Accepting request 1228220 from KDE:Qt:5.15

OBS-URL: https://build.opensuse.org/request/show/1228220 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libqt5-qtwebengine?expand=0&rev=103
2024-12-05 16:05:12 +00:00 · 2024-12-05 16:05:12 +00:00 · 277e44cefd
commit 277e44cefd
parent 39b5640f66 6405f10245
6 changed files with 56 additions and 9 deletions
--- a/5
+++ b/5
@ -1,11 +1,12 @@
 <services>
  <service name="tar_scm" mode="disabled">
   <param name="changesgenerate">enable</param>
-   <param name="version">5.15.17</param>
+   <!-- submodule from fdfef5b3 to 85337c28b -->
+   <param name="version">5.15.18</param>
   <param name="url">git://code.qt.io/qt/qtwebengine.git</param>
   <param name="scm">git</param>
   <param name="filename">qtwebengine-everywhere-src</param>
-   <param name="revision">v5.15.17-lts</param>
+   <param name="revision">v5.15.18-lts</param>
  </service>
  <service name="recompress" mode="disabled">
   <param name="file">*.tar</param>
--- a/2
+++ b/2
@ -1,4 +1,4 @@
 <servicedata>
 <service name="tar_scm">
                <param name="url">git://code.qt.io/qt/qtwebengine.git</param>
-              <param name="changesrevision">17fd3176988586168bee8654008a097a5f23ec1d</param></service></servicedata>
+              <param name="changesrevision">87ceb6a2ef5ee25d56f765dc533728c4ca4787e0</param></service></servicedata>
--- a/libqt5-qtwebengine.changes
+++ b/libqt5-qtwebengine.changes
@ -1,3 +1,49 @@
+-------------------------------------------------------------------
+Tue Dec 03 13:23:13 UTC 2024 - christophe@krop.fr
+
+- Update to version 5.15.18:
+  * Bump version to 5.15.18
+  * Fix build errors with -no-opengl configuration
+  * Fixup "Add option to chose python version for building 5.15 WebEngine"
+  * [Backport] CVE-2024-9602: Type Confusion in V8
+  * [Backport] CVE-2024-9603: Type Confusion in V8
+  * FIXUP: [Backport] CVE-2024-7965: Inappropriate implementation in V8
+  * [Backport] CVE-2024-45492 / Security bug 364778067
+  * [Backport] CVE-2024-9123: Integer overflow in Skia
+  * [Backport] CVE-2024-5158: Type Confusion in V8
+  * [Backport] CVE-2024-7971: Type confusion in V8
+  * [Backport] CVE-2024-4761: Out of bounds write in V8
+  * [Backport] CVE-2024-8636: Heap buffer overflow in Skia
+  * [Backport] CVE-2024-8198: Heap buffer overflow in Skia
+  * [Backport] Security bug 346799730
+  * [Backport] CVE-2024-7967: Heap buffer overflow in Fonts
+  * [Backport] CVE-2024-7965: Inappropriate implementation in V8
+  * [Backport] CVE-2024-7532: Out of bounds memory access in ANGLE
+  * Fix build with GCC 15
+  * [Backport] CVE-2024-7536: Use after free in WebAudio
+  * [Backport] Dependency for CVE-2024-7536
+  * [Backport] Security bug 338574384
+  * [Backport] CVE-2024-6996: Race in Frames
+  * [Backport] CVE-2024-6989: Use after free in Loader
+  * [Backport] CVE-2024-6291: Use after free in Swiftshader
+  * [Backport] CVE-2024-5846: Use after free in PDFium
+  * [Backport] Security bug 340606786
+  * [Backport] CVE-2024-5496: Use after free in Media Session
+  * [Backport] Dependency for CVE-2024-3914
+  * [Backport] Security bug 329699609
+  * [Backport] CVE-2024-3914: Use after free in V8
+  * [Backport] CVE-2024-4558: Use after free in ANGLE
+  * [Backport] Security bug 327698060
+  * [Backport] CVE-2024-4058: Type Confusion in ANGLE
+  * [Backport] Security bug 40940917
+  * [Backport] CVE-2024-3837: Use after free in QUIC
+  * [Backport] CVE-2024-3839: Out of bounds read in Fonts
+  * Fix dependecy when compiling content/browser
+  * [Backport] CVE-2024-3516: Heap buffer overflow in ANGLE
+  * [Backport] CVE-2024-3157: Out of bounds write in Compositing
+  * [Backport] Security bug 329674887
+  * Prevent duplicate definition of blink::ResolveColor in jumbo builds
+
 -------------------------------------------------------------------
 Wed Sep  4 14:27:07 UTC 2024 - Guillaume GARDET <guillaume.gardet@opensuse.org>

--- a/libqt5-qtwebengine.spec
+++ b/libqt5-qtwebengine.spec
@ -35,15 +35,15 @@
 %global _qtwebengine_dictionaries_dir %{_libqt5_datadir}/qtwebengine_dictionaries

 Name:           libqt5-qtwebengine
-Version:        5.15.17
+Version:        5.15.18
 Release:        0
 Summary:        Qt 5 WebEngine Library
 License:        LGPL-3.0-only OR GPL-2.0-only OR GPL-3.0-only
 Group:          Development/Libraries/X11
 URL:            https://www.qt.io
 %define base_name libqt5
-%define real_version 5.15.17
-%define so_version 5.15.17
+%define real_version 5.15.18
+%define so_version 5.15.18
 %define tar_version qtwebengine-everywhere-src-%{version}
 Source:         %{tar_version}.tar.xz
 Source99:       libqt5-qtwebengine-rpmlintrc
--- a/qtwebengine-everywhere-src-5.15.17.tar.xz
+++ b/qtwebengine-everywhere-src-5.15.17.tar.xz
--- a/qtwebengine-everywhere-src-5.15.18.tar.xz
+++ b/qtwebengine-everywhere-src-5.15.18.tar.xz
@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:7351dcab3c446ac851c94e3f19928cfc66323fd32b5f39cb99dd10e61eef1a18
+size 322661844