abi/trunk/include -fvisibility-inlines-hidden -c gen/chrome/browser/ui/ui_jumbo_3.cc -o obj/chrome/browser/ui/ui/ui_jumbo_3.o
warning: unknown warning option '-Wno-implicit-int-float-conversion'; did you mean '-Wno-implicit-float-conversion'? [-Wunknown-warning-option]
warning: unknown warning option '-Wno-xor-used-as-pow'; did you mean '-Wno-unused-macros'? [-Wunknown-warning-option]
warning: unknown warning option '-Wno-c99-designator'; did you mean '-Wno-gnu-designator'? [-Wunknown-warning-option]
warning: unknown warning option '-Wno-reorder-init-list'; did you mean '-Wno-empty-init-stmt'? [-Wunknown-warning-option]
warning: unknown warning option '-Wno-final-dtor-non-final-class'; did you mean '-Wno-abstract-final-class'? [-Wunknown-warning-option]
In file included from gen/chrome/browser/ui/ui_jumbo_3.cc:24:
./../../chrome/browser/ui/views/profiles/profile_menu_view.cc:68:25: error: redefinition of 'GetProfileAttributesEntry'
ProfileAttributesEntry* GetProfileAttributesEntry(Profile* profile) {
                        ^
./../../chrome/browser/ui/views/profiles/avatar_toolbar_button.cc:49:25: note: previous definition is here
ProfileAttributesEntry* GetProfileAttributesEntry(Profile* profile) {
                        ^
5 warnings and 1 error generated.
 2019-09-19 00:05:24 +00:00
Ivan Kozik 2e2a9ae22a chromium: 77.0.3865.75 -> 77.0.3865.90 
CVE-2019-13685 CVE-2019-13688 CVE-2019-13687 CVE-2019-13686
 2019-09-18 22:19:08 +00:00
Ivan Kozik 19d730df85 chromium: add patch to fix performance regression with fonts 
This reverts a commit to fix a serious performance regression
introduced in Chromium 77:

https://bugs.chromium.org/p/chromium/issues/detail?id=1003997
 2019-09-17 23:42:11 +00:00
Herwig Hochleitner dd57bf928b
Merge pull request #60833 from jflanglois/chromium-widevine 
chromium: fix widevine
 2019-09-14 14:30:29 +02:00
Ivan Kozik d66430be79 chromium: 76.0.3809.132 -> 77.0.3865.75 
CVE-2019-5870 CVE-2019-5871 CVE-2019-5872 CVE-2019-5873
CVE-2019-5874 CVE-2019-5875 CVE-2019-5876 CVE-2019-5877
CVE-2019-5878 CVE-2019-5879 CVE-2019-5880 CVE-2019-5881
CVE-2019-13659 CVE-2019-13660 CVE-2019-13661 CVE-2019-13662
CVE-2019-13663 CVE-2019-13664 CVE-2019-13665 CVE-2019-13666
CVE-2019-13667 CVE-2019-13668 CVE-2019-13669 CVE-2019-13670
CVE-2019-13671 CVE-2019-13673 CVE-2019-13674 CVE-2019-13675
CVE-2019-13676 CVE-2019-13677 CVE-2019-13678 CVE-2019-13679
CVE-2019-13680 CVE-2019-13681 CVE-2019-13682 CVE-2019-13683
 2019-09-14 14:29:35 +02:00
taku0 dac340737a flashplayer: 32.0.0.238 -> 32.0.0.255 2019-09-10 21:13:06 +09:00
Julien Langlois 7d9578819b
Comment about handling widevine in default.nix. 2019-09-06 15:19:49 -04:00
Julien Langlois ea7c012e4b
Explicitly check for channels in widevine plugin unpack command. 2019-09-05 17:43:58 -04:00
Julien Langlois c28eb26100
Set package to unfree when widevine is enabled. 2019-09-05 17:27:04 -04:00
Julien Langlois aeeb67bfcb
Rework to avoid a full rebuild for widevine. 2019-09-05 17:20:09 -04:00
Julien Langlois 545d58a1ef
chromium: fix widevine 
This change allows widevine to work in chromium (it was previously
broken due to a segfault). Newer versions of chromium do not use the
libwidevinecdmadapter.so. Instead, libwidevinecdm.so should be installed
in the chromium libExec directory.
 2019-09-05 17:20:06 -04:00
Vladimír Čunát f21211ebfe
Merge branch 'master' into staging 2019-09-02 23:25:24 +02:00
Ivan Kozik 0e703ce075 chromium: 76.0.3809.100 -> 76.0.3809.132 (#67610) 
CVE-2019-5869
 2019-08-31 22:22:58 -04:00
volth 08f68313a4 treewide: remove redundant rec 2019-08-28 11:07:32 +00:00
Frederik Rietdijk 5061fe0c2c Merge staging-next into staging 2019-08-28 08:26:42 +02:00
Frederik Rietdijk 98640fd482 Merge master into staging-next 2019-08-27 16:36:47 +02:00
Asad Saeeduddin 17775d538b flashplayer: 32.0.0.223 -> 32.0.0.238 2019-08-25 06:05:10 -04:00
Ben Wolsieffer 8b0a684d21 chromium: remove obsolete patches 
One of these patches was causing a warning message, which broke ofborg
evaluation.
 2019-08-19 18:54:48 -04:00
Frederik Rietdijk fe9a3e3e63 Merge staging-next into staging 2019-08-17 09:39:23 +02:00
volth 46420bbaa3 treewide: name -> pname (easy cases) (#66585) 
treewide replacement of

stdenv.mkDerivation rec {
  name = "*-${version}";
  version = "*";

to pname
 2019-08-15 13:41:18 +01:00
Matthew Bauer 8281a67be0
Merge pull request #64809 from ambrop72/chromium-egl-fix 
chromium: Fix running with --use-gl=egl.
 2019-08-14 15:42:31 -04:00
Ivan Kozik 42521cb95b chromium: 76.0.3809.87 -> 76.0.3809.100 
CVE-2019-5868 CVE-2019-5867
 2019-08-09 16:07:37 +00:00
Ivan Kozik a897743a13 chromiumDev: fix build 
Fixes:

ERROR Unresolved dependencies.
//third_party/perfetto/gn:zlib(//build/toolchain/linux:clang_x64)
  needs //third_party/zlib:zlib_config(//build/toolchain/linux:clang_x64)

builder for '/nix/store/iqr4vn2by1yxa7f92jiymvgfsn9mdvwq-chromium-unwrapped-77.0.3860.5.drv' failed with exit code 1
 2019-07-31 11:31:07 +00:00
Ivan Kozik d18f4acdf1 chromium: 75.0.3770.90 -> 76.0.3809.87 
Fixed in 75.0.3770.142:

CVE-2019-5847 CVE-2019-5848

Fixed in 76.0.3809.87:

CVE-2019-5850 CVE-2019-5860 CVE-2019-5853 CVE-2019-5851
CVE-2019-5859 CVE-2019-5856 CVE-2019-5863 CVE-2019-5855
CVE-2019-5865 CVE-2019-5858 CVE-2019-5864 CVE-2019-5862
CVE-2019-5861 CVE-2019-5857 CVE-2019-5854 CVE-2019-5852
 2019-07-31 11:30:46 +00:00
Ambroz Bizjak 6a0a073187 chromium: Fix running with --use-gl=egl. 
When Chromium is using EGL, it dlopen's libGLESv2. Before this fix, this failed
with a not-found error. Fix it by adding libGL to the RUNPATH of the binary.

This problem does not have a visible impact on typical desktop system because
Chromium uses GLX by default. It only matters when Chromium is started with
--use-gl=egl (which makes it use OpenGL ES via EGL instead of desktop OpenGL
via GLX), and probably on certain embedded systems which only support OpenGL
ES.

With this fix, Chromium runs fine for me with --use-gl=egl and the NVidia
driver, and the about:gpu page indicates that it is indeed using OpenGL ES and
EGL.
 2019-07-15 17:03:56 +02:00
taku0 126c5d0be8 flashplayer: 32.0.0.207 -> 32.0.0.223 2019-07-11 09:51:49 +02:00
Andreas Rammhold 5a74f84536
Merge pull request #63136 from ivan/chromium-75.0.3770.90 
chromium: 75.0.3770.80 -> 75.0.3770.90
 2019-06-19 00:42:05 +02:00
volth f3282c8d1e treewide: remove unused variables (#63177) 
* treewide: remove unused variables

* making ofborg happy
 2019-06-16 19:59:05 +00:00
Ivan Kozik 67ced10c23 chromium: 75.0.3770.80 -> 75.0.3770.90 
CVE-2019-5842
 2019-06-14 21:17:45 +00:00
taku0 1296f699e5 flashplayer: 32.0.0.192 -> 32.0.0.207 2019-06-11 15:13:34 +09:00
Ivan Kozik 8c78ae27f6 chromium: 74.0.3729.157 -> 75.0.3770.80 
CVE-2019-5828 CVE-2019-5829 CVE-2019-5830 CVE-2019-5831
CVE-2019-5832 CVE-2019-5833 CVE-2019-5834 CVE-2019-5835
CVE-2019-5836 CVE-2019-5837 CVE-2019-5838 CVE-2019-5839
CVE-2019-5840

Update a patch for Python 3, fixes #62347.

Update a GN arg to fix this warning:

warning: The GN arg 'remove_webcore_debug_symbols' is deprecated and
warning: will be removed April 15, 2019. Please change your args.gn
warning: to use 'blink_symbol_level = 0'. https://crbug.com/943869
 2019-06-05 09:27:52 +00:00
Ivan Kozik 4481a0150b chromium: use LLVM 8.0.0 to more closely match upstream 2019-06-05 09:27:52 +00:00
Silvan Mosberger 99b68ffbb0
chromium: Fix build 
Since https://github.com/NixOS/nixpkgs/pull/60499, the unwrapped
chromium already contains the applications directory.
 2019-05-28 02:33:00 +02:00
Silvan Mosberger 526a0b2277
Merge pull request #60499 from JohnAZoidberg/chromium-upstream-desktop-entry 
chromium: Use upstream desktop entry
 2019-05-27 18:28:20 +02:00
Daniel Schaefer 0f537a49e1 chromium: Use upstream desktop entry 
Upstream provides a much more featureful desktop entry file. If we use
that we take advantage of all of those features and don't have to maintain it
ourselves.
 2019-05-25 22:39:47 +02:00
Andreas Rammhold 333a2be17b
chromium: 74.0.3729.131 -> 74.0.3729.157 (#61533) 
chromium: 74.0.3729.131 -> 74.0.3729.157
 2019-05-16 19:27:12 +02:00
Ivan Kozik 2db1a06136 chromium: 74.0.3729.131 -> 74.0.3729.157 
Fixes a security bug with no CVE at this time:
https://chromereleases.googleblog.com/2019/05/stable-channel-update-for-desktop.html
 2019-05-15 05:41:40 +00:00
taku0 8be03860e4 flashplayer: 32.0.0.171 -> 32.0.0.192 2019-05-14 21:13:49 +09:00
Andreas Rammhold 0b7c602d55
chromium: 74.0.3729.108 -> 74.0.3729.131 (#60950) 
chromium: 74.0.3729.108 -> 74.0.3729.131
 2019-05-05 18:04:36 +02:00
Ivan Kozik 75d1439f8f chromium: add myself as maintainer (#60961) 2019-05-05 05:09:20 -04:00
Ivan Kozik f15adc548f chromium: 74.0.3729.108 -> 74.0.3729.131 
CVE-2019-5827 CVE-2019-5824
 2019-05-04 22:46:24 +00:00
Herwig Hochleitner d77256c604 chromium: 73.0.3683.103 -> 74.0.3729.108 
CVE-2019-5805 CVE-2019-5806 CVE-2019-5807 CVE-2019-5808 CVE-2019-5809
CVE-2019-5810 CVE-2019-5811 CVE-2019-5812 CVE-2019-5813 CVE-2019-5814
CVE-2019-5815 CVE-2019-5816 CVE-2019-5817 CVE-2019-5818 CVE-2019-5819
CVE-2019-5820 CVE-2019-5821 CVE-2019-5822 CVE-2019-5823
 2019-04-24 22:01:45 +02:00
taku0 3eb4e958b4 flashplayer: 32.0.0.156 -> 32.0.0.171 2019-04-09 21:14:12 +09:00
Herwig Hochleitner a5960f765a chromium: 73.0.3683.86 -> 73.0.3683.103 2019-04-05 16:53:36 +02:00
aszlig ed8f3b5fa3
chromium/updater: Fix usage of insecure MD5 hashes 
The title of https://github.com/NixOS/nix/issues/802 says it all:

    Is it time to deprecate md5?

Of course it is - we shouldn't use MD5 for our beautiful updater, but
switch to SHA1 instead. It's the future!

       .    .          .       .           .
  .              .        .          .               .
    .    .           .           .        .-.   .         .     .
           -------     ______             | `\                .
.   ______   .            '   ``-..-.-,.-.`.  `----._______
           .  -------   .   . `.`.-=,'='-===| SHA1  \______`--._
 --------------      ---   .  ..-.-.-=-.-===|   ____________.--"
               ---------  . . .- .,==-'`-'-./  /__----'^  `^  `^  `^
   ____   -----     --  ____   ' . _____   \______[=>  =>  =>  =>
         .                   .       .                .
   .          .     .     .              .        .          .

Signed-off-by: aszlig <aszlig@nix.build>
 2019-03-31 22:41:44 +02:00
Herwig Hochleitner 233e551674 chromium: disable vaapi support 
this fixes playback on radeon

see https://github.com/NixOS/nixpkgs/pull/57837#issuecomment-477906724
 2019-03-31 01:04:49 +01:00
Cole Mickens 60e2d2ce2b chromium: enable mojo + vaapi + allow hw accel 
fixes https://github.com/NixOS/nixpkgs/pull/57837
closes https://github.com/NixOS/nixpkgs/pull/56973
 2019-03-25 02:02:05 +01:00
Herwig Hochleitner ea34ad0e43 chromium: 73.0.3683.75 -> 73.0.3683.86 2019-03-22 19:33:30 +01:00
taku0 e933c7875b flashplayer: 32.0.0.142 -> 32.0.0.156 (#57571) 2019-03-13 23:30:50 +01:00
Herwig Hochleitner 006a699e69 chromium: 72.0.3626.121 -> 73.0.3683.75 
CVE-2019-5787 CVE-2019-5788 CVE-2019-5789 CVE-2019-5790 CVE-2019-5791
CVE-2019-5792 CVE-2019-5793 CVE-2019-5794 CVE-2019-5795 CVE-2019-5796
CVE-2019-5797 CVE-2019-5798 CVE-2019-5799 CVE-2019-5800 CVE-2019-5801
CVE-2019-5802 CVE-2019-5803 CVE-2019-5804
 2019-03-13 16:19:29 +01:00
Herwig Hochleitner 4901dc4e74 Merge commit '9ae406c0749bbc7373d7422edeaf6b1b6caa0dae' of github.com:NixOS/nixpkgs into fix-chromium 
fixes https://github.com/NixOS/nixpkgs/pull/49797
 2019-03-07 20:50:13 +01:00
Ivan Kozik 2129c6ec05 chromium: fix sha256 for 72.0.3626.121 
The sha256 was previously unchanged from 72.0.3626.119
 2019-03-07 00:37:01 +00:00
Herwig Hochleitner 9a6e64691c chromium: 72.0.3626.119 -> 72.0.3626.121 
CVE-2019-5786
 2019-03-02 05:19:53 +01:00
Frederik Rietdijk 2fcb11a244 Merge staging-next into master 2019-03-01 09:06:20 +01:00
Herwig Hochleitner 338dc47d5f chromium: 72.0.3626.109 -> 72.0.3626.119 2019-02-25 02:01:30 +01:00
Frederik Rietdijk c2eac6741b Merge master into staging-next 2019-02-24 09:19:12 +01:00
Florian Friesdorf fbef5ab82f Remove myself as maintainer from packages 
I'm currently not maintaining any packages.
 2019-02-22 16:14:13 +01:00
Frederik Rietdijk e2cd07b997 Merge staging-next into staging 2019-02-21 07:54:33 +01:00
Herwig Hochleitner c414e5bd08 chromium: 72.0.3626.96 -> 72.0.3626.109 2019-02-19 04:44:37 +01:00
Frederik Rietdijk fd48a94b62 Merge staging-next into staging 2019-02-16 09:30:46 +01:00
Samuel Dionne-Riel f8eef26991
Merge pull request #55732 from oxij/tree/move-defaults-to-package-files-mostly-pulse 
all-packages.nix: move defaults to package files continues
 2019-02-15 17:49:01 -05:00
Jan Tojnar 606ceda352
gnome3: stop using aliases 2019-02-14 02:31:15 +01:00
Jan Malakhovski f91e811e44 chromium: move defaults to package file 
This one is a bit untrivial.
 2019-02-13 23:11:29 +00:00
Florian Klink 516a9578e6
Merge pull request #55501 from ivan/chromium-72.0.3626.96 
chromium: 72.0.3626.81 -> 72.0.3626.96
 2019-02-13 11:04:05 +01:00
Averell Dalton 856a238e20 flashplayer: 32.0.0.114 -> 32.0.0.142 2019-02-12 23:01:44 +01:00
Ivan Kozik 0811bbcaa4 chromium: 72.0.3626.81 -> 72.0.3626.96 
CVE-2019-5784
 2019-02-10 02:38:22 +00:00
Ivan Kozik 03960a323d chromium: make the new audio sandbox NixOS-compatible 
Deal with f2fc90bb74
which landed https://github.com/chromium/chromium/blob/master/services/audio/audio_sandbox_hook_linux.cc
containing /usr/share and /usr/lib/x86_64-linux-gnu paths.

closes https://github.com/NixOS/nixpkgs/pull/54960
 2019-01-31 20:06:16 +01:00
Herwig Hochleitner 6b27008fb5 chromium: 71.0.3578.98 -> 72.0.3626.81 
CVE-2019-5754 CVE-2019-5782 CVE-2019-5755 CVE-2019-5756 CVE-2019-5757
CVE-2019-5758 CVE-2019-5759 CVE-2019-5760 CVE-2019-5761 CVE-2019-5762
CVE-2019-5763 CVE-2019-5764 CVE-2019-5765 CVE-2019-5766 CVE-2019-5767
CVE-2019-5768 CVE-2019-5769 CVE-2019-5770 CVE-2019-5771 CVE-2019-5772
CVE-2019-5773 CVE-2019-5774 CVE-2019-5775 CVE-2019-5776 CVE-2019-5777
CVE-2019-5778 CVE-2019-5779 CVE-2019-5780 CVE-2019-5781
 2019-01-31 01:20:23 +01:00
taku0 9f1ff9976f flashplayer: 32.0.0.101 -> 32.0.0.114 2019-01-08 21:12:29 +09:00
Jan Tojnar ef935fa101
Merge branch 'master' into staging 2018-12-24 15:02:29 +01:00
Jörg Thalheim 1b146a8c6f
treewide: remove paxutils from stdenv 
More then one year ago we removed grsecurity kernels from nixpkgs:
https://github.com/NixOS/nixpkgs/pull/25277

This removes now also paxutils from stdenv.
 2018-12-22 12:55:05 +01:00
Herwig Hochleitner 327f7da260 chromium: 71.0.3578.80 -> 71.0.3578.98 
CVE-2018-17481
 2018-12-20 20:44:24 +01:00
Herwig Hochleitner ccb93eb6b0 chromium: update conditionals and gcc patches for min version 71 
(cherry picked from commit 604579e45f10ce5ccadd76c71f1bac648bd0971d)
 2018-12-09 04:11:27 +01:00
Sarah Brofeldt 4065217c9a
Merge pull request #51623 from taku0/flashplayer-32.0.0.101 
flashplayer: 31.0.0.153 -> 32.0.0.101 [Critical security fix]
 2018-12-07 11:57:22 +01:00
taku0 f7a266d44a flashplayer: 31.0.0.153 -> 32.0.0.101 2018-12-06 23:27:45 +09:00
Herwig Hochleitner 8942a3e00c chromium: 70.0.3538.110 -> 71.0.3578.80 
CVE-2018-17480 CVE-2018-17481 CVE-2018-18335 CVE-2018-18336
CVE-2018-18337 CVE-2018-18338 CVE-2018-18339 CVE-2018-18340
CVE-2018-18341 CVE-2018-18342 CVE-2018-18343 CVE-2018-18344
CVE-2018-18345 CVE-2018-18346 CVE-2018-18347 CVE-2018-18348
CVE-2018-18349 CVE-2018-18350 CVE-2018-18351 CVE-2018-18352
CVE-2018-18353 CVE-2018-18354 CVE-2018-18355 CVE-2018-18356
CVE-2018-18357 CVE-2018-18358 CVE-2018-18359
 2018-12-06 00:36:33 +01:00
Alexander V. Nikolaev 9ae406c074 chromium: rename "unwrapped" package to chromium-unwrapped 2018-12-03 15:35:53 +02:00
Alexander V. Nikolaev d0351ad3b6 chromium: fail build, if SOURCE_DATE_EPOCH not set 
Also fix spacing style to conform google style
 2018-12-03 15:35:53 +02:00
Alexander V. Nikolaev 7b49bd4894 chromium: avoid timestamp build 
Use $SOURCE_DATE_EPOCH instead
 2018-12-03 15:35:53 +02:00
Alexander V. Nikolaev 254a16c42e chroimum: Improve jumbo reproducibility 
A little patch to jumbo script, which should improve reproducibility
by sorting source files before merge.
 2018-12-03 15:35:52 +02:00
Alexander V. Nikolaev a70ab23409 chromium: remove gtk2 from build inputs (gtk3 should be enough) 2018-12-03 15:35:18 +02:00
taku0 76c23d904f flashplayer: 31.0.0.122 -> 31.0.0.153 2018-11-20 15:13:38 +09:00
Herwig Hochleitner bac76e8a9e chromium: add jdk.jre to build dependencies for versions >= 72 
thanks for finding out @volth
see 6fba9250aa
 2018-11-20 01:01:51 +01:00
Herwig Hochleitner 7c79a0d4ac chromium: 70.0.3538.102 -> 70.0.3538.110 
CVE-2018-17479
 2018-11-19 23:52:22 +01:00
Jörg Thalheim 16ba91891d
Merge pull request #50396 from taku0/flashplayer-31.0.0.148 
flashplayer: 31.0.0.122 -> 31.0.0.148 [Important security fix]
 2018-11-15 14:19:43 +00:00
Herwig Hochleitner 4b5ffcb964 chromium: 70.0.3538.77 -> 70.0.3538.102 2018-11-14 02:51:13 +01:00
taku0 4c2d254a7f flashplayer: 31.0.0.122 -> 31.0.0.148 2018-11-13 21:13:48 +09:00
Domen Kožar 89ede978a0
chromium: use jumbo builds to speedup compilation 
On Hetzner machine with 1 core: 4h40m
On Hetzner machine with 8 cores: 1h20m
 2018-11-01 17:51:51 +00:00
Herwig Hochleitner ed91407784 Revert "chromium: make gcc8 build available via buildWithGcc flag" 
This partially reverts commit
b70ab5c405 (except for depending gnome2)

see #48922
 2018-10-28 17:10:53 +01:00
Herwig Hochleitner 17585ff6d8 chromium: 70.0.3538.67 -> 70.0.3538.77 2018-10-28 16:00:46 +01:00
Herwig Hochleitner b70ab5c405 chromium: make gcc8 build available via buildWithGcc flag 2018-10-28 16:00:46 +01:00
Herwig Hochleitner 7eea24db5d chromium/plugins: specify gcc instead of stdenv.cc 2018-10-28 16:00:46 +01:00
volth d2daf0dd6f chromium: build with clang 2018-10-28 16:00:45 +01:00
Herwig Hochleitner bb03fbc2c8 chromium: 69.0.3497.100 -> 70.0.3538.67 2018-10-24 19:38:51 +02:00
volth 337d140953 chromium: propagate stdenv for "chromium.override{ stdenv=gcc8Stdenv; }" (#48615) 2018-10-18 23:09:12 +02:00
volth d767ba9996 chromium 71+: there is no more option 'use_gtk3' (#48595) 2018-10-17 23:04:15 +02:00
volth d039722d0e chromium 71+: add at-spi2-core dependency (#48594) 2018-10-17 23:03:43 +02:00
volth 0c8cdb53f6 chromium: fix aarch64 build (#48586) 
* chromium: fix aarch64 build

* chromium: use more stable urls
 2018-10-17 01:21:29 +02:00
volth 2ad99a662d chromium plugins: add meta.platforms (#48495) 
to prevent their installation on aarch64
 2018-10-16 18:11:41 +02:00
Will Dietz ce6db5e36e chromium: update to 69.0.3497.100 (and others), ran update.sh 2018-10-12 12:20:35 +02:00
Will Dietz 4b7de150a8 chromium/update.sh: don't use remote builders, lots of copying for work 2018-10-12 12:20:35 +02:00
xeji bde4483d13
flashplayer: 31.0.0.108 -> 31.0.0.122 (#48126) 
previous version was removed upstream (404)
 2018-10-10 23:49:40 +02:00
taku0 417cbb9307 flashplayer: 30.0.0.154 -> 31.0.0.108 2018-09-14 08:12:12 +09:00
Yuriy Taraday c098f143b4 chromium: 68.0.3440.106 -> 69.0.3497.81 
Also update to build with external gn.
 2018-09-07 23:34:47 +04:00
Daiderd Jordan 80aca28e34
harfbuzz: add harfbuzzFull and remove other variants 2018-08-21 21:04:15 +02:00
Herwig Hochleitner d127b54a29 chromium: 68.0.3440.75 -> 68.0.3440.106 
cc @aszlig @YorikSar
 2018-08-17 12:48:59 +02:00
Wael M. Nasreddine 9f6b6bc52f
flash: 30.0.0.134 -> 30.0.0.154 2018-08-15 22:07:31 -07:00
Sarah Brofeldt 7679891e2b chromium: Increase build timout to two days 2018-07-30 12:29:58 +02:00
Yuriy Taraday cd3283f921 chromium: 67.0.3396.99 -> 68.0.3440.75 2018-07-27 14:38:23 +02:00
Jörg Thalheim 218298b30f
Merge branch 'master' into unused5 2018-07-21 15:41:22 +01:00
volth 52f53c69ce pkgs/*: remove unreferenced function arguments 2018-07-21 02:48:04 +00:00
volth 6d2857a311 [bot] treewide: remove unused 'inherit' in let blocks 2018-07-20 19:38:19 +00:00
volth 87f5930c3f [bot]: remove unreferenced code 2018-07-20 18:48:37 +00:00
Yuriy Taraday 06ec2a9f19 chromium: fix 68 (beta) build 
Also replace openh264 patch with one landed in upstream.
 2018-07-14 23:07:46 +04:00
Yuriy Taraday c283323c1e chromium: 67.0.3396.87 -> 67.0.3396.99 2018-07-14 01:38:41 +04:00
volth 2dee9d4a80 flash: 30.0.0.113 -> 30.0.0.134 2018-07-11 23:34:16 +00:00
Niklas Hambüchen 95358db956 chromium: Abort build on gn warnings. Fixes #42189. 
Also fix such obsolete flags:

* `use_gconf` was already known to become obsolete with Chromium 65
* `enable_hotwording` has been removed in upstream commit d693f0c7ab
 2018-06-19 02:56:27 +02:00
Yuriy Taraday d23da8229b chromium: 67.0.3396.62 -> 67.0.3396.87 
Contains fixes for CVE-2018-6148 [0] and CVE-2018-6149 [1].

Also add a patch to fix one problem with 68 (Beta) build. I'm still
working on fixing Beta.

[0] https://chromereleases.googleblog.com/2018/06/stable-channel-update-for-desktop.html
[1] https://chromereleases.googleblog.com/2018/06/stable-channel-update-for-desktop_12.html
 2018-06-13 16:28:18 +04:00
Vladyslav Mykhailichenko 16ee92eba9 flashplayer: fix sha256 hash 2018-06-08 01:02:51 +03:00
Vladyslav Mykhailichenko 95aa3f4cc6 flashplayer: 29.0.0.171 -> 30.0.0.113 2018-06-07 22:16:42 +03:00
Yuriy Taraday a3efa24da9 chromium: bump dev version 2018-05-31 02:50:27 +04:00
Yuriy Taraday e4810965c0 chromium: fix build for 67 2018-05-31 00:33:42 +04:00
Yuriy Taraday 88007f819d chromium: remove outdated patches 2018-05-31 00:28:51 +04:00
Yuriy Taraday 7acec16226 chromium: 66.0.3359.181 -> 67.0.3396.62 
New stable version, with 34 security fixes and site isolation. See
https://chromereleases.googleblog.com/2018/05/stable-channel-update-for-desktop_58.html
 2018-05-31 00:27:36 +04:00
Yuriy Taraday 72d7b5ddb1 chromium: fix nix_plugin_paths for 68+ 2018-05-31 00:27:14 +04:00
Yuriy Taraday 584006a85e chromium: fix crashpad build 2018-05-31 00:27:14 +04:00
Yuriy Taraday 272987524a chromium: 66.0.3359.170 -> 66.0.3359.181 2018-05-15 23:58:50 +04:00
Yuriy Taraday 18370267ef chromium: 66.0.3359.139 -> 66.0.3359.170 
Update includes 4 security fixes, including one critical (see [0]):

* [835887] Critical: Chain leading to sandbox escape. Reported by Anonymous on 2018-04-23:
* [836858] High CVE-2018-6121: Privilege Escalation in extensions.
* [836141] High CVE-2018-6122: Type confusion in V8.
* [$5000][833721] High CVE-2018-6120: Heap buffer overflow in PDFium.  Reported by Zhou Aiting(@zhouat1) of Qihoo 360 Vulcan Team on 2018-04-17

[0] https://chromereleases.googleblog.com/2018/05/stable-channel-update-for-desktop.html

PS: Didn't build Beta and Dev, verified only Stable for now

cc @bendlas @aszlig
 2018-05-12 02:12:04 +04:00
taku0 219b1c1e1b flashplayer: 29.0.0.140 -> 29.0.0.171 2018-05-08 15:14:54 +09:00
Herwig Hochleitner c07c23b914 chromium: 66.0.3359.117 -> 66.0.3359.139 2018-05-02 02:44:15 +02:00
Léo Gaspard 905b03bce2 chromium: fix build on aarch64 
chromium build on aarch64 failed with:
```
FAILED: obj/skia/skia/convolver_neon.o
g++ -MMD -MF obj/skia/skia/convolver_neon.o.d -DV8_DEPRECATION_WARNINGS -DUSE_UDEV -DUSE_AURA=1 -DUSE_GLIB=1 -DUSE_NSS_CERTS=1 -DUSE_X11=1 -DNO_TCMALLOC -DFULL_SAFE_BROWSING -DSAFE_BROWSING_CSD -DSAFE_BROWSING_DB_LOCAL -DCHROMIUM_BUILD -D_FILE_OFFSET_BITS=64 -D_LARGEFILE_SOURCE -D_LARGEFILE64_SOURCE -D_LIBCPP_DISABLE_VISIBILITY_ANNOTATIONS -D_LIBCXXABI_DISABLE_VISIBILITY_ANNOTATIONS -DNDEBUG -DNVALGRIND -DDYNAMIC_ANNOTATIONS_ENABLED=0 -DSK_IGNORE_LINEONLY_AA_CONVEX_PATH_OPTS -DSK_HAS_PNG_LIBRARY -DSK_HAS_WEBP_LIBRARY -DSK_HAS_JPEG_LIBRARY -DSK_SUPPORT_GPU=1 -DSK_FREETYPE_MINIMUM_RUNTIME_VERSION=\(\(\(FREETYPE_MAJOR\)\ \*\ 0x01000000\)\ \|\ \(\(FREETYPE_MINOR\)\ \*\ 0x00010000\)\ \|\ \(\(FREETYPE_PATCH\)\ \*\ 0x00000100\)\) -DSK_GAMMA_EXPONENT=1.2 -DSK_GAMMA_CONTRAST=0.2 -DSK_DEFAULT_FONT_CACHE_LIMIT=20971520 -DGLIB_VERSION_MAX_ALLOWED=GLIB_VERSION_2_32 -DGLIB_VERSION_MIN_REQUIRED=GLIB_VERSION_2_26 -DFT_CONFIG_CONFIG_H=\"freetype-custom-config/ftconfig.h\" -DFT_CONFIG_MODULES_H=\"freetype-custom-config/ftmodule.h\" -DFT_CONFIG_OPTIONS_H=\"freetype-custom-config/ftoption.h\" -DPDFIUM_REQUIRED_MODULES -DCHROMIUM_RESTRICT_VISIBILITY -DUSE_LIBJPEG_TURBO=1 -DU_USING_ICU_NAMESPACE=0 -DU_ENABLE_DYLOAD=0 -DU_STATIC_IMPLEMENTATION -DICU_UTIL_DATA_IMPL=ICU_UTIL_DATA_FILE -DUCHAR_TYPE=uint16_t -DUSE_SYSTEM_ZLIB=1 -I../.. -Igen -I../../skia/config -I../../skia/ext -I../../third_party/skia/include/c -I../../third_party/skia/include/config -I../../third_party/skia/include/core -I../../third_party/skia/include/effects -I../../third_party/skia/include/encode -I../../third_party/skia/include/gpu -I../../third_party/skia/include/images -I../../third_party/skia/include/lazy -I../../third_party/skia/include/pathops -I../../third_party/skia/include/pdf -I../../third_party/skia/include/pipe -I../../third_party/skia/include/ports -I../../third_party/skia/include/utils -I../../third_party/skia/src/gpu -I../../third_party/skia/src/sksl -I../../third_party/skia/include/codec -I../../third_party/skia/include/private -I../../third_party/skia/include/client/android -I../../third_party/skia/src/codec -I../../third_party/skia/src/core -I../../third_party/skia/src/image -I../../third_party/skia/src/images -I../../third_party/skia/src/opts -I../../third_party/skia/src/pdf -I../../third_party/skia/src/ports -I../../third_party/skia/src/shaders -I../../third_party/skia/src/shaders/gradients -I../../third_party/skia/src/sfnt -I../../third_party/skia/src/utils -I../../third_party/skia/src/lazy -I../../third_party/skia/third_party/gif -I../../third_party/skia/src/effects/gradients -Igen/shim_headers/libpng_shim -Igen/shim_headers/zlib_shim -I../../third_party/freetype/include -I../../third_party/freetype/src/include -I../../third_party/harfbuzz-ng/src -I../../third_party/libjpeg_turbo -I../../third_party/fontconfig/src -I../../third_party/icu/source/common -I../../third_party/icu/source/i18n -I../../third_party/sfntly/src/cpp/src -fno-strict-aliasing --param=ssp-buffer-size=4 -fstack-protector -Wno-builtin-macro-redefined -D__DATE__= -D__TIME__= -D__TIMESTAMP__= -funwind-tables -fPIC -pipe -pthread -fno-omit-frame-pointer -g0 -fno-builtin-abs -fvisibility=hidden -Wno-unused-local-typedefs -Wno-maybe-uninitialized -Wno-deprecated-declarations -fno-delete-null-pointer-checks -Wno-missing-field-initializers -Wno-unused-parameter -O2 -fno-ident -fdata-sections -ffunction-sections -isystem/nix/store/smmxgfkqaqqh43d5gmv5p3abcq19hkzy-glib-2.56.0-dev/include/glib-2.0 -isystem/nix/store/yn3bbw1sxg19h07wzn16k0ja58wr9yiz-glib-2.56.0/lib/glib-2.0/include -isystem/nix/store/f82jgynysk9mvhyfavfzims41zkskb3c-libpng-apng-1.6.34-dev/include/libpng16 -isystem/nix/store/56i89kfi2nmjrv8hifsz6zikr6pq1avw-zlib-1.2.11-dev/include -std=gnu++14 -fno-exceptions -fno-rtti -nostdinc++ -isystem../../buildtools/third_party/libc++/trunk/include -isystem../../buildtools/third_party/libc++abi/trunk/include -fvisibility-inlines-hidden -Wno-narrowing -c ../../skia/ext/convolver_neon.cc -o obj/skia/skia/convolver_neon.o
../../skia/ext/convolver_neon.cc: In function 'int32x4_t skia::AccumRemainder(const unsigned char*, const Fixed*, int)':
../../skia/ext/convolver_neon.cc:26:65: error: cannot convert '<brace-enclosed initializer list>' to 'int32x4_t {aka __vector(4) int}' in return
   return {remainder[0], remainder[1], remainder[2], remainder[3]};
                                                                 ^
```

The following patch appears to fix this build issue.

Source: b84682f31d%5E%21/#F0
Suggested-by: @dezgeg
 2018-04-29 18:38:38 +03:00
Léo Gaspard a07881c8b8 chromium: skia patch appears to be still needed with 66 on aarch64 
Cc @chaoflow @bendlas
Replaces #39628
 2018-04-29 18:38:38 +03:00
Sarah Brofeldt 2248f98dea
Merge pull request #39570 from srhb/chromium-24h-timeout 
chromium: See if Hydra obeys a 24h meta.timeout
 2018-04-26 22:12:16 +02:00
Sarah Brofeldt 537d14f4e2 chromium: See if Hydra obeys a 24h meta.timeout 2018-04-26 21:59:33 +02:00
Herwig Hochleitner 2b29e40153 chromium: 65.0.3325.181 -> 66.0.3359.117 
Critical CVE-2018-6085: Use after free in Disk Cache. Reported by Ned Williamson on 2018-03-28
Critical CVE-2018-6086: Use after free in Disk Cache. Reported by Ned Williamson on 2018-03-30
High CVE-2018-6087: Use after free in WebAssembly. Reported by Anonymous on 2018-02-20
High CVE-2018-6088: Use after free in PDFium. Reported by Anonymous on 2018-03-15
High CVE-2018-6089: Same origin policy bypass in Service Worker. Reported by Rob Wu on 2018-02-04
High CVE-2018-6090: Heap buffer overflow in Skia. Reported by ZhanJia Song on 2018-03-12
High CVE-2018-6091: Incorrect handling of plug-ins by Service Worker. Reported by Jun Kokatsu (@shhnjk) on 2017-10-05
High CVE-2018-6092: Integer overflow in WebAssembly. Reported by Natalie Silvanovich of Google Project Zero on 2018-03-08
Medium CVE-2018-6093: Same origin bypass in Service Worker. Reported by Jun Kokatsu (@shhnjk) on 2017-11-01
Medium CVE-2018-6094: Exploit hardening regression in Oilpan. Reported by Chris Rohlf on 2016-08-01
Medium CVE-2018-6095: Lack of meaningful user interaction requirement before file upload. Reported by Abdulrahman Alqabandi (@qab) on 2016-08-11
Medium CVE-2018-6096: Fullscreen UI spoof. Reported by WenXu Wu of Tencent's Xuanwu Lab on 2017-10-19
Medium CVE-2018-6097: Fullscreen UI spoof. Reported by xisigr of Tencent's Xuanwu Lab on 2018-01-26
Medium CVE-2018-6098: URL spoof in Omnibox. Reported by Khalil Zhani on 2018-01-03
Medium CVE-2018-6099: CORS bypass in ServiceWorker. Reported by Jun Kokatsu (@shhnjk) on 2018-02-03
Medium CVE-2018-6100: URL spoof in Omnibox. Reported by Lnyas Zhang on 2018-02-11
Medium CVE-2018-6101: Insufficient protection of remote debugging prototol in DevTools . Reported by Rob Wu on 2018-02-19
Medium CVE-2018-6102: URL spoof in Omnibox. Reported by Khalil Zhani on 2018-02-20
Medium CVE-2018-6103: UI spoof in Permissions. Reported by Khalil Zhani on 2018-02-24
Medium CVE-2018-6104: URL spoof in Omnibox. Reported by Khalil Zhani on 2018-03-08
Medium CVE-2018-6105: URL spoof in Omnibox. Reported by Khalil Zhani on 2018-01-18
Medium CVE-2018-6106: Incorrect handling of promises in V8. Reported by lokihardt of Google Project Zero on 2018-01-25
Medium CVE-2018-6107: URL spoof in Omnibox. Reported by Khalil Zhani on 2018-02-02
Medium CVE-2018-6108: URL spoof in Omnibox. Reported by Khalil Zhani on 2018-02-27
Low CVE-2018-6109: Incorrect handling of files by FileAPI. Reported by Dominik Weber (@DoWeb_) on 2017-04-10
Low CVE-2018-6110: Incorrect handling of plaintext files via file:// . Reported by Wenxiang Qian (aka blastxiang) on 2017-10-24
Low CVE-2018-6111: Heap-use-after-free in DevTools. Reported by Khalil Zhani on 2017-11-02
Low CVE-2018-6112: Incorrect URL handling in DevTools. Reported by Rob Wu on 2017-12-29
Low CVE-2018-6113: URL spoof in Navigation. Reported by Khalil Zhani on 2018-01-25
Low CVE-2018-6114: CSP bypass. Reported by Lnyas Zhang on 2018-02-13
Low CVE-2018-6115: SmartScreen bypass in downloads. Reported by James Feher on 2018-03-07
Low CVE-2018-6116: Incorrect low memory handling in WebAssembly. Reported by Jin from Chengdu Security Response Center of Qihoo 360 Technology Co. Ltd. on 2018-03-15
Low CVE-2018-6117: Confusing autofill settings. Reported by Spencer Dailey on 2018-03-15
Low CVE-2018-6084: Incorrect use of Distributed Objects in Google Software Updater on MacOS. Reported by Ian Beer of Google Project Zero on 2018-03-15
 2018-04-21 14:57:45 +02:00
taku0 f92dc58c71 flashplayer: 29.0.0.113 -> 29.0.0.140 2018-04-10 21:14:20 +09:00
Herwig Hochleitner 8cbf295b6c chromium: 65.0.3325.162 -> 65.0.3325.181 
dev: 66 -> 67

cc @YorikSar @aszlig
 2018-03-26 01:52:11 +02:00
Andrew Childs 3928fd9081 Chromium: fix skia build on aarch64 
Patch imported from Arch Linux ARM
 2018-03-20 00:20:42 +02:00
Yuriy Taraday 6b0732a956 chromium: 65.0.3325.146 -> 65.0.3325.162 
Also bump dev branch to ensure that next beta will work.
 2018-03-18 19:15:32 +02:00
taku0 864f4ceba4 flashplayer: 28.0.0.161 -> 29.0.0.113 2018-03-14 20:54:46 +09:00
Yuriy Taraday ebce42146f chromium: fix GCC 7 related build issues 
Also clean up unused patches.
 2018-03-10 03:31:55 +04:00
Herwig Hochleitner 9b4ffd98a4 chromium: 64.0.3282.186 -> 65.0.3325.146 
see https://chromereleases.googleblog.com/2018/03/stable-channel-update-for-desktop.html

cc @aszlig @YorikSar

CVE-2017-11215
CVE-2017-11225
CVE-2018-6060
CVE-2018-6061
CVE-2018-6062
CVE-2018-6057
CVE-2018-6063
CVE-2018-6064
CVE-2018-6065
CVE-2018-6066
CVE-2018-6067
CVE-2018-6068
CVE-2018-6069
CVE-2018-6070
CVE-2018-6071
CVE-2018-6072
CVE-2018-6073
CVE-2018-6074
CVE-2018-6075
CVE-2018-6076
CVE-2018-6077
CVE-2018-6078
CVE-2018-6079
CVE-2018-6080
CVE-2018-6081
CVE-2018-6082
CVE-2018-6083
 2018-03-09 03:02:49 +01:00
volth 96ebf614ad chromium, google-chrome: fix escaping of commandLineArgs 2018-03-06 14:56:07 +00:00