taku0
b16d72e61b
flashplayer: 32.0.0.293 -> 32.0.0.303
2019-12-10 21:54:15 +09:00
Andrew Childs
6ec5e745dc
chromium: fix aarch64 build
...
The skia patch no longer applies, and is no longer necessary.
The current version of chromium doesn't build with gcc. This has been
fixed upstream[1] and could be backported, but switching aarch64 to
clang/llvm and making the build the same on all platforms is simpler.
[1] 9662ec8440
2019-11-26 01:25:39 +01:00
John Ericson
4f1261134e
Merge remote-tracking branch 'upstream/master' into staging
2019-11-24 18:33:54 +00:00
Herwig Hochleitner
a52d7674cc
chromium: update vaapi patch
...
https://github.com/NixOS/nixpkgs/issues/73878
2019-11-24 19:07:59 +01:00
Frederik Rietdijk
10d0c68a9b
Merge staging-next into staging
2019-11-20 10:02:21 +01:00
Frederik Rietdijk
5f8b0d7d99
Merge staging-next into staging
2019-11-19 14:53:29 +01:00
Ivan Kozik
0c8fc2e90e
chromium: 78.0.3904.97 -> 78.0.3904.108
...
CVE-2019-13723 CVE-2019-13724
https://chromereleases.googleblog.com/2019/11/stable-channel-update-for-desktop_18.html
2019-11-19 05:15:47 +00:00
adisbladis
c9d8624ccd
treewide: Get rid of libGLU_combined
2019-11-18 20:10:43 +00:00
Herwig Hochleitner
8c997725a2
flashplayer: 32.0.0.270 -> 32.0.0.293
2019-11-16 17:24:53 +01:00
Ivan Kozik
c653c7ade3
chromium: 78.0.3904.87 -> 78.0.3904.97
...
4 security fixes, no CVEs.
https://chromereleases.googleblog.com/2019/11/stable-channel-update-for-desktop.html
2019-11-13 08:21:38 +01:00
Ivan Kozik
648b1c5b97
chromium: 78.0.3904.70 -> 78.0.3904.87
...
CVE-2019-13721 CVE-2019-13720
https://chromereleases.googleblog.com/2019/10/stable-channel-update-for-desktop_31.html
2019-11-01 23:14:55 +00:00
Ivan Kozik
b4f5dc2fb8
chromium: do not load .so files from current working directory
...
Fixes #67234 .
2019-10-31 01:34:19 +00:00
Ivan Kozik
908b24ea04
chromium: 77.0.3865.120 -> 78.0.3904.70
...
CVE-2019-13699 CVE-2019-13700 CVE-2019-13701 CVE-2019-13702
CVE-2019-13703 CVE-2019-13704 CVE-2019-13705 CVE-2019-13706
CVE-2019-13707 CVE-2019-13708 CVE-2019-13709 CVE-2019-13710
CVE-2019-13711 CVE-2019-15903 CVE-2019-13713 CVE-2019-13714
CVE-2019-13715 CVE-2019-13716 CVE-2019-13717 CVE-2019-13718
CVE-2019-13719
https://chromereleases.googleblog.com/2019/10/stable-channel-update-for-desktop_22.html
2019-10-23 03:54:39 +00:00
Renaud
e77a6ec5e4
Merge pull request #70853 from taku0/flashplayer-32.0.0.270
...
flashplayer: 32.0.0.255 -> 32.0.0.270 [Critical security fixes]
2019-10-15 19:55:56 +02:00
Herwig Hochleitner
13e3b03d1b
chromium: restore versionRange utility
...
This partially reverts commit
f45798e544
.
cc @ivan I'd like to have that left in, because it's very useful for
gcc compiles, when necessary patches often span multiple releases,
i.e. for aarch64 builds
2019-10-11 23:00:29 +02:00
Ivan Kozik
f45798e544
chromium: 77.0.3865.90 -> 77.0.3865.120
...
CVE-2019-13693 CVE-2019-13694 CVE-2019-13695 CVE-2019-13696
CVE-2019-13697
Disable jumbo mode because upstream dropped support for it.
(See chromium-dev "We're removing support for the jumbo build")
This makes builds take about 3x as long, but we have no alternative.
2019-10-11 22:32:18 +02:00
taku0
09ef6dc625
flashplayer: add maintainer
2019-10-09 21:13:14 +09:00
taku0
8948290cec
flashplayer: 32.0.0.255 -> 32.0.0.270
2019-10-09 15:13:12 +09:00
Graham Christensen
8dbca5e3ca
Merge pull request #69054 from ivan/chromium-77.0.3865.90
...
chromium: 77.0.3865.75 -> 77.0.3865.90
2019-09-19 18:01:06 -04:00
Ivan Kozik
5456def6b3
chromiumDev: fix widevine support
...
Upstream moved libwidevinecdm.so from
./opt/google/chrome-unstable/libwidevinecdm.so
to
./opt/google/chrome-unstable/WidevineCdm/_platform_specific/linux_x64/libwidevinecdm.so
2019-09-19 00:05:30 +00:00
Ivan Kozik
44957a9f30
chromiumDev: fix build by disabling jumbo
...
This fixes:
FAILED: obj/chrome/browser/ui/ui/ui_jumbo_3.o
../../third_party/llvm-build/Release+Asserts/bin/clang++ -MMD -MF obj/chrome/browser/ui/ui/ui_jumbo_3.o.d -DUSE_DBUS -DUSE_UDEV -DUSE_AURA=1 -DUSE_GLIB=1 -DUSE_NSS_CERTS=1 -DUSE_X11=1 -D_FILE_OFFSET_BITS=64 -D_LARGEFILE_SOURCE -D_LARGEFILE64_SOURCE -D_GNU_SOURCE -DCR_CLANG_REVISION=\"371202-8455294f-1\" -D__STDC_CONSTANT_MACROS -D__STDC_FORMAT_MACROS -D_FORTIFY_SOURCE=2 -D_LIBCPP_ABI_UNSTABLE -D_LIBCPP_DISABLE_VISIBILITY_ANNOTATIONS -D_LIBCXXABI_DISABLE_VISIBILITY_ANNOTATIONS -D_LIBCPP_ENABLE_NODISCARD -DCR_LIBCXX_REVISION=361348 -DNDEBUG -DNVALGRIND -DDYNAMIC_ANNOTATIONS_ENABLED=0 -DUSE_CUPS -DGLIB_VERSION_MAX_ALLOWED=GLIB_VERSION_2_32 -DGLIB_VERSION_MIN_REQUIRED=GLIB_VERSION_2_26 -DENABLE_IPC_FUZZER -DTOOLKIT_VIEWS=1 -DVK_NO_PROTOTYPES -DGL_GLEXT_PROTOTYPES -DUSE_GLX -DUSE_EGL -DSYNC_PASSWORD_REUSE_DETECTION_ENABLED -DON_FOCUS_PING_ENABLED -DEXPAT_RELATIVE_PATH -DGOOGLE_PROTOBUF_NO_RTTI -DGOOGLE_PROTOBUF_NO_STATIC_INITIALIZER -DHAVE_PTHREAD -DLEVELDB_PLATFORM_CHROMIUM=1 -DLEVELDB_PLATFORM_CHROMIUM=1 -DU_USING_ICU_NAMESPACE=0 -DU_ENABLE_DYLOAD=0 -DUSE_CHROMIUM_ICU=1 -DU_STATIC_IMPLEMENTATION -DICU_UTIL_DATA_IMPL=ICU_UTIL_DATA_FILE -DUCHAR_TYPE=uint16_t -DWEBRTC_NON_STATIC_TRACE_EVENT_HANDLERS=0 -DWEBRTC_CHROMIUM_BUILD -DWEBRTC_POSIX -DWEBRTC_LINUX -DABSL_ALLOCATOR_NOTHROW=1 -DNO_MAIN_THREAD_WRAPPING -DV8_USE_EXTERNAL_STARTUP_DATA -DSK_GL -DSK_HAS_PNG_LIBRARY -DSK_HAS_WEBP_LIBRARY -DSK_USER_CONFIG_HEADER=\"../../skia/config/SkUserConfig.h\" -DSK_HAS_JPEG_LIBRARY -DSK_VULKAN_HEADER=\"../../skia/config/SkVulkanConfig.h\" -DSK_VULKAN=1 -DSK_SUPPORT_GPU=1 -DSK_GPU_WORKAROUNDS_HEADER=\"gpu/config/gpu_driver_bug_workaround_autogen.h\" -DVK_NO_PROTOTYPES -DV8_DEPRECATION_WARNINGS -DI18N_ADDRESS_VALIDATION_DATA_URL=\"https://chromium-i18n.appspot.com/ssl-aggregate-address/ \" -DPERFETTO_IMPLEMENTATION -I. -I../.. -Igen -Igen/shim_headers/snappy_shim -I../../third_party/libyuv/include -Igen/shim_headers/libpng_shim -Igen/shim_headers/libwebp_shim -I../../third_party/khronos -I../../gpu -I../../third_party/vulkan/include -Igen/shim_headers/opus_shim -Igen/third_party/dawn -I../../third_party/dawn/src/include -Igen/shim_headers/flac_shim -I../../third_party/protobuf/src -Igen/protoc_out -I../../third_party/protobuf/src -I../../third_party/boringssl/src/include -I../../third_party/cacheinvalidation/overrides -I../../third_party/cacheinvalidation/src -Igen/third_party/metrics_proto -I../../third_party/leveldatabase -I../../third_party/leveldatabase/src -I../../third_party/leveldatabase/src/include -I../../third_party/ced/src -I../../third_party/icu/source/common -I../../third_party/icu/source/i18n -I../../third_party/webrtc_overrides -I../../third_party/webrtc -Igen/third_party/webrtc -I../../third_party/abseil-cpp -I../../third_party/skia -I../../third_party/vulkan/include -I../../third_party/skia/third_party/vulkanmemoryallocator -I../../third_party/vulkan/include -I../../third_party/libwebm/source -I../../v8/include -Igen/v8/include -I../../third_party/perfetto/include -Igen/third_party/perfetto/build_config -Igen/third_party/perfetto -Igen/third_party/perfetto -Igen/third_party/perfetto -Igen/third_party/perfetto -Igen/third_party/perfetto -Igen/third_party/perfetto -I../../third_party/re2/src -I../../third_party/mesa_headers -Igen -Igen -Igen -Igen -I../../third_party/libaddressinput/src/cpp/include -Igen/components/sync/protocol -I../../third_party/flatbuffers/src/include -I../../third_party/perfetto -I../../third_party/perfetto/include -Igen/third_party/perfetto/build_config -I../../third_party/brotli/include -I../../third_party/zlib -I../../third_party/fontconfig/src -Igen -Igen -Igen -Igen -Igen -fno-strict-aliasing --param=ssp-buffer-size=4 -fstack-protector -funwind-tables -fPIC -pthread -fcolor-diagnostics -fmerge-all-constants -fcrash-diagnostics-dir=../../tools/clang/crashreports -Xclang -mllvm -Xclang -instcombine-lower-dbg-declare=0 -fcomplete-member-pointers -m64 -march=x86-64 -Wno-builtin-macro-redefined -D__DATE__= -D__TIME__= -D__TIMESTAMP__= -no-canonical-prefixes -Wall -Wextra -Wimplicit-fallthrough -Wthread-safety -Wextra-semi -Wno-missing-field-initializers -Wno-unused-parameter -Wno-c++11-narrowing -Wno-unneeded-internal-declaration -Wno-undefined-var-template -Wno-ignored-pragma-optimize -Wno-implicit-int-float-conversion -Wno-xor-used-as-pow -Wno-c99-designator -Wno-reorder-init-list -Wno-final-dtor-non-final-class -O2 -fno-ident -fdata-sections -ffunction-sections -fno-omit-frame-pointer -g0 -fvisibility=hidden -Wheader-hygiene -Wstring-conversion -Wtautological-overlap-compare -Wexit-time-destructors -I/nix/store/fn0ag3ahbrjjjbsqb2846x321zj4jika-glib-2.60.7-dev/include -I/nix/store/fn0ag3ahbrjjjbsqb2846x321zj4jika-glib-2.60.7-dev/include/glib-2.0 -I/nix/store/ilk1606qj4pqzsplnnzycsxpzl6pjss8-glib-2.60.7/lib/glib-2.0/include -Wno-shorten-64-to-32 -Wno-header-guard -I/nix/store/c3i4il1c0n9mjhzm1dsvcw8h8d973s0b-nspr-4.21-dev/include -I/nix/store/qk3racv0a2967wsk0g9ps9wlbfn17faj-nss-3.46-dev/include/nss -I/nix/store/v85mz845m1hv2xlhp0zvxv36pmsfbc3q-dbus-1.12.16-dev/include/dbus-1.0 -I/nix/store/j3sv2g9s6dnlh672rwx0mmlkcm37v1k8-dbus-1.12.16-lib/lib/dbus-1.0/include -std=c++14 -fno-exceptions -fno-rtti -nostdinc++ -isystem../../buildtools/third_party/libc++/trunk/include -isystem../../buildtools/third_party/libc++abi/trunk/include -fvisibility-inlines-hidden -c gen/chrome/browser/ui/ui_jumbo_3.cc -o obj/chrome/browser/ui/ui/ui_jumbo_3.o
warning: unknown warning option '-Wno-implicit-int-float-conversion'; did you mean '-Wno-implicit-float-conversion'? [-Wunknown-warning-option]
warning: unknown warning option '-Wno-xor-used-as-pow'; did you mean '-Wno-unused-macros'? [-Wunknown-warning-option]
warning: unknown warning option '-Wno-c99-designator'; did you mean '-Wno-gnu-designator'? [-Wunknown-warning-option]
warning: unknown warning option '-Wno-reorder-init-list'; did you mean '-Wno-empty-init-stmt'? [-Wunknown-warning-option]
warning: unknown warning option '-Wno-final-dtor-non-final-class'; did you mean '-Wno-abstract-final-class'? [-Wunknown-warning-option]
In file included from gen/chrome/browser/ui/ui_jumbo_3.cc:24:
./../../chrome/browser/ui/views/profiles/profile_menu_view.cc:68:25: error: redefinition of 'GetProfileAttributesEntry'
ProfileAttributesEntry* GetProfileAttributesEntry(Profile* profile) {
^
./../../chrome/browser/ui/views/profiles/avatar_toolbar_button.cc:49:25: note: previous definition is here
ProfileAttributesEntry* GetProfileAttributesEntry(Profile* profile) {
^
5 warnings and 1 error generated.
2019-09-19 00:05:24 +00:00
Ivan Kozik
2e2a9ae22a
chromium: 77.0.3865.75 -> 77.0.3865.90
...
CVE-2019-13685 CVE-2019-13688 CVE-2019-13687 CVE-2019-13686
2019-09-18 22:19:08 +00:00
Ivan Kozik
19d730df85
chromium: add patch to fix performance regression with fonts
...
This reverts a commit to fix a serious performance regression
introduced in Chromium 77:
https://bugs.chromium.org/p/chromium/issues/detail?id=1003997
2019-09-17 23:42:11 +00:00
Herwig Hochleitner
dd57bf928b
Merge pull request #60833 from jflanglois/chromium-widevine
...
chromium: fix widevine
2019-09-14 14:30:29 +02:00
Ivan Kozik
d66430be79
chromium: 76.0.3809.132 -> 77.0.3865.75
...
CVE-2019-5870 CVE-2019-5871 CVE-2019-5872 CVE-2019-5873
CVE-2019-5874 CVE-2019-5875 CVE-2019-5876 CVE-2019-5877
CVE-2019-5878 CVE-2019-5879 CVE-2019-5880 CVE-2019-5881
CVE-2019-13659 CVE-2019-13660 CVE-2019-13661 CVE-2019-13662
CVE-2019-13663 CVE-2019-13664 CVE-2019-13665 CVE-2019-13666
CVE-2019-13667 CVE-2019-13668 CVE-2019-13669 CVE-2019-13670
CVE-2019-13671 CVE-2019-13673 CVE-2019-13674 CVE-2019-13675
CVE-2019-13676 CVE-2019-13677 CVE-2019-13678 CVE-2019-13679
CVE-2019-13680 CVE-2019-13681 CVE-2019-13682 CVE-2019-13683
2019-09-14 14:29:35 +02:00
taku0
dac340737a
flashplayer: 32.0.0.238 -> 32.0.0.255
2019-09-10 21:13:06 +09:00
Julien Langlois
7d9578819b
Comment about handling widevine in default.nix.
2019-09-06 15:19:49 -04:00
Julien Langlois
ea7c012e4b
Explicitly check for channels in widevine plugin unpack command.
2019-09-05 17:43:58 -04:00
Julien Langlois
c28eb26100
Set package to unfree when widevine is enabled.
2019-09-05 17:27:04 -04:00
Julien Langlois
aeeb67bfcb
Rework to avoid a full rebuild for widevine.
2019-09-05 17:20:09 -04:00
Julien Langlois
545d58a1ef
chromium: fix widevine
...
This change allows widevine to work in chromium (it was previously
broken due to a segfault). Newer versions of chromium do not use the
libwidevinecdmadapter.so. Instead, libwidevinecdm.so should be installed
in the chromium libExec directory.
2019-09-05 17:20:06 -04:00
Vladimír Čunát
f21211ebfe
Merge branch 'master' into staging
2019-09-02 23:25:24 +02:00
Ivan Kozik
0e703ce075
chromium: 76.0.3809.100 -> 76.0.3809.132 ( #67610 )
...
CVE-2019-5869
2019-08-31 22:22:58 -04:00
volth
08f68313a4
treewide: remove redundant rec
2019-08-28 11:07:32 +00:00
Frederik Rietdijk
5061fe0c2c
Merge staging-next into staging
2019-08-28 08:26:42 +02:00
Frederik Rietdijk
98640fd482
Merge master into staging-next
2019-08-27 16:36:47 +02:00
Asad Saeeduddin
17775d538b
flashplayer: 32.0.0.223 -> 32.0.0.238
2019-08-25 06:05:10 -04:00
Ben Wolsieffer
8b0a684d21
chromium: remove obsolete patches
...
One of these patches was causing a warning message, which broke ofborg
evaluation.
2019-08-19 18:54:48 -04:00
Frederik Rietdijk
fe9a3e3e63
Merge staging-next into staging
2019-08-17 09:39:23 +02:00
volth
46420bbaa3
treewide: name -> pname (easy cases) ( #66585 )
...
treewide replacement of
stdenv.mkDerivation rec {
name = "*-${version}";
version = "*";
to pname
2019-08-15 13:41:18 +01:00
Matthew Bauer
8281a67be0
Merge pull request #64809 from ambrop72/chromium-egl-fix
...
chromium: Fix running with --use-gl=egl.
2019-08-14 15:42:31 -04:00
Ivan Kozik
42521cb95b
chromium: 76.0.3809.87 -> 76.0.3809.100
...
CVE-2019-5868 CVE-2019-5867
2019-08-09 16:07:37 +00:00
Ivan Kozik
a897743a13
chromiumDev: fix build
...
Fixes:
ERROR Unresolved dependencies.
//third_party/perfetto/gn:zlib(//build/toolchain/linux:clang_x64)
needs //third_party/zlib:zlib_config(//build/toolchain/linux:clang_x64)
builder for '/nix/store/iqr4vn2by1yxa7f92jiymvgfsn9mdvwq-chromium-unwrapped-77.0.3860.5.drv' failed with exit code 1
2019-07-31 11:31:07 +00:00
Ivan Kozik
d18f4acdf1
chromium: 75.0.3770.90 -> 76.0.3809.87
...
Fixed in 75.0.3770.142:
CVE-2019-5847 CVE-2019-5848
Fixed in 76.0.3809.87:
CVE-2019-5850 CVE-2019-5860 CVE-2019-5853 CVE-2019-5851
CVE-2019-5859 CVE-2019-5856 CVE-2019-5863 CVE-2019-5855
CVE-2019-5865 CVE-2019-5858 CVE-2019-5864 CVE-2019-5862
CVE-2019-5861 CVE-2019-5857 CVE-2019-5854 CVE-2019-5852
2019-07-31 11:30:46 +00:00
Ambroz Bizjak
6a0a073187
chromium: Fix running with --use-gl=egl.
...
When Chromium is using EGL, it dlopen's libGLESv2. Before this fix, this failed
with a not-found error. Fix it by adding libGL to the RUNPATH of the binary.
This problem does not have a visible impact on typical desktop system because
Chromium uses GLX by default. It only matters when Chromium is started with
--use-gl=egl (which makes it use OpenGL ES via EGL instead of desktop OpenGL
via GLX), and probably on certain embedded systems which only support OpenGL
ES.
With this fix, Chromium runs fine for me with --use-gl=egl and the NVidia
driver, and the about:gpu page indicates that it is indeed using OpenGL ES and
EGL.
2019-07-15 17:03:56 +02:00
taku0
126c5d0be8
flashplayer: 32.0.0.207 -> 32.0.0.223
2019-07-11 09:51:49 +02:00
Andreas Rammhold
5a74f84536
Merge pull request #63136 from ivan/chromium-75.0.3770.90
...
chromium: 75.0.3770.80 -> 75.0.3770.90
2019-06-19 00:42:05 +02:00
volth
f3282c8d1e
treewide: remove unused variables ( #63177 )
...
* treewide: remove unused variables
* making ofborg happy
2019-06-16 19:59:05 +00:00
Ivan Kozik
67ced10c23
chromium: 75.0.3770.80 -> 75.0.3770.90
...
CVE-2019-5842
2019-06-14 21:17:45 +00:00
taku0
1296f699e5
flashplayer: 32.0.0.192 -> 32.0.0.207
2019-06-11 15:13:34 +09:00
Ivan Kozik
8c78ae27f6
chromium: 74.0.3729.157 -> 75.0.3770.80
...
CVE-2019-5828 CVE-2019-5829 CVE-2019-5830 CVE-2019-5831
CVE-2019-5832 CVE-2019-5833 CVE-2019-5834 CVE-2019-5835
CVE-2019-5836 CVE-2019-5837 CVE-2019-5838 CVE-2019-5839
CVE-2019-5840
Update a patch for Python 3, fixes #62347 .
Update a GN arg to fix this warning:
warning: The GN arg 'remove_webcore_debug_symbols' is deprecated and
warning: will be removed April 15, 2019. Please change your args.gn
warning: to use 'blink_symbol_level = 0'. https://crbug.com/943869
2019-06-05 09:27:52 +00:00
Ivan Kozik
4481a0150b
chromium: use LLVM 8.0.0 to more closely match upstream
2019-06-05 09:27:52 +00:00
Silvan Mosberger
99b68ffbb0
chromium: Fix build
...
Since https://github.com/NixOS/nixpkgs/pull/60499 , the unwrapped
chromium already contains the applications directory.
2019-05-28 02:33:00 +02:00
Silvan Mosberger
526a0b2277
Merge pull request #60499 from JohnAZoidberg/chromium-upstream-desktop-entry
...
chromium: Use upstream desktop entry
2019-05-27 18:28:20 +02:00
Daniel Schaefer
0f537a49e1
chromium: Use upstream desktop entry
...
Upstream provides a much more featureful desktop entry file. If we use
that we take advantage of all of those features and don't have to maintain it
ourselves.
2019-05-25 22:39:47 +02:00
Andreas Rammhold
333a2be17b
chromium: 74.0.3729.131 -> 74.0.3729.157 ( #61533 )
...
chromium: 74.0.3729.131 -> 74.0.3729.157
2019-05-16 19:27:12 +02:00
Ivan Kozik
2db1a06136
chromium: 74.0.3729.131 -> 74.0.3729.157
...
Fixes a security bug with no CVE at this time:
https://chromereleases.googleblog.com/2019/05/stable-channel-update-for-desktop.html
2019-05-15 05:41:40 +00:00
taku0
8be03860e4
flashplayer: 32.0.0.171 -> 32.0.0.192
2019-05-14 21:13:49 +09:00
Andreas Rammhold
0b7c602d55
chromium: 74.0.3729.108 -> 74.0.3729.131 ( #60950 )
...
chromium: 74.0.3729.108 -> 74.0.3729.131
2019-05-05 18:04:36 +02:00
Ivan Kozik
75d1439f8f
chromium: add myself as maintainer ( #60961 )
2019-05-05 05:09:20 -04:00
Ivan Kozik
f15adc548f
chromium: 74.0.3729.108 -> 74.0.3729.131
...
CVE-2019-5827 CVE-2019-5824
2019-05-04 22:46:24 +00:00
Herwig Hochleitner
d77256c604
chromium: 73.0.3683.103 -> 74.0.3729.108
...
CVE-2019-5805 CVE-2019-5806 CVE-2019-5807 CVE-2019-5808 CVE-2019-5809
CVE-2019-5810 CVE-2019-5811 CVE-2019-5812 CVE-2019-5813 CVE-2019-5814
CVE-2019-5815 CVE-2019-5816 CVE-2019-5817 CVE-2019-5818 CVE-2019-5819
CVE-2019-5820 CVE-2019-5821 CVE-2019-5822 CVE-2019-5823
2019-04-24 22:01:45 +02:00
taku0
3eb4e958b4
flashplayer: 32.0.0.156 -> 32.0.0.171
2019-04-09 21:14:12 +09:00
Herwig Hochleitner
a5960f765a
chromium: 73.0.3683.86 -> 73.0.3683.103
2019-04-05 16:53:36 +02:00
aszlig
ed8f3b5fa3
chromium/updater: Fix usage of insecure MD5 hashes
...
The title of https://github.com/NixOS/nix/issues/802 says it all:
Is it time to deprecate md5?
Of course it is - we shouldn't use MD5 for our beautiful updater, but
switch to SHA1 instead. It's the future!
. . . . .
. . . . .
. . . . .-. . . .
------- ______ | `\ .
. ______ . ' ``-..-.-,.-.`. `----._______
. ------- . . `.`.-=,'='-===| SHA1 \______`--._
-------------- --- . ..-.-.-=-.-===| ____________.--"
--------- . . .- .,==-'`-'-./ /__----'^ `^ `^ `^
____ ----- -- ____ ' . _____ \______[=> => => =>
. . . .
. . . . . . .
Signed-off-by: aszlig <aszlig@nix.build>
2019-03-31 22:41:44 +02:00
Herwig Hochleitner
233e551674
chromium: disable vaapi support
...
this fixes playback on radeon
see https://github.com/NixOS/nixpkgs/pull/57837#issuecomment-477906724
2019-03-31 01:04:49 +01:00
Cole Mickens
60e2d2ce2b
chromium: enable mojo + vaapi + allow hw accel
...
fixes https://github.com/NixOS/nixpkgs/pull/57837
closes https://github.com/NixOS/nixpkgs/pull/56973
2019-03-25 02:02:05 +01:00
Herwig Hochleitner
ea34ad0e43
chromium: 73.0.3683.75 -> 73.0.3683.86
2019-03-22 19:33:30 +01:00
taku0
e933c7875b
flashplayer: 32.0.0.142 -> 32.0.0.156 ( #57571 )
2019-03-13 23:30:50 +01:00
Herwig Hochleitner
006a699e69
chromium: 72.0.3626.121 -> 73.0.3683.75
...
CVE-2019-5787 CVE-2019-5788 CVE-2019-5789 CVE-2019-5790 CVE-2019-5791
CVE-2019-5792 CVE-2019-5793 CVE-2019-5794 CVE-2019-5795 CVE-2019-5796
CVE-2019-5797 CVE-2019-5798 CVE-2019-5799 CVE-2019-5800 CVE-2019-5801
CVE-2019-5802 CVE-2019-5803 CVE-2019-5804
2019-03-13 16:19:29 +01:00
Herwig Hochleitner
4901dc4e74
Merge commit '9ae406c0749bbc7373d7422edeaf6b1b6caa0dae' of github.com:NixOS/nixpkgs into fix-chromium
...
fixes https://github.com/NixOS/nixpkgs/pull/49797
2019-03-07 20:50:13 +01:00
Ivan Kozik
2129c6ec05
chromium: fix sha256 for 72.0.3626.121
...
The sha256 was previously unchanged from 72.0.3626.119
2019-03-07 00:37:01 +00:00
Herwig Hochleitner
9a6e64691c
chromium: 72.0.3626.119 -> 72.0.3626.121
...
CVE-2019-5786
2019-03-02 05:19:53 +01:00
Frederik Rietdijk
2fcb11a244
Merge staging-next into master
2019-03-01 09:06:20 +01:00
Herwig Hochleitner
338dc47d5f
chromium: 72.0.3626.109 -> 72.0.3626.119
2019-02-25 02:01:30 +01:00
Frederik Rietdijk
c2eac6741b
Merge master into staging-next
2019-02-24 09:19:12 +01:00
Florian Friesdorf
fbef5ab82f
Remove myself as maintainer from packages
...
I'm currently not maintaining any packages.
2019-02-22 16:14:13 +01:00
Frederik Rietdijk
e2cd07b997
Merge staging-next into staging
2019-02-21 07:54:33 +01:00
Herwig Hochleitner
c414e5bd08
chromium: 72.0.3626.96 -> 72.0.3626.109
2019-02-19 04:44:37 +01:00
Frederik Rietdijk
fd48a94b62
Merge staging-next into staging
2019-02-16 09:30:46 +01:00
Samuel Dionne-Riel
f8eef26991
Merge pull request #55732 from oxij/tree/move-defaults-to-package-files-mostly-pulse
...
all-packages.nix: move defaults to package files continues
2019-02-15 17:49:01 -05:00
Jan Tojnar
606ceda352
gnome3: stop using aliases
2019-02-14 02:31:15 +01:00
Jan Malakhovski
f91e811e44
chromium: move defaults to package file
...
This one is a bit untrivial.
2019-02-13 23:11:29 +00:00
Florian Klink
516a9578e6
Merge pull request #55501 from ivan/chromium-72.0.3626.96
...
chromium: 72.0.3626.81 -> 72.0.3626.96
2019-02-13 11:04:05 +01:00
Averell Dalton
856a238e20
flashplayer: 32.0.0.114 -> 32.0.0.142
2019-02-12 23:01:44 +01:00
Ivan Kozik
0811bbcaa4
chromium: 72.0.3626.81 -> 72.0.3626.96
...
CVE-2019-5784
2019-02-10 02:38:22 +00:00
Ivan Kozik
03960a323d
chromium: make the new audio sandbox NixOS-compatible
...
Deal with f2fc90bb74
which landed https://github.com/chromium/chromium/blob/master/services/audio/audio_sandbox_hook_linux.cc
containing /usr/share and /usr/lib/x86_64-linux-gnu paths.
closes https://github.com/NixOS/nixpkgs/pull/54960
2019-01-31 20:06:16 +01:00
Herwig Hochleitner
6b27008fb5
chromium: 71.0.3578.98 -> 72.0.3626.81
...
CVE-2019-5754 CVE-2019-5782 CVE-2019-5755 CVE-2019-5756 CVE-2019-5757
CVE-2019-5758 CVE-2019-5759 CVE-2019-5760 CVE-2019-5761 CVE-2019-5762
CVE-2019-5763 CVE-2019-5764 CVE-2019-5765 CVE-2019-5766 CVE-2019-5767
CVE-2019-5768 CVE-2019-5769 CVE-2019-5770 CVE-2019-5771 CVE-2019-5772
CVE-2019-5773 CVE-2019-5774 CVE-2019-5775 CVE-2019-5776 CVE-2019-5777
CVE-2019-5778 CVE-2019-5779 CVE-2019-5780 CVE-2019-5781
2019-01-31 01:20:23 +01:00
taku0
9f1ff9976f
flashplayer: 32.0.0.101 -> 32.0.0.114
2019-01-08 21:12:29 +09:00
Jan Tojnar
ef935fa101
Merge branch 'master' into staging
2018-12-24 15:02:29 +01:00
Jörg Thalheim
1b146a8c6f
treewide: remove paxutils from stdenv
...
More then one year ago we removed grsecurity kernels from nixpkgs:
https://github.com/NixOS/nixpkgs/pull/25277
This removes now also paxutils from stdenv.
2018-12-22 12:55:05 +01:00
Herwig Hochleitner
327f7da260
chromium: 71.0.3578.80 -> 71.0.3578.98
...
CVE-2018-17481
2018-12-20 20:44:24 +01:00
Herwig Hochleitner
ccb93eb6b0
chromium: update conditionals and gcc patches for min version 71
...
(cherry picked from commit 604579e45f10ce5ccadd76c71f1bac648bd0971d)
2018-12-09 04:11:27 +01:00
Sarah Brofeldt
4065217c9a
Merge pull request #51623 from taku0/flashplayer-32.0.0.101
...
flashplayer: 31.0.0.153 -> 32.0.0.101 [Critical security fix]
2018-12-07 11:57:22 +01:00
taku0
f7a266d44a
flashplayer: 31.0.0.153 -> 32.0.0.101
2018-12-06 23:27:45 +09:00
Herwig Hochleitner
8942a3e00c
chromium: 70.0.3538.110 -> 71.0.3578.80
...
CVE-2018-17480 CVE-2018-17481 CVE-2018-18335 CVE-2018-18336
CVE-2018-18337 CVE-2018-18338 CVE-2018-18339 CVE-2018-18340
CVE-2018-18341 CVE-2018-18342 CVE-2018-18343 CVE-2018-18344
CVE-2018-18345 CVE-2018-18346 CVE-2018-18347 CVE-2018-18348
CVE-2018-18349 CVE-2018-18350 CVE-2018-18351 CVE-2018-18352
CVE-2018-18353 CVE-2018-18354 CVE-2018-18355 CVE-2018-18356
CVE-2018-18357 CVE-2018-18358 CVE-2018-18359
2018-12-06 00:36:33 +01:00
Alexander V. Nikolaev
9ae406c074
chromium: rename "unwrapped" package to chromium-unwrapped
2018-12-03 15:35:53 +02:00
Alexander V. Nikolaev
d0351ad3b6
chromium: fail build, if SOURCE_DATE_EPOCH not set
...
Also fix spacing style to conform google style
2018-12-03 15:35:53 +02:00
Alexander V. Nikolaev
7b49bd4894
chromium: avoid timestamp build
...
Use $SOURCE_DATE_EPOCH instead
2018-12-03 15:35:53 +02:00
Alexander V. Nikolaev
254a16c42e
chroimum: Improve jumbo reproducibility
...
A little patch to jumbo script, which should improve reproducibility
by sorting source files before merge.
2018-12-03 15:35:52 +02:00
Alexander V. Nikolaev
a70ab23409
chromium: remove gtk2 from build inputs (gtk3 should be enough)
2018-12-03 15:35:18 +02:00
taku0
76c23d904f
flashplayer: 31.0.0.122 -> 31.0.0.153
2018-11-20 15:13:38 +09:00
Herwig Hochleitner
bac76e8a9e
chromium: add jdk.jre to build dependencies for versions >= 72
...
thanks for finding out @volth
see 6fba9250aa
2018-11-20 01:01:51 +01:00
Herwig Hochleitner
7c79a0d4ac
chromium: 70.0.3538.102 -> 70.0.3538.110
...
CVE-2018-17479
2018-11-19 23:52:22 +01:00
Jörg Thalheim
16ba91891d
Merge pull request #50396 from taku0/flashplayer-31.0.0.148
...
flashplayer: 31.0.0.122 -> 31.0.0.148 [Important security fix]
2018-11-15 14:19:43 +00:00
Herwig Hochleitner
4b5ffcb964
chromium: 70.0.3538.77 -> 70.0.3538.102
2018-11-14 02:51:13 +01:00
taku0
4c2d254a7f
flashplayer: 31.0.0.122 -> 31.0.0.148
2018-11-13 21:13:48 +09:00
Domen Kožar
89ede978a0
chromium: use jumbo builds to speedup compilation
...
On Hetzner machine with 1 core: 4h40m
On Hetzner machine with 8 cores: 1h20m
2018-11-01 17:51:51 +00:00
Herwig Hochleitner
ed91407784
Revert "chromium: make gcc8 build available via buildWithGcc flag"
...
This partially reverts commit
b70ab5c405
(except for depending gnome2)
see #48922
2018-10-28 17:10:53 +01:00
Herwig Hochleitner
17585ff6d8
chromium: 70.0.3538.67 -> 70.0.3538.77
2018-10-28 16:00:46 +01:00
Herwig Hochleitner
b70ab5c405
chromium: make gcc8 build available via buildWithGcc flag
2018-10-28 16:00:46 +01:00
Herwig Hochleitner
7eea24db5d
chromium/plugins: specify gcc instead of stdenv.cc
2018-10-28 16:00:46 +01:00
volth
d2daf0dd6f
chromium: build with clang
2018-10-28 16:00:45 +01:00
Herwig Hochleitner
bb03fbc2c8
chromium: 69.0.3497.100 -> 70.0.3538.67
2018-10-24 19:38:51 +02:00
volth
337d140953
chromium: propagate stdenv for "chromium.override{ stdenv=gcc8Stdenv; }" ( #48615 )
2018-10-18 23:09:12 +02:00
volth
d767ba9996
chromium 71+: there is no more option 'use_gtk3' ( #48595 )
2018-10-17 23:04:15 +02:00
volth
d039722d0e
chromium 71+: add at-spi2-core dependency ( #48594 )
2018-10-17 23:03:43 +02:00
volth
0c8cdb53f6
chromium: fix aarch64 build ( #48586 )
...
* chromium: fix aarch64 build
* chromium: use more stable urls
2018-10-17 01:21:29 +02:00
volth
2ad99a662d
chromium plugins: add meta.platforms ( #48495 )
...
to prevent their installation on aarch64
2018-10-16 18:11:41 +02:00
Will Dietz
ce6db5e36e
chromium: update to 69.0.3497.100 (and others), ran update.sh
2018-10-12 12:20:35 +02:00
Will Dietz
4b7de150a8
chromium/update.sh: don't use remote builders, lots of copying for work
2018-10-12 12:20:35 +02:00
xeji
bde4483d13
flashplayer: 31.0.0.108 -> 31.0.0.122 ( #48126 )
...
previous version was removed upstream (404)
2018-10-10 23:49:40 +02:00
taku0
417cbb9307
flashplayer: 30.0.0.154 -> 31.0.0.108
2018-09-14 08:12:12 +09:00
Yuriy Taraday
c098f143b4
chromium: 68.0.3440.106 -> 69.0.3497.81
...
Also update to build with external gn.
2018-09-07 23:34:47 +04:00
Daiderd Jordan
80aca28e34
harfbuzz: add harfbuzzFull and remove other variants
2018-08-21 21:04:15 +02:00
Herwig Hochleitner
d127b54a29
chromium: 68.0.3440.75 -> 68.0.3440.106
...
cc @aszlig @YorikSar
2018-08-17 12:48:59 +02:00
Wael M. Nasreddine
9f6b6bc52f
flash: 30.0.0.134 -> 30.0.0.154
2018-08-15 22:07:31 -07:00
Sarah Brofeldt
7679891e2b
chromium: Increase build timout to two days
2018-07-30 12:29:58 +02:00
Yuriy Taraday
cd3283f921
chromium: 67.0.3396.99 -> 68.0.3440.75
2018-07-27 14:38:23 +02:00
Jörg Thalheim
218298b30f
Merge branch 'master' into unused5
2018-07-21 15:41:22 +01:00
volth
52f53c69ce
pkgs/*: remove unreferenced function arguments
2018-07-21 02:48:04 +00:00
volth
6d2857a311
[bot] treewide: remove unused 'inherit' in let blocks
2018-07-20 19:38:19 +00:00
volth
87f5930c3f
[bot]: remove unreferenced code
2018-07-20 18:48:37 +00:00
Yuriy Taraday
06ec2a9f19
chromium: fix 68 (beta) build
...
Also replace openh264 patch with one landed in upstream.
2018-07-14 23:07:46 +04:00
Yuriy Taraday
c283323c1e
chromium: 67.0.3396.87 -> 67.0.3396.99
2018-07-14 01:38:41 +04:00
volth
2dee9d4a80
flash: 30.0.0.113 -> 30.0.0.134
2018-07-11 23:34:16 +00:00
Niklas Hambüchen
95358db956
chromium: Abort build on gn warnings. Fixes #42189 .
...
Also fix such obsolete flags:
* `use_gconf` was already known to become obsolete with Chromium 65
* `enable_hotwording` has been removed in upstream commit d693f0c7ab
2018-06-19 02:56:27 +02:00
Yuriy Taraday
d23da8229b
chromium: 67.0.3396.62 -> 67.0.3396.87
...
Contains fixes for CVE-2018-6148 [0] and CVE-2018-6149 [1].
Also add a patch to fix one problem with 68 (Beta) build. I'm still
working on fixing Beta.
[0] https://chromereleases.googleblog.com/2018/06/stable-channel-update-for-desktop.html
[1] https://chromereleases.googleblog.com/2018/06/stable-channel-update-for-desktop_12.html
2018-06-13 16:28:18 +04:00
Vladyslav Mykhailichenko
16ee92eba9
flashplayer: fix sha256 hash
2018-06-08 01:02:51 +03:00
Vladyslav Mykhailichenko
95aa3f4cc6
flashplayer: 29.0.0.171 -> 30.0.0.113
2018-06-07 22:16:42 +03:00
Yuriy Taraday
a3efa24da9
chromium: bump dev version
2018-05-31 02:50:27 +04:00
Yuriy Taraday
e4810965c0
chromium: fix build for 67
2018-05-31 00:33:42 +04:00
Yuriy Taraday
88007f819d
chromium: remove outdated patches
2018-05-31 00:28:51 +04:00
Yuriy Taraday
7acec16226
chromium: 66.0.3359.181 -> 67.0.3396.62
...
New stable version, with 34 security fixes and site isolation. See
https://chromereleases.googleblog.com/2018/05/stable-channel-update-for-desktop_58.html
2018-05-31 00:27:36 +04:00
Yuriy Taraday
72d7b5ddb1
chromium: fix nix_plugin_paths for 68+
2018-05-31 00:27:14 +04:00
Yuriy Taraday
584006a85e
chromium: fix crashpad build
2018-05-31 00:27:14 +04:00
Yuriy Taraday
272987524a
chromium: 66.0.3359.170 -> 66.0.3359.181
2018-05-15 23:58:50 +04:00
Yuriy Taraday
18370267ef
chromium: 66.0.3359.139 -> 66.0.3359.170
...
Update includes 4 security fixes, including one critical (see [0]):
* [835887] Critical: Chain leading to sandbox escape. Reported by Anonymous on 2018-04-23:
* [836858] High CVE-2018-6121: Privilege Escalation in extensions.
* [836141] High CVE-2018-6122: Type confusion in V8.
* [$5000][833721] High CVE-2018-6120: Heap buffer overflow in PDFium. Reported by Zhou Aiting(@zhouat1) of Qihoo 360 Vulcan Team on 2018-04-17
[0] https://chromereleases.googleblog.com/2018/05/stable-channel-update-for-desktop.html
PS: Didn't build Beta and Dev, verified only Stable for now
cc @bendlas @aszlig
2018-05-12 02:12:04 +04:00
taku0
219b1c1e1b
flashplayer: 29.0.0.140 -> 29.0.0.171
2018-05-08 15:14:54 +09:00
Herwig Hochleitner
c07c23b914
chromium: 66.0.3359.117 -> 66.0.3359.139
2018-05-02 02:44:15 +02:00
Léo Gaspard
905b03bce2
chromium: fix build on aarch64
...
chromium build on aarch64 failed with:
```
FAILED: obj/skia/skia/convolver_neon.o
g++ -MMD -MF obj/skia/skia/convolver_neon.o.d -DV8_DEPRECATION_WARNINGS -DUSE_UDEV -DUSE_AURA=1 -DUSE_GLIB=1 -DUSE_NSS_CERTS=1 -DUSE_X11=1 -DNO_TCMALLOC -DFULL_SAFE_BROWSING -DSAFE_BROWSING_CSD -DSAFE_BROWSING_DB_LOCAL -DCHROMIUM_BUILD -D_FILE_OFFSET_BITS=64 -D_LARGEFILE_SOURCE -D_LARGEFILE64_SOURCE -D_LIBCPP_DISABLE_VISIBILITY_ANNOTATIONS -D_LIBCXXABI_DISABLE_VISIBILITY_ANNOTATIONS -DNDEBUG -DNVALGRIND -DDYNAMIC_ANNOTATIONS_ENABLED=0 -DSK_IGNORE_LINEONLY_AA_CONVEX_PATH_OPTS -DSK_HAS_PNG_LIBRARY -DSK_HAS_WEBP_LIBRARY -DSK_HAS_JPEG_LIBRARY -DSK_SUPPORT_GPU=1 -DSK_FREETYPE_MINIMUM_RUNTIME_VERSION=\(\(\(FREETYPE_MAJOR\)\ \*\ 0x01000000\)\ \|\ \(\(FREETYPE_MINOR\)\ \*\ 0x00010000\)\ \|\ \(\(FREETYPE_PATCH\)\ \*\ 0x00000100\)\) -DSK_GAMMA_EXPONENT=1.2 -DSK_GAMMA_CONTRAST=0.2 -DSK_DEFAULT_FONT_CACHE_LIMIT=20971520 -DGLIB_VERSION_MAX_ALLOWED=GLIB_VERSION_2_32 -DGLIB_VERSION_MIN_REQUIRED=GLIB_VERSION_2_26 -DFT_CONFIG_CONFIG_H=\"freetype-custom-config/ftconfig.h\" -DFT_CONFIG_MODULES_H=\"freetype-custom-config/ftmodule.h\" -DFT_CONFIG_OPTIONS_H=\"freetype-custom-config/ftoption.h\" -DPDFIUM_REQUIRED_MODULES -DCHROMIUM_RESTRICT_VISIBILITY -DUSE_LIBJPEG_TURBO=1 -DU_USING_ICU_NAMESPACE=0 -DU_ENABLE_DYLOAD=0 -DU_STATIC_IMPLEMENTATION -DICU_UTIL_DATA_IMPL=ICU_UTIL_DATA_FILE -DUCHAR_TYPE=uint16_t -DUSE_SYSTEM_ZLIB=1 -I../.. -Igen -I../../skia/config -I../../skia/ext -I../../third_party/skia/include/c -I../../third_party/skia/include/config -I../../third_party/skia/include/core -I../../third_party/skia/include/effects -I../../third_party/skia/include/encode -I../../third_party/skia/include/gpu -I../../third_party/skia/include/images -I../../third_party/skia/include/lazy -I../../third_party/skia/include/pathops -I../../third_party/skia/include/pdf -I../../third_party/skia/include/pipe -I../../third_party/skia/include/ports -I../../third_party/skia/include/utils -I../../third_party/skia/src/gpu -I../../third_party/skia/src/sksl -I../../third_party/skia/include/codec -I../../third_party/skia/include/private -I../../third_party/skia/include/client/android -I../../third_party/skia/src/codec -I../../third_party/skia/src/core -I../../third_party/skia/src/image -I../../third_party/skia/src/images -I../../third_party/skia/src/opts -I../../third_party/skia/src/pdf -I../../third_party/skia/src/ports -I../../third_party/skia/src/shaders -I../../third_party/skia/src/shaders/gradients -I../../third_party/skia/src/sfnt -I../../third_party/skia/src/utils -I../../third_party/skia/src/lazy -I../../third_party/skia/third_party/gif -I../../third_party/skia/src/effects/gradients -Igen/shim_headers/libpng_shim -Igen/shim_headers/zlib_shim -I../../third_party/freetype/include -I../../third_party/freetype/src/include -I../../third_party/harfbuzz-ng/src -I../../third_party/libjpeg_turbo -I../../third_party/fontconfig/src -I../../third_party/icu/source/common -I../../third_party/icu/source/i18n -I../../third_party/sfntly/src/cpp/src -fno-strict-aliasing --param=ssp-buffer-size=4 -fstack-protector -Wno-builtin-macro-redefined -D__DATE__= -D__TIME__= -D__TIMESTAMP__= -funwind-tables -fPIC -pipe -pthread -fno-omit-frame-pointer -g0 -fno-builtin-abs -fvisibility=hidden -Wno-unused-local-typedefs -Wno-maybe-uninitialized -Wno-deprecated-declarations -fno-delete-null-pointer-checks -Wno-missing-field-initializers -Wno-unused-parameter -O2 -fno-ident -fdata-sections -ffunction-sections -isystem/nix/store/smmxgfkqaqqh43d5gmv5p3abcq19hkzy-glib-2.56.0-dev/include/glib-2.0 -isystem/nix/store/yn3bbw1sxg19h07wzn16k0ja58wr9yiz-glib-2.56.0/lib/glib-2.0/include -isystem/nix/store/f82jgynysk9mvhyfavfzims41zkskb3c-libpng-apng-1.6.34-dev/include/libpng16 -isystem/nix/store/56i89kfi2nmjrv8hifsz6zikr6pq1avw-zlib-1.2.11-dev/include -std=gnu++14 -fno-exceptions -fno-rtti -nostdinc++ -isystem../../buildtools/third_party/libc++/trunk/include -isystem../../buildtools/third_party/libc++abi/trunk/include -fvisibility-inlines-hidden -Wno-narrowing -c ../../skia/ext/convolver_neon.cc -o obj/skia/skia/convolver_neon.o
../../skia/ext/convolver_neon.cc: In function 'int32x4_t skia::AccumRemainder(const unsigned char*, const Fixed*, int)':
../../skia/ext/convolver_neon.cc:26:65: error: cannot convert '<brace-enclosed initializer list>' to 'int32x4_t {aka __vector(4) int}' in return
return {remainder[0], remainder[1], remainder[2], remainder[3]};
^
```
The following patch appears to fix this build issue.
Source: b84682f31d
%5E%21/#F0
Suggested-by: @dezgeg
2018-04-29 18:38:38 +03:00
Léo Gaspard
a07881c8b8
chromium: skia patch appears to be still needed with 66 on aarch64
...
Cc @chaoflow @bendlas
Replaces #39628
2018-04-29 18:38:38 +03:00
Sarah Brofeldt
2248f98dea
Merge pull request #39570 from srhb/chromium-24h-timeout
...
chromium: See if Hydra obeys a 24h meta.timeout
2018-04-26 22:12:16 +02:00
Sarah Brofeldt
537d14f4e2
chromium: See if Hydra obeys a 24h meta.timeout
2018-04-26 21:59:33 +02:00
Herwig Hochleitner
2b29e40153
chromium: 65.0.3325.181 -> 66.0.3359.117
...
Critical CVE-2018-6085: Use after free in Disk Cache. Reported by Ned Williamson on 2018-03-28
Critical CVE-2018-6086: Use after free in Disk Cache. Reported by Ned Williamson on 2018-03-30
High CVE-2018-6087: Use after free in WebAssembly. Reported by Anonymous on 2018-02-20
High CVE-2018-6088: Use after free in PDFium. Reported by Anonymous on 2018-03-15
High CVE-2018-6089: Same origin policy bypass in Service Worker. Reported by Rob Wu on 2018-02-04
High CVE-2018-6090: Heap buffer overflow in Skia. Reported by ZhanJia Song on 2018-03-12
High CVE-2018-6091: Incorrect handling of plug-ins by Service Worker. Reported by Jun Kokatsu (@shhnjk) on 2017-10-05
High CVE-2018-6092: Integer overflow in WebAssembly. Reported by Natalie Silvanovich of Google Project Zero on 2018-03-08
Medium CVE-2018-6093: Same origin bypass in Service Worker. Reported by Jun Kokatsu (@shhnjk) on 2017-11-01
Medium CVE-2018-6094: Exploit hardening regression in Oilpan. Reported by Chris Rohlf on 2016-08-01
Medium CVE-2018-6095: Lack of meaningful user interaction requirement before file upload. Reported by Abdulrahman Alqabandi (@qab) on 2016-08-11
Medium CVE-2018-6096: Fullscreen UI spoof. Reported by WenXu Wu of Tencent's Xuanwu Lab on 2017-10-19
Medium CVE-2018-6097: Fullscreen UI spoof. Reported by xisigr of Tencent's Xuanwu Lab on 2018-01-26
Medium CVE-2018-6098: URL spoof in Omnibox. Reported by Khalil Zhani on 2018-01-03
Medium CVE-2018-6099: CORS bypass in ServiceWorker. Reported by Jun Kokatsu (@shhnjk) on 2018-02-03
Medium CVE-2018-6100: URL spoof in Omnibox. Reported by Lnyas Zhang on 2018-02-11
Medium CVE-2018-6101: Insufficient protection of remote debugging prototol in DevTools . Reported by Rob Wu on 2018-02-19
Medium CVE-2018-6102: URL spoof in Omnibox. Reported by Khalil Zhani on 2018-02-20
Medium CVE-2018-6103: UI spoof in Permissions. Reported by Khalil Zhani on 2018-02-24
Medium CVE-2018-6104: URL spoof in Omnibox. Reported by Khalil Zhani on 2018-03-08
Medium CVE-2018-6105: URL spoof in Omnibox. Reported by Khalil Zhani on 2018-01-18
Medium CVE-2018-6106: Incorrect handling of promises in V8. Reported by lokihardt of Google Project Zero on 2018-01-25
Medium CVE-2018-6107: URL spoof in Omnibox. Reported by Khalil Zhani on 2018-02-02
Medium CVE-2018-6108: URL spoof in Omnibox. Reported by Khalil Zhani on 2018-02-27
Low CVE-2018-6109: Incorrect handling of files by FileAPI. Reported by Dominik Weber (@DoWeb_) on 2017-04-10
Low CVE-2018-6110: Incorrect handling of plaintext files via file:// . Reported by Wenxiang Qian (aka blastxiang) on 2017-10-24
Low CVE-2018-6111: Heap-use-after-free in DevTools. Reported by Khalil Zhani on 2017-11-02
Low CVE-2018-6112: Incorrect URL handling in DevTools. Reported by Rob Wu on 2017-12-29
Low CVE-2018-6113: URL spoof in Navigation. Reported by Khalil Zhani on 2018-01-25
Low CVE-2018-6114: CSP bypass. Reported by Lnyas Zhang on 2018-02-13
Low CVE-2018-6115: SmartScreen bypass in downloads. Reported by James Feher on 2018-03-07
Low CVE-2018-6116: Incorrect low memory handling in WebAssembly. Reported by Jin from Chengdu Security Response Center of Qihoo 360 Technology Co. Ltd. on 2018-03-15
Low CVE-2018-6117: Confusing autofill settings. Reported by Spencer Dailey on 2018-03-15
Low CVE-2018-6084: Incorrect use of Distributed Objects in Google Software Updater on MacOS. Reported by Ian Beer of Google Project Zero on 2018-03-15
2018-04-21 14:57:45 +02:00
taku0
f92dc58c71
flashplayer: 29.0.0.113 -> 29.0.0.140
2018-04-10 21:14:20 +09:00
Herwig Hochleitner
8cbf295b6c
chromium: 65.0.3325.162 -> 65.0.3325.181
...
dev: 66 -> 67
cc @YorikSar @aszlig
2018-03-26 01:52:11 +02:00
Andrew Childs
3928fd9081
Chromium: fix skia build on aarch64
...
Patch imported from Arch Linux ARM
2018-03-20 00:20:42 +02:00
Yuriy Taraday
6b0732a956
chromium: 65.0.3325.146 -> 65.0.3325.162
...
Also bump dev branch to ensure that next beta will work.
2018-03-18 19:15:32 +02:00
taku0
864f4ceba4
flashplayer: 28.0.0.161 -> 29.0.0.113
2018-03-14 20:54:46 +09:00
Yuriy Taraday
ebce42146f
chromium: fix GCC 7 related build issues
...
Also clean up unused patches.
2018-03-10 03:31:55 +04:00
Herwig Hochleitner
9b4ffd98a4
chromium: 64.0.3282.186 -> 65.0.3325.146
...
see https://chromereleases.googleblog.com/2018/03/stable-channel-update-for-desktop.html
cc @aszlig @YorikSar
CVE-2017-11215
CVE-2017-11225
CVE-2018-6060
CVE-2018-6061
CVE-2018-6062
CVE-2018-6057
CVE-2018-6063
CVE-2018-6064
CVE-2018-6065
CVE-2018-6066
CVE-2018-6067
CVE-2018-6068
CVE-2018-6069
CVE-2018-6070
CVE-2018-6071
CVE-2018-6072
CVE-2018-6073
CVE-2018-6074
CVE-2018-6075
CVE-2018-6076
CVE-2018-6077
CVE-2018-6078
CVE-2018-6079
CVE-2018-6080
CVE-2018-6081
CVE-2018-6082
CVE-2018-6083
2018-03-09 03:02:49 +01:00
volth
96ebf614ad
chromium, google-chrome: fix escaping of commandLineArgs
2018-03-06 14:56:07 +00:00
Vladimír Čunát
565bd805e6
Merge branch 'master'
2018-03-05 14:53:27 +01:00
Herwig Hochleitner
c2339ed75a
chromium: replace ninja workaround with upstream patch
...
https://github.com/NixOS/nixpkgs/issues/35296
This reverts workaround commit e3cb6e7772
.
2018-02-27 00:08:38 +01:00
Herwig Hochleitner
3bae30289c
chromium: 64.0.3282.167 -> 64.0.3282.186
2018-02-25 23:56:58 +01:00
Herwig Hochleitner
e3cb6e7772
chromium: build mojo_platform_bindings before chrome
...
this is an attempt to prevent spurious errors due to parallel make
see https://github.com/NixOS/nixpkgs/issues/35296
2018-02-25 23:56:58 +01:00
Jan Tojnar
a31d98f312
tree-wide: autorename gnome packages to use dashes
2018-02-25 17:41:16 +01:00
Alexander V. Nikolaev
0acec7e984
treewide: transition mesa to libGLU_combined
2018-02-24 17:06:49 +02:00
Herwig Hochleitner
0d20bf0287
chromium: 64.0.3282.140 -> 64.0.3282.167
...
[806388] High CVE-2018-6056: Incorrect derived class instantiation in V8. Reported by lokihardt of Google Project Zero on 2018-01-26
2018-02-15 01:22:46 +01:00
taku0
0ff2f9be67
flashplayer: 28.0.0.137 -> 28.0.0.161
2018-02-08 20:51:32 +09:00
Herwig Hochleitner
8c8e8823bb
chromium: 64.0.3282.119 -> 64.0.3282.140
...
[security] https://crbug.com/808163
2018-02-04 17:47:51 +01:00
Herwig Hochleitner
7a2662569d
chromium: 63.0.3239.132 -> 64.0.3282.119
...
CVE-2018-6031
CVE-2018-6032
CVE-2018-6033
CVE-2018-6034
CVE-2018-6035
CVE-2018-6036
CVE-2018-6037
CVE-2018-6038
CVE-2018-6039
CVE-2018-6040
CVE-2018-6041
CVE-2018-6042
CVE-2018-6043
CVE-2018-6045
CVE-2018-6046
CVE-2018-6047
CVE-2018-6048
CVE-2017-15420
CVE-2018-6049
CVE-2018-6050
CVE-2018-6051
CVE-2018-6052
CVE-2018-6053
CVE-2018-6054
2018-01-25 20:34:04 +01:00
Herwig Hochleitner
d585a3207b
chromium: fix rpath-overwriting in WideVine plugin
2018-01-22 02:20:09 +01:00
Herwig Hochleitner
6b77189b80
chromium: hide enableWideVine
behind a broken
flag
...
ref https://github.com/NixOS/nixpkgs/issues/22333
ref https://github.com/NixOS/nixpkgs/pull/29640
cc @aszlig
2018-01-22 02:20:07 +01:00
Michal Rus
7b062dc57a
chromium: Use patchelfUnstable for WideVine plugin
...
ref #22333
2018-01-22 02:20:03 +01:00
Tuomas Tynkkynen
a8d0b805b1
chromium: Attempt building on aarch64
...
This will probably go over the 10 hour limit, but we'll see.
2018-01-22 00:42:59 +02:00
Andrew Childs
e8926be6bf
chromium: Configure aarch64 toolchain
2018-01-22 00:41:03 +02:00
John Ericson
e017a027d5
Merge pull request #33681 from obsidiansystems/fixed-output-deps
...
Fixed output deps
2018-01-10 14:28:10 -05:00
John Ericson
888404f11b
treewide: Fix deps in a few other fixed output derivations
2018-01-10 11:18:44 -05:00
taku0
4780cc70bd
flashplayer: 28.0.0.126 -> 28.0.0.137
2018-01-09 15:15:11 +09:00
Herwig Hochleitner
dbb774c5e1
chromium: update 63.0.3239.108 -> 63.0.3239.132
...
this introduces a standard approach to playing with patches from the
gentoo repository.
the patches for 64 are a first guess during a build in progress
cc @YorikSar @aszlig
2018-01-09 02:20:07 +01:00
Vladimír Čunát
0c5f5ba61d
Merge #32718 : chromium: 63.0.3239.84 -> 63.0.3239.108
2017-12-16 09:04:21 +01:00
Yuriy Taraday
2733530a66
chromium: 63.0.3239.84 -> 63.0.3239.108
...
New stable release with 2 security fixes [0].
Version 64 has been promoted to Beta, build still doesn't work.
[0] https://chromereleases.googleblog.com/2017/12/stable-channel-update-for-desktop_14.html
2017-12-15 22:22:55 +04:00
taku0
774786b54d
flashplayer: 27.0.0.187 -> 28.0.0.126
2017-12-13 20:08:07 +09:00
Yuriy Taraday
994a614ca3
chromium: 62.0.3202.94 -> 63.0.3239.84
...
New stable release with bunch of security fixes and other changes [0]
Also:
* remove patch for dev already landed upstream
* remove patches specific to version 62
* dev is broken again, need to investigate failures
[0] https://chromereleases.googleblog.com/2017/12/stable-channel-update-for-desktop.html
2017-12-09 01:12:32 +01:00
Samuel Leathers
8f75c783cd
Merge pull request #31660 from taku0/flashplayer-27.0.0.187
...
flashplayer: 27.0.0.183 -> 27.0.0.187
2017-11-15 08:27:39 -05:00
Yuriy Taraday
a472c57ffc
chromium: 62.0.3202.89 -> 62.0.3202.94
...
Also bump beta version.
2017-11-15 01:18:01 +01:00
taku0
dd3d1cf6e1
flashplayer: 27.0.0.183 -> 27.0.0.187
2017-11-14 15:15:25 +09:00
Guillaume Maudoux
84fb41dd26
chromium: hardcode xdg_utils path in system calls
...
ref #23518
2017-11-10 01:26:35 +01:00
Guillaume Maudoux
c7f00e361e
chromium: fix .desktop file name
...
The desktop file must be name "chromium-browser.desktop" because it is
used as-is when setting chromium as the default browser.
See https://cs.chromium.org/chromium/src/chrome/browser/shell_integration_linux.cc?l=657&rcl=34b92857a547538555be6a38e95f7e95ab9b6842
fixes #23518
2017-11-10 01:25:31 +01:00
Yuriy Taraday
7105bb68cc
chromium: 62.0.3202.75 -> 62.0.3202.89
...
Includes security fixes for CVE-2017-15398 and CVE-2017-15399.
Also fixes builds for beta and dev branches:
- backport https://webrtc-review.googlesource.com/9384 to fix build for
new webrtc revision
- for dev branch fix gn bootstrap, see
https://chromium-review.googlesource.com/758584
- for 63+ manpage now is not generated during ninja build, it is
processed with sed using packagers tools included in sources
2017-11-10 01:19:23 +01:00
Yuriy Taraday
da3c404e58
chromium: 62.0.3202.62 -> 62.0.3202.75
...
also fix beta/dev build - use harfbuzz from sources
Unfortunatelly after [0] chromium doesn't support using harfbuzz provided by
system while using vendored version of freetype.
Disabling usage of separate harfbuzz for now.
[0] https://chromium-review.googlesource.com/c/chromium/src/+/696241
2017-10-28 11:45:31 +02:00
taku0
9211249031
flashplayer: 27.0.0.170 -> 27.0.0.183
2017-10-25 22:43:23 +09:00
Yuriy Taraday
f0a0f02b22
chromium: 61.0.3163.100 -> 62.0.3202.62
...
Also updated most of patches according to their state in Gentoo
repository, deleted ones that are not applicable anymore.
2017-10-21 15:55:42 +02:00
taku0
a060b850f6
flashplayer: 27.0.0.159 -> 27.0.0.170
2017-10-17 13:59:54 +02:00
Herwig Hochleitner
30b3b5d85f
announce myself as a maintainer
...
added maintainer entries for `cdemu` (which i've created), as well as
`wine` and `chromium` (which I regularly contribute to)
2017-10-14 11:11:49 +02:00
taku0
628c039326
flashplayer: 27.0.0.130 -> 27.0.0.159
2017-10-10 23:28:28 +09:00
Robin Gloster
c8a2265513
Revert "chromium: take into account new nss header layout"
...
This reverts commit df41edfe1c
.
2017-10-09 20:50:02 +02:00
Michael Raskin
df41edfe1c
chromium: take into account new nss header layout
2017-10-09 18:15:30 +02:00