Sync from SUSE:SLFO:Main webkit2gtk3 revision 199995f434831fe9388290a5e0f9d755

63f7badbada070ebaadd318b2801818ecf7e7ea0.patch

@@ -0,0 +1,31 @@
+From 63f7badbada070ebaadd318b2801818ecf7e7ea0 Mon Sep 17 00:00:00 2001
+From: Don Olmstead <don.olmstead@sony.com>
+Date: Sat, 26 Oct 2024 08:27:01 -0700
+Subject: [PATCH] Support ICU 76.1 build
+ https://bugs.webkit.org/show_bug.cgi?id=282120
+
+Reviewed by Yusuke Suzuki.
+
+In ICU 76.1 an additional macro `U_SHOW_CPLUSPLUS_HEADER_API` was added to
+control visibility of the C++ API within ICU. Set this value to `0` since WebKit
+wants to only use the C API.
+
+* Source/WTF/wtf/Platform.h:
+
+Canonical link: https://commits.webkit.org/285727@main
+---
+ Source/WTF/wtf/Platform.h | 1 +
+ 1 file changed, 1 insertion(+)
+
+diff --git a/Source/WTF/wtf/Platform.h b/Source/WTF/wtf/Platform.h
+index 23070df2937ba..51a8dce97755e 100644
+--- a/Source/WTF/wtf/Platform.h
++++ b/Source/WTF/wtf/Platform.h
+@@ -115,6 +115,7 @@
+ /* ICU configuration. Some of these match ICU defaults on some platforms, but we would like them consistently set everywhere we build WebKit. */
+ #define U_HIDE_DEPRECATED_API 1
+ #define U_SHOW_CPLUSPLUS_API 0
++#define U_SHOW_CPLUSPLUS_HEADER_API 0
+ #ifdef __cplusplus
+ #define UCHAR_TYPE char16_t
+ #endif

webkit2gtk3.changes

@@ -1,3 +1,41 @@
+-------------------------------------------------------------------
+Wed Nov 27 21:34:14 UTC 2024 - Michael Gorse <mgorse@suse.com>
+
+- Update to version 2.46.4:
+  + Improve memory consumption and performance of Canvas
+    getImageData.
+  + Fix preserve-3D intersection rendering.
+  + Fix video dimensions since GStreamer 1.24.9.
+  + Fix the HTTP-based remote Web Inspector not loading in
+    Chromium.
+  + Fix content filters not working on about:blank iframes.
+  + Fix several crashes and rendering issues.
+  + Security fixes: CVE-2024-44308, CVE-2024-44309.
+- Drop patches fixed upstream:
+  + 9e9ea966373d3858668f6a29d8ba91a5807c8dd8.patch
+  + webkit2gtk3-CVE-2024-44308.patch
+  + webkit2gtk3-CVE-2024-44309.patch
+
+-------------------------------------------------------------------
+Mon Nov 25 19:25:44 UTC 2024 - Michael Gorse <mgorse@suse.com>
+
+- Add webkit2gtk3-CVE-2024-44308.patch: don't allocate DFG register
+  after a slow path (boo#1233631 CVE-2024-44308).
+- Add webkit2gtk3-CVE-2024-44309.patch: fix a cookie management
+  issue (boo#1233632 CVE-2024-44309).
+
+-------------------------------------------------------------------
+Thu Nov 14 10:18:18 UTC 2024 - Dominique Leuenberger <dimstar@opensuse.org>
+
+- Add 63f7badbada070ebaadd318b2801818ecf7e7ea0.patch: Fix build
+  using ICU 76.1.
+
+-------------------------------------------------------------------
+Tue Nov 12 17:24:48 UTC 2024 - Bjørn Lie <bjorn.lie@gmail.com>
+
+- Add 9e9ea966373d3858668f6a29d8ba91a5807c8dd8.patch: Fix aspect
+  ratio in videos with gststreamer-1.24.9.
+
 -------------------------------------------------------------------
 Mon Nov  4 16:08:38 UTC 2024 - Michael Gorse <mgorse@suse.com>
 
@@ -5,7 +43,7 @@ Mon Nov  4 16:08:38 UTC 2024 - Michael Gorse <mgorse@suse.com>
   + Flatten layers to a plane when preseve-3d style is set.
   + Fix DuckDuckGo links by adding a user agent quirk.
   + Fix several crashes and rendering issues.
-  + Security fixes: CVE-2044-44244, CVE-2024-44296.
+  + Security fixes: CVE-2024-44244, CVE-2024-44296.
 - Drop bug281492.patch: fixed upstream.
 
 -------------------------------------------------------------------
@@ -127,7 +165,7 @@ Sun Sep  1 16:30:22 UTC 2024 - Bjørn Lie <bjorn.lie@gmail.com>
 -------------------------------------------------------------------
 Tue Aug 13 16:48:56 UTC 2024 - Michael Gorse <mgorse@suse.com>
 
-- Update to version 2.44.3 (boo#1228696 boo#1228697 boo#1228698):
+- Update to version 2.44.3 (boo#1228697):
   + Fix web process cache suspend/resume when sandbox is enabled.
   + Fix accelerated images dissapearing after scrolling.
   + Fix video flickering with DMA-BUF sink.
@@ -137,8 +175,8 @@ Tue Aug 13 16:48:56 UTC 2024 - Michael Gorse <mgorse@suse.com>
     API.
   + Fix several crashes and rendering issues.
   + Security fixes: CVE-2024-40776, CVE-2024-40779, CVE-2024-40780,
-    CVE-2023-40782, CVE-2024-40785, CVE-2024-40789, CVE-2024-40794,
+    CVE-2024-40782, CVE-2024-40789, CVE-2024-4558, CVE-2024-27838,
-    CVE-2024-4558, CVE-2024-27838, CVE-2024-27851.
+  CVE-2024-27851.
 - Drop patches now upstream:
   9d5844679af8f84036f1b800307e799bd7ab73ba.patch
   webkit2gtk3-CVE-2024-40776.patch

webkit2gtk3.spec

@@ -79,7 +79,7 @@ ExclusiveArch:  do-not-build
 %endif
 
 Name:           webkit2%{_gtknamesuffix}
-Version:        2.46.3
+Version:        2.46.4
 Release:        0
 Summary:        Library for rendering web content, GTK+ Port
 License:        BSD-3-Clause AND LGPL-2.0-or-later
@@ -92,6 +92,8 @@ Source99:       webkit2gtk3.keyring
 
 # PATCH-FEATURE-OPENSUSE reproducibility.patch -- Make build reproducible
 Patch0:         reproducibility.patch
+# PATCH-FIX-UPSTREAM 63f7badbada070ebaadd318b2801818ecf7e7ea0.patch -- Support ICU 76.1 build
+Patch1:         https://github.com/WebKit/WebKit/commit/63f7badbada070ebaadd318b2801818ecf7e7ea0.patch
 
 BuildRequires:  Mesa-libEGL-devel
 BuildRequires:  Mesa-libGL-devel

webkitgtk-2.46.3.tar.xz.asc

@@ -1,16 +0,0 @@
------BEGIN PGP SIGNATURE-----
-
-iQIzBAABCgAdFiEEAToBJ6ycZbNP+mJSbBAJtpOXU5MFAmciLBQACgkQbBAJtpOX
-U5MFsBAAqwUuPEkirbQXxESAu8nJKUG3RVa4y3c1NaTRETW19cy/32KeiBlxbWW5
-UKF2gKlu5B+mJn9f0hebYBUkqr6HdWO1JnBz3XNXZ7dNObTWlN9g4T6tlqsxAdsk
-B04ddWFQKYQJ4pMLjlxVFkFXQ0vh9UywBwUyGXrqg9yo2OcSGpsqdujyZfdlWrHc
-0kDLow9SYM5XhkzFoQxKlYsVg1vhzpTxDuv39JqVTGHlX8pEplpCsrMwpVQ+89aP
-zv64u/xnPAEsN4wGeB0QyH6H0llukTmrgWUfoRqeDLHMGAeuHe1yONGyK5fWA1u+
-ABTsjVnh5nOQxUZaNc3dpMdUcrp+kVhjKDwMOhKNbfVoLWxchmU5VvrCoytRAX8i
-4js2xOgnMk26cNB4dZsMg9cYH4Zr+nkfkjGljGXRSvexF8iBUc2Dv0scrtDh3ArI
-aWk4eMyO5nRPIFWE6j5d+sAm1TF1hGMW33beYOTy5Iqm2l2inRoaxGdAz2ZFjF5S
-xcjG7tT3+pG8WXPhJ0Tl41mPJKg79tY3F0uzSedtJ+J3q4uRKORFOdChtDbqHHT7
-mI0jT6rrGckXlncufvg19RiCnmP8vmZEyeuTZja6vBsV3pA7Uc/IWcWEXi9ip/om
-grjX+68/ypghS571sFxrjQaNdqrO0fwMrJBZxhgelJKnykvoj2Y=
-=wug0
------END PGP SIGNATURE-----

webkitgtk-2.46.4.tar.xz.asc

@@ -0,0 +1,16 @@
+-----BEGIN PGP SIGNATURE-----
+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+=WURb
+-----END PGP SIGNATURE-----