diff --git a/chromium-46.0.2490.86.tar.xz b/chromium-46.0.2490.86.tar.xz deleted file mode 100644 index e46ea0e..0000000 --- a/chromium-46.0.2490.86.tar.xz +++ /dev/null @@ -1,3 +0,0 @@ -version https://git-lfs.github.com/spec/v1 -oid sha256:ee18d28ac80ff958e8a6c770bfc0d7d770b55452ed91a87f731e1b432a7d1d92 -size 356008056 diff --git a/chromium-47.0.2526.73.tar.xz b/chromium-47.0.2526.73.tar.xz new file mode 100644 index 0000000..e4dafb9 --- /dev/null +++ b/chromium-47.0.2526.73.tar.xz @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:6d66d01c8ddff6562ff13d30ed65ef0cdc2888d9e4924be615d576b7eb15f4f5 +size 394631144 diff --git a/chromium.changes b/chromium.changes index b0c80a1..09dd3ab 100644 --- a/chromium.changes +++ b/chromium.changes @@ -1,3 +1,37 @@ +------------------------------------------------------------------- +Wed Dec 2 18:49:23 UTC 2015 - tittiatcoke@gmail.com + +- Update to Chromium 47.0.2526.73 + * Security fixes (boo#957519) + - CVE-2015-6765: Use-after-free in AppCache + - CVE-2015-6766: Use-after-free in AppCache + - CVE-2015-6767: Use-after-free in AppCache + - CVE-2015-6768: Cross-origin bypass in DOM + - CVE-2015-6769: Cross-origin bypass in core + - CVE-2015-6770: Cross-origin bypass in DOM + - CVE-2015-6771: Out of bounds access in v8 + - CVE-2015-6772: Cross-origin bypass in DOM + - CVE-2015-6764: Out of bounds access in v8 + - CVE-2015-6773: Out of bounds access in Skia + - CVE-2015-6774: Use-after-free in Extensions + - CVE-2015-6775: Type confusion in PDFium + - CVE-2015-6776: Out of bounds access in PDFium + - CVE-2015-6777: Use-after-free in DOM + - CVE-2015-6778: Out of bounds access in PDFium + - CVE-2015-6779: Scheme bypass in PDFium + - CVE-2015-6780: Use-after-free in Infobars + - CVE-2015-6781: Integer overflow in Sfntly + - CVE-2015-6782: Content spoofing in Omnibox + - CVE-2015-6783: Signature validation issue in + Android Crazy Linker. + - CVE-2015-6784: Escaping issue in saved pages + - CVE-2015-6785: Wildcard matching issue in CSP + - CVE-2015-6786: Scheme bypass in CSP + - CVE-2015-6787: Various fixes from internal audits, fuzzing + and other initiatives. + - Multiple vulnerabilities in V8 fixed at the tip of the + 4.7 branch (currently 4.7.80.23) + ------------------------------------------------------------------- Wed Nov 11 08:55:19 UTC 2015 - tittiatcoke@gmail.com diff --git a/chromium.spec b/chromium.spec index 878fe38..9a2c05c 100644 --- a/chromium.spec +++ b/chromium.spec @@ -20,7 +20,7 @@ %define chromium_system_libs 0 Name: chromium -Version: 46.0.2490.86 +Version: 47.0.2526.73 Release: 0 Summary: Google's opens source browser project License: BSD-3-Clause and LGPL-2.1+ @@ -164,7 +164,6 @@ Requires: hicolor-icon-theme Requires: update-alternatives Requires: xdg-utils -BuildRequires: libvpx-devel BuildRequires: SDL-devel BuildRequires: dirac-devel >= 1.0.0 BuildRequires: imlib2-devel @@ -178,6 +177,7 @@ BuildRequires: liboil-devel >= 0.3.15 BuildRequires: libtheora-devel >= 1.1 BuildRequires: libvdpau-devel BuildRequires: libvorbis-devel +BuildRequires: libvpx-devel BuildRequires: ncurses-devel BuildRequires: schroedinger-devel BuildRequires: slang-devel