summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorAllan Sandfeld Jensen <allan.jensen@qt.io>2020-11-03 22:32:39 +0100
committerAllan Sandfeld Jensen <allan.jensen@qt.io>2020-11-04 06:25:04 +0100
commit35c7e9134a1a5e0390c42ea2df06a749255497ff (patch)
tree449c13b58b8b7cf99da1fb3125f32628bfeecee0
parent0a45a566f195c738d1561c691e7a767bd36bf9d7 (diff)
Update Chromium
Including security issue under active exploit. Submodule src/3rdparty 55b3d183..fb6ab5e4: > [Backport] Security bug 1137608 > [Backport] CVE-2020-16011: Heap buffer overflow in UI on Windows. > [Backport] CVE-2020-16009: Inappropriate implementation in V8 > [Backport] CVE-2020-16008: Stack buffer overflow in WebRTC > [Backport] CVE-2020-16005: Insufficient policy enforcement in ANGLE > Fix assert when running tests build with -no-webengine-webrtc Change-Id: Ic9ee45fbd78c999881454e5e0e3091489f637aae Reviewed-by: Michael BrĂ¼ning <michael.bruning@qt.io>
-rw-r--r--dist/changes-5.15.27
m---------src/3rdparty0
2 files changed, 6 insertions, 1 deletions
diff --git a/dist/changes-5.15.2 b/dist/changes-5.15.2
index de6ffc58..8d48468b 100644
--- a/dist/changes-5.15.2
+++ b/dist/changes-5.15.2
@@ -39,7 +39,7 @@ Chromium
--------
- The Chromium version has been updated to 83.0.4103.122
- - Security fixes from Chromium up to version 86.0.4240.111, including:
+ - Security fixes from Chromium up to version 86.0.4240.183, including:
- CVE-2020-6540: Heap buffer overflow in Skia
- CVE-2020-6557: Inappropriate implementation in networking
- CVE-2020-6561: Inappropriate implementation in Content Security Policy
@@ -75,8 +75,13 @@ Chromium
- CVE-2020-16001: Use after free in media.
- CVE-2020-16002: Use after free in PDFium
- CVE-2020-16003: Use after free in printing
+ - CVE-2020-16005: Insufficient policy enforcement in ANGLE
+ - CVE-2020-16008: Stack buffer overflow in WebRTC
+ - CVE-2020-16009: Inappropriate implementation in V8
+ - CVE-2020-16011: Heap buffer overflow in UI on Windows.
- Security bug 1106091
- Security bug 1107824
- Security bug 1111149
- Security bug 1125199
+ - Security bug 1137608
diff --git a/src/3rdparty b/src/3rdparty
-Subproject 55b3d183921d3ecbbbc0cee5f54a4420aec5c63
+Subproject fb6ab5e483876298235be1c6a6013b426c82b75