1
0
Fork 1
mirror of https://github.com/NixOS/nixpkgs.git synced 2024-11-23 22:20:51 +00:00
nixpkgs/pkgs/applications/networking/browsers
aszlig ef753d210e
chromium: Update all channels to latest versions
Overview of the updated versions:

stable: 49.0.2623.87 -> 49.0.2623.110
beta:   50.0.2661.26 -> 50.0.2661.49
dev:    50.0.2661.18 -> 51.0.2693.2

Most notably, this includes a series of urgent security fixes:

 * CVE-2016-1646: Out-of-bounds read in V8. Credit to Wen Xu from
                  Tencent KeenLab.
 * CVE-2016-1647: Use-after-free in Navigation. Credit to anonymous.
 * CVE-2016-1648: Use-after-free in Extensions. Credit to anonymous.
 * CVE-2016-1649: Buffer overflow in libANGLE. Credit to lokihardt
                  working with HP's Zero Day Initiative / Pwn2Own.
 * CVE-2016-1650: Denial of service in PageCaptureSaveAsMHTMLFunction

The official release announcement with details about these fixes can be
found here:

http://googlechromereleases.blogspot.de/2016/03/stable-channel-update_24.html

Beta and stable could be also affected, although I didn't do a detailed
check whether that's the case.

As this introduces Chromium 51 as the dev version, I had to make the
following changes to make it build:

 * libexif got removed, so let's do that on our end as well.
   See https://codereview.chromium.org/1803883002 for details.
 * Chromium doesn't seem to compile with our version of libpng, so let's
   resort to the bundled libpng for now.
 * site_engagement_ui.cc uses isnan outside of std namespace, so
   we're fixing that in postPatch using sed.

I have successfully built all versions on i686-linux and x86_64-linux
and tested it using the VM tests.

Test reports can be found at the following evaluation of my Hydra:

https://headcounter.org/hydra/eval/314584

Thanks to @grahamc for reporting this.

Signed-off-by: aszlig <aszlig@redmoonstudios.org>
Reported-by: Graham Christensen <graham@grahamc.com>
Fixes: #14299
2016-03-30 15:24:39 +02:00
..
arora
chromium chromium: Update all channels to latest versions 2016-03-30 15:24:39 +02:00
conkeror Replace 'with plaforms; platform' with 'platforms.platform' 2015-11-17 21:30:43 +01:00
dillo Dillo: 3.0.4.1 -> 3.0.5 2015-07-23 23:05:19 -03:00
dwb dwb: mark it as broken, closes #7952 2015-08-04 13:04:14 +02:00
elinks x11: replace its usage by xlibsWrapper directly 2015-09-15 12:08:24 +02:00
firefox firefox-esr: fix build after 574a6d34d2 2016-03-26 09:13:58 +01:00
firefox-bin firefox-bin: 45.0 -> 45.0.1 2016-03-19 14:28:10 +09:00
google-chrome google-chrome: Fix fetching upstream binary 2016-03-21 16:15:18 +01:00
jumanji jumanji: fixed source 2015-12-15 02:46:04 +09:00
kwebkitpart kde414: build with kdelibs-4.14.12 2015-09-27 15:08:12 -05:00
links2 links: Remove package & deprecate for links2 2016-01-31 11:46:35 +01:00
luakit
lynx lynx: use full version, ‘official’ URI & lib.optionals 2016-03-18 08:03:48 +01:00
midori Fix Midori build 2016-03-28 00:02:10 +02:00
mozilla-plugins flashplayer: 11.2.202.559 -> 11.2.202.577 2016-03-11 10:11:08 +09:00
opera opera: fix build 2015-10-10 14:24:05 +03:00
qutebrowser buildPythonApplication: use new function for Python applications 2016-02-19 13:16:41 +01:00
rekonq rekonq: fix homepage url 2016-02-16 14:11:36 +00:00
surf surf: move to correct category 2016-01-03 15:49:55 +01:00
uzbl uzbl: version 20120514 -> v0.9.0 2016-03-01 23:15:26 -05:00
vimb vimb: 2.9 -> 2.11 2016-01-08 10:57:32 +11:00
vimprobable2 Don't statically depend on cacert for certificates 2015-07-31 01:34:58 +02:00
w3m w3m: update to actively maintained debian repo 2016-01-14 13:06:48 +01:00