Sync from SUSE:SLFO:Main webkit2gtk3 revision 199995f434831fe9388290a5e0f9d755

2024-12-11 15:14:55 +01:00 · 2024-12-11 15:14:55 +01:00 · 149e9b3d67
commit 149e9b3d67
parent 5773e90396
7 changed files with 95 additions and 24 deletions
--- a/63f7badbada070ebaadd318b2801818ecf7e7ea0.patch
+++ b/63f7badbada070ebaadd318b2801818ecf7e7ea0.patch
@ -0,0 +1,31 @@
+From 63f7badbada070ebaadd318b2801818ecf7e7ea0 Mon Sep 17 00:00:00 2001
+From: Don Olmstead <don.olmstead@sony.com>
+Date: Sat, 26 Oct 2024 08:27:01 -0700
+Subject: [PATCH] Support ICU 76.1 build
+ https://bugs.webkit.org/show_bug.cgi?id=282120
+
+Reviewed by Yusuke Suzuki.
+
+In ICU 76.1 an additional macro `U_SHOW_CPLUSPLUS_HEADER_API` was added to
+control visibility of the C++ API within ICU. Set this value to `0` since WebKit
+wants to only use the C API.
+
+* Source/WTF/wtf/Platform.h:
+
+Canonical link: https://commits.webkit.org/285727@main
+---
+ Source/WTF/wtf/Platform.h | 1 +
+ 1 file changed, 1 insertion(+)
+
+diff --git a/Source/WTF/wtf/Platform.h b/Source/WTF/wtf/Platform.h
+index 23070df2937ba..51a8dce97755e 100644
+--- a/Source/WTF/wtf/Platform.h
+++ b/Source/WTF/wtf/Platform.h
+@@ -115,6 +115,7 @@
+ /* ICU configuration. Some of these match ICU defaults on some platforms, but we would like them consistently set everywhere we build WebKit. */
+ #define U_HIDE_DEPRECATED_API 1
+ #define U_SHOW_CPLUSPLUS_API 0
+#define U_SHOW_CPLUSPLUS_HEADER_API 0
+ #ifdef __cplusplus
+ #define UCHAR_TYPE char16_t
+ #endif
--- a/webkit2gtk3.changes
+++ b/webkit2gtk3.changes
@ -1,3 +1,41 @@
+-------------------------------------------------------------------
+Wed Nov 27 21:34:14 UTC 2024 - Michael Gorse <mgorse@suse.com>
+
+- Update to version 2.46.4:
+  + Improve memory consumption and performance of Canvas
+    getImageData.
+  + Fix preserve-3D intersection rendering.
+  + Fix video dimensions since GStreamer 1.24.9.
+  + Fix the HTTP-based remote Web Inspector not loading in
+    Chromium.
+  + Fix content filters not working on about:blank iframes.
+  + Fix several crashes and rendering issues.
+  + Security fixes: CVE-2024-44308, CVE-2024-44309.
+- Drop patches fixed upstream:
+  + 9e9ea966373d3858668f6a29d8ba91a5807c8dd8.patch
+  + webkit2gtk3-CVE-2024-44308.patch
+  + webkit2gtk3-CVE-2024-44309.patch
+
+-------------------------------------------------------------------
+Mon Nov 25 19:25:44 UTC 2024 - Michael Gorse <mgorse@suse.com>
+
+- Add webkit2gtk3-CVE-2024-44308.patch: don't allocate DFG register
+  after a slow path (boo#1233631 CVE-2024-44308).
+- Add webkit2gtk3-CVE-2024-44309.patch: fix a cookie management
+  issue (boo#1233632 CVE-2024-44309).
+
+-------------------------------------------------------------------
+Thu Nov 14 10:18:18 UTC 2024 - Dominique Leuenberger <dimstar@opensuse.org>
+
+- Add 63f7badbada070ebaadd318b2801818ecf7e7ea0.patch: Fix build
+  using ICU 76.1.
+
+-------------------------------------------------------------------
+Tue Nov 12 17:24:48 UTC 2024 - Bjørn Lie <bjorn.lie@gmail.com>
+
+- Add 9e9ea966373d3858668f6a29d8ba91a5807c8dd8.patch: Fix aspect
+  ratio in videos with gststreamer-1.24.9.
+
 -------------------------------------------------------------------
 Mon Nov  4 16:08:38 UTC 2024 - Michael Gorse <mgorse@suse.com>

@ -5,7 +43,7 @@ Mon Nov  4 16:08:38 UTC 2024 - Michael Gorse <mgorse@suse.com>
  + Flatten layers to a plane when preseve-3d style is set.
  + Fix DuckDuckGo links by adding a user agent quirk.
  + Fix several crashes and rendering issues.
-  + Security fixes: CVE-2044-44244, CVE-2024-44296.
+  + Security fixes: CVE-2024-44244, CVE-2024-44296.
 - Drop bug281492.patch: fixed upstream.

 -------------------------------------------------------------------
@ -127,7 +165,7 @@ Sun Sep  1 16:30:22 UTC 2024 - Bjørn Lie <bjorn.lie@gmail.com>
 -------------------------------------------------------------------
 Tue Aug 13 16:48:56 UTC 2024 - Michael Gorse <mgorse@suse.com>

- Update to version 2.44.3 (boo#1228696 boo#1228697 boo#1228698):
+- Update to version 2.44.3 (boo#1228697):
  + Fix web process cache suspend/resume when sandbox is enabled.
  + Fix accelerated images dissapearing after scrolling.
  + Fix video flickering with DMA-BUF sink.
@ -137,8 +175,8 @@ Tue Aug 13 16:48:56 UTC 2024 - Michael Gorse <mgorse@suse.com>
    API.
  + Fix several crashes and rendering issues.
  + Security fixes: CVE-2024-40776, CVE-2024-40779, CVE-2024-40780,
-    CVE-2023-40782, CVE-2024-40785, CVE-2024-40789, CVE-2024-40794,
-    CVE-2024-4558, CVE-2024-27838, CVE-2024-27851.
+    CVE-2024-40782, CVE-2024-40789, CVE-2024-4558, CVE-2024-27838,
+  CVE-2024-27851.
 - Drop patches now upstream:
  9d5844679af8f84036f1b800307e799bd7ab73ba.patch
  webkit2gtk3-CVE-2024-40776.patch
--- a/webkit2gtk3.spec
+++ b/webkit2gtk3.spec
@ -79,7 +79,7 @@ ExclusiveArch:  do-not-build
 %endif

 Name:           webkit2%{_gtknamesuffix}
-Version:        2.46.3
+Version:        2.46.4
 Release:        0
 Summary:        Library for rendering web content, GTK+ Port
 License:        BSD-3-Clause AND LGPL-2.0-or-later
@ -92,6 +92,8 @@ Source99:       webkit2gtk3.keyring

 # PATCH-FEATURE-OPENSUSE reproducibility.patch -- Make build reproducible
 Patch0:         reproducibility.patch
+# PATCH-FIX-UPSTREAM 63f7badbada070ebaadd318b2801818ecf7e7ea0.patch -- Support ICU 76.1 build
+Patch1:         https://github.com/WebKit/WebKit/commit/63f7badbada070ebaadd318b2801818ecf7e7ea0.patch

 BuildRequires:  Mesa-libEGL-devel
 BuildRequires:  Mesa-libGL-devel
--- a/webkitgtk-2.46.3.tar.xz
+++ b/webkitgtk-2.46.3.tar.xz
--- a/webkitgtk-2.46.3.tar.xz.asc
+++ b/webkitgtk-2.46.3.tar.xz.asc
@ -1,16 +0,0 @@
-----BEGIN PGP SIGNATURE-----
-
-iQIzBAABCgAdFiEEAToBJ6ycZbNP+mJSbBAJtpOXU5MFAmciLBQACgkQbBAJtpOX
-U5MFsBAAqwUuPEkirbQXxESAu8nJKUG3RVa4y3c1NaTRETW19cy/32KeiBlxbWW5
-UKF2gKlu5B+mJn9f0hebYBUkqr6HdWO1JnBz3XNXZ7dNObTWlN9g4T6tlqsxAdsk
-B04ddWFQKYQJ4pMLjlxVFkFXQ0vh9UywBwUyGXrqg9yo2OcSGpsqdujyZfdlWrHc
-0kDLow9SYM5XhkzFoQxKlYsVg1vhzpTxDuv39JqVTGHlX8pEplpCsrMwpVQ+89aP
-zv64u/xnPAEsN4wGeB0QyH6H0llukTmrgWUfoRqeDLHMGAeuHe1yONGyK5fWA1u+
-ABTsjVnh5nOQxUZaNc3dpMdUcrp+kVhjKDwMOhKNbfVoLWxchmU5VvrCoytRAX8i
-4js2xOgnMk26cNB4dZsMg9cYH4Zr+nkfkjGljGXRSvexF8iBUc2Dv0scrtDh3ArI
-aWk4eMyO5nRPIFWE6j5d+sAm1TF1hGMW33beYOTy5Iqm2l2inRoaxGdAz2ZFjF5S
-xcjG7tT3+pG8WXPhJ0Tl41mPJKg79tY3F0uzSedtJ+J3q4uRKORFOdChtDbqHHT7
-mI0jT6rrGckXlncufvg19RiCnmP8vmZEyeuTZja6vBsV3pA7Uc/IWcWEXi9ip/om
-grjX+68/ypghS571sFxrjQaNdqrO0fwMrJBZxhgelJKnykvoj2Y=
-=wug0
-----END PGP SIGNATURE-----
--- a/webkitgtk-2.46.4.tar.xz
+++ b/webkitgtk-2.46.4.tar.xz
--- a/webkitgtk-2.46.4.tar.xz.asc
+++ b/webkitgtk-2.46.4.tar.xz.asc
@ -0,0 +1,16 @@
+-----BEGIN PGP SIGNATURE-----
+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+=WURb
+-----END PGP SIGNATURE-----