diff options
author | Michael BrĂ¼ning <michael.bruning@qt.io> | 2022-12-08 16:31:50 +0100 |
---|---|---|
committer | Michael BrĂ¼ning <michael.bruning@qt.io> | 2022-12-09 21:12:09 +0100 |
commit | 4ea03a0affbfd6ff36a7defd391b7ca139d18c8e (patch) | |
tree | 86574d2e93001608dd4d5bbce3f723a831f12188 | |
parent | 5d89f26414471689a9626515d098104e38bacbda (diff) |
Update Chromiumv5.15.12-vxworks-ltsv5.15.12-lts-lgplv5.15.12-lts5.15.12
Submodule src/3rdparty be349eaf..e0fd3a5d:
* Fixup for patch for CVE-2022-3200 on OpenSuse 15.1
* [Backport] CVE-2022-4262: Type Confusion in V8
* Bump V8_PATCH_LEVEL
* [Backport] CVE-2022-4174: Type Confusion in V8
* [Backport] CVE-2022-4180: Use after free in Mojo
* [Backport] CVE-2022-4181: Use after free in Forms
* [Backport] CVE-2022-3201: Insufficient validation of untrusted input in Developer Tools (2/2)
* [Backport] Security bug 1378916
* Fixup the patch for CVE-2022-3200 on 87-based / 5.15
* [Backport] CVE-2022-3200: Heap buffer overflow in Internals
* [Backport] CVE-2022-3887: Use after free in Web Workers
* [Backport] CVE-2022-3890: Heap buffer overflow in Crashpad
* [Backport] CVE-2022-3889: Type Confusion in V8
* [Backport] CVE-2022-3885: Use after free in V8
* [Backport] CVE-2022-3445: Use after free in Skia.
* [Backport] CVE-2022-3373: Out of bounds write in V8
* Fix building with XCode 14.1
* [Backport] CVE-2022-3046: Use after free in Browser Tag
* [Backport] CVE-2022-3446 and CVE-2022-35737
* [Backport] CVE-2022-3304: Use after free in CSS
* [Backport] CVE-2022-3201: Insufficient validation of untrusted input in Developer Tools (1/2)
* [Backport] Security bug 1356308
* [Backport] CVE-2022-3370: Use after free in Custom Elements
* [Backport] Security bugs 1346938 and 1338114
* [Backport] CVE-2022-3199: Use after free in Frames.
* [Backport] CVE-2022-3198: Use after free in PDF
* [Backport] CVE-2022-3197: Use after free in PDF
* [Backport] CVE-2022-3196: Use after free in PDF
* [Backport] CVE-2022-3075: Insufficient data validation in Mojo
* [Backport] CVE-2022-3040: Use after free in Layout
* [Backport] CVE-2022-3041: Use after free in WebSQL
* [Backport] CVE-2022-3038: Use after free in Network Service
Task-number: QTBUG-109225
Fixes: QTBUG-108207
Fixes: QTBUG-108178
Fixes: QTBUG-108179
Fixes: QTBUG-108180
Change-Id: I5e1ebbe350e67ed888bfb07602d88bfcbecd94df
Reviewed-by: Michal Klocek <michal.klocek@qt.io>
-rw-r--r-- | CHROMIUM_VERSION | 2 | ||||
m--------- | src/3rdparty | 0 |
2 files changed, 1 insertions, 1 deletions
diff --git a/CHROMIUM_VERSION b/CHROMIUM_VERSION index b7e9d2de9..95fd981d6 100644 --- a/CHROMIUM_VERSION +++ b/CHROMIUM_VERSION @@ -1,2 +1,2 @@ Based on Chromium version: 87.0.4280.144 -Patched with security patches up to Chromium version: 98.0.4758.102 +Patched with security patches up to Chromium version: 108.0.5359.94 diff --git a/src/3rdparty b/src/3rdparty -Subproject be349eaf62e77955791d7bf29f893f1e8a37daf +Subproject e0fd3a5d3ce79d43dee6e0bad16a71123d9a14b |