Accepting request 616150 from GNOME:Factory

OBS-URL: https://build.opensuse.org/request/show/616150
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/webkit2gtk3?expand=0&rev=59

webkit2gtk3.changes

@@ -1,3 +1,27 @@
+-------------------------------------------------------------------
+Mon Jun 11 13:22:44 UTC 2018 - bjorn.lie@gmail.com
+
+- Update to version 2.20.3:
+  + Fix installation directory of API documentation.
+  + Disable Gigacage if mmap fails to allocate in Linux.
+  + Add user agent quirk for paypal website.
+  + Properly detect compiler flags, needed libs, and fallbacks for
+    usage of 64-bit atomic operations.
+  + Fix a network process crash when trying to get cookies of
+    about:blank page.
+  + Fix UI process crash when closing the window under Wayland.
+  + Fix several crashes and rendering issues.
+  + Security fixes: CVE-2018-4190, CVE-2018-4199, CVE-2018-4218,
+    CVE-2018-4222, CVE-2018-4232, CVE-2018-4233, CVE-2018-4246,
+    CVE-2018-11646.
+- Drop webkit2gtk3-boo1095611-null-page-url.patch: Fixed upstream.
+
+-------------------------------------------------------------------
+Fri Jun  8 20:49:13 UTC 2018 - mgorse@suse.com
+
+- Add webkit2gtk3-boo1095611-null-page-url.patch: don't crash if
+  the page URL is null (CVE-2018-11646).
+
 -------------------------------------------------------------------
 Tue May  8 15:48:15 UTC 2018 - schwab@suse.de
 
@@ -18,7 +42,8 @@ Mon May  7 16:00:47 UTC 2018 - bjorn.lie@gmail.com
   + Fix several GObject introspection annotations.
   + Update user agent quiks to fix Outlook.com and Chase.com.
   + Fix several crashes and rendering issues.
-  + Security fixes: CVE-2018-4200 (boo#1092280).
+  + Security fixes: CVE-2018-4200 (boo#1092280), CVE-2018-11712
+    (boo#1096061).
 
 -------------------------------------------------------------------
 Tue May  1 17:00:12 UTC 2018 - bjorn.lie@gmail.com
@@ -52,6 +77,7 @@ Tue Apr 10 10:23:30 UTC 2018 - bjorn.lie@gmail.com
   + Fix the build when ENABLE_VIDEO, ENABLE_WEB_AUDIO and
     ENABLE_XSLT are disabled.
   + Fix several crashes and rendering issues.
+  + Security fixes: CVE-2018-4204.
   + Updated translations.
 
 -------------------------------------------------------------------
@@ -72,7 +98,7 @@ Mon Mar 12 16:18:01 UTC 2018 - dimstar@opensuse.org
     CVE-2018-4120, CVE-2018-4122, CVE-2018-4125,
     CVE-2018-4127, CVE-2018-4128, CVE-2018-4129,
     CVE-2018-4133, CVE-2018-4146, CVE-2018-4161,
-    CVE-2018-4162, CVE-2018-4163, CVE-2018-4165.
+    CVE-2018-4162, CVE-2018-4163, CVE-2018-4165, CVE-2018-11713.
 
 -------------------------------------------------------------------
 Tue Mar  6 21:49:48 UTC 2018 - mgorse@suse.com
@@ -539,7 +565,8 @@ Thu May 25 09:33:35 UTC 2017 - zaitor@opensuse.org
   + Remove LATEST_RECORD_VERSION from GnuTLS priority string.
   + Fix several crashes and rendering issues.
   + bsc#1050469 - Security fixes: CVE-2017-2496, CVE-2017-2539,
-    CVE-2017-2510, CVE-2017-7011, CVE-2017-7040, CVE-2017-7059.
+    CVE-2017-2510, CVE-2017-7011, CVE-2017-7040, CVE-2017-7059,
+  CVE-2017-1000121, CVE-2017-1000122.
 
 -------------------------------------------------------------------
 Tue May 23 07:19:42 UTC 2017 - dimstar@opensuse.org

webkit2gtk3.spec

@@ -38,7 +38,7 @@
 %endif
 %bcond_without python3
 Name:           webkit2gtk3
-Version:        2.20.2
+Version:        2.20.3
 Release:        0
 Summary:        Library for rendering web content, GTK+ Port
 License:        LGPL-2.0-or-later AND BSD-3-Clause
@@ -54,6 +54,7 @@ Patch0:         webkitgtk-typelib-sharelib-link.patch
 Patch1:         webkit2gtk3-python3.patch
 # PATCh-FIX-UPSTREAM webkit2gtk3-boo1088932-a11y-state-set.patch boo#1088932 webkit#184366 mgorse@suse.com -- fix crash when atk_object_ref_state_set is called on an AtkObject that's being destroyed.
 Patch2:         webkit2gtk3-boo1088932-a11y-state-set.patch
+
 BuildRequires:  Mesa-libEGL-devel
 BuildRequires:  Mesa-libGL-devel
 BuildRequires:  Mesa-libGLESv1_CM-devel

webkitgtk-2.20.2.tar.xz

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:dffe93a241f03f1c73b369f4e323e4d8f12e39d33d5515948cbf454ca4b526e2
-size 16622048

webkitgtk-2.20.2.tar.xz.asc

@@ -1,6 +0,0 @@
------BEGIN PGP SIGNATURE-----
-
-iF0EABEDAB0WIQTX/PYc+aLeqzHYG9Pz0yLQ7EWCwwUCWvAxQgAKCRDz0yLQ7EWC
-w3JIAJ4iZ9PDs2leXLd1hezOr/TBB9kKLQCeJnvTy0M0r4/AxPYnD3UhHX+oqm0=
-=681+
------END PGP SIGNATURE-----

webkitgtk-2.20.3.tar.xz

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:579b307d78fa16a73f112790178022166d7ad17d4147492ced9b9fba48f20dd8
+size 16623456

webkitgtk-2.20.3.tar.xz.asc

@@ -0,0 +1,6 @@
+-----BEGIN PGP SIGNATURE-----
+
+iF0EABEDAB0WIQTX/PYc+aLeqzHYG9Pz0yLQ7EWCwwUCWx5nxQAKCRDz0yLQ7EWC
+w2jpAJ4/uSFTvyV6VLmwCxtYYrypMgzcjQCg4uppNbNwNYSp/bj+/r8+E+DrOsA=
+=HovV
+-----END PGP SIGNATURE-----