- Version update to 57.0.2987.98
- Remove vaapi patch that broke amd and nvidia cards
- Remove ffmpeg2 patch that is obsolete
* chromium-54-ffmpeg2compat.patch
* chromium-enable-vaapi-on-suse.patch
- Update to 57.0.2987.88
- Update to 57.0.2987.74
- Update to 57.0.2987.54
- Version update to 57.0.2987.37
- Changed the build requirement of libavformat to library version
57.41.100, as included in ffmpeg 3.1.1, as only this version
properly supports the public AVStream API 'codecpar'.
- Added patch chromium-enable-vaapi-on-suse.patch to enable
VAAPI hardware accelerated video decoding.
* chromium-enable-vaapi-on-suse.patch
- Update to 57.0.2987.21
- Update to 57.0.2987.19
- Version update to 57.0.2987.13
- Update to 57.0.2987.8
- Update to 57.0.2986.0
- Version update to 57.0.2984.0
- Drop the support code for builtin ffmpeg and rely on the system one always
OBS-URL: https://build.opensuse.org/request/show/478466
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium?expand=0&rev=999
- CVE-2017-5007: Universal XSS in Blink
- CVE-2017-5006: Universal XSS in Blink
- CVE-2017-5008: Universal XSS in Blink
- CVE-2017-5010: Universal XSS in Blink
- CVE-2017-5011: Unauthorised file access in Devtools
- CVE-2017-5009: Out of bounds memory access in WebRTC
- CVE-2017-5012: Heap overflow in V8
- CVE-2017-5013: Address spoofing in Omnibox
- CVE-2017-5014: Heap overflow in Skia
- CVE-2017-5015: Address spoofing in Omnibox
- CVE-2017-5019: Use after free in Renderer
- CVE-2017-5016: UI spoofing in Blink
- CVE-2017-5017: Uninitialised memory access in webm video
- CVE-2017-5018: Universal XSS in chrome://apps
- CVE-2017-5020: Universal XSS in chrome://downloads
- CVE-2017-5021: Use after free in Extensions
- CVE-2017-5022: Bypass of Content Security Policy in Blink
- CVE-2017-5023: Type confusion in metrics
- CVE-2017-5024: Heap overflow in FFmpeg
- CVE-2017-5025: Heap overflow in FFmpeg
- CVE-2017-5026: UI spoofing. Credit to Ronni Skansing
- Also refresh patches:
chromium-prop-codecs.patch chromium-linker-memory.patch
- Added patch chromium-enable-vaapi-on-suse.patch to enable
VAAPI hardware accelerated video decoding.
- Chromium 55.0.2883.87:
* various fixes for crashes and specific wesites
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium?expand=0&rev=982
- Added patch chromium-56-enable-vaapi-on-suse.patch to enable VAAPI hardware accelerated video decoding.
- Update to 56.0.2924.76
- Version update to 56.0.2924.67
- Version update to 56.0.2924.59
- Version update to 56.0.2924.53
- Version update to 56.0.2924.51
- Fix the gcc5 usage on Leap
- Disable system icu, crashes autofill
- Use gcc5 on Leap
- Update to 56.0.2924.28
- Allow building with non-system icu on older systems
- Version update to 56.0.2924.21
- Version update to 56.0.2924.18
- Version update to 56.0.2924.14
- Version update to 56.0.2924.10
- Version update to 56.0.2922.1
- Version update to 56.0.2920.0
- Version update to 56.0.2914.3:
* refresh patch chromium-prop-codecs.patch
OBS-URL: https://build.opensuse.org/request/show/453614
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium?expand=0&rev=981
* CVE-2016-5199: Heap corruption in FFmpeg (boo#1009892)
* CVE-2016-5200: out of bounds memory access in v8 (boo#1009893)
* CVE-2016-5201: info leak in extensions (boo#1009894)
* CVE-2016-5202: various fixes from internal audits (boo#1009895)
- Update to 54.0.2840.90:
* Few fixes and tweaks
* Fixes CVE-2016-5198 bsc#1008274
- Update to 54.0.2840.71:
* Few fixes around
- Version update to 54.0.2840.59 bnc#1004465:
- CVE-2016-5181: Universal XSS in Blink (Anonymous)
- CVE-2016-5182: Heap overflow in Blink (Giwan Go of STEALIEN)
- CVE-2016-5183: Use after free in PDFium (Anonymous)
- CVE-2016-5184: Use after free in PDFium (Anonymous)
- CVE-2016-5185: Use after free in Blink (cloudfuzzer)
- CVE-2016-5187: URL spoofing (Luan Herrera)
- CVE-2016-5188: UI spoofing (Luan Herrera)
- CVE-2016-5192: Cross-origin bypass in Blink (haojunhou at gmail)
- CVE-2016-5189: URL spoofing (xisigr of Tencent's Xuanwu Lab)
- CVE-2016-5186: Out of bounds read in DevTools (Abdulrahman Alqabandi)
- CVE-2016-5191: Universal XSS in Bookmarks (Gareth Hughes)
- CVE-2016-5190: Use after free in Internals (Atte Kettunen of OUSPG)
- CVE-2016-5193: Scheme bypass (Yuyang ZHOUmartinzhou96)
- packaging changes:
* disable build for chromium-beta on %arm.
* Make linker use less memory by tweaking its options:
chromium-linker-memory.patch
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium?expand=0&rev=962
- Version update to 55.0.2883.75
- Version update to 55.0.2883.59
- Version update to 55.0.2883.55
- Version update to 55.0.2883.44
- Version update to 55.0.2883.28
- Try to make package buildable on SLE12 Backports project
- Update to 55.0.2883.21
- Add switch between bundled and system icu as on old distributions
we simply have too old ICU
- Add switch for bundled/system minizip as it is not available on 42.1
- Version update to 55.0.2883.18
- Version update to 55.0.2883.11
- Drop chromium-system-zlib.patch
- Add Requires on specified browser for chromedriver wrt bnc#1004839
- Version update to 55.0.2882.0:
* Rebase fix-gn-bootstrap.diff
* Remove upstreamed chromium-more-codec-aliases.patch
- Add appdata.xml for https://en.opensuse.org/openSUSE:AppStore
- disable build for chromium-beta on %arm. while it does build,
it takes two days, in which we can build roughly 600 other packages,
OBS-URL: https://build.opensuse.org/request/show/443521
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium?expand=0&rev=961
- Version update to 54.0.2840.59 bnc#1004465:
- CVE-2016-5181: Universal XSS in Blink (Anonymous)
- CVE-2016-5182: Heap overflow in Blink (Giwan Go of STEALIEN)
- CVE-2016-5183: Use after free in PDFium (Anonymous)
- CVE-2016-5184: Use after free in PDFium (Anonymous)
- CVE-2016-5185: Use after free in Blink (cloudfuzzer)
- CVE-2016-5187: URL spoofing (Luan Herrera)
- CVE-2016-5188: UI spoofing (Luan Herrera)
- CVE-2016-5192: Cross-origin bypass in Blink (haojunhou at gmail)
- CVE-2016-5189: URL spoofing (xisigr of Tencent's Xuanwu Lab)
- CVE-2016-5186: Out of bounds read in DevTools (Abdulrahman Alqabandi)
- CVE-2016-5191: Universal XSS in Bookmarks (Gareth Hughes)
- CVE-2016-5190: Use after free in Internals (Atte Kettunen of OUSPG)
- CVE-2016-5193: Scheme bypass (Yuyang ZHOUmartinzhou96)
- Version update to 54.0.2840.50 bnc#1002140:
- disable build for chromium-beta on %arm. while it does build,
it takes two days, in which we can build roughly 600 other packages,
and I rather build 600 other packages than chromium-beta.
- Version update to 54.0.2840.41
- Add --ui-disable-partial-swap to the launcher bnc#1000019
cr#628168
- Export GDK_BACKEND=x11 before starting chromium, ensuring that
it's started as an Xwayland client (boo#1001135).
- Version update to 54.0.2840.34 bnc#998743:
- Make linker use less memory by tweaking its options:
* chromium-linker-memory.patch
- Update constraints for arm a bit to build
OBS-URL: https://build.opensuse.org/request/show/434707
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium?expand=0&rev=947
* CVE-2016-5170 Use after free in Blink
* CVE-2016-5171 Use after free in Blink
* CVE-2016-5172 Arbitrary Memory Read in v8
* CVE-2016-5173 Extension resource access
* CVE-2016-5174 Popup not correctly suppressed
* CVE-2016-5175 Various fixes from internal audits
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium?expand=0&rev=939
