Accepting request 908456 from GNOME:Next

- Update to version 2.32.3 (boo#1188697) OBS-URL: https://build.opensuse.org/request/show/908456 OBS-URL: https://build.opensuse.org/package/show/GNOME:Factory/webkit2gtk3?expand=0&rev=307
2021-07-27 09:24:08 +00:00 · 2021-07-27 09:24:08 +00:00 · d7cdf1c089
commit d7cdf1c089
parent e103f87046
6 changed files with 37 additions and 15 deletions
--- a/webkit2gtk3.changes
+++ b/webkit2gtk3.changes
@ -1,3 +1,19 @@
+-------------------------------------------------------------------
+Mon Jul 26 15:38:26 UTC 2021 - Michael Gorse <mgorse@suse.com>
+
+- Update to version 2.32.3 (boo#1188697):
+  + Properly set the cookies settings after a network process
+    crash.
+  + Fix accessibility tree after a cross site navigation with PSON
+    enabled.
+  + Ensure WebKitScriptWorld::window-object-cleared signal is
+    always emitted.
+  + Fix several crashes and rendering issues.
+  + Security fixes: CVE-2021-21775, CVE-2021-21779, CVE-2021-30663,
+  CVE-2021-30665, CVE-2021-30689, CVE-2021-30720, CVE-2021-30734,
+  CVE-2021-30744, CVE-2021-30749, CVE-2021-30795, CVE-2021-30797,
+  CVE-2021-30799.
+
 -------------------------------------------------------------------
 Mon Jul 19 18:36:42 UTC 2021 - Michael Gorse <mgorse@suse.com>

@ -9,6 +25,7 @@ Mon Jul 19 18:36:42 UTC 2021 - Michael Gorse <mgorse@suse.com>
  + Handle null native surface for for surfaceless rendering.
  + Fix JavaScriptCore crash on 32-bit big endian systems.
  + Fix several crashes and rendering issues.
+  + Security fixes: CVE-2021-30758.

 -------------------------------------------------------------------
 Wed May 19 01:10:34 UTC 2021 - Michael Gorse <mgorse@suse.com>
@ -52,7 +69,8 @@ Fri Apr  2 17:34:41 UTC 2021 - Michael Gorse <mgorse@suse.com>
    threading suspension.
  - Fix the build on RISC-V with GCC 11.
  - Fix several crashes and rendering issues.
-  + Security fixes: CVE-2021-1788, CVE-2021-1844, CVE-2021-1871
+  + Security fixes: CVE-2021-1788, CVE-2021-1844, CVE-2021-1871,
+  CVE-2021-30682.
 - Drop old-wayland-scanner.patch and webkit-process.patch, and also
  drop support for Leap 15.0 and 15.1, since they are no longer
  supported.
@ -119,7 +137,8 @@ Sun Mar 21 20:33:09 UTC 2021 - Michael Gorse <mgorse@suse.com>
  + Update user agent quirks again for Google Docs and Google Drive.
  + Fix several crashes and rendering issues.
  + Security fixes: CVE-2020-27918, CVE-2020-29623, CVE-2021-1765
-  CVE-2021-1789, CVE-2021-1799, CVE-2021-1801, CVE-2021-1870.
+  CVE-2021-1789, CVE-2021-1799, CVE-2021-1801, CVE-2021-1870,
+  CVE-2021-21806.

 -------------------------------------------------------------------
 Fri Feb 19 07:45:12 UTC 2021 - Guillaume GARDET <guillaume.gardet@opensuse.org>
@ -234,7 +253,9 @@ Mon Sep 14 23:28:52 UTC 2020 - Michael Gorse <mgorse@suse.com>
  + Fix NTLM authentication.
  + Don't try to use SHM on wayland with older wpebackend-fdo.
  + Fix the build due to seccomp.h header not found.
-  + Security fixes: CVE-2020-9947, CVE-2020-9948, CVE-2020-9951.
+  + Security fixes: CVE-2020-9947, CVE-2020-9948, CVE-2020-9951,
+  CVE-2021-1817, CVE-2021-1820, CVE-2021-1825, CVE-2021-1826,
+  CVE-2021-30661.
 - Drop seccomp-build-fix.patch and wpe-shm-check.patch: fixed
  upstream.

@ -406,7 +427,7 @@ Thu Mar 12 12:10:03 UTC 2020 - Bjørn Lie <bjorn.lie@gmail.com>
  + Add about:gpu to show information about the graphics stack.
  + Security fixes: CVE-2020-10018, CVE-2020-3885, CVE-2020-3894,
    CVE-2020-3895, CVE-2020-3897, CVE-2020-3900, CVE-2020-3901,
-    CVE-2020-3902.
+    CVE-2020-3902, CVE-2021-30762.
 - Drop webkit2gtk3-ppc-build-fix.patch: Fixed upstream.

 -------------------------------------------------------------------
@ -633,7 +654,8 @@ Mon Sep  9 09:59:58 UTC 2019 - Bjørn Lie <bjorn.lie@gmail.com>
  + Single process model has been deprecated for security reasons.
  + Security fixes: CVE-2019-8625, CVE-2019-8720, CVE-2019-8769,
    CVE-2019-8771, CVE-2019-8710, CVE-2019-8743, CVE-2019-8764,
-    CVE-2019-8766, CVE-2019-8782, CVE-2019-8808, CVE-2019-8815.
+    CVE-2019-8766, CVE-2019-8782, CVE-2019-8808, CVE-2019-8815,
+  CVE-2021-30666, CVE-2021-30761.

 -------------------------------------------------------------------
 Tue Sep  3 12:11:49 UTC 2019 - Bjørn Lie <bjorn.lie@gmail.com>
--- a/webkit2gtk3.spec
+++ b/webkit2gtk3.spec
@ -31,7 +31,7 @@
 %define _gold_linker 0
 %endif
 Name:           webkit2gtk3
-Version:        2.32.2
+Version:        2.32.3
 Release:        0
 Summary:        Library for rendering web content, GTK+ Port
 License:        BSD-3-Clause AND LGPL-2.0-or-later
--- a/webkitgtk-2.32.2.tar.xz
+++ b/webkitgtk-2.32.2.tar.xz
@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:1790f86975bdef957ba9a12fc09202de8f55c885ee38467afc50d2bdb7a6c5cd
-size 23321888
--- a/webkitgtk-2.32.2.tar.xz.asc
+++ b/webkitgtk-2.32.2.tar.xz.asc
@ -1,6 +0,0 @@
-----BEGIN PGP SIGNATURE-----
-
-iF0EABEDAB0WIQTX/PYc+aLeqzHYG9Pz0yLQ7EWCwwUCYOgJBgAKCRDz0yLQ7EWC
-w2EbAJ4zW4llntTdDij8JPl5BKiQC+24tACgodAZTe6O+Dop26uRFedmF4thhgE=
-=OALk
-----END PGP SIGNATURE-----
--- a/webkitgtk-2.32.3.tar.xz
+++ b/webkitgtk-2.32.3.tar.xz
@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:c1f496f5ac654efe4cef62fbd4f2fbeeef265a07c5e7419e5d2900bfeea52cbc
+size 23323972
--- a/webkitgtk-2.32.3.tar.xz.asc
+++ b/webkitgtk-2.32.3.tar.xz.asc
@ -0,0 +1,6 @@
+-----BEGIN PGP SIGNATURE-----
+
+iF0EABEDAB0WIQTX/PYc+aLeqzHYG9Pz0yLQ7EWCwwUCYPqiRwAKCRDz0yLQ7EWC
+w5R2AKC02Ps4OAdfYFAj7HnLkKqciDD+TwCfWfDGotwqJSzpc80qUF/qAosm9iM=
+=3q32
+-----END PGP SIGNATURE-----