pool/chromium
SHA256
17
0
Fork 2
Code Issues Pull Requests 2 Activity

Chromium 143.0.7499.40 boo#1254429 #18

Manually merged
AndreasStieger merged 219 commits from AndreasStieger/chromium:leap-16.0 into leap-16.0 2025-12-04 13:50:09 +01:00
Conversation 10 Commits 219 Files Changed 13 +11716 -11493
AndreasStieger commented 2025-12-02 20:00:35 +01:00
Contributor
Copy Link

143.0.7499.40 boo#1254429

143.0.7499.40 boo#1254429
AndreasStieger added 219 commits 2025-12-02 20:00:36 +01:00
osc copypac from project:home:oertel:branches:network:chromium package:chromium-beta revision:19, using expand 264f9258ec 
OBS-URL: https://build.opensuse.org/package/show/home:oertel:branches:network:chromium/chromium-dev?expand=0&rev=2
- Chromium 131.0.6724.0 (dev released 2024-09-19) 7ec2a26eb3 
OBS-URL: https://build.opensuse.org/package/show/home:oertel:branches:network:chromium/chromium-dev?expand=0&rev=3
- added patches: 6538c57732 
* chromium-131-no-crel.patch
    do not use "--crel,----allow-experimental-crel" for "-Wa"
  * chromium-130-missing-includes.patch include optional, stack

OBS-URL: https://build.opensuse.org/package/show/home:oertel:branches:network:chromium/chromium-dev?expand=0&rev=4
add chromium-131-no-crel.patch fcb219ba0b 
OBS-URL: https://build.opensuse.org/package/show/home:oertel:branches:network:chromium/chromium-dev?expand=0&rev=5
Accepting request 1202768 from home:oertel:branches:network:chromium c996a0296a 
initial

OBS-URL: https://build.opensuse.org/request/show/1202768
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=1
- Chromium 131.0.6738.0 (dev released 2024-09-26) fb21b12241 
- Chromium 130.0.6723.19 (beta released 2024-09-25)

- Chromium 129.0.6668.70 (stable released 2024-09-24)
  (boo#1230964)
  * CVE-2024-9120: Use after free in Dawn
  * CVE-2024-9121: Inappropriate implementation in V8
  * CVE-2024-9122: Type Confusion in V8
  * CVE-2024-9123: Integer overflow in Skia

OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=2
- dropped patches: d4136a4eaa 
* chromium-130-missing-includes.patch (upstream)

OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=3
- Chromium 132.0.6793.2 4516ecfb8f 
(dev released 2024-10-24) 
- dropped patches:
  * chromium-131-unbundle-enable-freetype.patch (upstream)

- Chromium 131.0.6778.24 
  (beta releaed 2024-10-30)
  * chromium-131-unbundle-enable-freetype.patch
    from git, missing in 131 release
- update context in
  * chromium-125-lp155-typename.patch
  * chromium-127-bindgen.patch
  * chromium-127-constexpr.patch
- drop from keeplibs: (deleted upstream)
  third_party/devtools-frontend/src/front_end/third_party/lodash-isequal
- add to keeplibs:
  third_party/tflite/src/third_party/xla/xla/tsl (drop subdirs)
  third_party/ink

- Chromium 130.0.6723.91 (boo#1232566)
  * CVE-2024-10487: Out of bounds write in Dawn
  * CVE-2024-10488: Use after free in WebRTC

- change BR for rust to require version 1.81
  (1.82 uses a newer llvm) 

- Chromium 130.0.6723.69 (boo#1232060)
  * CVE-2024-10229: Inappropriate implementation in Extensions
  * CVE-2024-10230: Type Confusion in V8
  * CVE-2024-10231: Type Confusion in V8

OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=4
- Chromium 132.0.6811.2 f6d9709260 
(dev released 2024-11-05) 
- Chromium 131.0.6778.33 
  (beta releaed 2024-11-06)

- Chromium 130.0.6723.116 (boo#1232843)
  * CVE-2024-10826: Use after free in Family Experiences
  * CVE-2024-10827: Use after free in Serial

OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=5
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=6 746945f07d
- update context in 3383b02c80 
* chromium-125-compiler.patch
- update patch
  * chromium-127-bindgen.patch (drop allowlist part, not needed)

OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=7
* chromium-127-rust-clanglib.patch (adapt to upsteam changes) 2164143718 
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=8
- update esbuild to 0.24.0 c1eff62085 
- drop old tarball
  - use upstream release tarball for 0.24.0
  - add vendor tarball for golang.org/x/sys

OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=9
update chromium-127-rust-clanglib.patch again 791781293d 
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=10
cleanup 503bea57c3 
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=11
one more place to drop visibility=hidden c6fc884ded 
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=12
- added patches: 0daaef5f9e 
* chromium-132-shared_storage-fix_include.patch (from upstream)

OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=13
fix Cr122-ffmpeg-new-channel-layout.patch to reverse apply again 5382987edd 
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=14
- Chromium 132.0.6821.2 ff615c439f 
(dev released 2024-11-07)

OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=15
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=16 f28595cd3b
drop chromium-132-shared_storage-fix_include.patch bcd489af9f 
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=17
- Chromium 133.0.6835.3 cab4645a26 
(dev release 2024-11-14) 

- Chromium 132.0.6834.6
  (beta released 2024-11-13) 
  * chromium-127-rust-clanglib.patch
  * Cr122-ffmpeg-new-channel-layout.patch
- Chromium 131.0.6778.69 
  (stable released 2024-11-12) (boo#1233311)
  * CVE-2024-11110: Inappropriate implementation in Blink.
  * CVE-2024-11111: Inappropriate implementation in Autofill.
  * CVE-2024-11112: Use after free in Media.
    (n/a for linux)
  * CVE-2024-11113: Use after free in Accessibility.
  * CVE-2024-11114: Inappropriate implementation in Views.
    (n/a for linux)
  * CVE-2024-11115: Insufficient policy enforcement in Navigation.
    (n/a for linux)
  * CVE-2024-11116: Inappropriate implementation in Paint.
  * CVE-2024-11117: Inappropriate implementation in FileSystem.
  * chromium-125-lp155-typename.patch (not required with llvm)
- modified patches:
  * chromium-127-bindgen.patch (drop all allowlist changes)
  * chromium-127-constexpr.patch (update from debian patch)
  * chromium-131-clang-stack-protector.patch
    (partial revert of upstream commit
     c3dadb02f611a360fb40fd8844ed3c1ef1e7834e)

OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=18
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=19 2c02aa3c01
* gcc-enable-lto.patch f0e2f4c8d6 
* chromium-93-ffmpeg-4.4.patch
- add to keeplibs:
  third_party/libtess2

OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=20
- Chromium 133.0.6847.2 8428639d74 
(dev release 2024-11-21) 

- Chromium 132.0.6834.32
  (beta released 2024-12-04) 
- added patches:
  * chromium-8d882c289f17e3a67d6d67d5ff7e9d16ebb4f19a.patch
    (apply git upstream reverse for 15.x with llvm17)
  * chromium-93-ffmpeg-4.4-rest.patch
    (split off to only apply after the reverse) 
  * chromium-132-old_libdrm.patch
    (applied only on 15.5 with libdrm < 2.4.116)
  * chromium-132-pdfium-explicit-template.patch
    (error: alias template requires template arguments)
  * chromium-127-constexpr.patch
  third_party/devtools-frontend/src/node_modules/fast-glob

- Chromium 131.0.6778.108
  (stable released 2024-12-04) (boo#1234118)
  * CVE-2024-12053: Type Confusion in V8
- update patches:
  chromium-127-constexpr.patch

- Chromium 131.0.6778.85
  (stable released 2024-11-19) (boo#1233534)
  * CVE-2024-11395: Type Confusion in V8

OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=21
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=22 929930e266
- dropped patches: 2f62cf7ab0 
chromium-125-disable-FFmpegAllowLists.patch
  chromium-129-revert-AVFMT_FLAG_NOH264PARSE.patch
  (underlying code is gone upstream, see commit
   574c1e6678da435efb2ea9dba5dd890c2704b8af)

OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=23
- Chromium 133.0.6888.2 dea966fa85 
(dev release 2024-12-12)
- Chromium 132.0.6834.57
  (beta released 2024-12-19) 

- Chromium 131.0.6778.204 (boo#1234704)
  * CVE-2024-12692: Type Confusion in V8
  * CVE-2024-12693: Out of bounds memory access in V8
  * CVE-2024-12694: Use after free in Compositing
  * CVE-2024-12695: Out of bounds write in V8
  * Various fixes from internal audits, fuzzing and other initiatives
 

- Chromium 131.0.6778.139 (boo#1234361)
  * CVE-2024-12381: Type Confusion in V8
  * CVE-2024-12382: Use after free in Translate
  * Various fixes from internal audits, fuzzing and other initiatives

OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=24
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=25 d025f05d3b
- add to keeplibs: 57fc0ef22a 
third_party/simdutf

OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=26
- Chromium 134.0.6974.3 d4c417b3e5 
(dev release 2025-01-24)

- Chromium 133.0.6943.27
  (beta released 2025-01-23)
- use llvm19 also on 15.6/SLE-15-SP6
  chromium-119-assert.patch
  (code dropped upstream)
- modified patches
  (rest of code is gone upstream, see commit
- update context in
  chromium-102-regex_pattern-array.patch
  chromium-125-ffmpeg-5.x-reordered_opaque.patch
  third_party/wasm_tts_engine (needed by tools/grit)
  v8/third_party/siphash (moved inside of v8)
  v8/third_party/utf8-decoder (moved inside of v8)
  v8/third_party/valgrind (moved inside of v8)
- drop from keeplibs (gone in source):
  third_party/jstemplate does not exist
  third_party/qcms does not exist
- drop buildreq for libevent and libevent from system libs
  as the lib was dropped upstream
- added patches (as revert for llvm17 in sp6):
  chromium-add-atomicops.patch
  (upstream commit d29b01737a841b5627249d50f007dcdc7e26462b)
  (upstream commit 780efe38034cfdc1bdf4c74e82e7ca7c14e8ac5b
   does not seem to be in 133 yet)
  chromium-133-string_view.patch
  (one more place to use string_view, also only llvm17)
- update INSTALL.sh to generate appdata.xml from template

OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=27
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=28 c77b46946f
- modified patches: aaf18f5ae4 
fix_building_widevinecdm_with_chromium.patch
  (do not define WIDEVINE_CDM_VERSION_STRING, gone upstream)

OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=29
- added patches: c537b53584 
chromium-134-revert-allowlist.patch
  (avoid having to update gn on all targets)

OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=30
- add to keeplibs: 11174dff38 
third_party/search_engines_data

OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=31
chromium-134-revert-rust-adler2.patch 0688cd2c68 
(revert rust change from adler to adler2 while we have 1.83)

OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=32
.. 731dfec9e0 
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=33
pthreadpool-revert-stdatomic.patch eb66250d8e 
(revert change to pthreadpool requiring std=c++23)

- Chromium 132.0.6834.159 (boo#1236586)
  * CVE-2025-0762: Use after free in DevTools

OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=34
... 95ea753f49 
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=35
pthreadpool-revert-stdatomic-prep.patch 54802f51e7 
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=36
- Chromium 134.0.6988.2 698d05c087 
(dev release 2025-01-31)
- dropped patches: (obsolete with recent llvm)
  chromium-130-no-hardware_destructive_interference_size.patch

- Chromium 133.0.6943.35
  (beta released 2025-01-29)
- drop chromium-132-old_libdrm.patch
  obsolete as we are not building for 15.5 anymore

OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=37
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=38 d55f541d03
system-libdrm.patch (context update) 0276f792b0 
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=39
- drop from keeplibs: f5b2f5aeb5 
third_party/libavif (gone) (FIXME cleanup)

OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=40
v8/third_party/rapidhash-v8 0d0b95f644 
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=41
3b811ffd3cef9d11cda6812ac4d22dcfdbad7d0f.patch (revert) b12e169df8 
025a94257380eadfad2d705129e5863fca0bf89e.patch (revert)

OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=42
typo fix 6202c71bb4 
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=43
... 0043d826e2 
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=44
more config for node version 91495ad87f 
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=45
- Chromium 135.0.6999.2 c7518aaa34 
(dev release 2025-02-06)

- Chromium 133.0.6943.53 
  (stable released 2024-02-04) (bsc#1236806)
  * CVE-2025-0444: Use after free in Skia
  * CVE-2025-0445: Use after free in V8
  * CVE-2025-0451: Inappropriate implementation in Extensions API

OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=46
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=47 e08a009dec
- dropped patches (llvm17 is gone): 5197c5a467 
chromium-127-clang17-traitors.patch
  chromium-add-atomicops.patch
  chromium-133-string_view.patch

OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=48
fix context in system-libdrm.patch 33300faaf8 
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=49
- Chromium 135.0.7012.4 5cda4b1884 
(dev release 2025-02-13)

OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=50
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=51 635ba9b430
update context in gcc-enable-lto.patch 8087a51b07 
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=52
try to use qt6 instead of qt5 98501af53b 
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=53
third_party/protobuf/third_party/utf8_range 1d6a5df2c3 
- replace "with qt" by "with qt5"

OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=54
- reenable qt6 for TW 5b748b50aa 
- Fix patch to actually fix build with pipewire 1.3.82:
  * fix-build-with-pipewire-1.3.82.patch 

- Add patch to fix build with pipewire 1.3.82:
  * fix-build-with-pipewire-1.3.82.patch

OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=55
really add pipewire patch 171d2847ec 
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=56
chromium-134-static_cast_to_value_list.patch 0c93264f7c 
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=57
fix typo b881923271 
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=58
... b008d77133 
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=59
.. 310811b4a1 
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=60
- Chromium 135.0.7023.0 05f587e261 
(dev release 2025-02-20)
  chromium-134-revert-two-to_value_list.patch
- reenable qt6 for TW

- Chromium 133.0.6943.126 (boo#1237343)
  * CVE-2025-0999: Heap buffer overflow in V8
  * CVE-2025-1426: Heap buffer overflow in GPU
  * CVE-2025-1006: Use after free in Network

- add patch chromium-133-bring_back_and_disable_allowlist.patch
  trying to fix issues with YT playback (bsc#1237071)

- Chromium 133.0.6943.98
  (stable released 2025-02-12) (bsc#1237121)
  * CVE-2025-0995: Use after free in V8
  * CVE-2025-0996: Inappropriate implementation in Browser UI
  * CVE-2025-0997: Use after free in Navigation
  * CVE-2025-0998: Out of bounds memory access in V8

OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=61
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=62 439eaec96a
... 3bdbc44b2d 
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=63
... 26fe0f6f34 
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=64
... a3dc36cac8 
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=65
- fix build with qt6 and enable qt6 also for 15.x 781d19fa09 
- added patches:
  chromium-131-fix-qt-ui.pach (from fedora) 
  chromium-134-revert-another-to_value_list.patch

OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=66
chromium-134-specialize-some-to_value_list.patch ff33e0c904 
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=67
... 3f65021cc8 
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=68
one more hunk for chromium-134-specialize-some-to_value_list.patch d0995ad44d 
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=69
- Chromium 135.0.7039.0 b364c0c9bc 
(dev release 2025-03-03)

- replace patch
  chromium-134-specialize-some-to_value_list.patch
  by patch
  chromium-134-type-mismatch-error.patch (from fedora)

- fix build with qt6 and enable qt6 also for 15.x
- added patches:
  chromium-131-fix-qt-ui.pach (from fedora)

OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=70
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=71 974b8e275d
- modified patches: 02cf3c017b 
system-libdrm.patch (context update)
  gcc-enable-lto.patch (context update)
  chromium-127-constexpr.patch (context update)
- add to keeplibs:
  third_party/protobuf/third_party/utf8_range
- config variable changed from use_qt to use_qt5

- replace patch
  chromium-134-specialize-some-to_value_list.patch
  by patch
  chromium-134-type-mismatch-error.patch (from fedora)

- Chromium 134.0.6998.35
  (stable release 2025-03-04) (boo#1238575)
  * CVE-2025-1914: Out of bounds read in V8
  * CVE-2025-1915: Improper Limitation of a Pathname to a Restricted Directory in DevTools
  * CVE-2025-1916: Use after free in Profiles
  * CVE-2025-1917: Inappropriate Implementation in Browser UI
  * CVE-2025-1918: Out of bounds read in PDFium
  * CVE-2025-1919: Out of bounds read in Media
  * CVE-2025-1921: Inappropriate Implementation in Media Stream
  * CVE-2025-1922: Inappropriate Implementation in Selection
  * CVE-2025-1923: Inappropriate Implementation in Permission Prompts
- Chromium 133.0.6943.141 (boo#1237699)
  This update includes 1 security fix.
  * Various fixes from internal audits, fuzzing and other initiatives

OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=72
chromium-norar.patch (context update) f6e3aa9396 
- dropped patches:
  chromium-134-revert-allowlist.patch
  (need updated gn anyway)
- drop from keeplibs:
  third_party/iccjpeg (gone upstream)
- bump buildrequires for gn to 0.20250306

OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=73
- Chromium 136.0.7052.2 8725a0a1cc 
(dev release 2025-03-07)

OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=74
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=75 9936c6a097
- also use nodejs 22 for sle15 cc5fe990c0 
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=76
- Chromium 136.0.7064.0 7d358ab296 
(dev release 2025-03-13)
- also use nodejs 22 for sle15 

- Chromium 134.0.6998.88
  (stable released 2025-03-11) (boo#1239216)
  * CVE-2025-1920: Type Confusion in V8
  * CVE-2025-2135: Type Confusion in V8
  * CVE-TBD: Out of bounds write in GPU
  * CVE-2025-2136: Use after free in Inspector
  * CVE-2025-2137: Out of bounds read in V8

OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=77
- added patches: 3a083d743b 
gtk-414.patch (reverse apply since our gtk4 is too old)

OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=78
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=79 a58974d6e8
- drop chromium-94-ffmpeg-roll.patch 0c65aa4d60 
(build fail after ffmpeg updated from 4.4 to 4.4.5 in code15) 
  fix-build-with-pipewire-1.3.82.patch (upstream)

OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=80
drop patch line 1001 (forgot in last ci) 38af3357a9 
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=81
force node version check 08575640dd 
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=82
next try 86c329fac2 
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=83
... 1fcc787b1b 
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=84
chromium-glic-syntax_error.patch 6648a6ee11 
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=85
- Chromium 134.0.6998.117 6c73bd3527 
(stable released 2025-03-20) (boo#1239819)
  * CVE-2025-2476: Use after free in Lens 

- use rust1.85 

- drop chromium-94-ffmpeg-roll.patch
  (build fail after ffmpeg updated from 4.4 to 4.4.5 in code15)

OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=86
... b1fdb3fdf6 
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=87
- Chromium 136.0.7081.2 01b08b82a7 
(dev release 2025-03-24)

- Chromium 134.0.6998.165
  * stability fixes (boo#1240022)

- disable not needed chromium-120-make_unique-struct.patch
  (context boo#1239780)

OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=88
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=89 1f132555ed
update chromium-125-compiler.patch d4488b7b6b 
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=90
drop chromium-glic-syntax_error.patch c719faf722 
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=91
- Chromium 136.0.7091.2 e696eabff8 
(dev release 2025-03-27)

OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=92
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=93 1fad3783f9
bump esbuild from 0.24.0 to 0.25.1 f9cae3b9bb 
* Fix incorrect paths in inline source maps (#4070, #4075, #4105)
  * Fix invalid generated source maps (#4080, #4082, #4104, #4107)
  * Fix a regression with non-file source map paths (#4078)
  * Update Go from 1.23.5 to 1.23.7 (#4076, #4077)

OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=94
update gtk-414.patch bc70d75bd5 
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=95
- Chromium 136.0.7091.2 d8aadbb750 
(dev released 2025-03-27) 
- Chromium 136.0.7103.17
  (beta release 2025-04-03)
- dropped patches:
  fix-build-with-pipewire-1.3.82.patch (upstream)
- modified patches:
  chromium-125-compiler.patch (context)
  gtk-414.patch (one more place with GSK_SUBSURFACE_NODE)
- add patch chromium-135-add_map_droppable.patch
  add MAP_DROPPABLE introduced by recent QT
  (boo#1238826, boo#1239780)

- Chromium 135.0.7049.52
  (stable release 2025-04-01) (boo#1240555)
  * CVE-2025-3066: Use after free in Navigations
  * CVE-2025-3067: Inappropriate implementation in Custom Tabs
  * CVE-2025-3068: Inappropriate implementation in Intents
  * CVE-2025-3069: Inappropriate implementation in Extensions
  * CVE-2025-3070: Insufficient validation of untrusted input in Extensions
  * CVE-2025-3071: Inappropriate implementation in Navigations
  * CVE-2025-3072: Inappropriate implementation in Custom Tabs
  * CVE-2025-3073: Inappropriate implementation in Autofill
  * CVE-2025-3074: Inappropriate implementation in Downloads

- drop chromium-134-revert-allowlist.patch
  (obsolete, gn has been updated)
- also use nodejs 22 for sle15
- drop chromium-120-make_unique-struct.patch (not needed)

OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=96
fix changes 70dbf70bfa 
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=97
- Chromium 137.0.7106.2 54184a299e 
(dev released 2025-04-04)

OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=98
OBS-URL: https://build.opensuse.org/package/show/network:chromium/chromium-dev?expand=0&rev=99 ab5c49845e
update to 137.0.7117.2 d5a6d73551
update context in system-libdrm.patch 88d0aa3431
add rust_add_default.patch 4b95d53b8d
update to chromium-137.0.7117.2 9d314fd5d3
update to 138.0.7166.2 fa734e218e
update from chromium-beta ac4cb6a40a
update chromium-125-compiler.patch 25235cc3ea
drop rust_add_default.patch fc429f74e8
drop removed third_party/distributed_point_functions ef819e8794
update ffmpeg-new-channel-layout.patch again 5428bccde9
add chromium-137-pdfium_fix_pattribute.patch efbd332369 
add third_party/dragonbox to keeplibs
try to fix build for older ffmpeg 1c2fc52f85
drop useless part of chromium-138-revert_ffmpeg_FF_AV.patch 676522d3e1 
ffmpeg_aac_bitstream_converter_unittest.cc is not built
add ppc patchkit in dev as well 3b02d562ee
disable patch 379 97d84b44ea
updat to 138.0.7180.2 089e9a305f
update chromium-125-compiler.patch fb1db852f8
update chromium-134-revert-rust-adler2.patch be40867ff4
update ppc-fedora-0001-Add-PPC64-support-for-boringssl.patch 2a3be36dd2
update chromium-warning-suppression-mappings.patch 79fdb240b5
update ppc-fedora-memory-allocator-dcheck-assert-fix.patch 02c0cbaea4
update changes 296deeb42f
update to 138.0.7191.0 3e38c8a3e7
update chromium-125-compiler.patch, drop chromium-137-pdfium_fix_pattribute.patch b1cc9dd3ae
update context for chromium-134-revert-rust-adler2.patch 4642a40bb0
drop third_party/tflite/src/third_party/eigen3 from keeplibs 1b2abf2801
update chromium-warning-suppression-mappings.patch b28d6ef0bf
update to 139.0.7207.2 aee9dc10f2
add NR_mseal 742ff9bfe5
try to fix Cr122-ffmpeg-new-channel-layout.patch 6ded28e555
update patches f551f07927
update to 139.0.7219.3 d814abef0e
update to 139.0.7232.3 221d2f56e9
drop chrome/third_party/mozilla_security_manager from keeplibs 0834a2db9a
drop chromium-warning-suppression-mappings.patch 53dac2e157
add jobs commit 01a50f7393
try another fix for clang_warning_suppression 9a121476a6
update to 140.0.7259.2 51c9423f65
update gcc-enable-lto.patch b4a29328f4
update chromium-125-compiler.patch b3f8ceba7b
merge changed from beta 8d3c4d748c
bump rust dep to 1.87 b77cebef00
drop eu-strip 03c2a2ff48
bump gn BR 86ddcede7e
no system_harfbuzz until unbundle is fixed 5037b34613
sync with beta 8846bc8cbd
try rust 1.86 62e4c5a1b9
add chromium-140-tab_strip_collection-missing-include.patch 6f94dc21c9
update ppc-fedora-fix-unknown-warning-option-messages.diff 08eebc09be
sync beta changes up to 139.0.7258.42 7b4d623013
update to 140.0.7299.0 92ec70de8e
update gcc-enable-lto.patch 350bad913a
drop chromium-140-tab_strip_collection-missing-include.patch again d3f54d469d
update ppc-fedora-0001-sandbox-linux-Update-syscall-helpers-lists-for-ppc64.patch 25afd093c5
update ppc-fedora-add-ppc64-architecture-to-extensions.diff f157fd81a6
remove wasm_tts_engine from keeplibs dff44b3193
update ppc-fedora-0001-sandbox-linux-Update-syscall-helpers-lists-for-ppc64.patch 322f22ef71
bump BR for rust-bindgen 3685cecc90
try rust1.87 instead c670c3c520
try rust1.88 2046524a14
update to 140.0.7312.0 and switch to small tarball 980b1c06b9
update patches to apply 06eba2dd9f
disable system harfbuzz for >= 16 again, missed that was on purpose a8b26b506e
update to 140.0.7327.6 5d6dbecf26
add chromium-140-revert-newline-config.patch ccc57b3b14
update more patches 2928f3d41f
update chromium-140-revert-newline-config.patch d19d1a5437
merge changes from stable and beta a178fd54ef
update to 141.0.7340.0 285a306de6
add missing patch e8074cc29d
drop chromium-140-revert-newline-config.patch 61fd2719f4
merge changes from chromium-beta eb63f13d34
drop ppc-fedora-fix-rustc.patch (obsolete) e78ce84f72
bump to 141.0.7354.0 1dff1cf6f4
fixup chromium-125-compiler.patch 8cd9fd263b
fix version in changes file 439f881815
bump to 141.0.7367.0 d78c2b6c43
bump to 141.0.7378.3 cbdee2a757
catch up changelog 0d531519fc
update patches c8be6bd8a1
thirdparty/libc++ fc36f05e41
bump to 141.0.7390.7 2e368bba05
merge histories with beta, reset to 142.0.7444.3 for a clean start 767634d4bc
bump to 143, no patch changes daf9d9bd64
catch up with changes from chromium-beta to 142.0.7444.52 e47af409f2
bump to 143.0.7489.0 a5a1d59e23 
* chromium-127-constexpr.patch: adjust path
* chromium-142-iwyu-field-form-data.patch drop
* gcc-enable-lto.patch unfuzz
keep third_party/libpng b06a9dfb41
Revert "keep third_party/libpng" 052fb7e78c 
This reverts commit b06a9dfb41.
sync with beta again a3c7ed7b46
update to 143.0.7489.0 250fd0cd68
update patches to apply c5197e66e0
update chromium-143-libpng-unbundle.patch again d90710deb3
Merge 142.0.7444.59 from chromium, leaving package built as beta dc7475ac25
catch up 142.0.7444.59 changes from chromium,chromium-beta d30dfcf407
make beta fce8e262c6
pull in 142.0.7444.59 changelog 815b4f2d1b
bump to 143.0.7499.4 beta ef93c1fa21
re-add chromium-143-libpng-unbundle.patch 3c7bc55638 
which got lost in one of the merges
add unsafe in chromium-140-keep-__rust_no_alloc_shim_is_unstable.patch e120498182
add chromium-143-cookie_string_view.patch f502137415
merge 142.0.7444.134 changelog d805be4c0c
update to 143.0.7499.17 2af1b5e280
add chromium-143-revert_rust_is_multiple_of.patch 4342166b06
bump br for rust-bindgen ca516759bb
update ppc patches a88ba42c69
add missing hunk to chromium-143-revert_rust_is_multiple_of.patch 639147333b
Merge changelog changes up to 142.0.7444.162 from chromium 657bea7614
update to 143.0.7499.25 ceb9d4ef0e
merge changes 09788287bd
update to 143.0.7499.40 9e6b349a04
Remove unused BuildRequires: update-desktop-files. 23331c3286
update ppc-fedora-0002-regenerate-xnn-buildgn.patch for 143 d25c0fafb8
prep for stable release b3d2e825d6
Update to Chromium 143 early stable 143.0.7499.40 84684bfc3e 
Fetches everything from chromium-beta/main. Edits from merge:
* keep INSTALL.sh
* chromium.spec: is_beta
Merge remote-tracking branch 'sbrabec/main' 21104b83dc
CVEs for 143.0.7499.40 boo#1254429 f6c3bfa54e
autogits_workflow_pr_bot requested review from legaldb 2025-12-02 20:01:01 +01:00
autogits_workflow_pr_bot requested review from maintenance-release-review 2025-12-02 20:01:01 +01:00
autogits_workflow_pr_bot requested review from opensuse-review 2025-12-02 20:01:02 +01:00
maintenance-release-review commented 2025-12-02 20:05:20 +01:00
First-time contributor
Copy Link

Review by maintenance-release-review represents a group of reviewers: abergmann, amattiazzo, bfilho, cmatos, crazybyte, emanuelecappello, gsonnu, maintenance-robot, mauriziogalli, mbozicevic, mimi_vx, mschnitzer, msmeissn, pluskalm, rfrohl, slemke .

Do not use standard review interface to review on behalf of the group.
To accept the review on behalf of the group, create the following comment: @maintenance-release-review: approve.
To request changes on behalf of the group, create the following comment: @maintenance-release-review: decline followed with lines justifying the decision.
Future edits of the comments are ignored, a new comment is required to change the review state.

Review by maintenance-release-review represents a group of reviewers: abergmann, amattiazzo, bfilho, cmatos, crazybyte, emanuelecappello, gsonnu, maintenance-robot, mauriziogalli, mbozicevic, mimi_vx, mschnitzer, msmeissn, pluskalm, rfrohl, slemke . Do **not** use standard review interface to review on behalf of the group. To accept the review on behalf of the group, create the following comment: `@maintenance-release-review: approve`. To request changes on behalf of the group, create the following comment: `@maintenance-release-review: decline` followed with lines justifying the decision. Future edits of the comments are ignored, a new comment is required to change the review state.
opensuse-review commented 2025-12-02 20:09:06 +01:00
Member
Copy Link

Review by opensuse-review represents a group of reviewers: alarrosa, anag, atartamo, bigironman, darix, dimstar, dmach, eroca, jdsn, jengelh, mcalabkova, mstrigl, nkrapp, oertel, RBrownSUSE, simotek, smithfarm .

Do not use standard review interface to review on behalf of the group.
To accept the review on behalf of the group, create the following comment: @opensuse-review: approve.
To request changes on behalf of the group, create the following comment: @opensuse-review: decline followed with lines justifying the decision.
Future edits of the comments are ignored, a new comment is required to change the review state.

Review by opensuse-review represents a group of reviewers: alarrosa, anag, atartamo, bigironman, darix, dimstar, dmach, eroca, jdsn, jengelh, mcalabkova, mstrigl, nkrapp, oertel, RBrownSUSE, simotek, smithfarm . Do **not** use standard review interface to review on behalf of the group. To accept the review on behalf of the group, create the following comment: `@opensuse-review: approve`. To request changes on behalf of the group, create the following comment: `@opensuse-review: decline` followed with lines justifying the decision. Future edits of the comments are ignored, a new comment is required to change the review state.
legaldb commented 2025-12-02 20:12:21 +01:00
Member
Copy Link

Legal review in progress.

Legal review [in progress](https://legaldb.suse.de/reviews/details/492100).
rfrohl commented 2025-12-03 10:12:39 +01:00
First-time contributor
Copy Link

@maintenance-release-review: approve
merge ok

@maintenance-release-review: approve merge ok
maintenance-release-review approved these changes 2025-12-03 10:22:35 +01:00
maintenance-release-review left a comment
First-time contributor
Copy Link

rfrohl approved a review on behalf of maintenance-release-review

rfrohl approved a review on behalf of maintenance-release-review
mstrigl commented 2025-12-03 10:38:59 +01:00
First-time contributor
Copy Link

@opensuse-review : approve

LGTM

@opensuse-review : approve LGTM
mstrigl commented 2025-12-03 10:39:00 +01:00
First-time contributor
Copy Link

merge ok

merge ok
opensuse-review approved these changes 2025-12-03 10:48:30 +01:00
opensuse-review left a comment
Member
Copy Link

mstrigl approved a review on behalf of opensuse-review

mstrigl approved a review on behalf of opensuse-review
legaldb commented 2025-12-03 11:04:21 +01:00
Member
Copy Link

Legal reviewed by dec16180 as acceptable_by_lawyer:

Reviewed ok
Legal reviewed by *dec16180* as [acceptable_by_lawyer](https://legaldb.suse.de/reviews/details/492100): ``` Reviewed ok ```
report.md
70 KiB
legaldb approved these changes 2025-12-03 11:04:22 +01:00
AndreasStieger manually merged commit f6c3bfa54e into leap-16.0 2025-12-04 13:50:09 +01:00
Sign in to join this conversation.
Reviewers
No Reviewers
maintenance-release-review
opensuse-review
legaldb
Labels
Clear labels
legaldb
Critical Priority
Critical legaldb priority
Archived
legaldb
High Priority
2
High legaldb priority
legaldb
Normal Priority
1
Normal legaldb priority
No Label
Milestone
No items
No Milestone
Assignees
Clear assignees
adamm_super adrianSuSE autobuild-owner autobuild-review autogits_workflow_pr_bot bigironman dirkmueller eroca factory_bot gitea_test legaldb lkocman-factory maxlin_factory opensuse-review packagehub-review smithfarm
No Assignees
6 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: pool/chromium#18
Delete Branch "AndreasStieger/chromium:leap-16.0"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?