From 30c1f7518cc96d73ac2a7d80034b00c596a8d3bee5c124a0d15558bedc604194 Mon Sep 17 00:00:00 2001 From: Bruno Pitrus Date: Fri, 31 Mar 2023 15:06:38 +0000 Subject: [PATCH] Accepting request 1076500 from home:dziobian:gulgul-ultron:19 - New upstream release 22.3.5 * Fixed an issue where calling port.postMessage in MessagePortMain with some invalid parameters could cause a crash. * Fixed canceling of bluetooth requests when no devices are returned. * webcodecs: Fix VP9 p2 encoding of NV12 frames * Fix crash in AnnotationAgentImpl * v8: Fix map transition chain following w/ dictionary maps (CVE-2023-1214) * Shutdown RtpContributingSourceCache in Dispose() (CVE-2023-1218) * Prevent potential integer overflow in PersistentMemoryAllocator (CVE-2023-1219) * hid: Handle empty input reports (CVE-2023-1529) * Improve checks for VideoFrame layouts (CVE-2023-1532) * Disable glShaderBinary in the passthrough cmd decoder (CVE-2023-1534) - Fix build error with absl_core_headers 2023xxxx. OBS-URL: https://build.opensuse.org/request/show/1076500 OBS-URL: https://build.opensuse.org/package/show/devel:languages:nodejs/nodejs-electron?expand=0&rev=69 --- crashpad-use-system-abseil.patch | 4 +++- electron-22.3.4.tar.zst | 3 --- electron-22.3.5.tar.zst | 3 +++ nodejs-electron.changes | 15 +++++++++++++++ nodejs-electron.spec | 16 +++++++++++++++- 5 files changed, 36 insertions(+), 5 deletions(-) delete mode 100644 electron-22.3.4.tar.zst create mode 100644 electron-22.3.5.tar.zst diff --git a/crashpad-use-system-abseil.patch b/crashpad-use-system-abseil.patch index 84621c5..756159f 100644 --- a/crashpad-use-system-abseil.patch +++ b/crashpad-use-system-abseil.patch @@ -9,11 +9,13 @@ #include "third_party/crashpad/crashpad/client/annotation.h" #include "third_party/crashpad/crashpad/client/annotation_list.h" #include "third_party/crashpad/crashpad/client/crash_report_database.h" -@@ -49,6 +49,7 @@ +@@ -49,6 +49,9 @@ #include "components/crash/core/common/crash_key.h" // nogncheck #endif ++#if ABSL_LTS_RELEASE_VERSION < 20230000 +#define raw_log_internal raw_logging_internal ++#endif namespace crash_reporter { namespace { diff --git a/electron-22.3.4.tar.zst b/electron-22.3.4.tar.zst deleted file mode 100644 index 789ad38..0000000 --- a/electron-22.3.4.tar.zst +++ /dev/null @@ -1,3 +0,0 @@ -version https://git-lfs.github.com/spec/v1 -oid sha256:1b9f2856040cd4046fc42b08af75888cdd7cc6729a25da7caddf061150e1317a -size 591817879 diff --git a/electron-22.3.5.tar.zst b/electron-22.3.5.tar.zst new file mode 100644 index 0000000..46d5279 --- /dev/null +++ b/electron-22.3.5.tar.zst @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:ef4f7fc20d6f7bd39eea4ce3a08588d40b8d6a197c9585c96192c6b57ab5a6b5 +size 593087639 diff --git a/nodejs-electron.changes b/nodejs-electron.changes index 4f679a2..003880d 100644 --- a/nodejs-electron.changes +++ b/nodejs-electron.changes @@ -1,3 +1,18 @@ +------------------------------------------------------------------- +Thu Mar 30 12:51:54 UTC 2023 - Bruno Pitrus +- New upstream release 22.3.5 + * Fixed an issue where calling port.postMessage in MessagePortMain with some invalid parameters could cause a crash. + * Fixed canceling of bluetooth requests when no devices are returned. + * webcodecs: Fix VP9 p2 encoding of NV12 frames + * Fix crash in AnnotationAgentImpl + * v8: Fix map transition chain following w/ dictionary maps (CVE-2023-1214) + * Shutdown RtpContributingSourceCache in Dispose() (CVE-2023-1218) + * Prevent potential integer overflow in PersistentMemoryAllocator (CVE-2023-1219) + * hid: Handle empty input reports (CVE-2023-1529) + * Improve checks for VideoFrame layouts (CVE-2023-1532) + * Disable glShaderBinary in the passthrough cmd decoder (CVE-2023-1534) +- Fix build error with absl_core_headers 2023xxxx. + ------------------------------------------------------------------- Fri Mar 24 13:42:44 UTC 2023 - Bruno Pitrus - New upstream release 22.3.4 diff --git a/nodejs-electron.spec b/nodejs-electron.spec index a063efd..c7e6c35 100644 --- a/nodejs-electron.spec +++ b/nodejs-electron.spec @@ -177,6 +177,13 @@ BuildArch: i686 %if 0%{?suse_version} >= 1550 || 0%{?sle_version} >= 150600 || 0%{?fedora} >= 37 %if %{without clang} %bcond_without system_abseil + +%if 0%{?fedora} >= 38 +%bcond_without abseil_2023 +%else +%bcond_with abseil_2023 +%endif + %else # Clang has several problems with std::optional used by system abseil %bcond_with system_abseil @@ -201,7 +208,7 @@ BuildArch: i686 Name: nodejs-electron -Version: 22.3.4 +Version: 22.3.5 Release: 0 Summary: Build cross platform desktop apps with JavaScript, HTML, and CSS License: AFL-2.0 AND Apache-2.0 AND blessing AND BSD-2-Clause AND BSD-3-Clause AND BSD-Protection AND BSD-Source-Code AND bzip2-1.0.6 AND IJG AND ISC AND LGPL-2.0-or-later AND LGPL-2.1-or-later AND MIT AND MIT-CMU AND MIT-open-group AND (MPL-1.1 OR GPL-2.0-or-later OR LGPL-2.1-or-later) AND MPL-2.0 AND OpenSSL AND SGI-B-2.0 AND SUSE-Public-Domain AND X11 @@ -504,6 +511,9 @@ BuildRequires: pkgconfig(absl_time) BuildRequires: pkgconfig(absl_type_traits) BuildRequires: pkgconfig(absl_utility) BuildRequires: pkgconfig(absl_variant) +%if %{with abseil_2023} +BuildRequires: pkgconfig(absl_core_headers) >= 20230000 +%endif %endif BuildRequires: pkgconfig(alsa) BuildRequires: pkgconfig(cairo) >= 1.6 @@ -700,6 +710,10 @@ patch -R -p1 < %PATCH1054 patch -R -p1 < %PATCH1076 %endif +%if %{with system_abseil} && %{with abseil_2023} +patch -R -p1 < %PATCH1054 +%endif + %if %{without ffmpeg_5} patch -R -p1 < %SOURCE400 %endif