2017-06-05 13:09:43 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Mon Jun 5 12:55:22 UTC 2017 - tchvatal@suse.com
|
|
|
|
|
|
|
|
|
|
|
|
- Add patch to build with gcc7:
|
|
|
|
|
|
* chromium-gcc7.patch
|
|
|
|
|
|
|
2017-05-10 07:45:10 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed May 10 07:43:46 UTC 2017 - tchvatal@suse.com
|
|
|
|
|
|
|
|
|
|
|
|
- Version update to 58.0.3029.110:
|
|
|
|
|
|
* Various small bugfixes
|
|
|
|
|
|
|
2017-05-04 12:43:08 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Thu May 4 12:40:32 UTC 2017 - tchvatal@suse.com
|
|
|
|
|
|
|
|
|
|
|
|
- Version update to 58.0.3029.96:
|
|
|
|
|
|
* Fixes bsc#1037594 CVE-2017-5068
|
|
|
|
|
|
|
2017-04-25 13:25:29 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Tue Apr 25 13:24:42 UTC 2017 - tchvatal@suse.com
|
|
|
|
|
|
|
|
|
|
|
|
- Use bundled jinja2, system one changed in 2.9 too much to work
|
|
|
|
|
|
* It is at least used only during build
|
|
|
|
|
|
|
2017-03-30 13:13:13 +00:00
|
|
|
|
-------------------------------------------------------------------
|
2017-04-21 10:00:24 +00:00
|
|
|
|
Fri Apr 21 09:57:49 UTC 2017 - tchvatal@suse.com
|
|
|
|
|
|
|
|
|
|
|
|
- Version update to 58.0.3029.81 bsc#1035103:
|
|
|
|
|
|
* High CVE-2017-5057: Type confusion in PDFium. Credit to Guang Gong of Alpha Team, Qihoo 360
|
|
|
|
|
|
* High CVE-2017-5058: Heap use after free in Print Preview. Credit to Khalil Zhani
|
|
|
|
|
|
* High CVE-2017-5059: Type confusion in Blink. Credit to SkyLined working with Trend Micro's Zero Day Initiative
|
|
|
|
|
|
* Medium CVE-2017-5060: URL spoofing in Omnibox. Credit to Xudong Zheng
|
|
|
|
|
|
* Medium CVE-2017-5061: URL spoofing in Omnibox. Credit to Haosheng Wang (@gnehsoah)
|
|
|
|
|
|
* Medium CVE-2017-5062: Use after free in Chrome Apps. Credit to anonymous
|
|
|
|
|
|
* Medium CVE-2017-5063: Heap overflow in Skia. Credit to Sweetchip
|
|
|
|
|
|
* Medium CVE-2017-5064: Use after free in Blink. Credit to Wadih Matar
|
|
|
|
|
|
* Medium CVE-2017-5065: Incorrect UI in Blink. Credit to Khalil Zhani
|
|
|
|
|
|
* Medium CVE-2017-5066: Incorrect signature handing in Networking. Credit to chenchu
|
|
|
|
|
|
* Medium CVE-2017-5067: URL spoofing in Omnibox. Credit to Khalil Zhani
|
|
|
|
|
|
* Low CVE-2017-5069: Cross-origin bypass in Blink. Credit to Michael Reizelman
|
|
|
|
|
|
- Refresh patch fix-gn-bootstrap.diff
|
|
|
|
|
|
- Refresh patch chromium-system-jinja-r13.patch
|
|
|
|
|
|
- Remove obsolete patch chromium-57-gcc4.patch
|
2017-04-21 09:15:51 +00:00
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
2017-04-21 10:00:24 +00:00
|
|
|
|
Thu Mar 30 13:07:50 UTC 2017 - tchvatal@suse.com
|
2017-04-21 09:15:51 +00:00
|
|
|
|
|
2017-04-21 10:00:24 +00:00
|
|
|
|
- Version update to 57.0.2987.133 bsc#1031677:
|
|
|
|
|
|
* Critical CVE-2017-5055: Use after free in printing. Credit to Wadih Matar
|
|
|
|
|
|
* High CVE-2017-5054: Heap buffer overflow in V8. Credit to Nicolas Trippar of Zimperium zLabs
|
|
|
|
|
|
* High CVE-2017-5052: Bad cast in Blink. Credit to JeongHoon Shin
|
|
|
|
|
|
* High CVE-2017-5056: Use after free in Blink. Credit to anonymous
|
|
|
|
|
|
* High CVE-2017-5053: Out of bounds memory access in V8. Credit to Team Sniper (Keen Lab and PC Mgr) reported through ZDI (ZDI-CAN-4587)
|
2017-03-30 13:13:13 +00:00
|
|
|
|
|
2017-03-24 15:24:27 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Fri Mar 24 15:22:38 UTC 2017 - tchvatal@suse.com
|
|
|
|
|
|
|
|
|
|
|
|
- Drop the browser(npapi) provide which is not true
|
|
|
|
|
|
|
2017-03-19 11:05:38 +00:00
|
|
|
|
-------------------------------------------------------------------
|
2017-04-21 10:00:24 +00:00
|
|
|
|
Sun Mar 19 11:04:47 UTC 2017 - tchvatal@suse.com
|
2017-04-21 09:15:51 +00:00
|
|
|
|
|
2017-04-21 10:00:24 +00:00
|
|
|
|
- Add patch to build with gcc4
|
|
|
|
|
|
* chromium-57-gcc4.patch
|
2017-04-21 09:15:51 +00:00
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
2017-04-21 10:00:24 +00:00
|
|
|
|
Thu Mar 16 20:45:00 UTC 2017 - tchvatal@suse.com
|
2017-04-21 09:15:51 +00:00
|
|
|
|
|
2017-04-21 10:00:24 +00:00
|
|
|
|
- Do not use gcc5 and newer as the compat was fixed again
|
|
|
|
|
|
- Update to 57.0.2987.110 with various other small tweaks
|
2017-04-21 09:15:51 +00:00
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
2017-04-21 10:00:24 +00:00
|
|
|
|
Fri Mar 10 10:55:23 UTC 2017 - tchvatal@suse.com
|
2017-04-21 09:15:51 +00:00
|
|
|
|
|
2017-04-21 10:00:24 +00:00
|
|
|
|
- Version update to 57.0.2987.98 bsc#1028848:
|
|
|
|
|
|
CVE-2017-5030 CVE-2017-5031 CVE-2017-5032 CVE-2017-5029 CVE-2017-5034
|
|
|
|
|
|
CVE-2017-5035 CVE-2017-5036 CVE-2017-5037 CVE-2017-5039 CVE-2017-5040
|
|
|
|
|
|
CVE-2017-5041 CVE-2017-5033 CVE-2017-5042 CVE-2017-5038 CVE-2017-5043
|
|
|
|
|
|
CVE-2017-5044 CVE-2017-5045 CVE-2017-5046
|
|
|
|
|
|
- Refresh patches
|
|
|
|
|
|
* fix-gn-bootstrap.diff
|
|
|
|
|
|
* chromium-linker-memory.patch
|
|
|
|
|
|
- Remove obsolete patches:
|
|
|
|
|
|
* chromium-sandbox.patch
|
|
|
|
|
|
* chromium-54-ffmpeg2compat.patch
|
|
|
|
|
|
- Remove vaapi patch which broke rendering on non-intel cards:
|
|
|
|
|
|
* chromium-enable-vaapi-on-suse.patch
|
|
|
|
|
|
- From this release onwards i586 build is disabled
|
2017-03-10 10:52:51 +00:00
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
2017-04-21 10:00:24 +00:00
|
|
|
|
Wed Feb 15 12:02:32 UTC 2017 - idonmez@suse.com
|
2017-02-15 12:12:32 +00:00
|
|
|
|
|
|
|
|
|
|
- Also add harfbuzz-ng to keeplibs for SLE
|
|
|
|
|
|
|
2017-02-06 20:33:22 +00:00
|
|
|
|
-------------------------------------------------------------------
|
2017-04-21 10:00:24 +00:00
|
|
|
|
Mon Feb 6 20:29:52 UTC 2017 - tchvatal@suse.com
|
2017-02-06 20:33:22 +00:00
|
|
|
|
|
2017-04-21 10:00:24 +00:00
|
|
|
|
- Add condition for system harfbuzz to be disabled on SLE
|
2017-02-06 20:33:22 +00:00
|
|
|
|
|
2017-02-06 12:54:45 +00:00
|
|
|
|
-------------------------------------------------------------------
|
2017-04-21 10:00:24 +00:00
|
|
|
|
Mon Feb 6 12:21:34 UTC 2017 - qvoheagbfovvhubzdxfx@posteo.net
|
2017-02-06 12:54:45 +00:00
|
|
|
|
|
2017-04-21 10:00:24 +00:00
|
|
|
|
- Fixed a typo in the build requirements for system minizip.
|
2017-02-06 12:54:45 +00:00
|
|
|
|
|
2017-02-03 12:38:03 +00:00
|
|
|
|
-------------------------------------------------------------------
|
2017-04-21 10:00:24 +00:00
|
|
|
|
Fri Feb 3 12:23:34 UTC 2017 - tchvatal@suse.com
|
2017-03-10 10:52:51 +00:00
|
|
|
|
|
2017-04-21 10:00:24 +00:00
|
|
|
|
- Version update to 56.0.2924.87:
|
|
|
|
|
|
* Various small fixes
|
|
|
|
|
|
* Disabled option to enable/disable plugins in the chrome://plugins
|
|
|
|
|
|
|
2017-03-10 10:52:51 +00:00
|
|
|
|
-------------------------------------------------------------------
|
2017-04-21 10:00:24 +00:00
|
|
|
|
Thu Feb 2 20:01:27 UTC 2017 - qvoheagbfovvhubzdxfx@posteo.net
|
2017-03-10 10:52:51 +00:00
|
|
|
|
|
2017-04-21 10:00:24 +00:00
|
|
|
|
- Added the package 'chromium-privacy' with multiple patches
|
|
|
|
|
|
sourced from the release version on https://github.com/
|
|
|
|
|
|
u4qo60z73t1c4hurv3ny/privacy_patches-oS_cr, which, when enabled
|
|
|
|
|
|
with the build option 'privacy', builds a version of Chromium
|
|
|
|
|
|
with less privacy implications due to Google services
|
|
|
|
|
|
integration.
|
2017-03-10 10:52:51 +00:00
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
2017-04-21 10:00:24 +00:00
|
|
|
|
Wed Feb 1 09:48:35 UTC 2017 - qvoheagbfovvhubzdxfx@posteo.net
|
2017-03-10 10:52:51 +00:00
|
|
|
|
|
2017-03-10 10:59:30 +00:00
|
|
|
|
- Changed the build requirement of libavformat to library version
|
|
|
|
|
|
57.41.100, as included in ffmpeg 3.1.1, as only this version
|
|
|
|
|
|
properly supports the public AVStream API 'codecpar'.
|
2017-04-21 09:15:51 +00:00
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
2017-04-21 10:00:24 +00:00
|
|
|
|
Tue Jan 31 14:08:26 UTC 2017 - tchvatal@suse.com
|
|
|
|
|
|
|
|
|
|
|
|
- Version update to 56.0.2924.76 bsc#1022049:
|
|
|
|
|
|
- CVE-2017-5007: Universal XSS in Blink
|
|
|
|
|
|
- CVE-2017-5006: Universal XSS in Blink
|
|
|
|
|
|
- CVE-2017-5008: Universal XSS in Blink
|
|
|
|
|
|
- CVE-2017-5010: Universal XSS in Blink
|
|
|
|
|
|
- CVE-2017-5011: Unauthorised file access in Devtools
|
|
|
|
|
|
- CVE-2017-5009: Out of bounds memory access in WebRTC
|
|
|
|
|
|
- CVE-2017-5012: Heap overflow in V8
|
|
|
|
|
|
- CVE-2017-5013: Address spoofing in Omnibox
|
|
|
|
|
|
- CVE-2017-5014: Heap overflow in Skia
|
|
|
|
|
|
- CVE-2017-5015: Address spoofing in Omnibox
|
|
|
|
|
|
- CVE-2017-5019: Use after free in Renderer
|
|
|
|
|
|
- CVE-2017-5016: UI spoofing in Blink
|
|
|
|
|
|
- CVE-2017-5017: Uninitialised memory access in webm video
|
|
|
|
|
|
- CVE-2017-5018: Universal XSS in chrome://apps
|
|
|
|
|
|
- CVE-2017-5020: Universal XSS in chrome://downloads
|
|
|
|
|
|
- CVE-2017-5021: Use after free in Extensions
|
|
|
|
|
|
- CVE-2017-5022: Bypass of Content Security Policy in Blink
|
|
|
|
|
|
- CVE-2017-5023: Type confusion in metrics
|
|
|
|
|
|
- CVE-2017-5024: Heap overflow in FFmpeg
|
|
|
|
|
|
- CVE-2017-5025: Heap overflow in FFmpeg
|
|
|
|
|
|
- CVE-2017-5026: UI spoofing. Credit to Ronni Skansing
|
|
|
|
|
|
- Add conditional to switch between system and bundled icu
|
|
|
|
|
|
- Raise dependency on harfbuzz to 1.3.1
|
|
|
|
|
|
- Also refresh patches:
|
|
|
|
|
|
chromium-prop-codecs.patch chromium-linker-memory.patch
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sat Jan 28 11:31:18 UTC 2017 - qvoheagbfovvhubzdxfx@posteo.net
|
2017-04-21 09:15:51 +00:00
|
|
|
|
|
2017-04-21 10:00:24 +00:00
|
|
|
|
- Added patch chromium-enable-vaapi-on-suse.patch to enable
|
|
|
|
|
|
VAAPI hardware accelerated video decoding.
|
2017-04-21 09:15:51 +00:00
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
2017-04-21 10:00:24 +00:00
|
|
|
|
Wed Dec 21 20:19:42 UTC 2016 - astieger@suse.com
|
2017-04-21 09:15:51 +00:00
|
|
|
|
|
2017-04-21 10:00:24 +00:00
|
|
|
|
- Chromium 55.0.2883.87:
|
|
|
|
|
|
* various fixes for crashes and specific wesites
|
|
|
|
|
|
* update Google pinned certificates
|
2017-04-21 09:15:51 +00:00
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
2017-04-21 10:00:24 +00:00
|
|
|
|
Wed Dec 21 10:02:52 UTC 2016 - tchvatal@suse.com
|
2017-04-21 09:15:51 +00:00
|
|
|
|
|
2017-04-21 10:00:24 +00:00
|
|
|
|
- Disable system icu on Factory, crashes autofill
|
2017-04-21 09:15:51 +00:00
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
2017-04-21 10:00:24 +00:00
|
|
|
|
Tue Dec 13 14:38:08 UTC 2016 - idonmez@suse.com
|
2016-12-13 15:17:44 +00:00
|
|
|
|
|
|
|
|
|
|
- python-html5lib now depends on six, so preserve that too for SLE
|
|
|
|
|
|
builds.
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
2017-04-21 10:00:24 +00:00
|
|
|
|
Fri Dec 9 12:07:10 UTC 2016 - astieger@suse.com
|
2017-04-21 09:15:51 +00:00
|
|
|
|
|
2017-04-21 10:00:24 +00:00
|
|
|
|
- Obsolete ffmpeg and ffmpegsumo package in addition to conflict
|
2017-03-10 10:52:51 +00:00
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
2017-04-21 10:00:24 +00:00
|
|
|
|
Mon Dec 5 17:08:45 UTC 2016 - astieger@suse.com
|
2017-03-10 10:52:51 +00:00
|
|
|
|
|
2017-04-21 10:00:24 +00:00
|
|
|
|
- record minimum version for harfbuzz, incuding runtime
|
|
|
|
|
|
Chromium will crash with harfbuzz < 1.3.0
|
2017-04-21 09:15:51 +00:00
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
2017-04-21 10:00:24 +00:00
|
|
|
|
Sat Dec 3 09:59:21 UTC 2016 - tchvatal@suse.com
|
2017-04-21 09:15:51 +00:00
|
|
|
|
|
2017-04-21 10:00:24 +00:00
|
|
|
|
- Chromium 55.0.2883.75 bnc#1013236:
|
|
|
|
|
|
CVE-2016-9651 CVE-2016-5208 CVE-2016-5207 CVE-2016-5206 CVE-2016-5205
|
|
|
|
|
|
CVE-2016-5204 CVE-2016-5209 CVE-2016-5203 CVE-2016-5210 CVE-2016-5212
|
|
|
|
|
|
CVE-2016-5211 CVE-2016-5213 CVE-2016-5214 CVE-2016-5216 CVE-2016-5215
|
|
|
|
|
|
CVE-2016-5217 CVE-2016-5218 CVE-2016-5219 CVE-2016-5221 CVE-2016-5220
|
|
|
|
|
|
CVE-2016-5222 CVE-2016-9650 CVE-2016-5223 CVE-2016-5226 CVE-2016-5225
|
|
|
|
|
|
CVE-2016-5224 CVE-2016-9652
|
|
|
|
|
|
- Switch to system libraries: harfbuzz, zlib, ffmpeg, ...
|
|
|
|
|
|
- Refreshed patches:
|
|
|
|
|
|
* chromium-system-ffmpeg-r3.patch
|
|
|
|
|
|
* chromium-system-jinja-r13.patch
|
|
|
|
|
|
- Use system ffmpeg unless on 13.2 that didn't include it
|
|
|
|
|
|
* chromium-54-ffmpeg2compat.patch
|
|
|
|
|
|
* Remove upstreamed chromium-more-codec-aliases.patch
|
|
|
|
|
|
- Remove bookmarks override as discussed with artwork simply just set
|
|
|
|
|
|
homepage to our openSUSE one and that is all
|
2017-04-21 09:15:51 +00:00
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
2017-04-21 10:00:24 +00:00
|
|
|
|
Sat Nov 12 08:20:05 UTC 2016 - astieger@suse.com
|
2017-04-21 09:15:51 +00:00
|
|
|
|
|
2017-04-21 10:00:24 +00:00
|
|
|
|
- Chromium 54.0.2840.100:
|
|
|
|
|
|
* CVE-2016-5199: Heap corruption in FFmpeg (boo#1009892)
|
|
|
|
|
|
* CVE-2016-5200: out of bounds memory access in v8 (boo#1009893)
|
|
|
|
|
|
* CVE-2016-5201: info leak in extensions (boo#1009894)
|
|
|
|
|
|
* CVE-2016-5202: various fixes from internal audits (boo#1009895)
|
2016-11-12 11:07:29 +00:00
|
|
|
|
|
2016-11-07 20:04:46 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Mon Nov 7 20:02:46 UTC 2016 - tchvatal@suse.com
|
|
|
|
|
|
|
|
|
|
|
|
- Add patch chromium-prop-codecs.patch and set properly the codecs
|
|
|
|
|
|
variable in main scope to allow ffmpeg passthrough
|
|
|
|
|
|
bnc#1008725
|
|
|
|
|
|
|
2016-11-02 07:34:11 +00:00
|
|
|
|
-------------------------------------------------------------------
|
2017-04-21 10:00:24 +00:00
|
|
|
|
Wed Nov 2 07:32:27 UTC 2016 - tchvatal@suse.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 54.0.2840.90:
|
|
|
|
|
|
* Few fixes and tweaks
|
|
|
|
|
|
* Fixes CVE-2016-5198 bsc#1008274
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Fri Oct 21 10:27:16 UTC 2016 - tchvatal@suse.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 54.0.2840.71:
|
|
|
|
|
|
* Few fixes around
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Thu Oct 13 10:19:03 UTC 2016 - tchvatal@suse.com
|
|
|
|
|
|
|
|
|
|
|
|
- Version update to 54.0.2840.59 bnc#1004465:
|
|
|
|
|
|
- CVE-2016-5181: Universal XSS in Blink (Anonymous)
|
|
|
|
|
|
- CVE-2016-5182: Heap overflow in Blink (Giwan Go of STEALIEN)
|
|
|
|
|
|
- CVE-2016-5183: Use after free in PDFium (Anonymous)
|
|
|
|
|
|
- CVE-2016-5184: Use after free in PDFium (Anonymous)
|
|
|
|
|
|
- CVE-2016-5185: Use after free in Blink (cloudfuzzer)
|
|
|
|
|
|
- CVE-2016-5187: URL spoofing (Luan Herrera)
|
|
|
|
|
|
- CVE-2016-5188: UI spoofing (Luan Herrera)
|
|
|
|
|
|
- CVE-2016-5192: Cross-origin bypass in Blink (haojunhou at gmail)
|
|
|
|
|
|
- CVE-2016-5189: URL spoofing (xisigr of Tencent's Xuanwu Lab)
|
|
|
|
|
|
- CVE-2016-5186: Out of bounds read in DevTools (Abdulrahman Alqabandi)
|
|
|
|
|
|
- CVE-2016-5191: Universal XSS in Bookmarks (Gareth Hughes)
|
|
|
|
|
|
- CVE-2016-5190: Use after free in Internals (Atte Kettunen of OUSPG)
|
|
|
|
|
|
- CVE-2016-5193: Scheme bypass (Yuyang ZHOUmartinzhou96)
|
|
|
|
|
|
- packaging changes:
|
|
|
|
|
|
* disable build for chromium-beta on %arm.
|
|
|
|
|
|
* Make linker use less memory by tweaking its options:
|
|
|
|
|
|
chromium-linker-memory.patch
|
|
|
|
|
|
* obsolete desktop subpackages
|
|
|
|
|
|
* Switch to gold to reduce memory use use during build
|
|
|
|
|
|
* fix build on 4.5+ kernels with systemlibs:
|
|
|
|
|
|
chromium-sandbox.patch
|
|
|
|
|
|
* various compiler and linker flag adjustments
|
|
|
|
|
|
* enable gtk3 ui, add patch gtk3-missing-define.patch
|
|
|
|
|
|
* switch from some bundled libraries to the system versions
|
|
|
|
|
|
chromium-system-ffmpeg-r3.patch
|
|
|
|
|
|
chromium-system-jinja-r13.patch
|
|
|
|
|
|
fix-gn-bootstrap.diff
|
|
|
|
|
|
* remove service file covered by download_files
|
|
|
|
|
|
- run time bug fixes:
|
|
|
|
|
|
* Add --ui-disable-partial-swap to the launcher bnc#1000019
|
|
|
|
|
|
* Use default chromium values from master_preferences on first run
|
|
|
|
|
|
rather than pseudo-duplicating in shellscript
|
|
|
|
|
|
- added features:
|
|
|
|
|
|
* hangouts extension
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Fri Sep 30 08:00:45 UTC 2016 - tchvatal@suse.com
|
|
|
|
|
|
|
|
|
|
|
|
- Version update to 53.0.2785.143 bnc#1002140:
|
|
|
|
|
|
* CVE-2016-5177: Use after free in V8
|
|
|
|
|
|
* CVE-2016-5178: Various fixes from internal audits
|
2016-09-30 08:09:37 +00:00
|
|
|
|
|
2016-09-26 12:33:23 +00:00
|
|
|
|
-------------------------------------------------------------------
|
2016-10-14 10:06:23 +00:00
|
|
|
|
Mon Sep 26 12:22:41 UTC 2016 - dimstar@opensuse.org
|
2016-09-26 12:33:23 +00:00
|
|
|
|
|
2016-10-14 10:06:23 +00:00
|
|
|
|
- Export GDK_BACKEND=x11 before starting chromium, ensuring that
|
|
|
|
|
|
it's started as an Xwayland client (boo#1001135).
|
2016-09-26 12:33:23 +00:00
|
|
|
|
|
2016-09-17 11:42:07 +00:00
|
|
|
|
-------------------------------------------------------------------
|
2017-04-21 10:00:24 +00:00
|
|
|
|
Sat Sep 17 11:36:18 UTC 2016 - tchvatal@suse.com
|
2017-04-21 09:15:51 +00:00
|
|
|
|
|
2017-04-21 10:00:24 +00:00
|
|
|
|
- Apply sandbox patch to fix crashers on tumbleweed bnc#999091
|
2016-10-14 10:06:23 +00:00
|
|
|
|
* chromium-sandbox.patch
|
2016-09-17 11:42:07 +00:00
|
|
|
|
|
2016-09-14 07:43:39 +00:00
|
|
|
|
-------------------------------------------------------------------
|
2017-04-21 10:00:24 +00:00
|
|
|
|
Thu Sep 15 13:09:21 UTC 2016 - tchvatal@suse.com
|
2016-10-13 10:28:28 +00:00
|
|
|
|
|
2017-04-21 10:00:24 +00:00
|
|
|
|
- Version update stable channel 53.0.2785.116
|
|
|
|
|
|
* Just smal bugfixes around
|
2016-10-13 10:28:28 +00:00
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
2017-04-21 10:00:24 +00:00
|
|
|
|
Wed Sep 14 07:35:09 UTC 2016 - tchvatal@suse.com
|
2016-09-15 13:12:03 +00:00
|
|
|
|
|
2017-04-21 10:00:24 +00:00
|
|
|
|
- Version update to 53.0.2785.113 bnc#998743:
|
|
|
|
|
|
* CVE-2016-5170 Use after free in Blink
|
|
|
|
|
|
* CVE-2016-5171 Use after free in Blink
|
|
|
|
|
|
* CVE-2016-5172 Arbitrary Memory Read in v8
|
|
|
|
|
|
* CVE-2016-5173 Extension resource access
|
|
|
|
|
|
* CVE-2016-5174 Popup not correctly suppressed
|
|
|
|
|
|
* CVE-2016-5175 Various fixes from internal audits
|
2016-09-14 07:43:39 +00:00
|
|
|
|
|
2016-09-12 08:35:04 +00:00
|
|
|
|
-------------------------------------------------------------------
|
2017-04-21 10:00:24 +00:00
|
|
|
|
Mon Sep 12 08:31:59 UTC 2016 - tchvatal@suse.com
|
2016-10-13 10:28:28 +00:00
|
|
|
|
|
2017-04-21 10:00:24 +00:00
|
|
|
|
- Reenable widevine build again bnc#998328
|
2017-04-21 09:15:51 +00:00
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
2017-04-21 10:00:24 +00:00
|
|
|
|
Sat Sep 10 09:13:37 UTC 2016 - tchvatal@suse.com
|
2017-04-21 09:15:51 +00:00
|
|
|
|
|
2017-04-21 10:00:24 +00:00
|
|
|
|
- Stable channel update to 53.0.2785.101
|
|
|
|
|
|
* SPDY crasher fixes
|
|
|
|
|
|
* Disable NV12 DXGI video on AMD
|
|
|
|
|
|
* Forward --password-store switch to os_crypt
|
|
|
|
|
|
* Tell the kernel to discard USB requests when they time out.
|
2016-10-13 10:28:28 +00:00
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
2017-04-21 10:00:24 +00:00
|
|
|
|
Wed Sep 7 14:50:44 UTC 2016 - astieger@suse.com
|
2016-10-13 10:28:28 +00:00
|
|
|
|
|
2017-04-21 10:00:24 +00:00
|
|
|
|
- Update to Chromium 53.0.2785.92:
|
|
|
|
|
|
* Revert of support relocatable RPM packages
|
|
|
|
|
|
* disallow WKBackForwardListItem navigations for pushState pages
|
|
|
|
|
|
* arc: bluetooth: Fix advertised uuid
|
|
|
|
|
|
* fix conflicting PendingIntent for stop button and swipe away
|
2016-09-07 17:33:54 +00:00
|
|
|
|
|
2016-09-01 04:12:52 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Thu Sep 1 04:04:13 UTC 2016 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 53.0.2785.89
|
|
|
|
|
|
- Improvements to the GN build system (boo#996032, boo#99606, boo#995932)
|
2016-09-01 07:55:21 +00:00
|
|
|
|
- Security fixes (boo#996648)
|
2016-09-01 04:12:52 +00:00
|
|
|
|
* CVE-2016-5147: Universal XSS in Blink.
|
|
|
|
|
|
* CVE-2016-5148: Universal XSS in Blink.
|
|
|
|
|
|
* CVE-2016-5149: Script injection in extensions.
|
|
|
|
|
|
* CVE-2016-5150: Use after free in Blink.
|
|
|
|
|
|
* CVE-2016-5151: Use after free in PDFium.
|
|
|
|
|
|
* CVE-2016-5152: Heap overflow in PDFium.
|
|
|
|
|
|
* CVE-2016-5153: Use after destruction in Blink.
|
|
|
|
|
|
* CVE-2016-5154: Heap overflow in PDFium.
|
|
|
|
|
|
* CVE-2016-5155: Address bar spoofing.
|
|
|
|
|
|
* CVE-2016-5156: Use after free in event bindings.
|
|
|
|
|
|
* CVE-2016-5157: Heap overflow in PDFium.
|
|
|
|
|
|
* CVE-2016-5158: Heap overflow in PDFium.
|
|
|
|
|
|
* CVE-2016-5159: Heap overflow in PDFium.
|
|
|
|
|
|
* CVE-2016-5161: Type confusion in Blink.
|
|
|
|
|
|
* CVE-2016-5162: Extensions web accessible resources bypass.
|
|
|
|
|
|
* CVE-2016-5163: Address bar spoofing.
|
|
|
|
|
|
* CVE-2016-5164: Universal XSS using DevTools.
|
|
|
|
|
|
* CVE-2016-5165: Script injection in DevTools.
|
|
|
|
|
|
* CVE-2016-5166: SMB Relay Attack via Save Page As.
|
|
|
|
|
|
* CVE-2016-5160: Extensions web accessible resources bypass.
|
2016-09-01 04:22:45 +00:00
|
|
|
|
- Drop patches chromium-snapshot-toolchain-r1.patch
|
2016-09-01 07:55:21 +00:00
|
|
|
|
|
2016-08-27 18:49:35 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sat Aug 27 18:46:44 UTC 2016 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Make it build on ARM.
|
|
|
|
|
|
* Add build patch arm_use_right_compiler.patch
|
|
|
|
|
|
|
2016-08-27 19:45:26 +00:00
|
|
|
|
- Drop unnecessary patches:
|
|
|
|
|
|
* chromium-arm-r0.patch
|
2016-08-27 19:22:08 +00:00
|
|
|
|
|
2016-08-22 10:38:29 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Mon Aug 22 10:13:19 UTC 2016 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Change buildsystem to GN, which is the new upstream default
|
|
|
|
|
|
* Make Ninja only use 4 buildprocesses for building Chromium itself
|
|
|
|
|
|
|
|
|
|
|
|
* Drop unnecessary patches
|
|
|
|
|
|
- chromium-gcc-fixes.patch
|
|
|
|
|
|
- adjust-ldflags-no-keep-memory.patch
|
|
|
|
|
|
- gcc50-fixes.diff
|
|
|
|
|
|
|
|
|
|
|
|
* Add patches to ensure correct build
|
|
|
|
|
|
- chromium-last-commit-position-r0.patch
|
2016-08-22 13:26:24 +00:00
|
|
|
|
- chromium-snapshot-toolchain-r1.patch
|
2016-08-22 10:38:29 +00:00
|
|
|
|
|
|
|
|
|
|
* Drop unnecessary sourcefiles
|
|
|
|
|
|
- courgette.tar.xz
|
|
|
|
|
|
- depot_tools.tar.xz
|
|
|
|
|
|
- gn-binaries.tar.xz
|
|
|
|
|
|
|
2016-08-12 08:28:05 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Fri Aug 12 08:20:57 UTC 2016 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Use an explicit number of ninja build processes (-j 4), to
|
|
|
|
|
|
further reduce the memory used.
|
|
|
|
|
|
|
2016-08-05 16:37:22 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Fri Aug 5 08:53:57 UTC 2016 - astieger@suse.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 52.0.2743.116:
|
|
|
|
|
|
* Security fixes (boo#992305):
|
|
|
|
|
|
+ CVE-2016-5141: Address bar spoofing (boo#992314)
|
|
|
|
|
|
+ CVE-2016-5142: Use-after-free in Blink (boo#992313)
|
|
|
|
|
|
+ CVE-2016-5139: Heap overflow in pdfium (boo#992311)
|
|
|
|
|
|
+ CVE-2016-5140: Heap overflow in pdfium (boo#992310)
|
|
|
|
|
|
+ CVE-2016-5145: Same origin bypass for images in Blink
|
|
|
|
|
|
(boo#992320)
|
|
|
|
|
|
+ CVE-2016-5143: Parameter sanitization failure in DevTools
|
|
|
|
|
|
(boo#992319)
|
|
|
|
|
|
+ CVE-2016-5144: Parameter sanitization failure in DevTools
|
|
|
|
|
|
(boo#992315)
|
|
|
|
|
|
+ CVE-2016-5146: Various fixes from internal audits, fuzzing
|
|
|
|
|
|
and other initiatives (boo#992309)
|
|
|
|
|
|
|
2016-07-21 19:00:17 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Thu Jul 21 18:55:21 UTC 2016 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Temporarily disable fix_network_api_crash.patch. Upstream has
|
|
|
|
|
|
changed part of their code, so hopefully that resolved the issue
|
|
|
|
|
|
|
2016-07-21 07:48:37 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Thu Jul 21 07:38:12 UTC 2016 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 52.0.2743.82
|
|
|
|
|
|
* Security fixes (boo#989901):
|
|
|
|
|
|
+ CVE-2016-1706: Sandbox escape in PPAPI
|
|
|
|
|
|
+ CVE-2016-1707: URL spoofing on iOS
|
|
|
|
|
|
+ CVE-2016-1708: Use-after-free in Extensions
|
|
|
|
|
|
+ CVE-2016-1709: Heap-buffer-overflow in sfntly
|
|
|
|
|
|
+ CVE-2016-1710: Same-origin bypass in Blink
|
|
|
|
|
|
+ CVE-2016-1711: Same-origin bypass in Blink
|
|
|
|
|
|
+ CVE-2016-5127: Use-after-free in Blink
|
|
|
|
|
|
+ CVE-2016-5128: Same-origin bypass in V8
|
|
|
|
|
|
+ CVE-2016-5129: Memory corruption in V8
|
|
|
|
|
|
+ CVE-2016-5130: URL spoofing
|
|
|
|
|
|
+ CVE-2016-5131: Use-after-free in libxml
|
|
|
|
|
|
+ CVE-2016-5132: Limited same-origin bypass in Service Workers
|
|
|
|
|
|
+ CVE-2016-5133: Origin confusion in proxy authentication
|
|
|
|
|
|
+ CVE-2016-5134: URL leakage via PAC script
|
|
|
|
|
|
+ CVE-2016-5135: Content-Security-Policy bypass
|
|
|
|
|
|
+ CVE-2016-5136: Use after free in extensions
|
|
|
|
|
|
+ CVE-2016-5137: History sniffing with HSTS and CSP
|
|
|
|
|
|
+ CVE-2016-1705: Various fixes from internal audits, fuzzing
|
|
|
|
|
|
and other initiatives
|
|
|
|
|
|
|
2016-06-24 06:43:44 +00:00
|
|
|
|
-------------------------------------------------------------------
|
2016-07-13 00:33:24 +00:00
|
|
|
|
Mon Jul 11 00:46 UTC 2016 - Nick_Levinson@yahoo.com
|
|
|
|
|
|
|
|
|
|
|
|
- Clarification/correction to chromium-desktop-gnome and
|
|
|
|
|
|
chromium-desktop-kde software descriptions due to passwords
|
|
|
|
|
|
preservation reported by Chromium developer
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
2016-06-24 06:43:44 +00:00
|
|
|
|
Fri Jun 24 06:39:52 UTC 2016 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 51.0.2704.106
|
|
|
|
|
|
* No changelog indicated
|
|
|
|
|
|
|
2016-06-23 08:11:56 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Thu Jun 23 08:10:56 UTC 2016 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Add gcc60-fixes.diff to resolve the crashes observed with
|
|
|
|
|
|
chromium when compiled with GCC6
|
|
|
|
|
|
|
2016-06-17 14:03:36 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Fri Jun 17 11:11:46 UTC 2016 - astieger@suse.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 51.0.2704.103
|
|
|
|
|
|
* Security fixes:
|
|
|
|
|
|
- CVE-2016-1704: Various fixes from internal audits, fuzzing and
|
|
|
|
|
|
other initiatives (boo#985397)
|
|
|
|
|
|
|
2016-06-07 12:17:00 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Tue Jun 7 12:15:02 UTC 2016 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 51.0.2704.84
|
|
|
|
|
|
* No further changelog
|
|
|
|
|
|
|
2016-06-02 11:21:04 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Thu Jun 2 11:08:47 UTC 2016 - astieger@suse.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 51.0.2704.79 [boo#982719]
|
|
|
|
|
|
* Security fixes:
|
|
|
|
|
|
- CVE-2016-1696: Cross-origin bypass in Extension bindings
|
|
|
|
|
|
- CVE-2016-1697: Cross-origin bypass in Blink
|
|
|
|
|
|
- CVE-2016-1698: Information leak in Extension bindings
|
|
|
|
|
|
- CVE-2016-1699: Parameter sanitization failure in DevTools
|
|
|
|
|
|
- CVE-2016-1700: Use-after-free in Extensions
|
|
|
|
|
|
- CVE-2016-1701: Use-after-free in Autofill
|
|
|
|
|
|
- CVE-2016-1702: Out-of-bounds read in Skia
|
|
|
|
|
|
- CVE-2016-1703: Various fixes from internal audits, fuzzing
|
|
|
|
|
|
and other initiatives.
|
|
|
|
|
|
|
2016-05-26 04:18:27 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Thu May 26 04:09:46 UTC 2016 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
2016-05-26 19:15:04 +00:00
|
|
|
|
- Update to Chromium 51.0.2704.63 [boo#981886]
|
2016-05-26 04:18:27 +00:00
|
|
|
|
* Security fixes:
|
|
|
|
|
|
- CVE-2016-1672: Cross-origin bypass in extension bindings
|
|
|
|
|
|
- CVE-2016-1673: Cross-origin bypass in Blink
|
|
|
|
|
|
- CVE-2016-1674: Cross-origin bypass in extensions
|
|
|
|
|
|
- CVE-2016-1675: Cross-origin bypass in Blink
|
|
|
|
|
|
- CVE-2016-1676: Cross-origin bypass in extension bindings
|
|
|
|
|
|
- CVE-2016-1677: Type confusion in V8
|
|
|
|
|
|
- CVE-2016-1678: Heap overflow in V8
|
|
|
|
|
|
- CVE-2016-1679: Heap use-after-free in V8 bindings
|
|
|
|
|
|
- CVE-2016-1680: Heap use-after-free in Skia
|
|
|
|
|
|
- CVE-2016-1681: Heap overflow in PDFium
|
|
|
|
|
|
- CVE-2016-1682: CSP bypass for ServiceWorker
|
|
|
|
|
|
- CVE-2016-1683: Out-of-bounds access in libxslt
|
|
|
|
|
|
- CVE-2016-1684: Integer overflow in libxslt
|
|
|
|
|
|
- CVE-2016-1685: Out-of-bounds read in PDFium
|
|
|
|
|
|
- CVE-2016-1686: Out-of-bounds read in PDFium
|
|
|
|
|
|
- CVE-2016-1687: Information leak in extensions
|
|
|
|
|
|
- CVE-2016-1688: Out-of-bounds read in V8
|
|
|
|
|
|
- CVE-2016-1689: Heap buffer overflow in media
|
|
|
|
|
|
- CVE-2016-1690: Heap use-after-free in Autofill
|
|
|
|
|
|
- CVE-2016-1691: Heap buffer-overflow in Skia
|
|
|
|
|
|
- CVE-2016-1692: Limited cross-origin bypass in ServiceWorker
|
|
|
|
|
|
- CVE-2016-1693: HTTP Download of Software Removal Tool
|
|
|
|
|
|
- CVE-2016-1694: HPKP pins removed on cache clearance
|
|
|
|
|
|
- CVE-2016-1695: Various fixes from internal audits, fuzzing
|
|
|
|
|
|
and other initiatives
|
2016-05-26 19:15:04 +00:00
|
|
|
|
- drop chromium-50.0.2661.75-export_blink_Platform_symbols_in_shared_library_builds.patch
|
|
|
|
|
|
now upstream
|
2016-05-26 04:18:27 +00:00
|
|
|
|
|
2016-05-18 07:05:48 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Fri May 13 10:54:25 UTC 2016 - astieger@suse.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 50.0.2661.102 (boo#979859)
|
|
|
|
|
|
* Security fixes:
|
|
|
|
|
|
- CVE-2016-1667: Same origin bypass in DOM
|
|
|
|
|
|
- CVE-2016-1668: Same origin bypass in Blink V8 bindings
|
|
|
|
|
|
- CVE-2016-1669: Buffer overflow in V8
|
|
|
|
|
|
- CVE-2016-1670: Race condition in loader
|
|
|
|
|
|
|
2016-05-03 09:41:15 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Fri Apr 29 13:45:18 UTC 2016 - astieger@suse.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 50.0.2661.94 (boo#977830)
|
|
|
|
|
|
* Security fixes:
|
|
|
|
|
|
- CVE-2016-1660: Out-of-bounds write in Blink
|
|
|
|
|
|
- CVE-2016-1661: Memory corruption in cross-process frames
|
|
|
|
|
|
- CVE-2016-1662: Use-after-free in extensions
|
|
|
|
|
|
- CVE-2016-1663: Use-after-free in Blink’s V8 bindings
|
|
|
|
|
|
- CVE-2016-1664: Address bar spoofing
|
|
|
|
|
|
- CVE-2016-1665: Information leak in V8
|
|
|
|
|
|
- CVE-2016-1666: Various fixes from internal audits, fuzzing and other initiatives
|
|
|
|
|
|
|
2016-04-28 10:52:44 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Fri Apr 22 14:06:30 UTC 2016 - jslaby@suse.com
|
|
|
|
|
|
|
|
|
|
|
|
- _constraints: increase memory. It takes 1.2G to build some .o, and
|
|
|
|
|
|
with -j4 this results in OOM.
|
|
|
|
|
|
|
2016-04-14 07:56:46 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Thu Apr 14 07:39:40 UTC 2016 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
2016-04-14 13:57:42 +00:00
|
|
|
|
- Update to Chromium 50.0.2661.75 (boo#975572)
|
2016-04-14 07:56:46 +00:00
|
|
|
|
* Security Fixes:
|
|
|
|
|
|
- CVE-2016-1652: Universal XSS in extension bindings
|
|
|
|
|
|
- CVE-2016-1653: Out-of-bounds write in V8
|
|
|
|
|
|
- CVE-2016-1651: Out-of-bounds read in Pdfium JPEG2000 decoding
|
|
|
|
|
|
- CVE-2016-1654: Uninitialized memory read in media
|
|
|
|
|
|
- CVE-2016-1655: Use-after-free related to extensions
|
|
|
|
|
|
- CVE-2016-1656: Android downloaded file path restriction bypass
|
|
|
|
|
|
- CVE-2016-1657: Address bar spoofing
|
|
|
|
|
|
- CVE-2016-1658: Potential leak of sensitive information to
|
|
|
|
|
|
malicious extensions
|
|
|
|
|
|
- CVE-2016-1659: Various fixes from internal audits, fuzzing
|
|
|
|
|
|
and other initiatives
|
2016-04-15 14:08:00 +00:00
|
|
|
|
- add patch to fix GCC builds with component=shared_library:
|
|
|
|
|
|
chromium-50.0.2661.75-export_blink_Platform_symbols_in_shared_library_builds.patch
|
2016-04-14 07:56:46 +00:00
|
|
|
|
|
2016-04-08 11:46:22 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Fri Apr 8 07:55:33 UTC 2016 - astieger@suse.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 49.0.2623.112
|
|
|
|
|
|
* Block user removal when login attempt is in progress
|
|
|
|
|
|
* Add the SuppressUnsupportedOSWarning policy setting
|
|
|
|
|
|
* Fix how Save-Page-As responds to web requests blocked by extensions
|
|
|
|
|
|
* Fix preferred width calculation for 8bit ltr runs in rtl blocks
|
|
|
|
|
|
|
2016-03-30 07:46:17 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed Mar 30 07:42:53 UTC 2016 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 49.0.2623.110
|
|
|
|
|
|
* No changelog available
|
|
|
|
|
|
|
2016-03-28 17:46:51 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Mon Mar 28 17:44:43 UTC 2016 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 49.0.2623.108
|
|
|
|
|
|
* Security fixes (boo#972834):
|
|
|
|
|
|
- CVE-2016-1646: Out-of-bounds read in V8
|
|
|
|
|
|
- CVE-2016-1647: Use-after-free in Navigation
|
|
|
|
|
|
- CVE-2016-1648: Use-after-free in Extensions
|
|
|
|
|
|
- CVE-2016-1649: Buffer overflow in libANGLE
|
|
|
|
|
|
- CVE-2016-1650: Various fixes from internal audits, fuzzing
|
|
|
|
|
|
and other initiatives
|
2016-03-31 09:02:23 +00:00
|
|
|
|
- CVE-2016-3679: Multiple vulnerabilities in V8 fixed at the
|
|
|
|
|
|
tip of the 4.9 branch (currently 4.9.385.33).
|
2016-03-28 17:46:51 +00:00
|
|
|
|
|
2016-03-09 08:21:03 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed Mar 9 08:09:13 UTC 2016 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 49.0.2623.87
|
|
|
|
|
|
* Security fixes:
|
2016-03-17 20:24:19 +00:00
|
|
|
|
- CVE-2016-1643: Type confusion in Blink (boo#970514)
|
|
|
|
|
|
- CVE-2016-1644: Use-after-free in Blink (boo#970509)
|
|
|
|
|
|
- CVE-2016-1645: Out-of-bounds write in PDFium (boo#970511)
|
2016-03-09 08:21:03 +00:00
|
|
|
|
|
2016-03-08 09:21:20 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Tue Mar 8 09:14:00 UTC 2016 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Change the build method used on Packman.
|
|
|
|
|
|
* Drop patch no-clang-on-packman.diff . This is no longer required
|
|
|
|
|
|
as that ninja is respecting the build flags correctly.
|
|
|
|
|
|
|
|
|
|
|
|
- Drop unused patch skia.patch
|
|
|
|
|
|
|
2016-03-04 10:55:57 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Fri Mar 4 10:49:51 UTC 2016 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 49.0.2623.75
|
|
|
|
|
|
* 26 security fixes, with the most important ones being:
|
|
|
|
|
|
- CVE-2016-1630: Same-origin bypass in Blink
|
|
|
|
|
|
- CVE-2016-1631: Same-origin bypass in Pepper Plugin
|
|
|
|
|
|
- CVE-2016-1632: Bad cast in Extensions
|
|
|
|
|
|
- CVE-2016-1633: Use-after-free in Blink
|
|
|
|
|
|
- CVE-2016-1634: Use-after-free in Blink
|
|
|
|
|
|
- CVE-2016-1635: Use-after-free in Blink
|
|
|
|
|
|
- CVE-2016-1636: SRI Validation Bypass
|
|
|
|
|
|
- CVE-2015-8126: Out-of-bounds access in libpng
|
|
|
|
|
|
- CVE-2016-1637: Information Leak in Skia
|
|
|
|
|
|
- CVE-2016-1638: WebAPI Bypass
|
|
|
|
|
|
- CVE-2016-1639: Use-after-free in WebRTC
|
|
|
|
|
|
- CVE-2016-1640: Origin confusion in Extensions UI
|
|
|
|
|
|
- CVE-2016-1641: Use-after-free in Favicon
|
|
|
|
|
|
- CVE-2016-1642: Various fixes from internal audits, fuzzing
|
|
|
|
|
|
and other initiatives
|
|
|
|
|
|
- Multiple vulnerabilities in V8 fixed at the tip of the 4.9
|
|
|
|
|
|
branch (currently 4.9.385.26)
|
2016-03-05 12:01:11 +00:00
|
|
|
|
(boo#969333)
|
2016-03-04 10:55:57 +00:00
|
|
|
|
|
2016-02-19 08:37:35 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Fri Feb 19 08:33:46 UTC 2016 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 48.0.2564.116
|
|
|
|
|
|
* Fixes a critical security flaw:
|
|
|
|
|
|
- CVE-2016-1629: Same-origin bypass in Blink and Sandbox
|
2016-02-19 10:47:27 +00:00
|
|
|
|
escape in Chrome. (boo#967376)
|
2016-02-19 08:37:35 +00:00
|
|
|
|
|
2016-02-15 09:24:33 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Mon Feb 15 09:19:16 UTC 2016 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 48.0.2564.109
|
|
|
|
|
|
* Security fixes (boo#965999)
|
|
|
|
|
|
- CVE-2016-1622: Same-origin bypass in Extensions
|
|
|
|
|
|
- CVE-2016-1623: Same-origin bypass in DOM
|
|
|
|
|
|
- CVE-2016-1624: Buffer overflow in Brotli
|
|
|
|
|
|
- CVE-2016-1625: Navigation bypass in Chrome Instant
|
|
|
|
|
|
- CVE-2016-1626: Out-of-bounds read in PDFium
|
|
|
|
|
|
- CVE-2016-1627: Various fixes from internal audits, fuzzing
|
|
|
|
|
|
and other initiatives
|
|
|
|
|
|
|
2016-02-13 12:06:20 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sat Feb 13 11:44:02 UTC 2016 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Drop the libva support completely. It seems that this is causing
|
|
|
|
|
|
more issues than it actually resolves. (boo#965566)
|
2016-02-15 15:25:04 +00:00
|
|
|
|
* Drop chromium-enable-vaapi.patch
|
2016-02-13 12:06:20 +00:00
|
|
|
|
|
2016-02-11 10:00:34 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Thu Feb 11 09:12:47 UTC 2016 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Don't build with libva support for openSUSE 13.2 and lower
|
|
|
|
|
|
(boo#966082)
|
|
|
|
|
|
|
2016-02-09 12:58:51 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Tue Feb 9 12:12:47 UTC 2016 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
2016-02-10 14:14:17 +00:00
|
|
|
|
- Drop completely the option to build with system libraries. This
|
|
|
|
|
|
could lead to issues (boo#965738)
|
2016-02-09 12:58:51 +00:00
|
|
|
|
|
2016-02-05 13:24:54 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Fri Feb 5 13:12:47 UTC 2016 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
2016-02-10 14:13:21 +00:00
|
|
|
|
- Update to Chromium 48.0.2564.103
|
2016-02-05 13:24:54 +00:00
|
|
|
|
* No chnagelog available
|
|
|
|
|
|
|
2016-01-31 12:23:18 +00:00
|
|
|
|
-------------------------------------------------------------------
|
2016-01-31 12:26:28 +00:00
|
|
|
|
Sun Jan 31 12:24:47 UTC 2016 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Build against the in-source libjpeg to prevent graphical issues
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
2016-01-31 12:23:18 +00:00
|
|
|
|
Sun Jan 31 11:12:18 UTC 2016 - tchvatal@suse.com
|
|
|
|
|
|
|
|
|
|
|
|
- Use spec-cleaner
|
|
|
|
|
|
- Remove buildenv check that is moot for the update-alternatives script
|
|
|
|
|
|
- Build against the latest libjpeg rather than jpeg6
|
|
|
|
|
|
- Use update-alternatives as is required by the specification
|
|
|
|
|
|
|
2016-01-28 10:04:13 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Thu Jan 28 09:59:57 UTC 2016 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 48.0.2564.97
|
|
|
|
|
|
* No changelog available
|
2016-01-29 08:02:49 +00:00
|
|
|
|
|
|
|
|
|
|
- Update the desktop-kde package so that on Leap and TW, the kwallet5
|
|
|
|
|
|
becomes the default. desktop-kde/gnome packages are no longer
|
|
|
|
|
|
recommended as that the default is to automatically detect the
|
|
|
|
|
|
password store. Only for those users that want to change this,
|
|
|
|
|
|
they can select a different setup.
|
2016-01-28 10:04:13 +00:00
|
|
|
|
|
2016-01-22 19:24:03 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Fri Jan 22 19:08:56 UTC 2016 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 48.0.2564.82
|
|
|
|
|
|
* Security fixes:
|
|
|
|
|
|
- CVE-2016-1612: Bad cast in V8 (boo#963184)
|
|
|
|
|
|
- CVE-2016-1613: Use-after-free in PDFium (boo#963185)
|
|
|
|
|
|
- CVE-2016-1614: Information leak in Blink (boo#963186)
|
|
|
|
|
|
- CVE-2016-1615: Origin confusion in Omnibox (boo#963187)
|
|
|
|
|
|
- CVE-2016-1616: URL Spoofing (boo#963188)
|
|
|
|
|
|
- CVE-2016-1617: History sniffing with HSTS and CSP (boo#963189)
|
|
|
|
|
|
- CVE-2016-1618: Weak random number generator in Blink (boo#963190)
|
|
|
|
|
|
- CVE-2016-1619: Out-of-bounds read in PDFium (boo#963191)
|
|
|
|
|
|
- CVE-2016-1620 chromium-browser: various fixes (boo#963192)
|
|
|
|
|
|
|
2016-01-14 15:42:08 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Thu Jan 14 15:22:38 UTC 2016 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 47.0.2526.111.
|
|
|
|
|
|
* No changelog available
|
|
|
|
|
|
|
2015-12-29 20:42:58 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Mon Dec 28 18:14:40 UTC 2015 - stefan.bruens@rwth-aachen.de
|
|
|
|
|
|
|
|
|
|
|
|
- Enable SSE2 on x86_64
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sun Dec 27 21:44:50 UTC 2015 - stefan.bruens@rwth-aachen.de
|
|
|
|
|
|
|
|
|
|
|
|
- Fix crash when trying to enable chromecast extension
|
|
|
|
|
|
* Add patch: fix_network_api_crash.patch
|
|
|
|
|
|
Fix https://code.google.com/p/chromium/issues/detail?id=572539
|
|
|
|
|
|
|
2015-12-20 14:28:42 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sun Dec 20 12:44:49 UTC 2015 - astieger@suse.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 47.0.2525.106, fixing the following security
|
|
|
|
|
|
issue:
|
|
|
|
|
|
* CVE-2015-6792: Fixes from internal audits and fuzzing. [boo#959458]
|
|
|
|
|
|
|
2015-12-22 12:11:18 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Mon Dec 14 04:31:08 UTC 2015 - jimmy@boombatower.com
|
|
|
|
|
|
|
|
|
|
|
|
- Enable VA-API hardware acceleration in Linux.
|
2015-12-22 15:02:17 +00:00
|
|
|
|
* chromium-enable-vaapi.patch
|
2015-12-22 12:11:18 +00:00
|
|
|
|
|
2015-12-05 10:45:51 +00:00
|
|
|
|
-------------------------------------------------------------------
|
2015-12-10 08:54:35 +00:00
|
|
|
|
Thu Dec 10 07:11:29 UTC 2015 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
2015-12-14 14:03:29 +00:00
|
|
|
|
- Update to Chromium 47.0.2526.80 [boo#958481]
|
2015-12-10 08:54:35 +00:00
|
|
|
|
* Security fixes
|
|
|
|
|
|
- CVE-2015-6788: Type confusion in extensions
|
|
|
|
|
|
- CVE-2015-6789: Use-after-free in Blink
|
|
|
|
|
|
- CVE-2015-6790: Escaping issue in saved pages
|
|
|
|
|
|
- CVE-2015-6791: Various fixes from internal audits, fuzzing
|
|
|
|
|
|
and other initiatives
|
|
|
|
|
|
|
2015-12-11 09:13:09 +00:00
|
|
|
|
- Drop unused patch fix-clang.diff.
|
2015-12-10 08:54:35 +00:00
|
|
|
|
-------------------------------------------------------------------
|
2015-12-05 10:45:51 +00:00
|
|
|
|
Sat Dec 5 10:40:00 UTC 2015 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Enable the possibility to utilize the Widevine plugin
|
|
|
|
|
|
within chromium. (boo#954103)
|
|
|
|
|
|
* Add patch: fix_building_widevinecdm_with_chromium.patch
|
|
|
|
|
|
|
2015-12-02 19:04:38 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed Dec 2 18:49:23 UTC 2015 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 47.0.2526.73
|
|
|
|
|
|
* Security fixes (boo#957519)
|
|
|
|
|
|
- CVE-2015-6765: Use-after-free in AppCache
|
|
|
|
|
|
- CVE-2015-6766: Use-after-free in AppCache
|
|
|
|
|
|
- CVE-2015-6767: Use-after-free in AppCache
|
|
|
|
|
|
- CVE-2015-6768: Cross-origin bypass in DOM
|
|
|
|
|
|
- CVE-2015-6769: Cross-origin bypass in core
|
|
|
|
|
|
- CVE-2015-6770: Cross-origin bypass in DOM
|
|
|
|
|
|
- CVE-2015-6771: Out of bounds access in v8
|
|
|
|
|
|
- CVE-2015-6772: Cross-origin bypass in DOM
|
|
|
|
|
|
- CVE-2015-6764: Out of bounds access in v8
|
|
|
|
|
|
- CVE-2015-6773: Out of bounds access in Skia
|
|
|
|
|
|
- CVE-2015-6774: Use-after-free in Extensions
|
|
|
|
|
|
- CVE-2015-6775: Type confusion in PDFium
|
|
|
|
|
|
- CVE-2015-6776: Out of bounds access in PDFium
|
|
|
|
|
|
- CVE-2015-6777: Use-after-free in DOM
|
|
|
|
|
|
- CVE-2015-6778: Out of bounds access in PDFium
|
|
|
|
|
|
- CVE-2015-6779: Scheme bypass in PDFium
|
|
|
|
|
|
- CVE-2015-6780: Use-after-free in Infobars
|
|
|
|
|
|
- CVE-2015-6781: Integer overflow in Sfntly
|
|
|
|
|
|
- CVE-2015-6782: Content spoofing in Omnibox
|
|
|
|
|
|
- CVE-2015-6783: Signature validation issue in
|
|
|
|
|
|
Android Crazy Linker.
|
|
|
|
|
|
- CVE-2015-6784: Escaping issue in saved pages
|
|
|
|
|
|
- CVE-2015-6785: Wildcard matching issue in CSP
|
|
|
|
|
|
- CVE-2015-6786: Scheme bypass in CSP
|
|
|
|
|
|
- CVE-2015-6787: Various fixes from internal audits, fuzzing
|
|
|
|
|
|
and other initiatives.
|
|
|
|
|
|
- Multiple vulnerabilities in V8 fixed at the tip of the
|
|
|
|
|
|
4.7 branch (currently 4.7.80.23)
|
|
|
|
|
|
|
2015-11-11 09:00:14 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed Nov 11 08:55:19 UTC 2015 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 46.0.2490.86
|
2015-11-11 09:04:00 +00:00
|
|
|
|
* Security fixes (boo#954579):
|
2015-11-11 09:00:14 +00:00
|
|
|
|
- CVE-2015-1302: Information leak in PDF viewer
|
|
|
|
|
|
|
2015-10-23 17:37:30 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Fri Oct 23 17:22:51 UTC 2015 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 46.0.2490.80
|
|
|
|
|
|
* No changelog available
|
|
|
|
|
|
|
2015-10-19 12:03:35 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Mon Oct 19 13:00:57 UTC 2015 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Change the default homepage based on the new landingpage
|
2015-10-19 12:06:05 +00:00
|
|
|
|
for the openSUSE Project. (boo#950957)
|
2015-10-19 12:03:35 +00:00
|
|
|
|
|
2015-10-14 18:44:09 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed Oct 14 18:31:57 UTC 2015 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 46.0.2490.71
|
|
|
|
|
|
* Security fixes (boo#950290)
|
|
|
|
|
|
- CVE-2015-6755: Cross-origin bypass in Blink
|
|
|
|
|
|
- CVE-2015-6756: Use-after-free in PDFium
|
|
|
|
|
|
- CVE-2015-6757: Use-after-free in ServiceWorker
|
|
|
|
|
|
- CVE-2015-6758: Bad-cast in PDFium
|
|
|
|
|
|
- CVE-2015-6759: Information leakage in LocalStorage
|
|
|
|
|
|
- CVE-2015-6760: Improper error handling in libANGLE
|
|
|
|
|
|
- CVE-2015-6761: Memory corruption in FFMpeg
|
|
|
|
|
|
- CVE-2015-6762: CORS bypass via CSS fonts
|
|
|
|
|
|
- CVE-2015-6763: Various fixes from internal audits, fuzzing
|
|
|
|
|
|
and other initiatives
|
|
|
|
|
|
- Multiple vulnerabilities in V8 fixed at the tip of the
|
2015-11-13 11:56:56 +00:00
|
|
|
|
4.6 branch (currently 4.6.85.23) CVE-2015-7834
|
2015-10-15 06:42:15 +00:00
|
|
|
|
- drop upstreamed correct-blacklist.diff
|
2015-10-16 11:55:19 +00:00
|
|
|
|
- add chromium-46.0.2490.71-fix-missing-i18n_process_css_test.patch
|
|
|
|
|
|
to fix build
|
|
|
|
|
|
- remove remoting_locales from spec
|
2015-10-14 18:44:09 +00:00
|
|
|
|
|
2015-10-03 06:28:59 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sat Oct 3 06:20:10 UTC 2015 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 45.0.2454.101
|
|
|
|
|
|
* Security fixes:
|
2015-10-10 20:46:16 +00:00
|
|
|
|
- CVE-2015-1303: Cross-origin bypass in DOM [boo#947504]
|
|
|
|
|
|
- CVE-2015-1304: Cross-origin bypass in V8 [boo#947507]
|
2015-10-03 06:28:59 +00:00
|
|
|
|
|
2015-09-22 11:01:41 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Tue Sep 22 10:51:48 UTC 2015 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 45.0.2454.99
|
|
|
|
|
|
- No changelog available
|
|
|
|
|
|
|
|
|
|
|
|
- Add upstream patch correct-blacklist.diff
|
|
|
|
|
|
* This should restore the correct behavior of the option
|
|
|
|
|
|
--ignore-gpu-blacklist.
|
|
|
|
|
|
https://code.google.com/p/chromium/issues/detail?id=509336
|
|
|
|
|
|
|
2015-09-16 20:07:17 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed Sep 16 20:06:33 UTC 2015 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 45.0.2454.93
|
|
|
|
|
|
- No changelog available
|
|
|
|
|
|
|
2015-09-11 06:19:57 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Fri Sep 11 06:15:41 UTC 2015 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 45.0.2454.85
|
|
|
|
|
|
Security fixes:
|
|
|
|
|
|
* CVE-2015-1291: Cross-origin bypass in DOM
|
|
|
|
|
|
* CVE-2015-1292: Cross-origin bypass in ServiceWorker
|
|
|
|
|
|
* CVE-2015-1293: Cross-origin bypass in DOM
|
|
|
|
|
|
* CVE-2015-1294: Use-after-free in Skia
|
|
|
|
|
|
* CVE-2015-1295: Use-after-free in Printing
|
|
|
|
|
|
* CVE-2015-1296: Character spoofing in omnibox
|
|
|
|
|
|
* CVE-2015-1297: Permission scoping error in WebRequest
|
|
|
|
|
|
* CVE-2015-1298: URL validation error in extensions
|
|
|
|
|
|
* CVE-2015-1299: Use-after-free in Blink
|
|
|
|
|
|
* CVE-2015-1300: Information leak in Blink
|
|
|
|
|
|
* CVE-2015-1301: Various fixes from internal audits, fuzzing and other initiatives.
|
|
|
|
|
|
|
2015-08-05 10:36:33 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed Aug 5 10:25:10 UTC 2015 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 44.0.2403.130
|
|
|
|
|
|
* No changelog available
|
|
|
|
|
|
|
2015-07-29 09:14:11 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed Jul 29 08:57:03 UTC 2015 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 44.0.2403.125
|
|
|
|
|
|
* No changelog available
|
|
|
|
|
|
|
|
|
|
|
|
- The chromium-ffmpeg package (on Packman) now requires the same
|
|
|
|
|
|
version for the main chromium package. This should prevent the
|
|
|
|
|
|
issues arised from the libffmpeg switch that Google did recently
|
|
|
|
|
|
|
2015-07-25 12:48:17 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sat Jul 25 12:35:29 UTC 2015 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 44.0.2403.107
|
|
|
|
|
|
* No changelog available
|
|
|
|
|
|
|
2015-07-21 19:09:08 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Tue Jul 21 18:56:57 UTC 2015 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 44.0.2403.89
|
|
|
|
|
|
* A number of new apps/extension APIs
|
|
|
|
|
|
* Lots of under the hood changes for stability and performance
|
|
|
|
|
|
* Security fixes:
|
|
|
|
|
|
- CVE-2015-1271: Heap-buffer-overflow in pdfium
|
|
|
|
|
|
- CVE-2015-1273: Heap-buffer-overflow in pdfium
|
|
|
|
|
|
- CVE-2015-1274: Settings allowed executable files to run
|
|
|
|
|
|
immediately after download
|
|
|
|
|
|
- CVE-2015-1275: UXSS in Chrome for Android
|
|
|
|
|
|
- CVE-2015-1276: Use-after-free in IndexedDB
|
|
|
|
|
|
- CVE-2015-1279: Heap-buffer-overflow in pdfium
|
|
|
|
|
|
- CVE-2015-1280: Memory corruption in skia
|
|
|
|
|
|
- CVE-2015-1281: CSP bypass
|
|
|
|
|
|
- CVE-2015-1282: Use-after-free in pdfium
|
|
|
|
|
|
- CVE-2015-1283: Heap-buffer-overflow in expat
|
|
|
|
|
|
- CVE-2015-1284: Use-after-free in blink
|
|
|
|
|
|
- CVE-2015-1286: UXSS in blink
|
|
|
|
|
|
- CVE-2015-1287: SOP bypass with CSS
|
|
|
|
|
|
- CVE-2015-1270: Uninitialized memory read in ICU
|
|
|
|
|
|
- CVE-2015-1272: Use-after-free related to unexpected GPU
|
|
|
|
|
|
process termination
|
|
|
|
|
|
- CVE-2015-1277: Use-after-free in accessibility
|
|
|
|
|
|
- CVE-2015-1278: URL spoofing using pdf files
|
|
|
|
|
|
- CVE-2015-1285: Information leak in XSS auditor
|
|
|
|
|
|
- CVE-2015-1288: Spell checking dictionaries fetched over HTTP
|
|
|
|
|
|
- CVE-2015-1289: Various fixes from internal audits, fuzzing
|
|
|
|
|
|
and other initiatives
|
|
|
|
|
|
|
2015-07-15 12:10:04 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed Jul 15 12:01:42 UTC 2015 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 43.0.2357.134
|
|
|
|
|
|
Update of the Pepper Flash plugin to 18.0.0.209
|
|
|
|
|
|
|
2015-07-08 03:58:49 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed Jul 8 03:38:30 UTC 2015 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 43.0.2357.132
|
|
|
|
|
|
No changelog available
|
|
|
|
|
|
|
2015-06-23 12:34:47 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Tue Jun 23 12:29:39 UTC 2015 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 43.0.2357.130
|
|
|
|
|
|
- Security fixes (boo#935723)
|
|
|
|
|
|
* CVE-2015-1266: Scheme validation error in WebUI
|
|
|
|
|
|
* CVE-2015-1268: Cross-origin bypass in Blink
|
|
|
|
|
|
* CVE-2015-1267: Cross-origin bypass in Blink
|
|
|
|
|
|
* CVE-2015-1269: Normalization error in HSTS/HPKP preload list
|
|
|
|
|
|
|
2015-06-17 18:11:37 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed Jun 17 18:08:51 UTC 2015 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Add the buildflag enable_hotwording=0 to prevent that Chromium
|
|
|
|
|
|
downloads a binary blob for speechrecognition (boo#935022)
|
2015-06-17 20:45:42 +00:00
|
|
|
|
|
|
|
|
|
|
- Add patch gcc50-fixes.diff to enable building against GCC 5. The
|
|
|
|
|
|
patch fixes the python regular expression and ensures to return
|
|
|
|
|
|
a two digit value for the GCC version
|
2015-06-17 18:11:37 +00:00
|
|
|
|
|
2015-06-12 13:56:34 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Fri Jun 12 13:51:28 UTC 2015 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 43.0.2357.125
|
|
|
|
|
|
* Bug-fixes:
|
|
|
|
|
|
- esolved browser font magnification/scaling issue.
|
|
|
|
|
|
|
2015-05-27 10:56:04 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed May 27 10:49:49 UTC 2015 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 43.0.2357.81
|
|
|
|
|
|
* Bug-fixes:
|
|
|
|
|
|
- Fixed an issue where sometimes a blank page would print
|
|
|
|
|
|
- Icons not displaying properly on Linux
|
|
|
|
|
|
|
2015-05-20 11:14:00 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed May 20 11:02:32 UTC 2015 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 43.0.2357.65
|
|
|
|
|
|
* Security fixes:
|
|
|
|
|
|
- CVE-2015-1252: Sandbox escape in Chrome
|
|
|
|
|
|
- CVE-2015-1253: Cross-origin bypass in DOM
|
|
|
|
|
|
- CVE-2015-1254: Cross-origin bypass in Editing
|
|
|
|
|
|
- CVE-2015-1255: Use-after-free in WebAudio
|
|
|
|
|
|
- CVE-2015-1256: Use-after-free in SVG
|
|
|
|
|
|
- CVE-2015-1251: Use-after-free in Speech
|
|
|
|
|
|
- CVE-2015-1257: Container-overflow in SVG
|
|
|
|
|
|
- CVE-2015-1258: Negative-size parameter in Libvpx
|
|
|
|
|
|
- CVE-2015-1259: Uninitialized value in PDFium
|
|
|
|
|
|
- CVE-2015-1260: Use-after-free in WebRTC
|
|
|
|
|
|
- CVE-2015-1261: URL bar spoofing
|
|
|
|
|
|
- CVE-2015-1262: Uninitialized value in Blink
|
|
|
|
|
|
- CVE-2015-1263: Insecure download of spellcheck dictionary
|
|
|
|
|
|
- CVE-2015-1264: Cross-site scripting in bookmarks
|
|
|
|
|
|
- CVE-2015-1265: Various fixes from internal audits, fuzzing and other initiatives
|
|
|
|
|
|
- Multiple vulnerabilities in V8 fixed at the tip of the 4.3 branch (currently 4.3.61.21)
|
|
|
|
|
|
|
|
|
|
|
|
|
2015-04-29 08:59:05 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed Apr 29 08:54:17 UTC 2015 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 42.0.2311.135
|
|
|
|
|
|
* Security fixes:
|
|
|
|
|
|
- CVE-2015-1243: Use-after-free in DOM
|
|
|
|
|
|
- CVE-2015-1250: Various fixes from internal audits, fuzzing and other initiatives
|
|
|
|
|
|
and 3 more security fixes.
|
|
|
|
|
|
|
2015-04-27 13:27:32 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Mon Apr 27 13:26:00 UTC 2015 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Fix for missing Chromium icon in the taskbar.
|
|
|
|
|
|
|
2015-04-15 14:21:28 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed Apr 15 14:11:48 UTC 2015 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 42.0.2311.90
|
|
|
|
|
|
* A number of new apps, extension and Web Platform APIs (including the Push API!)
|
|
|
|
|
|
* Lots of under the hood changes for stability and performance
|
|
|
|
|
|
* Security fixes, including:
|
|
|
|
|
|
- CVE-2015-1235: Cross-origin-bypass in HTML parser
|
|
|
|
|
|
- CVE-2015-1236: Cross-origin-bypass in Blink
|
|
|
|
|
|
- CVE-2015-1237: Use-after-free in IPC
|
|
|
|
|
|
- CVE-2015-1238: Out-of-bounds write in Skia
|
|
|
|
|
|
- CVE-2015-1240: Out-of-bounds read in WebGL
|
|
|
|
|
|
- CVE-2015-1241: Tap-Jacking
|
|
|
|
|
|
- CVE-2015-1242: Type confusion in V8
|
|
|
|
|
|
- CVE-2015-1244: HSTS bypass in WebSockets
|
|
|
|
|
|
- CVE-2015-1245: Use-after-free in PDFium
|
|
|
|
|
|
- CVE-2015-1246: Out-of-bounds read in Blink
|
|
|
|
|
|
- CVE-2015-1247: Scheme issues in OpenSearch
|
|
|
|
|
|
- CVE-2015-1248: SafeBrowsing bypass
|
|
|
|
|
|
- CVE-2015-1249: Various fixes from internal audits, fuzzing and other initiatives
|
|
|
|
|
|
- Multiple vulnerabilities in V8 fixed
|
|
|
|
|
|
|
2015-04-02 13:05:20 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Thu Apr 2 13:01:00 UTC 2015 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 41.0.2272.118
|
|
|
|
|
|
Security fixes:
|
|
|
|
|
|
* CVE-2015-1233: A combination of V8, Gamepad and IPC bugs that
|
|
|
|
|
|
can lead to remote code execution outside of
|
|
|
|
|
|
the sandbox
|
|
|
|
|
|
* CVE-2015-1234: Buffer overflow via race condition in GPU
|
|
|
|
|
|
|
2015-03-21 08:03:43 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sat Mar 21 07:33:54 UTC 2015 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 41.0.2272.101
|
|
|
|
|
|
* Bugfixes
|
|
|
|
|
|
|
2015-03-12 12:57:45 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Thu Mar 12 12:55:23 UTC 2015 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 41.0.2272.89
|
|
|
|
|
|
* Bugfixes
|
|
|
|
|
|
|
2015-03-04 10:03:59 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed Mar 4 09:57:26 UTC 2015 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 41.0.2272.76
|
|
|
|
|
|
Security fixes:
|
|
|
|
|
|
* CVE-2015-1212: Out-of-bounds write in media
|
|
|
|
|
|
* CVE-2015-1213: Out-of-bounds write in skia filters
|
|
|
|
|
|
* CVE-2015-1214: Out-of-bounds write in skia filters
|
|
|
|
|
|
* CVE-2015-1215: Out-of-bounds write in skia filters
|
|
|
|
|
|
* CVE-2015-1216: Use-after-free in v8 bindings
|
|
|
|
|
|
* CVE-2015-1217: Type confusion in v8 bindings
|
|
|
|
|
|
* CVE-2015-1218: Use-after-free in dom
|
|
|
|
|
|
* CVE-2015-1219: Integer overflow in webgl
|
|
|
|
|
|
* CVE-2015-1220: Use-after-free in gif decoder
|
|
|
|
|
|
* CVE-2015-1221: Use-after-free in web databases
|
|
|
|
|
|
* CVE-2015-1222: Use-after-free in service workers
|
|
|
|
|
|
* CVE-2015-1223: Use-after-free in dom
|
|
|
|
|
|
* CVE-2015-1230: Type confusion in v8
|
|
|
|
|
|
* CVE-2015-1224: Out-of-bounds read in vpxdecoder
|
|
|
|
|
|
* CVE-2015-1225: Out-of-bounds read in pdfium
|
|
|
|
|
|
* CVE-2015-1226: Validation issue in debugger
|
|
|
|
|
|
* CVE-2015-1227: Uninitialized value in blink
|
|
|
|
|
|
* CVE-2015-1228: Uninitialized value in rendering
|
|
|
|
|
|
* CVE-2015-1229: Cookie injection via proxies
|
|
|
|
|
|
* CVE-2015-1231: Various fixes from internal audits
|
|
|
|
|
|
* Multiple vulnerabilities in V8 fixed at the tip of the 4.1 branch
|
|
|
|
|
|
|
2015-03-01 15:41:11 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Fri Feb 27 16:13:03 UTC 2015 - meissner@suse.com
|
|
|
|
|
|
|
|
|
|
|
|
- regular diskusage is more like 20GB+
|
|
|
|
|
|
|
2015-02-24 11:11:15 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Mon Feb 23 16:06:08 UTC 2015 - meissner@suse.com
|
|
|
|
|
|
|
|
|
|
|
|
- uses around 5.8GB for building, assign like 6GB in _constraints
|
|
|
|
|
|
|
2015-02-20 18:26:39 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Fri Feb 20 17:47:30 UTC 2015 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 40.0.2214.115
|
|
|
|
|
|
* Bugfixes
|
|
|
|
|
|
|
2015-02-18 12:48:48 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Tue Feb 18 12:47:30 UTC 2015 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Utilize the _service file to download the chromium tarball
|
|
|
|
|
|
|
2015-02-08 21:23:16 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sun Feb 8 21:13:30 UTC 2015 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 40.0.2214.111
|
|
|
|
|
|
* Security Fixes:
|
|
|
|
|
|
- CVE-2015-1209: Use-after-free in DOM
|
|
|
|
|
|
- CVE-2015-1210: Cross-origin-bypass in V8 bindings
|
|
|
|
|
|
- CVE-2015-1211: Privilege escalation using service workers
|
|
|
|
|
|
- CVE-2015-1212: Various fixes from internal audits, fuzzing
|
|
|
|
|
|
and other initiatives
|
|
|
|
|
|
|
2015-01-31 16:54:42 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sat Jan 31 16:35:39 UTC 2015 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 40.0.2214.94
|
|
|
|
|
|
- Bugfixes
|
|
|
|
|
|
|
2015-01-28 07:55:47 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed Jan 28 07:53:55 UTC 2015 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 40.0.2214.93
|
|
|
|
|
|
- Bugfixes
|
|
|
|
|
|
|
2015-01-23 16:40:16 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Fri Jan 23 16:26:27 UTC 2015 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 40.0.2214.91
|
|
|
|
|
|
* Security Fixes:
|
|
|
|
|
|
- CVE-2014-7923: Memory corruption in ICU
|
|
|
|
|
|
- CVE-2014-7924: Use-after-free in IndexedDB
|
|
|
|
|
|
- CVE-2014-7925: Use-after-free in WebAudio
|
|
|
|
|
|
- CVE-2014-7926: Memory corruption in ICU
|
|
|
|
|
|
- CVE-2014-7927: Memory corruption in V8
|
|
|
|
|
|
- CVE-2014-7928: Memory corruption in V8
|
|
|
|
|
|
- CVE-2014-7930: Use-after-free in DOM
|
|
|
|
|
|
- VE-2014-7931: Memory corruption in V8
|
|
|
|
|
|
- CVE-2014-7929: Use-after-free in DOM
|
|
|
|
|
|
- CVE-2014-7932: Use-after-free in DOM
|
|
|
|
|
|
- CVE-2014-7933: Use-after-free in FFmpeg
|
|
|
|
|
|
- CVE-2014-7934: Use-after-free in DOM
|
|
|
|
|
|
- CVE-2014-7935: Use-after-free in Speech
|
|
|
|
|
|
- CVE-2014-7936: Use-after-free in Views
|
|
|
|
|
|
- CVE-2014-7937: Use-after-free in FFmpeg
|
|
|
|
|
|
- CVE-2014-7938: Memory corruption in Fonts
|
|
|
|
|
|
- CVE-2014-7939: Same-origin-bypass in V8
|
|
|
|
|
|
- CVE-2014-7940: Uninitialized-value in ICU
|
|
|
|
|
|
- CVE-2014-7941: Out-of-bounds read in UI
|
|
|
|
|
|
- CVE-2014-7942: Uninitialized-value in Fonts
|
|
|
|
|
|
- CVE-2014-7943: Out-of-bounds read in Skia
|
|
|
|
|
|
- CVE-2014-7944: Out-of-bounds read in PDFium
|
|
|
|
|
|
- CVE-2014-7945: Out-of-bounds read in PDFium
|
|
|
|
|
|
- CVE-2014-7946: Out-of-bounds read in Fonts
|
|
|
|
|
|
- CVE-2014-7947: Out-of-bounds read in PDFium
|
|
|
|
|
|
- CVE-2014-7948: Caching error in AppCache
|
|
|
|
|
|
- CVE-2015-1205: Various fixes from internal audits, fuzzing and other initiatives
|
|
|
|
|
|
- Multiple vulnerabilities in V8 fixed at the tip of the 3.30 branch
|
|
|
|
|
|
|
2015-01-14 14:40:54 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Tue Jan 13 21:34:07 UTC 2015 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 39.0.2171.99
|
|
|
|
|
|
* Bugfixes
|
|
|
|
|
|
|
2014-12-10 09:07:25 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed Dec 10 09:05:47 UTC 2014 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 39.0.2171.95
|
|
|
|
|
|
* Bugfixes
|
|
|
|
|
|
|
2014-12-01 09:09:35 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sun Nov 30 22:34:00 UTC 2014 - Led <ledest@gmail.com>
|
|
|
|
|
|
|
|
|
|
|
|
- fix using 'echo' command in chromium-browser.sh script
|
|
|
|
|
|
|
2014-11-26 09:33:34 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed Nov 26 09:31:05 UTC 2014 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 39.0.2171.71
|
|
|
|
|
|
* Bugfixes
|
|
|
|
|
|
|
2014-11-19 12:56:43 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed Nov 19 12:51:03 UTC 2014 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 39.0.2171.65
|
|
|
|
|
|
* Security fixes:
|
2014-11-20 10:30:57 +00:00
|
|
|
|
- CVE-2014-7899: Address bar spoofing (boo#906320)
|
|
|
|
|
|
- CVE-2014-7900: Use-after-free in pdfium (boo#906317)
|
|
|
|
|
|
- CVE-2014-7901: Integer overflow in pdfium (boo#906322)
|
|
|
|
|
|
- CVE-2014-7902: Use-after-free in pdfium (boo#906328)
|
|
|
|
|
|
- CVE-2014-7903: Buffer overflow in pdfium (boo#906318)
|
|
|
|
|
|
- CVE-2014-7904: Buffer overflow in Skia (boo#906321)
|
2014-11-19 12:56:43 +00:00
|
|
|
|
- CVE-2014-7905: Flaw allowing navigation to intents that do
|
2014-11-20 10:30:57 +00:00
|
|
|
|
not have the BROWSABLE category (boo#906330)
|
|
|
|
|
|
- CVE-2014-7906: Use-after-free in pepper plugins (boo#906319)
|
2014-11-19 12:56:43 +00:00
|
|
|
|
- CVE-2014-0574: Double-free in Flash
|
2014-11-20 10:30:57 +00:00
|
|
|
|
- CVE-2014-7907: Use-after-free in blink (boo#906323)
|
|
|
|
|
|
- CVE-2014-7908: Integer overflow in media (boo#906324)
|
|
|
|
|
|
- CVE-2014-7909: Uninitialized memory read in Skia (boo#906326)
|
2014-11-19 12:56:43 +00:00
|
|
|
|
- CVE-2014-7910: Various fixes from internal audits, fuzzing
|
2014-11-20 10:30:57 +00:00
|
|
|
|
and other initiatives (boo#906327)
|
2014-11-19 12:56:43 +00:00
|
|
|
|
|
2014-11-14 07:59:58 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Fri Nov 14 07:53:38 UTC 2014 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 38.0.2125.122
|
|
|
|
|
|
* Several bugfixes
|
|
|
|
|
|
|
2014-10-28 14:27:39 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Tue Oct 28 14:16:04 UTC 2014 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 38.0.2125.111
|
|
|
|
|
|
* Several bugfixes
|
|
|
|
|
|
|
2014-10-15 21:08:58 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed Oct 15 21:03:27 UTC 2014 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 38.0.2125.104
|
|
|
|
|
|
* Several bugfixes
|
|
|
|
|
|
|
2014-10-18 06:54:59 +00:00
|
|
|
|
- Updated source url to point to the right location
|
|
|
|
|
|
|
2014-09-10 20:44:20 +00:00
|
|
|
|
-------------------------------------------------------------------
|
2014-10-08 09:18:43 +00:00
|
|
|
|
Wed Oct 8 09:12:25 UTC 2014 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 38.0.2125.101
|
|
|
|
|
|
This update includes 159 security fixes, including 113 relatively
|
|
|
|
|
|
minor fixes. Highlighted securtiy fixes are:
|
|
|
|
|
|
CVE-2014-3188: A combination of V8 and IPC bugs that can lead to
|
|
|
|
|
|
remote code execution outside of the sandbox
|
|
|
|
|
|
CVE-2014-3189: Out-of-bounds read in PDFium
|
|
|
|
|
|
CVE-2014-3190: Use-after-free in Events
|
|
|
|
|
|
CVE-2014-3191: Use-after-free in Rendering
|
|
|
|
|
|
CVE-2014-3192: Use-after-free in DOM
|
|
|
|
|
|
CVE-2014-3193: Type confusion in Session Management
|
|
|
|
|
|
CVE-2014-3194: Use-after-free in Web Workers
|
|
|
|
|
|
CVE-2014-3195: Information Leak in V8
|
|
|
|
|
|
CVE-2014-3196: Permissions bypass in Windows Sandbox
|
|
|
|
|
|
CVE-2014-3197: Information Leak in XSS Auditor
|
|
|
|
|
|
CVE-2014-3198: Out-of-bounds read in PDFium
|
|
|
|
|
|
CVE-2014-3199: Release Assert in V8 bindings
|
2014-10-08 09:22:10 +00:00
|
|
|
|
CVE-2014-3200: Various fixes from internal audits, fuzzing and
|
|
|
|
|
|
other initiatives
|
2014-10-08 09:18:43 +00:00
|
|
|
|
|
|
|
|
|
|
- Drop the build of the Native Client. This is actually not a build
|
|
|
|
|
|
as that prebuild binaries are being shipped. Also Google no
|
|
|
|
|
|
longer provides prebuild binaries for the NativeClient for 32bit.
|
|
|
|
|
|
Chromium as webbrowser is not affected by this and it bring
|
|
|
|
|
|
Chromium inline with the regulations that prebuild binaries
|
|
|
|
|
|
should not be shipped.
|
2014-10-08 09:22:10 +00:00
|
|
|
|
* toolchaing_linux tarball dropped
|
|
|
|
|
|
* Spec-file cleaned for NaCl stuff
|
2014-10-08 09:18:43 +00:00
|
|
|
|
|
2014-10-08 09:55:11 +00:00
|
|
|
|
- Added patch no-clang-on-packman.diff to prevent the usage of
|
|
|
|
|
|
clang on packman, which is not supported there
|
|
|
|
|
|
|
2014-10-08 09:18:43 +00:00
|
|
|
|
-------------------------------------------------------------------
|
2014-09-10 20:44:20 +00:00
|
|
|
|
Wed Sep 10 20:40:33 UTC 2014 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 37.0.2062.120
|
|
|
|
|
|
* Security Fixes (bnc#896106)
|
|
|
|
|
|
- CVE-2014-3178: Use-after-free in rendering
|
|
|
|
|
|
|
2014-09-07 08:09:00 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sun Sep 7 07:46:20 UTC 2014 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 37.0.2062.103
|
|
|
|
|
|
* This addresses some user feedback related to how Chrome
|
|
|
|
|
|
renders text when display scaling is set to 125% or lower.
|
|
|
|
|
|
|
2014-09-07 08:26:40 +00:00
|
|
|
|
- Combine the two toolchain tars into a single one.
|
|
|
|
|
|
|
2014-09-01 07:27:07 +00:00
|
|
|
|
-------------------------------------------------------------------
|
2014-09-01 07:35:38 +00:00
|
|
|
|
Mon Sep 1 07:33:24 UTC 2014 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Switch to shared libraries as a global default. This hopefully
|
|
|
|
|
|
speeds up the builds a little and prevents out-of-memory on OBS
|
|
|
|
|
|
- Move the chrome sandbox binary to the main package and remove the
|
|
|
|
|
|
sub-package for it. This should resolve build issues when having
|
|
|
|
|
|
the debug flag on.
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sun Aug 31 00:39:34 UTC 2014 - josua.m@t-online.de
|
2014-09-01 07:27:07 +00:00
|
|
|
|
|
|
|
|
|
|
- add toolchain_linux_arm
|
|
|
|
|
|
- disable NaCl on ARM because it doesn't build
|
|
|
|
|
|
- add arm-webrtc-fix.patch
|
|
|
|
|
|
- add chromium-arm-r0.patch
|
|
|
|
|
|
- add skia.patch
|
|
|
|
|
|
- build components as shared libaries on arm
|
|
|
|
|
|
|
2014-08-27 12:35:31 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed Aug 27 11:53:24 UTC 2014 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 37.0.2062.94
|
|
|
|
|
|
Security Fixes (bnc#893720)
|
|
|
|
|
|
* CVE-2014-3176, CVE-2014-3177: A combination of bugs in V8, IPC,
|
|
|
|
|
|
sync, and extensions that can lead to remote code execution
|
|
|
|
|
|
outside of the sandbox.
|
|
|
|
|
|
* CVE-2014-3168: Use-after-free in SVG
|
|
|
|
|
|
* CVE-2014-3169: Use-after-free in DOM
|
|
|
|
|
|
* CVE-2014-3170: Extension permission dialog spoofing
|
|
|
|
|
|
* CVE-2014-3171: Use-after-free in bindings
|
|
|
|
|
|
* CVE-2014-3172: Issue related to extension debugging
|
|
|
|
|
|
* CVE-2014-3173: Uninitialized memory read in WebGL
|
|
|
|
|
|
* CVE-2014-3174: Uninitialized memory read in Web Audio
|
|
|
|
|
|
* CVE-2014-3175: Various fixes from internal audits, fuzzing
|
|
|
|
|
|
and other initiatives
|
|
|
|
|
|
and 41 more security fixes for which no description was given
|
|
|
|
|
|
|
2014-08-28 11:37:18 +00:00
|
|
|
|
- Drop the following patches as they are no longer required:
|
|
|
|
|
|
* chromium-23.0.1245-no-test-sources.patch
|
|
|
|
|
|
* no-download-nacl.diff
|
|
|
|
|
|
* chromium-no-courgette.patch
|
2014-08-27 13:24:56 +00:00
|
|
|
|
|
2014-08-13 12:44:47 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed Aug 13 12:19:10 UTC 2014 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 36.0.1985.143
|
2014-08-13 13:10:05 +00:00
|
|
|
|
Security Fixes (bnc#891717)
|
2014-08-13 12:44:47 +00:00
|
|
|
|
* CVE-2014-3165: Use-after-free in web sockets
|
|
|
|
|
|
* CVE-2014-3166: Information disclosure in SPDY
|
|
|
|
|
|
* CVE-2014-3167: Various fixes from internal audits, fuzzing and
|
|
|
|
|
|
other initiatives
|
|
|
|
|
|
and 9 more fixes for which no description was given
|
|
|
|
|
|
|
2014-08-05 21:47:53 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Tue Aug 5 21:47:00 UTC 2014 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Add directory remoting_locales to the package to complete
|
|
|
|
|
|
the language support within Chromium
|
|
|
|
|
|
|
2014-07-22 08:41:43 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Tue Jul 22 08:19:51 UTC 2014 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 36.0.1985.125
|
|
|
|
|
|
New Functionality:
|
|
|
|
|
|
* Rich Notifications Improvements
|
|
|
|
|
|
* An Updated Incognito / Guest NTP design
|
|
|
|
|
|
* The addition of a Browser crash recovery bubble
|
|
|
|
|
|
* Chrome App Launcher for Linux
|
|
|
|
|
|
* Lots of under the hood changes for stability and performance
|
|
|
|
|
|
|
2014-07-24 13:22:37 +00:00
|
|
|
|
Security Fixes (bnc#887952,bnc#887955):
|
2014-07-22 08:41:43 +00:00
|
|
|
|
* CVE-2014-3160: Same-Origin-Policy bypass in SVG
|
|
|
|
|
|
* CVE-2014-3162: Various fixes from internal audits, fuzzing
|
|
|
|
|
|
and other initiatives
|
|
|
|
|
|
and 24 more fixes for which no description was given.
|
2014-07-22 09:59:29 +00:00
|
|
|
|
|
|
|
|
|
|
Packaging changes:
|
|
|
|
|
|
* Switch to newer method to retrieve toolchain packages. Dropping
|
|
|
|
|
|
the three naclsdk_*tgz files. Everything is now included in the
|
|
|
|
|
|
toolchain_linux_x86.tar.bz2 tarball
|
|
|
|
|
|
* Add Courgette.tar.xz as that the build process now requires
|
|
|
|
|
|
some files from Courgette in order to build succesfully. This
|
|
|
|
|
|
does not mean that Courgette is build/delivered.
|
2014-07-22 08:41:43 +00:00
|
|
|
|
|
2014-06-11 11:29:04 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed Jun 11 11:01:07 UTC 2014 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 35.0.1916.153
|
2014-07-24 13:22:37 +00:00
|
|
|
|
Security fixes (bnc#882264,bnc#882264,bnc#882265,bnc#882263):
|
2014-06-11 11:29:04 +00:00
|
|
|
|
* CVE-2014-3154: Use-after-free in filesystem api
|
|
|
|
|
|
* CVE-2014-3155: Out-of-bounds read in SPDY
|
|
|
|
|
|
* CVE-2014-3156: Buffer overflow in clipboard
|
|
|
|
|
|
* CVE-2014-3157: Heap overflow in media
|
|
|
|
|
|
|
2014-05-22 08:54:10 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Thu May 22 08:48:29 UTC 2014 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Use also Ninja for openSUSE 12.3. This is the only method
|
|
|
|
|
|
supported by upstream
|
|
|
|
|
|
|
|
|
|
|
|
- Drop support for Arm. Despite that chromium builds on Arm, it can
|
|
|
|
|
|
not complete the link process and dies with out-of-memory, etc.
|
|
|
|
|
|
Drop the specific Arm patches:
|
|
|
|
|
|
* arm_disable_gn.patch, arm_use_gold.patch, chromium-arm-webrtc-fix.patch,
|
|
|
|
|
|
chromium-fix-arm-icu.patch, chromium-fix-arm-skia-memset.patch,
|
|
|
|
|
|
chromium-fix-arm-sysroot.patch
|
|
|
|
|
|
|
2014-05-21 15:17:56 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed May 21 14:54:37 UTC 2014 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 35.0.1916.114
|
|
|
|
|
|
New Functionality
|
|
|
|
|
|
* More developer control over touch input
|
|
|
|
|
|
* New JavaScript features
|
|
|
|
|
|
* Unprefixed Shadow DOM
|
|
|
|
|
|
* A number of new apps/extension APIs
|
|
|
|
|
|
* Lots of under the hood changes for stability and performance
|
|
|
|
|
|
|
|
|
|
|
|
Security fixes:
|
|
|
|
|
|
* CVE-2014-1743: Use-after-free in styles
|
|
|
|
|
|
* CVE-2014-1744: Integer overflow in audio
|
|
|
|
|
|
* CVE-2014-1745: Use-after-free in SVG
|
|
|
|
|
|
* CVE-2014-1746: Out-of-bounds read in media filters
|
|
|
|
|
|
* CVE-2014-1747: UXSS with local MHTML file
|
|
|
|
|
|
* CVE-2014-1748: UI spoofing with scrollbar
|
2014-05-23 10:45:17 +00:00
|
|
|
|
* CVE-2014-1749: Various fixes from internal audits, fuzzing and other initiatives
|
|
|
|
|
|
* CVE-2014-3152: Integer underflow in V8 fixed
|
|
|
|
|
|
and 17 more for which no detailed information is given.
|
2014-05-21 15:17:56 +00:00
|
|
|
|
|
2014-05-21 18:11:05 +00:00
|
|
|
|
- Drop patch chromium-vendor.patch.in as that does no longer apply
|
|
|
|
|
|
due to upstream changes
|
|
|
|
|
|
|
2014-05-14 19:15:01 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed May 14 19:12:29 UTC 2014 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 34.0.1847.137
|
|
|
|
|
|
* Security updates:
|
|
|
|
|
|
|
|
|
|
|
|
- CVE-2014-1740: Use-after-free in WebSockets
|
|
|
|
|
|
- CVE-2014-1741: Integer overflow in DOM range
|
|
|
|
|
|
- CVE-2014-1742: Use-after-free in editing
|
|
|
|
|
|
|
2014-04-28 09:15:51 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Mon Apr 28 08:48:49 UTC 2014 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 34.0.1847.132
|
|
|
|
|
|
* Security update:
|
|
|
|
|
|
|
|
|
|
|
|
- CVE-2014-1730: Type confusion in V8
|
|
|
|
|
|
- CVE-2014-1731: Type confusion in DOM
|
|
|
|
|
|
- CVE-2014-1732: Use-after-free in Speech Recognition
|
|
|
|
|
|
- CVE-2014-1733: Compiler bug in Seccomp-BPF
|
|
|
|
|
|
- CVE-2014-1734: Various fixes from internal audits, fuzzing
|
|
|
|
|
|
and other initiatives
|
|
|
|
|
|
- CVE-2014-1735: Multiple vulnerabilities in V8 fixed in
|
|
|
|
|
|
version 3.24.35.33
|
|
|
|
|
|
|
2014-04-25 16:28:02 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Fri Apr 25 16:20:59 UTC 2014 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 34.0.1847.131
|
|
|
|
|
|
* Bugfixes
|
|
|
|
|
|
|
2014-04-10 15:27:52 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Thu Apr 10 15:27:15 UTC 2014 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Add patch chromium-fix-arm-skia-memset.patch to resolve a linking
|
|
|
|
|
|
issue on ARM with regards to missing symbols.
|
|
|
|
|
|
|
2014-04-09 07:25:58 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed Apr 9 07:25:09 UTC 2014 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Add patch arm_use_gold.patch to use the right gold binaries on
|
|
|
|
|
|
ARM. Hopefully this resolves the build issues with running out of
|
|
|
|
|
|
memory
|
|
|
|
|
|
|
2014-04-08 20:33:29 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Tue Apr 8 20:20:38 UTC 2014 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 34.0.1847.116
|
|
|
|
|
|
* Responsive Images and Unprefixed Web Audio
|
|
|
|
|
|
* Import supervised users onto new computers
|
|
|
|
|
|
* A number of new apps/extension APIs
|
|
|
|
|
|
* Lots of under the hood changes for stability and performance
|
|
|
|
|
|
|
|
|
|
|
|
- Security fixes:
|
|
|
|
|
|
* CVE-2014-1716: UXSS in V8
|
|
|
|
|
|
* CVE-2014-1717: OOB access in V8
|
|
|
|
|
|
* CVE-2014-1718: Integer overflow in compositor
|
|
|
|
|
|
* CVE-2014-1719: Use-after-free in web workers
|
|
|
|
|
|
* CVE-2014-1720: Use-after-free in DOM
|
|
|
|
|
|
* CVE-2014-1721: Memory corruption in V8
|
|
|
|
|
|
* CVE-2014-1722: Use-after-free in rendering
|
|
|
|
|
|
* CVE-2014-1723: Url confusion with RTL characters
|
|
|
|
|
|
* CVE-2014-1724: Use-after-free in speech
|
|
|
|
|
|
* CVE-2014-1725: OOB read with window property
|
|
|
|
|
|
* CVE-2014-1726: Local cross-origin bypass
|
|
|
|
|
|
* CVE-2014-1727: Use-after-free in forms
|
|
|
|
|
|
* CVE-2014-1728: Various fixes from internal audits,
|
|
|
|
|
|
fuzzing and other initiatives
|
|
|
|
|
|
* CVE-2014-1729: Multiple vulnerabilities in V8
|
|
|
|
|
|
|
2014-04-11 16:14:55 +00:00
|
|
|
|
- No longer build against system libraries as that Chromium works
|
|
|
|
|
|
a lot better and crashes less on websites than with system libs
|
|
|
|
|
|
|
|
|
|
|
|
- Added package depot_tools.tar.gz as that the chromium build now
|
|
|
|
|
|
requires it during the initial build phase. It just contains some
|
|
|
|
|
|
utilities and nothing from it is being installed.
|
|
|
|
|
|
|
2014-04-08 20:33:29 +00:00
|
|
|
|
|
2014-04-06 14:07:46 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sun Apr 6 14:06:48 UTC 2014 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- If people want to install newer versions of the ffmpeg library
|
|
|
|
|
|
then let them. This is what they want.
|
|
|
|
|
|
|
|
|
|
|
|
- Remove the buildscript from the sources
|
|
|
|
|
|
|
2014-03-17 07:37:51 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Mon Mar 17 07:33:21 UTC 2014 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 33.0.1750.152
|
|
|
|
|
|
Stable channel uodate:
|
|
|
|
|
|
- Security fixes:
|
|
|
|
|
|
* CVE-2014-1713: Use-after-free in Blink bindings
|
|
|
|
|
|
* CVE-2014-1714: Windows clipboard vulnerability
|
|
|
|
|
|
* CVE-2014-1705: Memory corruption in V8
|
|
|
|
|
|
* CVE-2014-1715: Directory traversal issue
|
|
|
|
|
|
|
2014-02-21 13:22:47 +00:00
|
|
|
|
-------------------------------------------------------------------
|
2014-03-13 06:44:58 +00:00
|
|
|
|
Thu Mar 13 06:31:45 UTC 2014 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 33.0.1750.149
|
|
|
|
|
|
Stable channel uodate:
|
|
|
|
|
|
- Security fixes:
|
|
|
|
|
|
* CVE-2014-1700: Use-after-free in speech
|
|
|
|
|
|
* CVE-2014-1701: UXSS in events
|
|
|
|
|
|
* CVE-2014-1702: Use-after-free in web database
|
|
|
|
|
|
* CVE-2014-1703: Potential sandbox escape due to a
|
|
|
|
|
|
use-after-free in web sockets
|
|
|
|
|
|
* CVE-2014-1704: Multiple vulnerabilities in V8 fixed in
|
|
|
|
|
|
version 3.23.17.18
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
2014-02-21 13:22:47 +00:00
|
|
|
|
Fri Feb 21 12:52:21 UTC 2014 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 33.0.1750.117
|
|
|
|
|
|
Stable channel update:
|
|
|
|
|
|
- Security Fixes:
|
|
|
|
|
|
* CVE-2013-6653: Use-after-free related to web contents
|
|
|
|
|
|
* CVE-2013-6654: Bad cast in SVG
|
|
|
|
|
|
* CVE-2013-6655: Use-after-free in layout
|
|
|
|
|
|
* CVE-2013-6656: Information leak in XSS auditor
|
|
|
|
|
|
* CVE-2013-6657: Information leak in XSS auditor
|
|
|
|
|
|
* CVE-2013-6658: Use-after-free in layout
|
|
|
|
|
|
* CVE-2013-6659: Issue with certificates validation in TLS
|
|
|
|
|
|
handshake
|
|
|
|
|
|
* CVE-2013-6660: Information leak in drag and drop
|
|
|
|
|
|
* CVE-2013-6661: Various fixes from internal audits, fuzzing
|
|
|
|
|
|
and other initiatives. Of these, seven are
|
|
|
|
|
|
fixes for issues that could have allowed for
|
|
|
|
|
|
sandbox escapes from compromised renderers.
|
|
|
|
|
|
- Other:
|
|
|
|
|
|
- Google Chrome Frame has been retired
|
|
|
|
|
|
|
2014-02-21 15:23:13 +00:00
|
|
|
|
- Added gn-binaries.tar.xz to have the right version of the Google
|
|
|
|
|
|
depot tools during build.
|
2014-02-21 21:20:37 +00:00
|
|
|
|
- Added patch arm_disable_gn.patch to disable GN on ARM builds
|
2014-02-21 15:23:13 +00:00
|
|
|
|
|
2014-01-28 17:57:29 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Tue Jan 28 17:50:25 UTC 2014 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 32.0.1700.102
|
|
|
|
|
|
Stable channel update:
|
|
|
|
|
|
- Security Fixes:
|
|
|
|
|
|
* CVE-2013-6649: Use-after-free in SVG images
|
|
|
|
|
|
* CVE-2013-6650: Memory corruption in V8
|
|
|
|
|
|
* and 12 other fixes
|
|
|
|
|
|
- Other:
|
|
|
|
|
|
* Mouse Pointer disappears after exiting full-screen mode
|
|
|
|
|
|
* Drag and drop files into Chromium may not work properly
|
|
|
|
|
|
* Quicktime Plugin crashes in Chromium
|
|
|
|
|
|
* Chromium becomes unresponsive
|
|
|
|
|
|
* Trackpad users may not be able to scroll horizontally
|
|
|
|
|
|
* Scrolling does not work in combo box
|
|
|
|
|
|
* Chromium does not work with all CSS minifiers such as
|
|
|
|
|
|
whitespace around a media query's `and` keyword
|
|
|
|
|
|
|
2014-01-16 21:04:19 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Thu Jan 16 20:58:04 UTC 2014 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 32.0.1700.77
|
|
|
|
|
|
Stable channel update:
|
|
|
|
|
|
- Security fixes:
|
|
|
|
|
|
* CVE-2013-6646: Use-after-free in web workers
|
|
|
|
|
|
* CVE-2013-6641: Use-after-free related to forms
|
|
|
|
|
|
* CVE-2013-6643: Unprompted sync with an attacker’s
|
|
|
|
|
|
Google account
|
|
|
|
|
|
* CVE-2013-6645: Use-after-free related to speech input
|
|
|
|
|
|
elements
|
|
|
|
|
|
* CVE-2013-6644: Various fixes from internal audits, fuzzing
|
|
|
|
|
|
and other initiatives
|
|
|
|
|
|
- Other:
|
|
|
|
|
|
* Tab indicators for sound, webcam and casting
|
|
|
|
|
|
* Automatically blocking malware files
|
|
|
|
|
|
* Lots of under the hood changes for stability and performance
|
2014-01-16 21:19:01 +00:00
|
|
|
|
- Remove patch chromium-fix-chromedriver-build.diff as that
|
|
|
|
|
|
chromedriver is fixed upstream
|
2014-01-16 21:04:19 +00:00
|
|
|
|
|
2013-12-05 11:43:00 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Thu Dec 5 11:34:03 UTC 2013 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 31.0.1650.63
|
|
|
|
|
|
Stable channel update:
|
|
|
|
|
|
- Security fixes:
|
|
|
|
|
|
* CVE-2013-6634: Session fixation in sync related to 302 redirects
|
|
|
|
|
|
* CVE-2013-6635: Use-after-free in editing
|
|
|
|
|
|
* CVE-2013-6636: Address bar spoofing related to modal dialogs
|
|
|
|
|
|
* CVE-2013-6637: Various fixes from internal audits, fuzzing and other initiatives.
|
|
|
|
|
|
* CVE-2013-6638: Buffer overflow in v8
|
|
|
|
|
|
* CVE-2013-6639: Out of bounds write in v8.
|
|
|
|
|
|
* CVE-2013-6640: Out of bounds read in v8
|
|
|
|
|
|
* and 12 other security fixes.
|
2013-12-10 23:03:50 +00:00
|
|
|
|
- Updated ExcludeArch to exclude aarch64, ppc, ppc64 and ppc64le.
|
|
|
|
|
|
This is based on missing build requires (valgrind, v8, etc)
|
2013-12-05 11:43:00 +00:00
|
|
|
|
|
2013-11-27 09:36:46 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed Nov 27 09:36:08 UTC 2013 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Remove the build flags to build according to the Chrome ffmpeg
|
2013-11-27 09:37:35 +00:00
|
|
|
|
branding and the proprietary codecs. (bnc#847971)
|
2013-11-27 09:36:46 +00:00
|
|
|
|
|
2013-11-16 08:52:06 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sat Nov 16 08:44:23 UTC 2013 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 31.0.1650.57
|
|
|
|
|
|
Stable channel update:
|
|
|
|
|
|
- Security Fixes:
|
|
|
|
|
|
* CVE-2013-6632: Multiple memory corruption issues.
|
|
|
|
|
|
|
2013-11-07 11:19:59 +00:00
|
|
|
|
-------------------------------------------------------------------
|
2013-11-13 19:58:11 +00:00
|
|
|
|
Wed Nov 13 17:46:35 UTC 2013 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 31.0.1650.48
|
|
|
|
|
|
Stable Channel update:
|
|
|
|
|
|
- Security fixes:
|
|
|
|
|
|
* CVE-2013-6621: Use after free related to speech input elements..
|
|
|
|
|
|
* CVE-2013-6622: Use after free related to media elements.
|
|
|
|
|
|
* CVE-2013-6623: Out of bounds read in SVG.
|
|
|
|
|
|
* CVE-2013-6624: Use after free related to “id” attribute strings.
|
|
|
|
|
|
* CVE-2013-6625: Use after free in DOM ranges.
|
|
|
|
|
|
* CVE-2013-6626: Address bar spoofing related to interstitial warnings.
|
|
|
|
|
|
* CVE-2013-6627: Out of bounds read in HTTP parsing.
|
|
|
|
|
|
* CVE-2013-6628: Issue with certificates not being checked during TLS renegotiation.
|
|
|
|
|
|
* CVE-2013-2931: Various fixes from internal audits, fuzzing and other initiatives.
|
|
|
|
|
|
* CVE-2013-6629: Read of uninitialized memory in libjpeg and libjpeg-turbo.
|
|
|
|
|
|
* CVE-2013-6630: Read of uninitialized memory in libjpeg-turbo.
|
|
|
|
|
|
* CVE-2013-6631: Use after free in libjingle.
|
2013-11-14 12:27:04 +00:00
|
|
|
|
- Added patch chromium-fix-chromedriver-build.diff to fix the
|
|
|
|
|
|
chromedriver build
|
2013-11-13 19:58:11 +00:00
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
2013-11-07 11:19:59 +00:00
|
|
|
|
Thu Nov 7 11:18:07 UTC 2013 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Enable ARM build for Chromium.
|
|
|
|
|
|
* Added patches chromium-arm-webrtc-fix.patch,
|
|
|
|
|
|
chromium-fix-arm-icu.patch and chromium-fix-arm-sysroot.patch
|
|
|
|
|
|
to resolve ARM specific build issues
|
|
|
|
|
|
|
2013-10-19 17:05:30 +00:00
|
|
|
|
-------------------------------------------------------------------
|
2013-10-25 18:24:07 +00:00
|
|
|
|
Fri Oct 25 17:50:46 UTC 2013 - tittiatcoke@gmail.com
|
2013-10-19 17:05:30 +00:00
|
|
|
|
|
2013-10-25 18:24:07 +00:00
|
|
|
|
- Update to Chromium 30.0.1599.114
|
2013-10-25 20:45:01 +00:00
|
|
|
|
Stable Channel update: fix build for 32bit systems
|
2013-10-19 17:05:30 +00:00
|
|
|
|
|
2013-10-25 20:45:01 +00:00
|
|
|
|
- Drop patch chromium-fix-chromedriver-build.diff. This is now
|
|
|
|
|
|
fixed upstream
|
2013-11-03 17:35:46 +00:00
|
|
|
|
- For openSUSE versions lower than 13.1, build against the in-tree
|
|
|
|
|
|
libicu
|
2013-10-12 14:51:18 +00:00
|
|
|
|
|
2013-10-04 06:07:49 +00:00
|
|
|
|
-------------------------------------------------------------------
|
2013-10-25 18:24:07 +00:00
|
|
|
|
Wed Oct 16 05:14:12 UTC 2013 - tittiatcoke@gmail.com
|
2013-10-04 06:07:49 +00:00
|
|
|
|
|
2013-10-25 18:24:07 +00:00
|
|
|
|
- Update to Chromium 30.0.1599.101
|
|
|
|
|
|
- Security Fixes:
|
|
|
|
|
|
+ CVE-2013-2925: Use after free in XHR
|
|
|
|
|
|
+ CVE-2013-2926: Use after free in editing
|
|
|
|
|
|
+ CVE-2013-2927: Use after free in forms.
|
|
|
|
|
|
+ CVE-2013-2928: Various fixes from internal audits,
|
|
|
|
|
|
fuzzing and other initiatives.
|
2013-10-04 06:07:49 +00:00
|
|
|
|
|
2013-10-25 18:24:07 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Tue Oct 1 20:48:13 UTC 2013 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 30.0.1599.66
|
|
|
|
|
|
- Easier searching by image
|
|
|
|
|
|
- A number of new apps/extension APIs
|
|
|
|
|
|
- Lots of under the hood changes for stability and performance
|
|
|
|
|
|
- Security fixes:
|
|
|
|
|
|
+ CVE-2013-2906: Races in Web Audio
|
|
|
|
|
|
+ CVE-2013-2907: Out of bounds read in Window.prototype object
|
|
|
|
|
|
+ CVE-2013-2908: Address bar spoofing related to the
|
|
|
|
|
|
“204 No Content” status code
|
|
|
|
|
|
+ CVE-2013-2909: Use after free in inline-block rendering
|
|
|
|
|
|
+ CVE-2013-2910: Use-after-free in Web Audio
|
|
|
|
|
|
+ CVE-2013-2911: Use-after-free in XSLT
|
|
|
|
|
|
+ CVE-2013-2912: Use-after-free in PPAPI
|
|
|
|
|
|
+ CVE-2013-2913: Use-after-free in XML document parsing
|
|
|
|
|
|
+ CVE-2013-2914: Use after free in the Windows color chooser
|
|
|
|
|
|
dialog
|
|
|
|
|
|
+ CVE-2013-2915: Address bar spoofing via a malformed scheme
|
|
|
|
|
|
+ CVE-2013-2916: Address bar spoofing related to the “204 No
|
|
|
|
|
|
Content” status code
|
|
|
|
|
|
+ CVE-2013-2917: Out of bounds read in Web Audio
|
|
|
|
|
|
+ CVE-2013-2918: Use-after-free in DOM
|
|
|
|
|
|
+ CVE-2013-2919: Memory corruption in V8
|
|
|
|
|
|
+ CVE-2013-2920: Out of bounds read in URL parsing
|
|
|
|
|
|
+ CVE-2013-2921: Use-after-free in resource loader
|
|
|
|
|
|
+ CVE-2013-2922: Use-after-free in template element
|
|
|
|
|
|
+ CVE-2013-2923: Various fixes from internal audits, fuzzing and
|
|
|
|
|
|
other initiatives
|
|
|
|
|
|
+ CVE-2013-2924: Use-after-free in ICU. Upstream bug
|
2013-10-04 13:30:39 +00:00
|
|
|
|
|
2013-10-01 09:58:35 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Tue Oct 1 09:57:35 UTC 2013 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Add patch chromium-fix-altgrkeys.diff
|
|
|
|
|
|
- Make sure that AltGr is treated correctly (issue#296835)
|
|
|
|
|
|
|
2013-09-27 22:23:15 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Fri Sep 27 22:22:31 UTC 2013 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Do not build with system libxml (bnc#825157)
|
|
|
|
|
|
|
2013-09-25 18:46:00 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed Sep 25 18:29:25 UTC 2013 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to Chromium 31.0.1640.0
|
2013-09-23 22:57:12 +00:00
|
|
|
|
* Bug and Stability Fixes
|
|
|
|
|
|
- Fix destkop file for chromium by removing extension from icon
|
2013-09-27 10:51:26 +00:00
|
|
|
|
- Change the methodology for the Chromium packages. Build is
|
|
|
|
|
|
now based on an official tarball. As soon as the Beta channel
|
|
|
|
|
|
catches up with the current version, Chromium will be
|
|
|
|
|
|
based on the Beta channel instead of svn snapshots
|
2013-09-21 10:09:36 +00:00
|
|
|
|
|
2013-09-15 11:21:38 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sun Sep 15 10:37:00 UTC 2013 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 31.0.1632
|
|
|
|
|
|
* Bug and Stability fixes
|
2013-09-16 17:52:51 +00:00
|
|
|
|
- Added the flag --enable-threaded-compositing to the startup
|
|
|
|
|
|
script. This flag seems to be required when hardware acceleration
|
|
|
|
|
|
is in use. This prevents websites from locking up on users in
|
|
|
|
|
|
certain cases.
|
2013-09-15 11:21:38 +00:00
|
|
|
|
|
2013-09-02 13:54:22 +00:00
|
|
|
|
-------------------------------------------------------------------
|
2013-09-10 19:36:28 +00:00
|
|
|
|
Tue Sep 10 18:44:03 UTC 2013 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 31.0.1627
|
|
|
|
|
|
* Bug and Stability fixes
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
2013-09-02 13:54:22 +00:00
|
|
|
|
Mon Sep 2 13:39:12 UTC 2013 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 31.0.1619
|
|
|
|
|
|
* bug and Stability fixes
|
|
|
|
|
|
|
2013-08-27 08:00:10 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Mon Aug 26 20:57:18 UTC 2013 - andreas.stieger@gmx.de
|
|
|
|
|
|
|
2013-09-02 13:54:22 +00:00
|
|
|
|
- require mozilla-nss-devel >= 3.14 and mozilla-nspr-devel >= 4.9.5
|
2013-08-27 08:00:10 +00:00
|
|
|
|
|
2013-08-26 09:36:10 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Mon Aug 26 09:35:02 UTC 2013 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Add patch exclude_ymp.diff to ensure that 1-click-install files
|
|
|
|
|
|
are downloaded and NOT opened (bnc#836059)
|
|
|
|
|
|
|
2013-08-25 09:06:12 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sun Aug 25 08:25:22 UTC 2013 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 31.0.1611
|
|
|
|
|
|
* Bug and stability fixes
|
|
|
|
|
|
|
2013-08-18 16:44:08 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sun Aug 18 15:51:38 UTC 2013 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 31.0.1605
|
|
|
|
|
|
* Bug and stability fixes
|
|
|
|
|
|
|
2013-08-16 13:14:27 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Fri Aug 16 13:31:17 UTC 2013 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Change the startup script so that Chromium will not start
|
|
|
|
|
|
when the chrome_sandbox doesn't have the SETUID.
|
|
|
|
|
|
(bnc#779448)
|
|
|
|
|
|
|
2013-08-14 18:24:24 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed Aug 14 17:31:17 UTC 2013 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 31.0.1601
|
|
|
|
|
|
* Bug and stability fixes
|
|
|
|
|
|
|
2013-08-07 09:43:18 +00:00
|
|
|
|
-------------------------------------------------------------------
|
2013-08-11 09:20:16 +00:00
|
|
|
|
Sun Aug 11 08:40:31 UTC 2013 - tittiatcoke@gmail.com
|
2013-08-07 09:43:18 +00:00
|
|
|
|
|
2013-08-11 09:20:16 +00:00
|
|
|
|
- Update to 30.0.1594
|
2013-08-07 09:43:18 +00:00
|
|
|
|
* Bug and stability fixes
|
|
|
|
|
|
|
|
|
|
|
|
- Correct specfile to properly own /usr/bin/chromium (bnc#831584)
|
|
|
|
|
|
|
2013-08-11 15:24:14 +00:00
|
|
|
|
- Chromium now expects the SUID-helper installed in the same
|
|
|
|
|
|
directory as chromium. So let's create a symlink to the helper
|
|
|
|
|
|
in /usr/lib
|
|
|
|
|
|
|
2013-08-04 14:57:49 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sun Aug 4 14:11:58 UTC 2013 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 30.0.1587
|
|
|
|
|
|
* Bug and stability fixes
|
2013-08-04 15:08:08 +00:00
|
|
|
|
- Remove patch chromium-nss-compliant.diff (Upstream)
|
2013-08-04 14:57:49 +00:00
|
|
|
|
|
2013-07-24 07:56:17 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed Jul 24 04:57:36 UTC 2013 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 30.0.1575
|
|
|
|
|
|
* Bug and stability fixes
|
|
|
|
|
|
* Enable the gpu-sandbox again due to upstream fix (chromium#255063)
|
|
|
|
|
|
|
2013-07-16 18:32:49 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Tue Jul 16 17:55:57 UTC 2013 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 30.0.1567
|
|
|
|
|
|
* bug and Stability fixes
|
|
|
|
|
|
|
2013-07-01 18:01:22 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Mon Jul 1 17:02:52 UTC 2013 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 30.0.1553
|
|
|
|
|
|
* Bug and stability fixes
|
|
|
|
|
|
* Includes security update for v8 (bnc821601)
|
|
|
|
|
|
* CVE-2013-2838 Denial of service (out-of-bounds read) via
|
|
|
|
|
|
unspecified vectors
|
|
|
|
|
|
|
2013-06-28 07:48:05 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Fri Jun 28 07:46:04 UTC 2013 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Add the flag --disable-gpu-sandbox to prevent crashes and/or
|
|
|
|
|
|
slowness. The GPU Sandbox is a new sandbox introduces in M28 and
|
|
|
|
|
|
is currently causing issues
|
|
|
|
|
|
(http://code.google.com/p/chromium/issues/detail?id=255063)
|
|
|
|
|
|
|
2013-06-23 13:32:34 +00:00
|
|
|
|
-------------------------------------------------------------------
|
2013-06-25 19:26:50 +00:00
|
|
|
|
Tue Jun 25 12:27:22 UTC 2013 - tittiatcoke@gmail.com
|
2013-06-23 13:32:34 +00:00
|
|
|
|
|
2013-06-25 19:26:50 +00:00
|
|
|
|
- Update to 29.0.1548
|
2013-06-23 13:32:34 +00:00
|
|
|
|
* Bug and Stability fixes
|
|
|
|
|
|
|
2013-06-16 16:17:36 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sun Jun 16 15:03:32 UTC 2013 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 29.0.1541
|
|
|
|
|
|
* Bug and Stability fixes
|
|
|
|
|
|
- Added patch chromium-nss-compatibility to fix build on Factory
|
|
|
|
|
|
|
2013-06-05 20:42:59 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed Jun 5 20:24:08 UTC 2013 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 29.0.1530
|
2013-06-16 16:17:36 +00:00
|
|
|
|
* Bug and Stability fixes.
|
2013-06-05 20:42:59 +00:00
|
|
|
|
- Dropped subversion buildrequire as svn is no longer used.
|
|
|
|
|
|
(Thanks to andreas.stieger@gmx.de)
|
|
|
|
|
|
|
2013-05-27 16:45:06 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Mon May 27 16:31:10 UTC 2013 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 29.0.1521
|
|
|
|
|
|
* Bug and stability fixes
|
|
|
|
|
|
|
2013-05-20 08:55:26 +00:00
|
|
|
|
-------------------------------------------------------------------
|
2013-05-23 18:22:22 +00:00
|
|
|
|
Thu May 23 08:26:55 UTC 2013 - tittiatcoke@gmail.com
|
2013-05-20 08:55:26 +00:00
|
|
|
|
|
2013-05-23 18:22:22 +00:00
|
|
|
|
- Update to 29.0.1517
|
2013-05-20 08:55:26 +00:00
|
|
|
|
* Bug and stability fixes
|
|
|
|
|
|
|
2013-05-05 18:58:01 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sun May 5 18:43:49 UTC 2013 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 28.0.1500
|
|
|
|
|
|
* Bug and stability fixes
|
|
|
|
|
|
|
|
|
|
|
|
- Added patch adjust-ldflags-no-keep-memory.patch to change a
|
|
|
|
|
|
ldflags option to reduce the memory used during linking
|
|
|
|
|
|
|
2013-05-02 12:32:45 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Thu May 2 11:43:10 UTC 2013 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 28.0.1497
|
|
|
|
|
|
* Bug and stability fixes
|
|
|
|
|
|
|
2013-04-29 12:55:44 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Mon Apr 29 12:20:19 UTC 2013 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 28.0.1494
|
|
|
|
|
|
* Bug and Stability Fixes
|
|
|
|
|
|
|
2013-04-24 15:14:33 +00:00
|
|
|
|
-------------------------------------------------------------------
|
2013-04-27 21:21:48 +00:00
|
|
|
|
Sat Apr 27 21:34:51 UTC 2013 - tittiatcoke@gmail.com
|
2013-04-24 15:14:33 +00:00
|
|
|
|
|
2013-04-28 16:23:32 +00:00
|
|
|
|
- Update to 28.0.1493
|
2013-04-24 15:14:33 +00:00
|
|
|
|
* bug and stability fixes
|
|
|
|
|
|
* Bring back the lost buildflag to enable proprietary codecs
|
|
|
|
|
|
|
2013-04-10 20:44:14 +00:00
|
|
|
|
-------------------------------------------------------------------
|
2013-04-14 14:00:50 +00:00
|
|
|
|
Sun Apr 14 13:46:39 UTC 2013 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 28.0.1479
|
|
|
|
|
|
* bug and stability fixes
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
2013-04-10 20:44:14 +00:00
|
|
|
|
Wed Apr 10 20:34:07 UTC 2013 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- use %config(noreplace) for /etc/default/chromium, so that user
|
|
|
|
|
|
changes are preserved.
|
|
|
|
|
|
|
2013-04-06 19:21:56 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sat Apr 6 18:55:27 UTC 2013 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 28.0.1468
|
|
|
|
|
|
* Bug and stability fixes
|
|
|
|
|
|
|
2013-03-27 21:38:42 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sun Mar 24 12:56:12 UTC 2013 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 27.0.1452
|
|
|
|
|
|
* Bug and stability fixes
|
|
|
|
|
|
|
2013-03-27 21:49:54 +00:00
|
|
|
|
- Change buoldsystem to ninja for additional speed
|
|
|
|
|
|
* Dropped patch chromium_use_gold.patch
|
|
|
|
|
|
|
|
|
|
|
|
- Removed obsolete 11.4 bits and pieces in the spec-file
|
|
|
|
|
|
* includes chromium.easy patch
|
|
|
|
|
|
|
2013-03-15 21:19:24 +00:00
|
|
|
|
-------------------------------------------------------------------
|
2013-03-19 17:27:14 +00:00
|
|
|
|
Tue Mar 19 16:51:59 UTC 2013 - tittiatcoke@gmail.com
|
2013-03-15 21:19:24 +00:00
|
|
|
|
|
2013-03-19 17:27:14 +00:00
|
|
|
|
- Update to 27.0.1447
|
2013-03-15 21:19:24 +00:00
|
|
|
|
* Bug and stability fixes
|
|
|
|
|
|
* Drop patch chromium-norpath.patch. Rpath is only used when
|
|
|
|
|
|
building chromium with shared libraries.
|
2013-03-16 08:05:35 +00:00
|
|
|
|
- Deactive building against system libraries. This is now causing
|
|
|
|
|
|
issues for building on 12.3 and Factory.
|
2013-03-15 21:19:24 +00:00
|
|
|
|
|
2013-03-09 14:26:03 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sat Mar 9 14:03:28 UTC 2013 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 27.0.1435
|
|
|
|
|
|
* Bug and stability fixes
|
2013-03-09 15:08:13 +00:00
|
|
|
|
* Drop patch chromium-siginfo.patch due to upstream
|
|
|
|
|
|
inclusion
|
2013-03-09 14:26:03 +00:00
|
|
|
|
|
2013-02-23 09:01:42 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sat Feb 23 08:09:58 UTC 2013 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
2013-02-28 00:09:30 +00:00
|
|
|
|
- Update to 27.0.1425
|
2013-02-23 09:01:42 +00:00
|
|
|
|
* Bug and stability fixes:
|
2013-02-23 21:42:53 +00:00
|
|
|
|
- Fixed crash after clicking through malware warning.
|
|
|
|
|
|
(Issue: 173986)
|
2013-02-23 09:01:42 +00:00
|
|
|
|
- Fixed broken command line to create extensions with locale info
|
2013-02-23 21:42:53 +00:00
|
|
|
|
(Issue: 176187)
|
2013-02-23 09:01:42 +00:00
|
|
|
|
- Hosted apps in Chrome will always be opened from app launcher.
|
2013-02-23 21:42:53 +00:00
|
|
|
|
(Issue: 176267)
|
2013-02-23 09:01:42 +00:00
|
|
|
|
- Added modal confirmation dialog to the enterprise profile
|
2013-02-23 21:42:53 +00:00
|
|
|
|
sign-in flow. (Issue: 171236)
|
|
|
|
|
|
- Fixed a crash with autofill. (Issues: 175454, 176576)
|
|
|
|
|
|
- Fixed issues with sign-in.
|
|
|
|
|
|
(Issues: 175672, 175819, 175541, 176190)
|
2013-02-23 09:01:42 +00:00
|
|
|
|
- Fixed spurious profile shortcuts created with a system-level
|
2013-02-23 21:42:53 +00:00
|
|
|
|
install. (Issue: 177047)
|
|
|
|
|
|
- Fixed the background tab flashing with certain themes.
|
|
|
|
|
|
(Issue: 175426)
|
2013-02-23 09:01:42 +00:00
|
|
|
|
|
2013-02-23 21:42:53 +00:00
|
|
|
|
* Security Fixes: (bnc#804986)
|
2013-02-23 09:01:42 +00:00
|
|
|
|
- High CVE-2013-0879: Memory corruption with web audio node
|
|
|
|
|
|
- High CVE-2013-0880: Use-after-free in database handling
|
|
|
|
|
|
- Medium CVE-2013-0881: Bad read in Matroska handling
|
|
|
|
|
|
- High CVE-2013-0882: Bad memory access with excessive SVG
|
|
|
|
|
|
parameters.
|
|
|
|
|
|
- Medium CVE-2013-0883: Bad read in Skia.
|
|
|
|
|
|
- Low CVE-2013-0884: Inappropriate load of NaCl.
|
|
|
|
|
|
- Medium CVE-2013-0885: Too many API permissions granted to web
|
|
|
|
|
|
store
|
|
|
|
|
|
- Medium CVE-2013-0886: Incorrect NaCl signal handling.
|
|
|
|
|
|
- Low CVE-2013-0887: Developer tools process has too many
|
|
|
|
|
|
permissions and places too much trust in the connected server
|
|
|
|
|
|
- Medium CVE-2013-0888: Out-of-bounds read in Skia
|
|
|
|
|
|
- Low CVE-2013-0889: Tighten user gesture check for dangerous
|
|
|
|
|
|
file downloads.
|
|
|
|
|
|
- High CVE-2013-0890: Memory safety issues across the IPC layer.
|
|
|
|
|
|
- High CVE-2013-0891: Integer overflow in blob handling.
|
|
|
|
|
|
- Medium CVE-2013-0892: Lower severity issues across the IPC layer
|
|
|
|
|
|
- Medium CVE-2013-0893: Race condition in media handling.
|
|
|
|
|
|
- High CVE-2013-0894: Buffer overflow in vorbis decoding.
|
|
|
|
|
|
- High CVE-2013-0895: Incorrect path handling in file copying.
|
|
|
|
|
|
- High CVE-2013-0896: Memory management issues in plug-in message
|
|
|
|
|
|
handling
|
|
|
|
|
|
- Low CVE-2013-0897: Off-by-one read in PDF
|
|
|
|
|
|
- High CVE-2013-0898: Use-after-free in URL handling
|
|
|
|
|
|
- Low CVE-2013-0899: Integer overflow in Opus handling
|
|
|
|
|
|
- Medium CVE-2013-0900: Race condition in ICU
|
|
|
|
|
|
|
2013-02-23 21:42:53 +00:00
|
|
|
|
* Make adjustment for autodetecting of the PepperFlash library.
|
|
|
|
|
|
The package with the PepperFlash hopefully will be soon
|
|
|
|
|
|
available through packman
|
|
|
|
|
|
|
2013-02-03 12:05:01 +00:00
|
|
|
|
-------------------------------------------------------------------
|
2013-02-12 20:39:46 +00:00
|
|
|
|
Tue Feb 12 20:12:25 UTC 2013 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 26.0.1411
|
|
|
|
|
|
* Bug and stability fixes
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
2013-02-03 12:05:01 +00:00
|
|
|
|
Sun Feb 3 11:41:13 UTC 2013 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 26.0.1403
|
|
|
|
|
|
* Bug and stability fixes
|
|
|
|
|
|
|
2013-01-27 09:26:35 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sat Jan 26 18:19:10 UTC 2013 - crrodriguez@opensuse.org
|
|
|
|
|
|
|
|
|
|
|
|
- Using system libxml2 requires system libxslt.
|
|
|
|
|
|
- Using system MESA does not work in i586 for some reason.
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sat Jan 26 15:59:32 UTC 2013 - crrodriguez@opensuse.org
|
|
|
|
|
|
|
|
|
|
|
|
- Also use system MESA, factory version seems adecuate now.
|
|
|
|
|
|
- Always use system libxml2.
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Fri Jan 25 16:15:58 UTC 2013 - crrodriguez@opensuse.org
|
|
|
|
|
|
|
|
|
|
|
|
- Restrict the usage of system libraries instead of the bundled
|
|
|
|
|
|
ones to new products, too much hassle otherwise.
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Fri Jan 25 03:32:21 UTC 2013 - crrodriguez@opensuse.org
|
|
|
|
|
|
|
|
|
|
|
|
- Also link kerberos and libgps directly, do not dlopen them.
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Fri Jan 25 02:08:01 UTC 2013 - crrodriguez@opensuse.org
|
|
|
|
|
|
|
|
|
|
|
|
- Avoid using dlopen on system libraries, rpm or the package Manager
|
|
|
|
|
|
do not handle this at all. tested for a few weeks and implemented
|
|
|
|
|
|
with a macro so it can be easily disabled if problems arise.
|
|
|
|
|
|
|
|
|
|
|
|
- Use SOME system libraries instead of the bundled ones, tested for
|
|
|
|
|
|
several weeks and implemented with a macro for easy enable/Disable
|
|
|
|
|
|
in case of trouble.
|
|
|
|
|
|
|
2013-01-19 15:26:11 +00:00
|
|
|
|
-------------------------------------------------------------------
|
2013-01-24 07:07:19 +00:00
|
|
|
|
Thu Jan 24 06:45:53 UTC 2013 - tittiatcoke@gmail.com
|
2013-01-19 15:26:11 +00:00
|
|
|
|
|
2013-01-24 07:07:19 +00:00
|
|
|
|
- Update to 26.0.1393
|
2013-01-19 15:26:11 +00:00
|
|
|
|
* Bug and stability fixes
|
|
|
|
|
|
|
2013-01-13 19:02:16 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sun Jan 13 18:15:47 UTC 2013 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 26.0.1383
|
|
|
|
|
|
* Security fixes
|
|
|
|
|
|
- CVE-2012-5145: Use-after-free in SVG layout
|
|
|
|
|
|
- CVE-2012-5146: Same origin policy bypass with malformed URL
|
|
|
|
|
|
- CVE-2012-5147: Use-after-free in DOM handling
|
|
|
|
|
|
- CVE-2012-5148: Missing filename sanitization in hyphenation
|
|
|
|
|
|
support
|
|
|
|
|
|
- CVE-2012-5149: Integer overflow in audio IPC handling
|
|
|
|
|
|
- CVE-2012-5150: Use-after-free when seeking video
|
|
|
|
|
|
- CVE-2012-5152: Out-of-bounds read when seeking video
|
|
|
|
|
|
- CVE-2012-5153: Out-of-bounds stack access in v8.
|
|
|
|
|
|
- CVE-2012-5154: Integer overflow in shared memory allocation
|
|
|
|
|
|
- CVE-2013-0830: Missing NUL termination in IPC.
|
|
|
|
|
|
- CVE-2013-0831: Possible path traversal from extension process
|
|
|
|
|
|
- CVE-2013-0832: Use-after-free with printing.
|
|
|
|
|
|
- CVE-2013-0833: Out-of-bounds read with printing.
|
|
|
|
|
|
- CVE-2013-0834: Out-of-bounds read with glyph handling
|
|
|
|
|
|
- CVE-2013-0835: Browser crash with geolocation
|
|
|
|
|
|
- CVE-2013-0836: Crash in v8 garbage collection.
|
|
|
|
|
|
- CVE-2013-0837: Crash in extension tab handling.
|
|
|
|
|
|
- CVE-2013-0838: Tighten permissions on shared memory segments
|
|
|
|
|
|
|
2013-01-08 13:27:02 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Tue Jan 8 13:19:57 UTC 2013 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
* Set up Google API keys, see
|
|
|
|
|
|
http://www.chromium.org/developers/how-tos/api-keys .
|
|
|
|
|
|
# Note: these are for openSUSE Chromium builds ONLY!!
|
|
|
|
|
|
(Setup was done based on indication from Pawel Hajdan)
|
|
|
|
|
|
|
2013-01-04 10:05:20 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Fri Jan 4 09:08:32 UTC 2013 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 26.0.1375
|
|
|
|
|
|
* Bug and stability fixes
|
|
|
|
|
|
|
2012-12-27 14:45:06 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Thu Dec 27 14:43:46 UTC 2012 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Change the default setting for password-store to basic.
|
|
|
|
|
|
(bnc#795860)
|
|
|
|
|
|
|
2012-12-26 13:00:14 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed Dec 26 12:36:13 UTC 2012 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 26.0.1371
|
|
|
|
|
|
* Bug and stability fixes
|
|
|
|
|
|
|
2012-12-20 13:41:40 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Thu Dec 20 13:25:14 UTC 2012 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 26.0.1367
|
|
|
|
|
|
* Bug and stability fixes
|
|
|
|
|
|
|
2012-12-14 14:02:58 +00:00
|
|
|
|
-------------------------------------------------------------------
|
2012-12-15 17:49:41 +00:00
|
|
|
|
Sat Dec 15 13:32:15 UTC 2012 - tittiatcoke@gmail.com
|
2012-12-14 14:02:58 +00:00
|
|
|
|
|
2012-12-15 17:49:41 +00:00
|
|
|
|
- Update to 25.0.1362
|
2012-12-14 14:02:58 +00:00
|
|
|
|
* Security fixes (bnc#794075):
|
|
|
|
|
|
- CVE-2012-5139: Use-after-free with visibility events
|
|
|
|
|
|
- CVE-2012-5140: Use-after-free in URL loader
|
|
|
|
|
|
- CVE-2012-5141: Limit Chromoting client plug-in instantiation.
|
|
|
|
|
|
- CVE-2012-5142: Crash in history navigation.
|
|
|
|
|
|
- CVE-2012-5143: Integer overflow in PPAPI image buffers
|
|
|
|
|
|
- CVE-2012-5144: Stack corruption in AAC decoding
|
|
|
|
|
|
|
2012-12-06 10:40:07 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Thu Dec 6 10:06:51 UTC 2012 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 25.0.1352
|
|
|
|
|
|
* Fixed garbled header and footer text in print preview.
|
|
|
|
|
|
[Issue: 152893]
|
|
|
|
|
|
* Fixed extension action badges with long text. [Issue: 160069]
|
|
|
|
|
|
* Disable find if constrained window is shown. [Issue: 156969]
|
|
|
|
|
|
* Enable fullscreen for apps windows. [Issue: 161246]
|
|
|
|
|
|
* Fixed broken profile with system-wide installation and
|
|
|
|
|
|
UserDataDir & DiskCacheDir policy. [Issue: 161336]
|
|
|
|
|
|
* Fixed stability crashes like 158747, 159437, 149139, 160914,
|
|
|
|
|
|
160401, 161858, 158747, 156878
|
|
|
|
|
|
* Fixed graphical corruption in Dust. [Issue: 155258]
|
|
|
|
|
|
* Fixed scrolling issue. [Issue: 163553]
|
|
|
|
|
|
|
2012-11-30 17:44:46 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Fri Nov 30 17:15:39 UTC 2012 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 25.0.1343
|
|
|
|
|
|
* Security Fixes (bnc#791234 and bnc#792154):
|
|
|
|
|
|
- CVE-2012-5131: Corrupt rendering in the Apple OSX driver for
|
|
|
|
|
|
Intel GPUs
|
|
|
|
|
|
- CVE-2012-5133: Use-after-free in SVG filters.
|
|
|
|
|
|
- CVE-2012-5130: Out-of-bounds read in Skia
|
|
|
|
|
|
- CVE-2012-5132: Browser crash with chunked encoding
|
|
|
|
|
|
- CVE-2012-5134: Buffer underflow in libxml.
|
|
|
|
|
|
- CVE-2012-5135: Use-after-free with printing.
|
|
|
|
|
|
- CVE-2012-5136: Bad cast in input element handling.
|
|
|
|
|
|
- CVE-2012-5138: Incorrect file path handling
|
|
|
|
|
|
- CVE-2012-5137: Use-after-free in media source handling
|
|
|
|
|
|
|
|
|
|
|
|
- Correct build so that proprietary codecs can be used when
|
|
|
|
|
|
the chromium-ffmpeg package is installed
|
|
|
|
|
|
|
2012-11-25 12:55:50 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sun Nov 25 12:50:28 UTC 2012 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Add a configuration file (/etc/default/chromium) where we can
|
|
|
|
|
|
indicate flags for the chromium-browser.
|
|
|
|
|
|
|
2012-11-24 20:33:02 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sat Nov 24 20:00:51 UTC 2012 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 25.0.1335
|
|
|
|
|
|
* {gtk} Fixed <input> selection renders white text on white
|
|
|
|
|
|
background in apps. (Issue: 158422)
|
|
|
|
|
|
* Fixed translate infobar button to show selected language.
|
|
|
|
|
|
(Issue: 155350)
|
|
|
|
|
|
* Fixed broken Arabic language. (Issue: 158978)
|
|
|
|
|
|
* Fixed pre-rendering if the preference is disabled at start up.
|
|
|
|
|
|
(Issue: 159393)
|
|
|
|
|
|
* Fixed JavaScript rendering issue. (Issue: 159655)
|
|
|
|
|
|
* No further indications in the ChangeLog
|
|
|
|
|
|
|
2012-11-06 19:13:34 +00:00
|
|
|
|
-------------------------------------------------------------------
|
2012-11-20 23:34:14 +00:00
|
|
|
|
Tue Nov 20 23:27:56 UTC 2012 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 25.0.1329
|
|
|
|
|
|
* No further indications in the ChangeLog
|
|
|
|
|
|
- Removed patch chomium-ffmpeg-no-pkgconfig.patch
|
|
|
|
|
|
- Building now internal libffmpegsumo.so based on the standard
|
|
|
|
|
|
chromium ffmpeg codecs
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
2012-11-06 19:13:34 +00:00
|
|
|
|
Tue Nov 6 18:42:46 UTC 2012 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 25.0.1319
|
|
|
|
|
|
* No further indications in the Changelog
|
|
|
|
|
|
|
2012-10-26 09:20:21 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Fri Oct 26 08:58:02 UTC 2012 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 24.0.1308
|
|
|
|
|
|
* Updated V8 - 3.14.5.0
|
|
|
|
|
|
* Bookmarks are now searched by their title while typing into
|
|
|
|
|
|
the omnibox with matching bookmarks being shown in the
|
|
|
|
|
|
autocomplete suggestions pop-down list. Matching is done by
|
|
|
|
|
|
prefix.
|
|
|
|
|
|
* Fixed chromium issues 155871, 154173, 155133.
|
|
|
|
|
|
|
2012-10-16 13:15:09 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Tue Oct 16 12:41:55 UTC 2012 - coolo@suse.com
|
|
|
|
|
|
|
|
|
|
|
|
- add explicit buildrequire on libbz2-devel
|
|
|
|
|
|
|
2012-10-07 11:59:50 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sun Oct 7 11:28:56 UTC 2012 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 24.0.1290
|
|
|
|
|
|
* No further indications in the ChangeLog.
|
|
|
|
|
|
|
2012-09-30 10:04:44 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sun Sep 30 09:38:06 UTC 2012 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 24.0.1283
|
|
|
|
|
|
* Security Fixes (bnc#782257)
|
|
|
|
|
|
- High CVE-2012-2889: UXSS in frame handling
|
|
|
|
|
|
- High CVE-2012-2886: UXSS in v8 bindings.
|
|
|
|
|
|
- High CVE-2012-2881: DOM tree corruption with plug-ins.
|
|
|
|
|
|
- High CVE-2012-2876: Buffer overflow in SSE2 optimizations.
|
|
|
|
|
|
- High CVE-2012-2883: Out-of-bounds write in Skia.
|
|
|
|
|
|
- High CVE-2012-2887: Use-after-free in onclick handling.
|
|
|
|
|
|
- High CVE-2012-2888: Use-after-free in SVG text references.
|
|
|
|
|
|
- High CVE-2012-2894: Crash in graphics context handling.
|
|
|
|
|
|
- High CVE-2012-2896: Integer overflow in WebGL.
|
|
|
|
|
|
- Medium CVE-2012-2877: Browser crash with extensions
|
|
|
|
|
|
and modal dialogs
|
|
|
|
|
|
- Low CVE-2012-2879: DOM topology corruption.
|
|
|
|
|
|
- Medium CVE-2012-2884: Out-of-bounds read in Skia.
|
|
|
|
|
|
- High CVE-2012-2874: Out-of-bounds write in Skia.
|
|
|
|
|
|
- High CVE-2012-2878: Use-after-free in plug-in handling.
|
|
|
|
|
|
- Medium CVE-2012-2880: Race condition in plug-in paint buffer.
|
|
|
|
|
|
- High CVE-2012-2882: Wild pointer in OGG container handling.
|
|
|
|
|
|
- Medium CVE-2012-2885: Possible double free on exit.
|
|
|
|
|
|
- Low CVE-2012-2891: Address leak over IPC.
|
|
|
|
|
|
- Low CVE-2012-2892: Pop-up block bypass.
|
|
|
|
|
|
- High CVE-2012-2893: Double free in XSL transforms.
|
|
|
|
|
|
|
|
|
|
|
|
|
2012-09-15 06:45:08 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sat Sep 15 06:27:56 UTC 2012 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
2012-09-15 20:26:15 +00:00
|
|
|
|
- Update to 23.0.1268
|
2012-09-15 06:45:08 +00:00
|
|
|
|
* Updated V8 - 3.13.6.0
|
|
|
|
|
|
* Updated WebKit - 537.10
|
|
|
|
|
|
* Make the new sandbox more robust when denying socket calls.
|
|
|
|
|
|
* Fix crashes (Issues 142388 and 146606)
|
|
|
|
|
|
|
2012-09-07 16:14:01 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Fri Sep 7 15:49:57 UTC 2012 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 23.0.1259
|
|
|
|
|
|
* No further indications in the ChangeLog.
|
|
|
|
|
|
|
2012-09-02 14:47:06 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sun Sep 2 14:31:22 UTC 2012 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 23.0.1255
|
2012-09-03 09:53:42 +00:00
|
|
|
|
* Security Fixes (bnc#778005):
|
2012-09-02 14:47:06 +00:00
|
|
|
|
- Medium CVE-2012-2865: Out-of-bounds read in line breaking.
|
|
|
|
|
|
- High CVE-2012-2866: Bad cast with run-ins.
|
|
|
|
|
|
- Low CVE-2012-2867: Browser crash with SPDY.
|
|
|
|
|
|
- Medium CVE-2012-2868: Race condition with workers and XHR.
|
|
|
|
|
|
- High CVE-2012-2869: Avoid stale buffer in URL loading.
|
|
|
|
|
|
- Low CVE-2012-2870: Lower severity memory management issues
|
|
|
|
|
|
in XPath.
|
|
|
|
|
|
- High CVE-2012-2871: Bad cast in XSL transforms.
|
|
|
|
|
|
- Medium CVE-2012-2872: XSS in SSL interstitial.
|
|
|
|
|
|
|
2012-08-24 19:37:18 +00:00
|
|
|
|
-------------------------------------------------------------------
|
2012-08-29 18:48:47 +00:00
|
|
|
|
Wed Aug 29 19:19:31 UTC 2012 - tittiatcoke@gmail.com
|
2012-08-24 19:37:18 +00:00
|
|
|
|
|
2012-08-29 18:48:47 +00:00
|
|
|
|
- Update to 23.0.1249
|
2012-08-24 19:37:18 +00:00
|
|
|
|
* No longer building with system libraries. This caused issues
|
|
|
|
|
|
with high CPU utilization and a blank homescreen. Now the
|
|
|
|
|
|
in-source libraries are used.
|
|
|
|
|
|
|
2012-08-19 09:04:03 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sun Aug 19 08:32:45 UTC 2012 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 23.0.1240
|
|
|
|
|
|
* Duplex Printing defaults to Yes, which prints extra pages even
|
|
|
|
|
|
for a 1 page print out (Issue 138312).
|
|
|
|
|
|
* Print preview takes forever on Win XP (issue: 140044)
|
|
|
|
|
|
* Anti-DDoS inversion of logic (Issues: 141643, 141081)
|
|
|
|
|
|
* Projectmanager.com application causes Flash to hang
|
|
|
|
|
|
(Issue: 141018)
|
|
|
|
|
|
* An additional scroll bar appears at the right on many sites
|
|
|
|
|
|
(issue: 140239)
|
|
|
|
|
|
* Setting and unsetting display:none obliterates current scroll
|
|
|
|
|
|
position (issue: 140101)
|
2012-08-19 10:38:31 +00:00
|
|
|
|
- Utilize the patched zlib sources from Chromium in order to build
|
2012-08-19 09:04:03 +00:00
|
|
|
|
|
2012-08-03 16:11:12 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Fri Aug 3 15:54:24 UTC 2012 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 22.0.1226
|
|
|
|
|
|
* Security Fixes (bnc#770821):
|
|
|
|
|
|
CVE-2012-2843: Use-after-free in layout height tracking
|
|
|
|
|
|
CVE-2012-2842: Use-after-free in counter handling
|
|
|
|
|
|
|
2012-07-30 16:46:57 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Mon Jul 30 13:21:27 UTC 2012 - aj@suse.de
|
|
|
|
|
|
|
|
|
|
|
|
- Fix build with glibc 2.16 (struct siginfo is not exported anymore).
|
|
|
|
|
|
|
2012-07-29 13:45:32 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sun Jul 29 13:32:21 UTC 2012 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 22.0.1221
|
|
|
|
|
|
* Several crash fixes (Issues: 131310, 134574)
|
|
|
|
|
|
* Can't press Enter to save to PDF (Issue: 137690)
|
|
|
|
|
|
|
2012-07-22 07:28:57 +00:00
|
|
|
|
-------------------------------------------------------------------
|
2012-07-25 14:53:12 +00:00
|
|
|
|
Wed Jul 25 14:17:53 UTC 2012 - tittiatcoke@gmail.com
|
2012-07-22 07:28:57 +00:00
|
|
|
|
|
2012-07-25 14:53:12 +00:00
|
|
|
|
- Update to 22.0.1218
|
|
|
|
|
|
* New Connection Manager
|
|
|
|
|
|
* New Print UI.
|
|
|
|
|
|
* No further indications in the ChangeLog.
|
2012-07-22 07:28:57 +00:00
|
|
|
|
|
2012-07-06 12:17:47 +00:00
|
|
|
|
-------------------------------------------------------------------
|
2012-07-08 14:19:23 +00:00
|
|
|
|
Sun Jul 8 13:10:48 UTC 2012 - tittiatcoke@gmail.com
|
2012-07-06 12:17:47 +00:00
|
|
|
|
|
2012-07-08 14:19:23 +00:00
|
|
|
|
- Update to 22.0.1201
|
|
|
|
|
|
* No further indications in the ChangeLog.
|
|
|
|
|
|
|
|
|
|
|
|
- exclude ppc and ppc64. There is no v8 for ppc. (Update from
|
|
|
|
|
|
dvaleev@suse.com)
|
2012-07-06 12:17:47 +00:00
|
|
|
|
|
2012-06-24 13:10:38 +00:00
|
|
|
|
-------------------------------------------------------------------
|
2012-06-29 09:42:40 +00:00
|
|
|
|
Fri Jun 29 08:52:58 UTC 2012 - tittiatcoke@gmail.com
|
2012-06-24 13:10:38 +00:00
|
|
|
|
|
2012-06-29 09:42:40 +00:00
|
|
|
|
- Update to 22.0.1190
|
|
|
|
|
|
* Security Fixes:
|
|
|
|
|
|
* CVE-2012-2815: Leak of iframe fragment id
|
|
|
|
|
|
* CVE-2012-2816: Prevent sandboxed processes interfering with
|
|
|
|
|
|
each other
|
|
|
|
|
|
* CVE-2012-2817: Use-after-free in table section handling
|
|
|
|
|
|
* CVE-2012-2818: Use-after-free in counter layout
|
|
|
|
|
|
* CVE-2012-2819: Crash in texture handling
|
|
|
|
|
|
* CVE-2012-2820: Out-of-bounds read in SVG filter handling
|
|
|
|
|
|
* CVE-2012-2821: Autofill display problem
|
|
|
|
|
|
* CVE-2012-2823: Use-after-free in SVG resource handling
|
|
|
|
|
|
* CVE-2012-2826: Out-of-bounds read in texture conversion
|
|
|
|
|
|
* CVE-2012-2829: Use-after-free in first-letter handling
|
|
|
|
|
|
* CVE-2012-2830: Wild pointer in array value setting
|
|
|
|
|
|
* CVE-2012-2831: Use-after-free in SVG reference handling
|
|
|
|
|
|
* CVE-2012-2834: Integer overflow in Matroska container
|
|
|
|
|
|
* CVE-2012-2825: Wild read in XSL handling
|
|
|
|
|
|
* CVE-2012-2807: Integer overflows in libxml
|
|
|
|
|
|
* Fix update-alternatives within the spec-file
|
2012-06-24 13:10:38 +00:00
|
|
|
|
|
2012-06-21 13:08:54 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Thu Jun 21 12:20:28 UTC 2012 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 22.0.1183
|
|
|
|
|
|
* Content settings for Cookies now also show protected storage
|
|
|
|
|
|
granted to hosted apps
|
|
|
|
|
|
* Chromoting client plugin correctly up-scales on when page-zoom
|
|
|
|
|
|
is >100%.
|
|
|
|
|
|
|
2012-06-17 07:26:32 +00:00
|
|
|
|
-------------------------------------------------------------------
|
2012-06-19 13:32:33 +00:00
|
|
|
|
Tue Jun 19 13:06:52 UTC 2012 - tittiatcoke@gmail.com
|
2012-06-17 07:26:32 +00:00
|
|
|
|
|
2012-06-19 13:32:33 +00:00
|
|
|
|
- Update to 21.0.1181
|
2012-06-17 07:26:32 +00:00
|
|
|
|
* Bugfixes.
|
2012-06-19 13:32:33 +00:00
|
|
|
|
* Remove obsolete patch
|
|
|
|
|
|
* Do not execute update-alternatives when building
|
2012-06-17 07:26:32 +00:00
|
|
|
|
|
2012-06-16 17:34:07 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Fri Jun 15 12:19:24 UTC 2012 - coolo@suse.com
|
|
|
|
|
|
|
|
|
|
|
|
- fix update-alternative usage to fix build
|
|
|
|
|
|
|
2012-05-30 10:32:41 +00:00
|
|
|
|
-------------------------------------------------------------------
|
2012-05-31 10:03:06 +00:00
|
|
|
|
Thu May 31 08:27:09 UTC 2012 - tittiatcoke@gmail.com
|
2012-05-30 10:32:41 +00:00
|
|
|
|
|
2012-05-31 10:03:06 +00:00
|
|
|
|
- Update to 21.0.1158
|
2012-05-30 10:32:41 +00:00
|
|
|
|
* Bugfixes
|
|
|
|
|
|
* Gamepad API prototype http://www.w3.org/TR/gamepad/
|
|
|
|
|
|
available by default.
|
|
|
|
|
|
* TLS 1.1 is enabled by default.
|
|
|
|
|
|
|
2012-05-17 14:58:15 +00:00
|
|
|
|
-------------------------------------------------------------------
|
2012-05-20 17:25:45 +00:00
|
|
|
|
Sun May 20 16:40:03 UTC 2012 - tittiatcoke@gmail.com
|
2012-05-17 14:58:15 +00:00
|
|
|
|
|
2012-05-20 17:25:45 +00:00
|
|
|
|
- Update to 21.0.1145
|
|
|
|
|
|
* Fixed several issues around audio not playing with videos
|
|
|
|
|
|
* Crash Fixes
|
|
|
|
|
|
* Improvements to trackpad on Cr-48
|
|
|
|
|
|
* Security Fixes (bnc#762481)
|
|
|
|
|
|
- CVE-2011-3083: Browser crash with video + FTP
|
|
|
|
|
|
- CVE-2011-3084: Load links from internal pages in their
|
|
|
|
|
|
own process.
|
|
|
|
|
|
- CVE-2011-3085: UI corruption with long autofilled values
|
|
|
|
|
|
- CVE-2011-3086: Use-after-free with style element.
|
|
|
|
|
|
- CVE-2011-3087: Incorrect window navigation
|
|
|
|
|
|
- CVE-2011-3088: Out-of-bounds read in hairline drawing
|
|
|
|
|
|
- CVE-2011-3089: Use-after-free in table handling.
|
|
|
|
|
|
- CVE-2011-3090: Race condition with workers.
|
|
|
|
|
|
- CVE-2011-3091: Use-after-free with indexed DB
|
|
|
|
|
|
- CVE-2011-3092: Invalid write in v8 regex
|
|
|
|
|
|
- CVE-2011-3093: Out-of-bounds read in glyph handling
|
|
|
|
|
|
- CVE-2011-3094: Out-of-bounds read in Tibetan handling
|
|
|
|
|
|
- CVE-2011-3095: Out-of-bounds write in OGG container.
|
|
|
|
|
|
- CVE-2011-3096: Use-after-free in GTK omnibox handling.
|
|
|
|
|
|
- CVE-2011-3098: Bad search path for Windows Media Player
|
|
|
|
|
|
plug-in
|
|
|
|
|
|
- CVE-2011-3100: Out-of-bounds read drawing dash paths.
|
|
|
|
|
|
- CVE-2011-3101: Work around Linux Nvidia driver bug
|
|
|
|
|
|
- CVE-2011-3102: Off-by-one out-of-bounds write in libxml.
|
2012-05-17 14:58:15 +00:00
|
|
|
|
|
2012-05-13 20:18:47 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sun May 13 19:53:59 UTC 2012 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 21.0.1137
|
2012-05-14 18:29:47 +00:00
|
|
|
|
* Fixes crashes when manually typing in URL's
|
2012-05-13 20:18:47 +00:00
|
|
|
|
|
2012-05-11 14:53:57 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Fri May 11 14:22:22 UTC 2012 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
2012-05-13 20:18:47 +00:00
|
|
|
|
- Update to 21.0.1135.0
|
2012-05-09 13:03:10 +00:00
|
|
|
|
* Added patch for Sqlite which should resolve crashes when build
|
|
|
|
|
|
with GCC 4.7
|
2012-05-12 14:45:51 +00:00
|
|
|
|
* Fixes for rendering and stability
|
|
|
|
|
|
* Fixed about:inducebrowsercrashforrealz (Issue: 124843)
|
|
|
|
|
|
* Mouse over on apps/extensions makes place holder blank in
|
|
|
|
|
|
web store. (Issue: 125777)
|
|
|
|
|
|
* Security Fixes (bnc#760264):
|
|
|
|
|
|
- CVE-2011-3078: Use after free in floats handling.
|
|
|
|
|
|
- CVE-2012-1521: Use after free in xml parser.
|
|
|
|
|
|
- CVE-2011-3079: IPC validation failure.
|
|
|
|
|
|
- CVE-2011-3080: Race condition in sandbox IPC
|
|
|
|
|
|
- CVE-2011-3081: Use after free in floats handling.
|
2012-05-09 13:03:10 +00:00
|
|
|
|
|
2012-04-29 15:52:36 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sun Apr 29 15:38:00 UTC 2012 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 20.0.1123.0
|
|
|
|
|
|
|
2012-04-27 09:56:00 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Fri Apr 27 09:54:43 UTC 2012 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 20.0.1119.0
|
|
|
|
|
|
Fixes
|
|
|
|
|
|
- Adjust spec-file to include two new resource files that are
|
|
|
|
|
|
required for the UI. (bnc#759381)
|
|
|
|
|
|
|
2012-04-25 12:06:57 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed Apr 25 11:32:07 UTC 2012 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 20.0.1116.0
|
|
|
|
|
|
* Fixes and update to newer v8 version
|
|
|
|
|
|
|
2012-04-19 09:15:10 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Thu Apr 19 09:12:44 UTC 2012 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Added the ChromeDriver as a separate package. Normal users
|
|
|
|
|
|
will not require this as it is a standalone server for testing
|
|
|
|
|
|
webbrowsers
|
|
|
|
|
|
|
2012-04-13 16:37:20 +00:00
|
|
|
|
-------------------------------------------------------------------
|
2012-04-17 14:19:08 +00:00
|
|
|
|
Tue Apr 17 13:53:49 UTC 2012 - tittiatcoke@gmail.com
|
2012-04-13 16:37:20 +00:00
|
|
|
|
|
2012-04-17 14:19:08 +00:00
|
|
|
|
- Update to 20.0.1106.0
|
|
|
|
|
|
* Fixes issues with fonts (Issue: 108645).
|
|
|
|
|
|
* Enable the Chrome To Mobile page action for users with
|
|
|
|
|
|
compatible registered devices
|
|
|
|
|
|
* file: downloads allowed again
|
2012-04-13 16:37:20 +00:00
|
|
|
|
|
2012-04-08 12:17:20 +00:00
|
|
|
|
-------------------------------------------------------------------
|
2012-04-17 14:19:08 +00:00
|
|
|
|
Fri Apr 13 09:12:42 UTC 2012 - fcrozat@suse.com
|
2012-04-08 12:17:20 +00:00
|
|
|
|
|
2012-04-17 14:19:08 +00:00
|
|
|
|
- Use desktop_database macros at install time.
|
2012-04-08 12:17:20 +00:00
|
|
|
|
|
2012-04-06 15:32:32 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Fri Apr 6 14:32:07 UTC 2012 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 20.0.1094.0
|
|
|
|
|
|
Fixes:
|
|
|
|
|
|
* Other Devices menu shows last update time for other sessions,
|
|
|
|
|
|
and allows sessions to be hidden using a context menu.
|
|
|
|
|
|
* Fix sync issue with sessions (open tabs) triggering an
|
|
|
|
|
|
unrecoverable error.
|
|
|
|
|
|
* Fixed Sync/Apps: NTP apps icons missing after sync.
|
|
|
|
|
|
[Issue: 117857]
|
|
|
|
|
|
* Fixed bookmarks drag-n-drop in Bookmark Manager.
|
|
|
|
|
|
[Issue: 118715]
|
|
|
|
|
|
Security Fixes:
|
|
|
|
|
|
* Medium CVE-2011-3066: Out-of-bounds read in Skia clipping.
|
|
|
|
|
|
* Medium CVE-2011-3067: Cross-origin iframe replacement.
|
|
|
|
|
|
* High CVE-2011-3068: Use-after-free in run-in handling.
|
|
|
|
|
|
* High CVE-2011-3069: Use-after-free in line box handling.
|
|
|
|
|
|
* High CVE-2011-3070: Use-after-free in v8 bindings.
|
|
|
|
|
|
* High CVE-2011-3071: Use-after-free in HTMLMediaElement.
|
|
|
|
|
|
* Low CVE-2011-3072: Cross-origin violation parenting pop-up
|
|
|
|
|
|
window.
|
|
|
|
|
|
* High CVE-2011-3073: Use-after-free in SVG resource handling.
|
|
|
|
|
|
* Medium CVE-2011-3074: Use-after-free in media handling.
|
|
|
|
|
|
* High CVE-2011-3075: Use-after-free applying style command.
|
|
|
|
|
|
* High CVE-2011-3076: Use-after-free in focus handling.
|
|
|
|
|
|
* Medium CVE-2011-3077: Read-after-free in script bindings.
|
|
|
|
|
|
|
2012-04-03 06:55:47 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Tue Apr 3 06:51:49 UTC 2012 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 20.0.1090
|
|
|
|
|
|
Fixes:
|
|
|
|
|
|
* Fixed issue cannot add GMail app to Chrome. [Issue: 119975]
|
|
|
|
|
|
* Fixed theme and bookmarks bar notifications. [Issue: 117027]
|
|
|
|
|
|
* Fixed popup prompting permission for flash plugin.
|
|
|
|
|
|
[Issue: 120358]
|
|
|
|
|
|
Security Fixes:
|
|
|
|
|
|
* Medium CVE-2011-3058: Bad interaction possibly leading to
|
|
|
|
|
|
XSS in EUC-JP.
|
|
|
|
|
|
* Medium CVE-2011-3059: Out-of-bounds read in SVG text handling.
|
|
|
|
|
|
* Medium CVE-2011-3060: Out-of-bounds read in text fragment
|
|
|
|
|
|
handling.
|
|
|
|
|
|
* Medium CVE-2011-3061: SPDY proxy certificate checking error.
|
|
|
|
|
|
* High CVE-2011-3062: Off-by-one in OpenType Sanitizer.
|
|
|
|
|
|
* Low CVE-2011-3063: Validate navigation requests from the
|
|
|
|
|
|
renderer more carefully.
|
|
|
|
|
|
* High CVE-2011-3064: Use-after-free in SVG clipping.
|
|
|
|
|
|
* High CVE-2011-3065: Memory corruption in Skia.
|
|
|
|
|
|
* Medium CVE-2011-3057: Invalid read in v8.
|
|
|
|
|
|
|
2012-03-24 07:20:58 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sat Mar 24 06:40:10 UTC 2012 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 19.0.1079
|
2012-03-28 16:41:01 +00:00
|
|
|
|
Security Fixes (bnc#754456):
|
2012-03-24 07:20:58 +00:00
|
|
|
|
* High CVE-2011-3050: Use-after-free with first-letter handling
|
|
|
|
|
|
* High CVE-2011-3045: libpng integer issue from upstream
|
|
|
|
|
|
* High CVE-2011-3051: Use-after-free in CSS cross-fade handling
|
|
|
|
|
|
* High CVE-2011-3052: Memory corruption in WebGL canvas handling
|
|
|
|
|
|
* High CVE-2011-3053: Use-after-free in block splitting
|
|
|
|
|
|
* Low CVE-2011-3054: Apply additional isolations to webui
|
|
|
|
|
|
privileges
|
|
|
|
|
|
* Low CVE-2011-3055: Prompt in the browser native UI for unpacked
|
|
|
|
|
|
extension installation
|
|
|
|
|
|
* High CVE-2011-3056: Cross-origin violation with “magic iframe”.
|
|
|
|
|
|
* Low CVE-2011-3049: Extension web request API can interfere with
|
|
|
|
|
|
system requests
|
|
|
|
|
|
Other Fixes:
|
|
|
|
|
|
* The short-cut key for caps lock (Shift + Search) is disabled
|
|
|
|
|
|
when an accessibility screen reader is enabled
|
|
|
|
|
|
* Fixes an issue with files not being displayed in File Manager
|
|
|
|
|
|
when some file names contain UTF-8 characters (generally
|
|
|
|
|
|
accented characters)
|
|
|
|
|
|
* Fixed dialog boxes in settings. (Issue: 118031)
|
|
|
|
|
|
* Fixed flash videos turning white on mac when running with
|
|
|
|
|
|
--disable-composited-core-animation-plugins (Issue: 117916)
|
|
|
|
|
|
* Change to look for correctly sized favicon when multiple images
|
|
|
|
|
|
are provided. (Issue: 118275)
|
|
|
|
|
|
* Fixed issues - 116044, 117470, 117068, 117668, 118620
|
|
|
|
|
|
|
2012-03-21 12:54:45 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed Mar 21 12:36:42 UTC 2012 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 19.0.1077
|
|
|
|
|
|
|
2012-03-18 08:31:48 +00:00
|
|
|
|
-------------------------------------------------------------------
|
2012-03-18 17:44:44 +00:00
|
|
|
|
Sun Mar 18 17:35:02 UTC 2012 - tittiatcoke@gmail.com
|
2012-03-18 08:31:48 +00:00
|
|
|
|
|
2012-03-18 17:44:44 +00:00
|
|
|
|
- Update to 19.0.1074
|
2012-03-18 08:36:44 +00:00
|
|
|
|
- Build Chromium on openSUSE > 12.1 with the gold linker
|
2012-03-18 17:44:44 +00:00
|
|
|
|
- Fix build issues with GCC 4.7
|
2012-03-18 08:31:48 +00:00
|
|
|
|
|
2012-03-15 12:58:50 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Thu Mar 15 12:51:21 UTC 2012 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 19.0.1071
|
|
|
|
|
|
* Several fixes and improvements in the new Settings, Extensions,
|
|
|
|
|
|
and Help pages.
|
|
|
|
|
|
* Fixed the flashing when switched between composited and
|
|
|
|
|
|
non-composited mode. [Issue: 116603]
|
|
|
|
|
|
* Fixed stability issues 116913, 117217, 117347, 117081
|
|
|
|
|
|
|
2012-03-11 14:42:25 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sun Mar 11 08:01:15 UTC 2012 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 19.0.1066
|
|
|
|
|
|
* Fixed Chrome install/update resets Google search preferences
|
|
|
|
|
|
(Issue: 105390)
|
|
|
|
|
|
* Don't trigger accelerated compositing on 3D CSS when using
|
|
|
|
|
|
swiftshader (Issue: 116401)
|
|
|
|
|
|
* Fixed a GPU crash (Issue: 116096)
|
|
|
|
|
|
* More fixes for Back button frequently hangs (Issue: 93427)
|
|
|
|
|
|
* Bastion now works (Issue: 116285)
|
|
|
|
|
|
* Fixed Composited layer sorting irregularity with accelerated
|
|
|
|
|
|
canvas (Issue: 102943)
|
|
|
|
|
|
* Fixed Composited layer sorting irregularity with accelerated
|
|
|
|
|
|
canvas (Issue: 102943)
|
|
|
|
|
|
* Fixed Google Feedback causes render process to use too much
|
|
|
|
|
|
memory (Issue: 114489)
|
|
|
|
|
|
* Fixed after upgrade, some pages are rendered as blank
|
|
|
|
|
|
(Issue: 109888)
|
|
|
|
|
|
* Fixed Pasting text into a single-line text field shouldn't
|
|
|
|
|
|
keep literal newlines (Issue: 106551)
|
|
|
|
|
|
- Security Fixes:
|
|
|
|
|
|
* Critical CVE-2011-3047: Errant plug-in load and GPU process
|
|
|
|
|
|
memory corruption
|
2012-03-12 10:07:58 +00:00
|
|
|
|
* Critical CVE-2011-3046: UXSS and bad history navigation.
|
2012-03-11 14:42:25 +00:00
|
|
|
|
|
2012-03-06 09:34:34 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Mon Mar 5 20:53:06 UTC 2012 - vdziewiecki@suse.com
|
|
|
|
|
|
|
|
|
|
|
|
- add Provides: browser(npapi) FATE#313084
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sat Mar 3 16:55:15 UTC 2012 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 19.0.1060
|
|
|
|
|
|
* Fixed NTP signed in state is missing (Issue: 112676)
|
|
|
|
|
|
* Fixed gmail seems to redraw itself (all white) occasionally
|
|
|
|
|
|
(Issue: 111263)
|
|
|
|
|
|
* Focus "OK" button on Javascript dialogs (Issue: 111015)
|
|
|
|
|
|
* Fixed Back button frequently hangs (Issue: 93427)
|
|
|
|
|
|
* Increase the buffer size to fix muted playback rate
|
|
|
|
|
|
(Issue: 108239)
|
|
|
|
|
|
* Fixed Empty span with line-height renders with non-zero height
|
|
|
|
|
|
(Issue: 109811)
|
|
|
|
|
|
* Marked the Certum Trusted Network CA as an issuer of
|
|
|
|
|
|
extended-validation (EV) certificates.
|
|
|
|
|
|
* Fixed importing of bookmarks, history, etc. from Firefox 10+.
|
|
|
|
|
|
* Fixed issues - 114001, 110785, 114168, 114598, 111663, 113636,
|
|
|
|
|
|
112676
|
|
|
|
|
|
* Fixed several crashes (Issues: 111376, 108688, 114391)
|
|
|
|
|
|
* Fixed Firefox browser in Import Bookmarks and Settings
|
|
|
|
|
|
drop-down (Issue: 114476)
|
|
|
|
|
|
* Sync: Sessions aren't associating pre-existing tabs
|
|
|
|
|
|
(Issue: 113319)
|
|
|
|
|
|
* Fixed All "Extensions" make an entry under the "NTP Apps"
|
|
|
|
|
|
page (Issue: 113672)
|
|
|
|
|
|
+ Security Fixes (bnc#750407):
|
|
|
|
|
|
* High CVE-2011-3031: Use-after-free in v8 element wrapper.
|
|
|
|
|
|
* High CVE-2011-3032: Use-after-free in SVG value handling.
|
|
|
|
|
|
* High CVE-2011-3033: Buffer overflow in the Skia drawing library.
|
|
|
|
|
|
* High CVE-2011-3034: Use-after-free in SVG document handling.
|
|
|
|
|
|
* High CVE-2011-3035: Use-after-free in SVG use handling.
|
|
|
|
|
|
* High CVE-2011-3036: Bad cast in line box handling.
|
|
|
|
|
|
* High CVE-2011-3037: Bad casts in anonymous block splitting.
|
|
|
|
|
|
* High CVE-2011-3038: Use-after-free in multi-column handling.
|
|
|
|
|
|
* High CVE-2011-3039: Use-after-free in quote handling.
|
|
|
|
|
|
* High CVE-2011-3040: Out-of-bounds read in text handling.
|
|
|
|
|
|
* High CVE-2011-3041: Use-after-free in class attribute handling.
|
|
|
|
|
|
* High CVE-2011-3042: Use-after-free in table section handling.
|
|
|
|
|
|
* High CVE-2011-3043: Use-after-free in flexbox with floats.
|
|
|
|
|
|
* High CVE-2011-3044: Use-after-free with SVG animation elements.
|
|
|
|
|
|
- Remove the external ffmepg headers and start using the ones
|
|
|
|
|
|
delivered with Chromium. Changes to Chromium are no longer in line
|
|
|
|
|
|
with any ffmpeg version :-(. So we can only use the Chromium
|
|
|
|
|
|
ffmpeg headers.
|
|
|
|
|
|
|
2012-02-20 14:44:25 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Mon Feb 20 14:39:23 UTC 2012 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 19.0.1046
|
|
|
|
|
|
* Security updates
|
|
|
|
|
|
+ CVE-2011-3015: Integer overflows in PDF codecs.
|
|
|
|
|
|
+ CVE-2011-3016: Read-after-free with counter nodes.
|
|
|
|
|
|
+ CVE-2011-3017: Possible use-after-free in database handling.
|
|
|
|
|
|
+ CVE-2011-3018: Heap overflow in path rendering.
|
|
|
|
|
|
+ CVE-2011-3019: Heap buffer overflow in MKV handling.
|
|
|
|
|
|
+ CVE-2011-3020: Native client validator error.
|
|
|
|
|
|
+ CVE-2011-3021: Use-after-free in subframe loading.
|
|
|
|
|
|
+ CVE-2011-3022: Inappropriate use of http for translation script.
|
|
|
|
|
|
+ CVE-2011-3023: Use-after-free with drag and drop.
|
|
|
|
|
|
+ CVE-2011-3024: Browser crash with empty x509 certificate.
|
|
|
|
|
|
+ CVE-2011-3025: Out-of-bounds read in h.264 parsing.
|
|
|
|
|
|
+ CVE-2011-3026: Integer overflow / truncation in libpng.
|
|
|
|
|
|
+ CVE-2011-3027: Bad cast in column handling.
|
|
|
|
|
|
|
2012-02-15 07:49:38 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed Feb 15 07:40:59 UTC 2012 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 19.0.1042
|
|
|
|
|
|
* Make speech input bubble borders close with the bubble
|
|
|
|
|
|
[Issue: 112194]
|
|
|
|
|
|
* Fixed stability issues
|
|
|
|
|
|
[Issues: 113531, 113492, 113654, 113546, 113847, 114011]
|
|
|
|
|
|
* Use Google’s online spellchecker to identify misspelled words
|
|
|
|
|
|
as well as provide suggestions, for pasted text only.
|
|
|
|
|
|
* Fix: open incognito windows at exit created extra normal
|
|
|
|
|
|
windows when the session was restored
|
|
|
|
|
|
* When translating a page, get the code and translation via HTTPS
|
|
|
|
|
|
|
2012-02-10 05:45:26 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Fri Feb 10 05:36:56 UTC 2012 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 19.0.1037
|
|
|
|
|
|
* Fix crashing timing bug where panel animates after its closed
|
|
|
|
|
|
(issue#111120)
|
|
|
|
|
|
* Remove patch to build with newer glib version. This was merged
|
|
|
|
|
|
upstream
|
|
|
|
|
|
* Added option to disable building with gold for x86_64. Used
|
|
|
|
|
|
linker option "--icf=none" is not supported yet.
|
|
|
|
|
|
|
2012-02-06 23:02:14 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Mon Feb 6 10:45:25 UTC 2012 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 19.0.1031
|
|
|
|
|
|
* Block plugins for platform apps
|
|
|
|
|
|
To block plugins a new content settings has been added, with
|
|
|
|
|
|
the highest priority (i.e. at the front of the list). This
|
|
|
|
|
|
could be used down the track to hang off more platform app
|
|
|
|
|
|
specific stuff.
|
|
|
|
|
|
* Remove unconditional -msse3 -mssse3 CFLAGS from media.gyp
|
|
|
|
|
|
(issue#107532)
|
|
|
|
|
|
* Refactoring of Settings page
|
|
|
|
|
|
* Other bugfixes
|
2012-02-08 09:35:27 +00:00
|
|
|
|
* Security Fixes:
|
|
|
|
|
|
CVE-2011-3953: Avoid clipboard monitoring after paste event.
|
|
|
|
|
|
CVE-2011-3954: Crash with excessive database usage.
|
|
|
|
|
|
CVE-2011-3955: Crash aborting an IndexDB transaction
|
|
|
|
|
|
CVE-2011-3956: Incorrect handling of sandboxed origins inside
|
|
|
|
|
|
extensions
|
|
|
|
|
|
CVE-2011-3957: Use-after-free in PDF garbage collection
|
|
|
|
|
|
CVE-2011-3958: Bad casts with column spans
|
|
|
|
|
|
CVE-2011-3959: Buffer overflow in locale handling
|
|
|
|
|
|
CVE-2011-3960: Out-of-bounds read in audio decoding
|
|
|
|
|
|
CVE-2011-3961: Race condition after crash of utility process
|
|
|
|
|
|
CVE-2011-3962: Out-of-bounds read in path clipping
|
|
|
|
|
|
CVE-2011-3963: Out-of-bounds read in PDF fax image handling
|
|
|
|
|
|
CVE-2011-3964: URL bar confusion after drag + drop
|
|
|
|
|
|
CVE-2011-3965: Crash in signature check
|
|
|
|
|
|
CVE-2011-3966: Use-after-free in stylesheet error handling
|
|
|
|
|
|
CVE-2011-3967: Crash with unusual certificate.
|
|
|
|
|
|
CVE-2011-3968: Use-after-free in CSS handling
|
|
|
|
|
|
CVE-2011-3969: Use-after-free in SVG layout.
|
|
|
|
|
|
CVE-2011-3970: Out-of-bounds read in libxslt
|
|
|
|
|
|
CVE-2011-3971: Use-after-free with mousemove events
|
|
|
|
|
|
CVE-2011-3972: Out-of-bounds read in shader translator
|
|
|
|
|
|
|
2012-01-26 08:17:54 +00:00
|
|
|
|
-------------------------------------------------------------------
|
2012-01-30 21:11:21 +00:00
|
|
|
|
Sun Jan 29 21:11:37 UTC 2012 - tittiatcoke@gmail.com
|
2012-01-26 08:17:54 +00:00
|
|
|
|
|
2012-01-30 21:11:21 +00:00
|
|
|
|
- Update to 18.0.1022
|
2012-01-26 08:17:54 +00:00
|
|
|
|
* Security fixes (bnc#743319)
|
|
|
|
|
|
+ CVE-2011-3924 Use-after-free vulnerability
|
|
|
|
|
|
+ CVE-2011-3925 Use-after-free vulnerability
|
|
|
|
|
|
+ CVE-2011-3926 Heap-based buffer overflow in the tree builder
|
|
|
|
|
|
+ CVE-2011-3927 Skia does not perform all required
|
|
|
|
|
|
initialization of values
|
|
|
|
|
|
+ CVE-2011-3928 Use-after-free vulnerability
|
|
|
|
|
|
* Compile the chrome_sandbox binary with -fPIE flags
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Mon Jan 23 09:44:42 UTC 2012 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 18.0.1017
|
|
|
|
|
|
* Security Issues fixed (bnc#740493)
|
|
|
|
|
|
+ CVE-2011-3921 Use-after-free in animation frames
|
|
|
|
|
|
+ CVE-2011-3919 Heap-buffer-overflow in libxml
|
|
|
|
|
|
+ CVE-2011-3922 Stack-buffer-overflow in glyph handling
|
|
|
|
|
|
|
2011-12-31 22:37:40 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sat Dec 31 22:29:20 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 18.0.992
|
|
|
|
|
|
* Delay some extension startup until after first run import.
|
|
|
|
|
|
(issue 108286)
|
|
|
|
|
|
* Add function support for Sleep with TimeDelta input.
|
|
|
|
|
|
(issue 108171)
|
|
|
|
|
|
* Make webstore installs work when the Downloads folder is missing.
|
|
|
|
|
|
(issue 108812)
|
|
|
|
|
|
* Disable GL_EXT_texture_storage support in Linux. (issue 107782)
|
|
|
|
|
|
|
2011-12-28 12:13:39 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed Dec 28 12:00:11 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 18.0.985
|
|
|
|
|
|
+ Webkit layout:
|
|
|
|
|
|
* Suppress a leak in http/tests/appcache/reload.html
|
|
|
|
|
|
(issue 108621)
|
|
|
|
|
|
* Suppress a leak in xmlhttprequest/workers/referer.html
|
|
|
|
|
|
(issue 108622)
|
|
|
|
|
|
* Extend the suppression for uninit value in
|
|
|
|
|
|
fast/forms/input-text-paste-maxlength.html (issue 106183)
|
|
|
|
|
|
* Suppress memory leaks in
|
|
|
|
|
|
fast/files/workers/worker-read-blob-async.html
|
|
|
|
|
|
(issue 108624)
|
|
|
|
|
|
* Suppress a leak in
|
|
|
|
|
|
websocket/tests/hybi/workers/receive-arraybuffer.html
|
|
|
|
|
|
(issue 108627)
|
|
|
|
|
|
* Suppress a leak in
|
|
|
|
|
|
http/tests/xmlhttprequest/workers/methods-async.html
|
|
|
|
|
|
(issue 108628)
|
|
|
|
|
|
+ Set opaque on the WebMediaPlayerClient based on the decoder
|
|
|
|
|
|
|
2011-12-19 06:49:05 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Mon Dec 19 06:41:16 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 18.0.975
|
|
|
|
|
|
+ Updating extensions code to use UTF16. (issue#71980)
|
|
|
|
|
|
+ Assign F5 to cycle forward (issue#107417)
|
|
|
|
|
|
+ [Sync] Add NOTREACHED for empty passphrase (issue#104189)
|
|
|
|
|
|
+ Add libudev as build-dependency (issue#79050)
|
|
|
|
|
|
+ Enable mnemonic and bookmark folder key activation on menu
|
|
|
|
|
|
(issue#107869)
|
|
|
|
|
|
- Removed conflict with xine-browser-plugins.
|
|
|
|
|
|
|
2011-12-14 16:48:57 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed Dec 14 10:25:20 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 18.0.972
|
2011-12-15 15:33:39 +00:00
|
|
|
|
* Security issues fixed: (bnc#736716)
|
2011-12-14 16:48:57 +00:00
|
|
|
|
+ CVE-2011-3903: Out-of-bounds read in regex matching.
|
|
|
|
|
|
+ CVE-2011-3905: Out-of-bounds reads in libxml.
|
|
|
|
|
|
+ CVE-2011-3906: Out-of-bounds read in PDF parser.
|
|
|
|
|
|
+ CVE-2011-3907: URL bar spoofing with view-source.
|
|
|
|
|
|
+ CVE-2011-3908: Out-of-bounds read in SVG parsing.
|
|
|
|
|
|
+ CVE-2011-3909: [64-bit only] Memory corruption in CSS
|
|
|
|
|
|
property array.
|
|
|
|
|
|
+ CVE-2011-3910: Out-of-bounds read in YUV video frame
|
|
|
|
|
|
handling.
|
|
|
|
|
|
+ CVE-2011-3911: Out-of-bounds read in PDF.
|
|
|
|
|
|
+ CVE-2011-3912: Use-after-free in SVG filters.
|
|
|
|
|
|
+ CVE-2011-3914: Out-of-bounds write in v8 i18n handling
|
|
|
|
|
|
+ CVE-2011-3915: Buffer overflow in PDF font handling.
|
|
|
|
|
|
+ CVE-2011-3916: Out-of-bounds reads in PDF cross references.
|
|
|
|
|
|
+ CVE-2011-3917: Stack-buffer-overflow in FileWatcher.
|
|
|
|
|
|
+ CVE-2011-3904: Use-after-free in bidi handling.
|
|
|
|
|
|
* No longer build against the system libjpeg, but build against
|
|
|
|
|
|
the libjpeg that comes with Chromium to prevent graphics
|
|
|
|
|
|
issues
|
2011-12-15 10:03:52 +00:00
|
|
|
|
* Chromium for openSUSE:Factory now builds against libjpeg8
|
|
|
|
|
|
* Removed explicit -fPIC from the C-flags
|
2011-12-14 16:48:57 +00:00
|
|
|
|
|
2011-12-01 12:23:55 +00:00
|
|
|
|
-------------------------------------------------------------------
|
2011-12-10 18:59:34 +00:00
|
|
|
|
Sat Dec 10 18:51:39 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 18.0.968
|
|
|
|
|
|
+ Print preview: Disable the right context menu items in print
|
|
|
|
|
|
preview. (issue#106876,#106915)
|
|
|
|
|
|
+ Fix page zoom for plug-in documents (PDF, etc.)
|
|
|
|
|
|
(issue#106013,#106228)
|
|
|
|
|
|
+ ntp: track number of times a user switches pages in a single
|
|
|
|
|
|
session (issue#106575)
|
|
|
|
|
|
+ <video> decode in hardware! (issue#104579)
|
|
|
|
|
|
+ New tab button icons (issue#100775)
|
|
|
|
|
|
+ Profile/user menu on NTP should look more clickable?
|
|
|
|
|
|
(issue#102685)
|
|
|
|
|
|
|
|
|
|
|
|
- Enable the build of the Native Client (NaCl)
|
|
|
|
|
|
-------------------------------------------------------------------
|
2011-12-01 12:23:55 +00:00
|
|
|
|
Thu Dec 1 12:11:40 UTC 2011 - idoenmez@suse.de
|
|
|
|
|
|
|
|
|
|
|
|
- Support ISO_8859-X as an alias to ISO-8859-X
|
|
|
|
|
|
|
2011-11-27 19:36:13 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sun Nov 27 09:50:23 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 17.0.952
|
|
|
|
|
|
+ Message receiver on browser side that holds/starts the gamepad
|
|
|
|
|
|
data provider (issue#79050)
|
|
|
|
|
|
+ WebSocket Pepper API: in process API implementation
|
|
|
|
|
|
(issue#87310)
|
|
|
|
|
|
+ Clean up plug-in placeholders (issue#62079)
|
|
|
|
|
|
+ Schedule idle handler in the foreground tab based on CPU usage
|
|
|
|
|
|
and user activity
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sun Nov 27 08:51:17 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Remove the media-probe.patch. This has one regression and that
|
|
|
|
|
|
video's are no longer played through chromium if the
|
|
|
|
|
|
chromium-ffmpeg package from packman is not installed. However
|
|
|
|
|
|
removing this patch enabled support for all video formats if
|
|
|
|
|
|
the chromium-ffmpeg package has been installed.
|
|
|
|
|
|
|
2011-11-20 12:33:47 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sun Nov 20 12:27:43 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 17.0.945
|
|
|
|
|
|
+ Defer construction of NotificationUIManager to fix notification
|
|
|
|
|
|
initialization. (bug#103427)
|
|
|
|
|
|
+ Ignore button mouse enter for new tab button (bug#104326)
|
|
|
|
|
|
+ History/Downloads:
|
|
|
|
|
|
- Adding button and checkbox css to history and downloads.
|
|
|
|
|
|
- Tweaked checkbox styles for history.
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sun Nov 13 09:35:03 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 17.0.937
|
|
|
|
|
|
+ Make it so that turning off sync for extensions in the
|
|
|
|
|
|
preferences UI also turns off sync for extension settings,
|
|
|
|
|
|
ditto for apps and app settings (bug#98488)
|
|
|
|
|
|
+ Cleanup: Remove unneeded forward declarations from
|
|
|
|
|
|
chrome/browser/ui/webui.
|
|
|
|
|
|
+ fix appearance of buttons in chrome://settings
|
|
|
|
|
|
+ Report correct error when connection cannot be established
|
|
|
|
|
|
(bug#103937)
|
|
|
|
|
|
+ Temporarily disables XI2 for aura until events are straightened
|
|
|
|
|
|
out. (bug#103981)
|
|
|
|
|
|
+ Make chrome communicate with gpsd through libgps/shared memory
|
|
|
|
|
|
(bug#103751)
|
|
|
|
|
|
+ Don't close tabs from crashed extensions with background pages.
|
|
|
|
|
|
Make the crashed extension reload when the sad tab is reloaded.
|
|
|
|
|
|
(bug#71629,bug#94177)
|
|
|
|
|
|
|
2011-10-30 08:21:07 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sun Oct 30 08:10:13 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 17.0.922
|
|
|
|
|
|
+ Use the new ChromeV8ContextSet in
|
|
|
|
|
|
ExtensionProcessBindings::StartRequestCommon()
|
|
|
|
|
|
+ Suppress failure for downloads.DownloadsTest.testPauseAndResume,
|
|
|
|
|
|
as it is failing sporadically on pyauto win vista, and cause
|
|
|
|
|
|
is not understood. (bug#102228)
|
|
|
|
|
|
+ Fix a crash in FullscreenExitBubbleController when the user
|
|
|
|
|
|
clicks the "Exit full screen" button. (bug#101835)
|
|
|
|
|
|
+ Close all panels originated by the extension when extension
|
|
|
|
|
|
unloads. (bug#101118)
|
|
|
|
|
|
+ Fix history importing by delaying DownloadManager creation.
|
|
|
|
|
|
(bug#98966)
|
|
|
|
|
|
+ aura: Draw persistent borders around browser windows.
|
|
|
|
|
|
(bug#101977)
|
|
|
|
|
|
+ aura: brightness and volume bubble (bug#98322)
|
|
|
|
|
|
+ Associate the instant label text with a specific checkbox.
|
|
|
|
|
|
(bug#101930)
|
|
|
|
|
|
+ GTK: More profiling of the rendering path. (bug#100803)
|
|
|
|
|
|
+ Convert the non-debug logging in chrome/common to debug logging.
|
|
|
|
|
|
+ Add code to prompt for browser login during app notification
|
|
|
|
|
|
setup (bug#98145)
|
|
|
|
|
|
+ GTK: Constrain the clip area on tabstrip draws. (bug#100803)
|
|
|
|
|
|
+ Fully enable about:tracking by default (controlled by the
|
|
|
|
|
|
flag: "--enable-tracking" and the default is always on.)
|
|
|
|
|
|
|
2011-10-24 05:33:31 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sun Oct 23 07:17:06 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 17.0.917
|
|
|
|
|
|
+ Convert the Flash interfaces to no longer use GetInfo
|
|
|
|
|
|
+ Now does not sync URLs that only have imported visits
|
|
|
|
|
|
+ Print Preview fixes
|
|
|
|
|
|
+ Use WebCompositor only when --enable-threaded-compositing
|
|
|
|
|
|
+ Enable privileged WebGL extensions for Chrome extensions.
|
|
|
|
|
|
+ Implement sync data type controller and UI for syncing
|
|
|
|
|
|
notifications:
|
|
|
|
|
|
+ Improve audio underflow handling.
|
|
|
|
|
|
+ Improve extension settings accessibility.
|
|
|
|
|
|
+ Other bugfixes
|
2011-10-30 08:21:07 +00:00
|
|
|
|
- Remove patch19 for system zlib adjustments as this is no longer
|
|
|
|
|
|
required
|
2011-10-24 05:33:31 +00:00
|
|
|
|
|
2011-10-16 11:36:16 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sun Oct 16 11:21:52 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 16.0.910
|
|
|
|
|
|
+ Delay network requests on startup if any webRequest or
|
|
|
|
|
|
webNavigation extensions are enabled.
|
|
|
|
|
|
+ Make escape exit tabbed fullscreen mode even if browser was in
|
|
|
|
|
|
fullscreen mode before. (bug#89208)
|
|
|
|
|
|
+ [Sync] Support open tabs experiment enabling before sync setup
|
|
|
|
|
|
completion. (bug#99403)
|
|
|
|
|
|
+ On Linux, turn off panels when there is no window manager
|
|
|
|
|
|
present. (bug#100381)
|
|
|
|
|
|
+ Linux: add the "other bookmarks" folder to the new bookmark
|
|
|
|
|
|
menu. (bug#81263)
|
|
|
|
|
|
+ Add google search app to list of apps installed by default.
|
|
|
|
|
|
(bug#94920)
|
|
|
|
|
|
+ PrintPreview: Added code to honor the grayscale color model
|
|
|
|
|
|
+ Linux: add basic bookmark menu support. More features can be
|
|
|
|
|
|
added later. Currently, only supports ctrl-click/middle click
|
|
|
|
|
|
to open in a new tab. It's supposed to be quite fancy and
|
|
|
|
|
|
support context menus and maybe other gestures as well; these
|
|
|
|
|
|
are not yet supported. (bug#81263)
|
|
|
|
|
|
|
2011-10-09 16:27:17 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sun Oct 9 06:57:29 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 16.0.904
|
|
|
|
|
|
+ aura: Implement cursor support on linux
|
|
|
|
|
|
+ Add --enable-video-track commandline flag for enabling <track>
|
|
|
|
|
|
(otherwise disabled by default)
|
|
|
|
|
|
+ [Sync UI] When signed in, choosing the sync wrench menu item
|
|
|
|
|
|
should navigate to personal options
|
|
|
|
|
|
+ Fix UI quirks when doing a history navigation to a slow page
|
|
|
|
|
|
(bug#94747)
|
|
|
|
|
|
+ Auto-login UI polish. (bug#98873)
|
|
|
|
|
|
+ Fixed the gtk menu race (bug#88473)
|
|
|
|
|
|
|
2011-10-02 07:52:00 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sun Oct 2 07:37:15 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Updaet to 16.0.898
|
|
|
|
|
|
+ Move webNavigation out of experimental (bug#60100)
|
|
|
|
|
|
+ Rework BrightnessLibrary using DBusThreadManager
|
|
|
|
|
|
+ Remove google search experiment
|
|
|
|
|
|
+ Only allow to lock the mouse when the tab is in fullscreen mode
|
|
|
|
|
|
(bug#41781)
|
|
|
|
|
|
+ Expose connection error code to the web app (bug#91402)
|
|
|
|
|
|
+ Make the license tools recoginze the dual license (bug#98116)
|
|
|
|
|
|
+ Don't immediately fill saved passwords in Incognito mode
|
|
|
|
|
|
+ Ensure that --disable-extensions disables extension prefs from
|
|
|
|
|
|
being enacted
|
|
|
|
|
|
+ Removing mfplayer and mfdecoder tools
|
|
|
|
|
|
|
2011-09-25 17:30:54 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sun Sep 25 09:00:41 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Make "Set as default browser" work
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 16.0.891
|
|
|
|
|
|
+ Prefer curl over wget on linux if installed.
|
|
|
|
|
|
+ Printing: Fix Linux print dialog code when there are no
|
|
|
|
|
|
printers installed.
|
|
|
|
|
|
+ Do not intitialize V8 in browser process.
|
|
|
|
|
|
+ Suppress race in URLRequestHttpJob/HttpNetworkTransaction
|
|
|
|
|
|
+ Profile shouldn't own PersonalDataManager
|
|
|
|
|
|
+ Remove the old chrome://extensions page, since the URL now
|
|
|
|
|
|
redirects to the new Settings page.
|
|
|
|
|
|
+ fix disappearing bookmark star on linux/gtk
|
|
|
|
|
|
+ Fix display of "Last Synced as..." in Personal Stuff.
|
|
|
|
|
|
+ FTP: fixed compatibility with servers which send 451 response
|
|
|
|
|
|
for CWD command.
|
|
|
|
|
|
|
2011-09-22 09:54:33 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Thu Sep 22 09:53:18 UTC 2011 - prusnak@opensuse.org
|
|
|
|
|
|
|
|
|
|
|
|
- add versions to some dependencies of subpackages
|
|
|
|
|
|
|
2011-09-20 16:17:34 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Tue Sep 20 16:14:30 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Added permissions-patch so that the suid-helper will also work
|
2011-09-21 13:50:46 +00:00
|
|
|
|
on distro versions equal to 11.4.
|
2011-09-20 16:17:34 +00:00
|
|
|
|
- Moved the no-sandbox check to the browser start-up script so that
|
|
|
|
|
|
the enabling of the sandbox is done at runtime (bnc#718016)
|
|
|
|
|
|
|
2011-09-20 16:10:49 +00:00
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed Sep 14 11:30:06 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 16.0.880
|
|
|
|
|
|
+ Print preview issues with self-closing popups have been fixed
|
|
|
|
|
|
+ Fixed many known stability issues.
|
|
|
|
|
|
+ Change chrome://crash (sad tab page) "Learn more" link to:
|
|
|
|
|
|
"If you're seeing this frequently, try these suggestions."
|
|
|
|
|
|
Link "these suggestions" to the "Learn more" help article.
|
|
|
|
|
|
+ Convert chrome://extensions to a settings page within the
|
|
|
|
|
|
options pages.
|
|
|
|
|
|
+ Beginnings of basic Focus and Key Events.
|
|
|
|
|
|
+ various bugfixes
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sun Sep 3 17:39:50 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 15.0.870
|
|
|
|
|
|
+ Fix the print preview regression bug
|
|
|
|
|
|
+ Enable low-latency audio by default
|
|
|
|
|
|
+ Add Indic IME support
|
|
|
|
|
|
+ Switch the native print path on Linux and ChromeOS to use Skia
|
|
|
|
|
|
instead of Cairo
|
|
|
|
|
|
+ Use 16x16 icons so they don't stretch
|
|
|
|
|
|
+ Turn client-side phishing detection on for non-UMA users
|
|
|
|
|
|
+ Fix a crash on Linux which occurs during drag drop operations
|
|
|
|
|
|
in the renderer
|
|
|
|
|
|
+ various bugfixes
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed Aug 24 17:53:51 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 15.0.862
|
|
|
|
|
|
+ Fix pyauto autofill flakiness when submitting profile info via
|
|
|
|
|
|
webpage forms (issues: 90232,89784)
|
|
|
|
|
|
+ Get rid of static TabContentsView::Create function since the
|
|
|
|
|
|
interface is in content, but the implementations are in chrome.
|
|
|
|
|
|
(issue: 76697)
|
|
|
|
|
|
+ Suppress another race with KURLGooglePrivate + Workers.
|
|
|
|
|
|
(issue 93708)
|
|
|
|
|
|
+ Add a new content settings type AUTO-SELECT-CERTIFICATE. The
|
|
|
|
|
|
default value of the new content settings type AUTO-SELECT-CERTIFICATE
|
|
|
|
|
|
is CONTENT_SETTING_ASK
|
|
|
|
|
|
+ Add a policy for whitelisting origins for which client certificates
|
|
|
|
|
|
should be auto selected.
|
|
|
|
|
|
+ Add a policy to set a default setting for the auto select certificates
|
|
|
|
|
|
setting.
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Mon Aug 22 16:32:16 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 15.0.860
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sat Aug 20 20:47:53 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 15.0.859
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Fri Aug 19 05:55:51 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 15.0.857
|
|
|
|
|
|
+ Issue with the close tab button is fixed.
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Tue Aug 16 09:14:32 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 15.0.854
|
|
|
|
|
|
- Enable build of sandbox client as that this is now mandatory
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sun Aug 7 09:13:32 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Introduce an option to switch the password store for Chromium in
|
|
|
|
|
|
a more friendlier way, by using the update-alternatives. The user
|
|
|
|
|
|
has now the option to install a new package (chromium-desktop-kde
|
|
|
|
|
|
or chromium-desktop-gnome) and based on this the respective
|
|
|
|
|
|
password store is selected.
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sat Aug 6 10:09:02 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 15.0.846
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sat Jul 30 08:12:51 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 15.0.839
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Thu Jul 21 17:06:31 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 14.0.829
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sun Jul 17 09:15:18 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 14.0.825
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Tue Jul 12 02:26:20 UTC 2011 - nmarques@opensuse.org
|
|
|
|
|
|
|
|
|
|
|
|
- Fix for bnc#705223:
|
|
|
|
|
|
+ Icons are installed in hicolor instead of oxygen, this ensures
|
|
|
|
|
|
compatibility with open Desktop standards.
|
|
|
|
|
|
+ Add GTK icon cache update for >= 1140 on %post and %postun.
|
|
|
|
|
|
+ Removed the .png in %{_datadir}/pixmaps as hicolor is a better
|
|
|
|
|
|
option.
|
|
|
|
|
|
+ Add hicolor-icon-theme to BuildRequires and Requires.
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Mon Jun 13 11:49:27 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 14.0.792
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Mon Jun 6 08:47:30 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 14.0.786
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sat Jun 4 07:22:05 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 14.0.785
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sat May 28 20:05:21 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 13.0.780
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed May 25 13:03:04 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 13.0.777
|
|
|
|
|
|
+ Builds now based on system library for V8.
|
|
|
|
|
|
+ Removed Shared Library build due to errors. Everything is back
|
|
|
|
|
|
into one single binary
|
|
|
|
|
|
+ Added patchfile to build with GCC 4.6
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sun May 15 12:49:33 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 13.0.767
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Thu Apr 28 17:44:47 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 13.0.751
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Fri Apr 22 06:23:09 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 12.0.744
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Mon Apr 18 17:01:00 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 12.0.741
|
|
|
|
|
|
- Include icon-set for Oxygen. (bnc#684728)
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Fri Apr 8 15:29:13 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 12.0.731
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sun Apr 3 15:30:49 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 12.0.724
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Thu Mar 31 19:28:18 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 12.0.721
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Mon Mar 28 18:26:22 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 12.0.718
|
|
|
|
|
|
- Added conflict for xine-browser-plugin
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed Mar 16 05:15:44 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 12.0.705
|
|
|
|
|
|
- Included option to detect the password store in /usr/bin/chromium
|
|
|
|
|
|
(options there are detect,default,gnome,kwallet)
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Fri Mar 11 08:42:36 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 12.0.700
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed Mar 9 18:45:16 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 11.0.698
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Fri Mar 4 08:08:57 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 11.0.691
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed Mar 2 18:17:40 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 11.0.688
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sun Feb 27 09:05:00 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 11.0.685
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sun Feb 27 08:52:51 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 11.0.683
|
|
|
|
|
|
* Chromium will now use the internal ICU libraries for all
|
|
|
|
|
|
openSUSE versions.
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed Feb 16 23:45:49 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 11.0.674
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Tue Feb 15 18:37:51 UTC 2011 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 11.0.673
|
|
|
|
|
|
* For Factory the internal ICU libraries are used as that
|
|
|
|
|
|
Chromium does not build with the ones provided by Factory
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed Jan 19 13:23:13 UTC 2011 - prusnak@opensuse.org
|
|
|
|
|
|
|
|
|
|
|
|
- add more mimetypes to desktop file
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sat Dec 25 09:40:13 UTC 2010 - rwooninck@opensuse.org
|
|
|
|
|
|
|
|
|
|
|
|
- update to 10.0.622.0
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Mon Oct 25 14:30:33 UTC 2010 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 9.0.564 build
|
|
|
|
|
|
* Added specific patches for MeeGo.
|
|
|
|
|
|
* We are now using shared libraries for Chromium
|
|
|
|
|
|
* Spec-file cleanup (Thanks to prusnak)
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Thu Jul 8 00:13:33 UTC 2010 - cristian.rodriguez@opensuse.org
|
|
|
|
|
|
|
|
|
|
|
|
- use jobs instead of a fixed numer of jobs, buildsystem may hang
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed Jul 7 20:10:06 UTC 2010 - cristian.rodriguez@opensuse.org
|
|
|
|
|
|
|
|
|
|
|
|
- workaround gcc bug, that produces extremely annoying
|
|
|
|
|
|
failure of the search bar.
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Mon May 24 01:17:14 UTC 2010 - cristian.rodriguez@opensuse.org
|
|
|
|
|
|
|
|
|
|
|
|
- do not include %{release} in RPM_VERSION that makes the
|
|
|
|
|
|
package to republish everytime to users even if there
|
|
|
|
|
|
are no code changes.
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Wed Mar 10 20:10:14 UTC 2010 - bgmerrell@novell.com
|
|
|
|
|
|
|
|
|
|
|
|
- Add master_preferences source file and install it to /etc/chromium.
|
|
|
|
|
|
- Create a new patch (chromium-master-prefs-path.patch) which tells
|
|
|
|
|
|
chromium to look in /etc/chromium for the master_preferences file
|
|
|
|
|
|
(instead of looking in the default directory, which is the same
|
|
|
|
|
|
directory as the 'chrome' binary).
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
* Sun Mar 7 00:00:00 UTC 2010 - tititatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 5.0.347
|
|
|
|
|
|
+ moved back to static binary again.
|
|
|
|
|
|
+ No longer depends on system v8
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
* Mon Feb 21 00:00:00 UTC 2010 - tititatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 5.0.341
|
|
|
|
|
|
+ remove courgette build and sources (patent issue)
|
|
|
|
|
|
+ Move to shared libraries build
|
|
|
|
|
|
+ Depends on system v8 again
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sun Jan 24 21:42:27 UTC 2010 - prusnak@suse.cz
|
|
|
|
|
|
|
|
|
|
|
|
- added vendor to user agent (chromium-vendor.patch.in)
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sun Nov 29 14:18:27 UTC 2009 - prusnak@suse.cz
|
|
|
|
|
|
|
|
|
|
|
|
- added --enable-sync to wrapper to enable bookmark sync
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
* Sun Nov 29 00:00:00 UTC 2009 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 4.0.260
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
* Fri Nov 27 00:00:00 UTC 2009 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 4.0.259
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
* Thu Nov 26 00:00:00 UTC 2009 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 4.0.258
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
* Tue Nov 24 00:00:00 UTC 2009 - tittatcoke@gmai.com
|
|
|
|
|
|
|
|
|
|
|
|
- In order to complete prevent the wrong v8 version to be used,
|
|
|
|
|
|
the Chromium build has been changed to having an built-in v8
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
* Tue Nov 24 00:00:00 UTC 2009 - dbuck@example.com
|
|
|
|
|
|
|
|
|
|
|
|
- Re-base patches.
|
|
|
|
|
|
- Fixed a few patch errors.
|
|
|
|
|
|
- Rename some patches to better correspond with function.
|
|
|
|
|
|
- Removed some patches.
|
|
|
|
|
|
- Minor SPEC changes.
|
|
|
|
|
|
- I changed the v8 requirement to be exact, instead of greater than a specific version.
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Fri Nov 13 20:34:05 UTC 2009 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- update to 247.0 svn 31928
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Fri Oct 30 13:58:11 UTC 2009 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- update to 229.0 svn 30454
|
|
|
|
|
|
+ Fix regression where popups and app frames lost their titlebars.
|
|
|
|
|
|
+ Makes it so that when a folder is open on the bookmark bar
|
|
|
|
|
|
and the mouse moves over another folder, the menu for that
|
|
|
|
|
|
folder is shown.
|
|
|
|
|
|
+ Lazily create the find bar.
|
|
|
|
|
|
+ Polish to the gmail checker sample.
|
|
|
|
|
|
* New, crisper icons that are exactly 19x19
|
|
|
|
|
|
* Add a loading animation at the beginning before Gmail
|
|
|
|
|
|
responds.
|
|
|
|
|
|
* Fix a bug where we sometimes don't update the UI after a
|
|
|
|
|
|
logout/login cycle.
|
|
|
|
|
|
+ Refactor widget methods to support desktop notifications,
|
|
|
|
|
|
including GTK stubs.
|
|
|
|
|
|
+ Find-in-page should not ding while deleting characters.
|
|
|
|
|
|
+ Add SSL wrapper for linux and mac. This allows notifier to
|
|
|
|
|
|
use chrome's SSL layer instead of OpenSSL.
|
|
|
|
|
|
+ Add three of the six extensions to PAC that Internet Explorer supports.
|
|
|
|
|
|
+ WebSocket support in chromium. (Run with --enable-web-sockets
|
|
|
|
|
|
enables WebSocket features.)
|
|
|
|
|
|
+ Do not allow GTK File Chooser dialogs to return directories.
|
|
|
|
|
|
+ Fix the notifier SSL layer to make notifications work for
|
|
|
|
|
|
Linux Bookmark sync.
|
|
|
|
|
|
+ linux: don't override mouse selection behavior in omnibox
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
Sun Oct 25 08:37:29 UTC 2009 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to 224.4 svn 30027
|
|
|
|
|
|
+ First cut at new page and browser action docs based
|
|
|
|
|
|
on new API. Deleted old stuff.
|
|
|
|
|
|
+ Add suppression for new memory leak caused by WebKit merge 49830:49844
|
|
|
|
|
|
+ Cleanup: change PIDs to base::ProcessId (or pid_t, as appropriate)
|
|
|
|
|
|
+ Minimize dependency of user scripts
|
|
|
|
|
|
+ Fixup the flip_framer eof-handling semantics now that we have
|
|
|
|
|
|
the FIN bit in place
|
|
|
|
|
|
+ app depends on x11 because of active_window_watcher_x
|
|
|
|
|
|
+ Adding two images for the new Extension managment UI
|
|
|
|
|
|
+ Removing hard-coded Chrome Frame output path
|
|
|
|
|
|
+ Rearrange clipboard code
|
|
|
|
|
|
+ Fix crash bug when attempting to download a url with unsupported scheme,
|
|
|
|
|
|
e.g. 'data:', by 'Alt + Click'
|
|
|
|
|
|
+ GTK: Change text for extension download UI
|
|
|
|
|
|
+ Ignore invalid urls on command line
|
|
|
|
|
|
+ Make dropped tabs animate from where they were dropped.
|
|
|
|
|
|
+ Make room for the full width of the tab placeholder.
|
|
|
|
|
|
+ Make tab dragging as smooth as glass.
|
|
|
|
|
|
+ Remove an annoying NOTIMPLEMNETED
|
|
|
|
|
|
+ Extensions: guarantee removal of BROWSER_WINDOW_READY registration
|
|
|
|
|
|
+ If we're in the middle of a drag, don't allow the user to middle
|
|
|
|
|
|
click to close or right click for the context menu
|
|
|
|
|
|
+ "Fix" a NOTIMPLEMENTED on Linux by using the default password store
|
|
|
|
|
|
+ Remove +x bit from files that shouldn't have it
|
|
|
|
|
|
+ Fold first 3 channels of multichannel instead of 5. Use fixed point
|
|
|
|
|
|
+ Adding new image needed for the managment UI
|
|
|
|
|
|
+ Fix a race bug where content scripts would not apply to the first page load
|
|
|
|
|
|
+ Make escape remove a bookmark if it's just been added (but not if it already existed)
|
|
|
|
|
|
+ Fix bubbles deactivating the opaque frame
|
|
|
|
|
|
+ Allow ESC to cancel ALT+SHIFT+T in Toolbar
|
|
|
|
|
|
+ ake all pepper plugins default to windowless and transparent
|
|
|
|
|
|
+ Add styles for printing
|
|
|
|
|
|
+ Implement the new extension management UI
|
|
|
|
|
|
+ Add support for to automation interface load install and load extensions
|
|
|
|
|
|
+ GTK: theme the info bar border
|
|
|
|
|
|
+ Update V8 to version 1.3.16.1
|
|
|
|
|
|
+ Introduce WebSecurityPolicy for security related methods
|
|
|
|
|
|
+ New button scheme...borders are separate from the inner contents so
|
|
|
|
|
|
that they can be highlighted / depressed independently
|
|
|
|
|
|
+ When opening Chrome maximized with an application window already
|
|
|
|
|
|
running, the Chrome window was not activated
|
|
|
|
|
|
+ Fix compatibility problems with FileZilla FTP Server
|
|
|
|
|
|
+ Remove the extension shelf on Linux
|
|
|
|
|
|
+ Fix the proxy host and port string to start with http:// if it does not already
|
|
|
|
|
|
+ Enable HTML5 databases for all extension renderer processes
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
* Sat Oct 24 00:00:00 UTC 2009 - prusnak@opensuse.org
|
|
|
|
|
|
|
|
|
|
|
|
- don't create desktop files in wrapper
|
|
|
|
|
|
- fix LD_LIBRARY_PATH (chromium-fix-wrapper.patch)
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
* Tue Oct 20 00:00:00 UTC 2009 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- update to newer svn snapshot
|
|
|
|
|
|
+ Obsoletes fwrite patch (included upstream)
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
* Fri Oct 16 00:00:00 UTC 2009 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- update to newer svn snapshot
|
|
|
|
|
|
+ Requires newer version of v8
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
* Thu Oct 15 00:00:00 UTC 2009 - prusnak@suse.cz
|
|
|
|
|
|
|
|
|
|
|
|
- do not force SSE on x86 (drop-sse.patch)
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
* Tue Oct 13 00:00:00 UTC 2009 - tittiatcoke@gmail.com
|
|
|
|
|
|
|
|
|
|
|
|
- Update to newer svn snapshot
|
|
|
|
|
|
- Fixed spec file in order to build
|
|
|
|
|
|
- Included patch to build with system zlib
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
* Mon Oct 12 00:00:00 UTC 2009 - prusnak@suse.cz
|
|
|
|
|
|
|
|
|
|
|
|
- package renamed to chromium
|
|
|
|
|
|
- cleaned up spec file
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
* Tue Oct 6 00:00:00 UTC 2009 - dbuck@example.com
|
|
|
|
|
|
|
|
|
|
|
|
- v8 is now built as a separate package, and is required
|
|
|
|
|
|
- included many patches to use system libraries:
|
|
|
|
|
|
v8, icu, libxml2, libxslt, libjpeg, libpng, libevent, bzip2, zlib, nspr, nss
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
* Sun Oct 1 00:00:00 UTC 2009 - dbuck@example.com
|
|
|
|
|
|
|
|
|
|
|
|
- included a newer DEP than is in svn, native_client@823
|
|
|
|
|
|
- things should compile cleanly now
|
|
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
|
* Sun Aug 31 00:00:00 UTC 2009 - dbuck@example.com
|
|
|
|
|
|
|
|
|
|
|
|
- initial build
|
|
|
|
|
|
|
