Accepting request 1045739 from KDE:Qt:5.15

OBS-URL: https://build.opensuse.org/request/show/1045739 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libqt5-qtwebengine?expand=0&rev=86
2022-12-30 10:08:20 +00:00 · 2022-12-30 10:08:20 +00:00 · 819c36435e
commit 819c36435e
parent 534f99cced 69e038a316
7 changed files with 51 additions and 11 deletions
--- a/4
+++ b/4
@ -1,11 +1,11 @@
 <services>
  <service name="tar_scm" mode="disabled">
   <param name="changesgenerate">enable</param>
-   <param name="version">5.15.11</param>
+   <param name="version">5.15.12</param>
   <param name="url">git://code.qt.io/qt/qtwebengine.git</param>
   <param name="scm">git</param>
   <param name="filename">qtwebengine-everywhere-src</param>
-   <param name="revision">v5.15.11-lts</param>
+   <param name="revision">v5.15.12-lts</param>
  </service>
  <service name="tar_scm" mode="disabled">
   <param name="changesgenerate">disable</param>
--- a/2
+++ b/2
@ -1,4 +1,4 @@
 <servicedata>
 <service name="tar_scm">
                <param name="url">git://code.qt.io/qt/qtwebengine.git</param>
-              <param name="changesrevision">3d23b379a7c0a87922f9f5d9600fde8c4e58f1fd</param></service></servicedata>
+              <param name="changesrevision">4ea03a0affbfd6ff36a7defd391b7ca139d18c8e</param></service></servicedata>
--- a/catapult-git.tar.xz
+++ b/catapult-git.tar.xz
@ -1,3 +1,3 @@
 version https://git-lfs.github.com/spec/v1
-oid sha256:c317ef665829551a0ab34d6ed7b6cf1f67525abccfa4b9f4d367bb12f34de17f
-size 99586728
+oid sha256:c43699e531ef40b19aa6fcff66edb44af7bba1c221adcfd0fd33eb3ae763afd8
+size 99549560
--- a/libqt5-qtwebengine.changes
+++ b/libqt5-qtwebengine.changes
@ -1,3 +1,43 @@
+-------------------------------------------------------------------
+Thu Dec 29 15:26:07 UTC 2022 - christophe@krop.fr
+
+- Update to version 5.15.12:
+  * Bump version to 5.15.12
+  * Update Chromium:
+  * Bump V8_PATCH_LEVEL
+  * Fixup for patch for CVE-2022-3200 on OpenSuse 15.1
+  * Fixup the patch for CVE-2022-3200 on 87-based / 5.15
+  * [Backport] CVE-2022-3038: Use after free in Network Service
+  * [Backport] CVE-2022-3040: Use after free in Layout
+  * [Backport] CVE-2022-3041: Use after free in WebSQL
+  * [Backport] CVE-2022-3046: Use after free in Browser Tag
+  * [Backport] CVE-2022-3075: Insufficient data validation in Mojo
+  * [Backport] CVE-2022-3196: Use after free in PDF
+  * [Backport] CVE-2022-3197: Use after free in PDF
+  * [Backport] CVE-2022-3198: Use after free in PDF
+  * [Backport] CVE-2022-3199: Use after free in Frames.
+  * [Backport] CVE-2022-3200: Heap buffer overflow in Internals
+  * [Backport] CVE-2022-3201: Insufficient validation of untrusted
+    input in Developer Tools (1/2)
+  * [Backport] CVE-2022-3201: Insufficient validation of untrusted
+    input in Developer Tools (2/2)
+  * [Backport] CVE-2022-3304: Use after free in CSS
+  * [Backport] CVE-2022-3370: Use after free in Custom Elements
+  * [Backport] CVE-2022-3373: Out of bounds write in V8
+  * [Backport] CVE-2022-3445: Use after free in Skia.
+  * [Backport] CVE-2022-3446 and CVE-2022-35737
+  * [Backport] CVE-2022-3885: Use after free in V8
+  * [Backport] CVE-2022-3887: Use after free in Web Workers
+  * [Backport] CVE-2022-3889: Type Confusion in V8
+  * [Backport] CVE-2022-3890: Heap buffer overflow in Crashpad
+  * [Backport] CVE-2022-4174: Type Confusion in V8
+  * [Backport] CVE-2022-4180: Use after free in Mojo
+  * [Backport] CVE-2022-4181: Use after free in Forms
+  * [Backport] CVE-2022-4262: Type Confusion in V8
+  * [Backport] Security bug 1356308
+  * [Backport] Security bug 1378916
+  * [Backport] Security bugs 1346938 and 1338114
+
 -------------------------------------------------------------------
 Wed Oct 05 17:28:40 UTC 2022 - christophe@krop.fr

--- a/libqt5-qtwebengine.spec
+++ b/libqt5-qtwebengine.spec
@ -35,15 +35,15 @@
 %global _qtwebengine_dictionaries_dir %{_libqt5_datadir}/qtwebengine_dictionaries

 Name:           libqt5-qtwebengine
-Version:        5.15.11
+Version:        5.15.12
 Release:        0
 Summary:        Qt 5 WebEngine Library
 License:        LGPL-3.0-only OR GPL-2.0-only OR GPL-3.0-only
 Group:          Development/Libraries/X11
 URL:            https://www.qt.io
 %define base_name libqt5
-%define real_version 5.15.11
-%define so_version 5.15.11
+%define real_version 5.15.12
+%define so_version 5.15.12
 %define tar_version qtwebengine-everywhere-src-%{version}
 Source:         %{tar_version}.tar.xz
 # Use a git snapshot for catapult to build with python3 (git rev: b7e9d5899)
--- a/qtwebengine-everywhere-src-5.15.11.tar.xz
+++ b/qtwebengine-everywhere-src-5.15.11.tar.xz
@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:d54a8eaf41ea3a47183b6a291c12b910abdd5c819880dddedd969b803ebf7ed0
-size 319327024
--- a/qtwebengine-everywhere-src-5.15.12.tar.xz
+++ b/qtwebengine-everywhere-src-5.15.12.tar.xz
@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:5813bdab2577bbbc5067d6260ca0f7ec74a7e44fdc3afd2c6d6a1f6b2d5aa493
+size 320695640