diff options
| author | Michael BrĂ¼ning <michael.bruning@qt.io> | 2021-12-17 10:28:42 +0100 |
|---|---|---|
| committer | Michael BrĂ¼ning <michael.bruning@qt.io> | 2021-12-18 00:08:04 +0100 |
| commit | 00062a3adf0014f4624e605508651195b1da1cd6 (patch) | |
| tree | e4b43550a5822d496cb06be9a426b9f1a4f5842f /src/3rdparty | |
| parent | 4754121b79ae9129742d141bccf436cf9b30b986 (diff) | |
Update Chromium
Submodule src/3rdparty 735b1a39..2335554c:
> [Backport] Security bug 1259899
> [Backport] CVE-2021-4057: Use after free in file API
> [Backport] CVE-2021-4078: Type confusion in V8
> [Backport] CVE-2021-4059: Insufficient data validation in loader
> [Backport] CVE-2021-4062: Heap buffer overflow in BFCache
> Fix crashes with MSVC
> Bundle all localisation files for DevTools
> Speculative fixes for build race conditions
> Allow DevTools to download remote translations
> FIXUP: Fix disabling reporting
> Use wglSetPixelFormat directly only if in software mode
> Fix jumbo build: syntax error in v8 token.h(211)
> [Backport] CVE-2021-38017: Insufficient policy enforcement in iframe sandbox
> [Backport] CVE-2021-37987 : Use after free in Network APIs
> [Backport] CVE-2021-38015: Inappropriate implementation in input
> [Backport] CVE-2021-38018: Inappropriate implementation in navigation
> [Backport] CVE-2021-38021: Inappropriate implementation in referrer
> [Backport] CVE-2021-38005: Use after free in loader (3/3)
> [Backport] CVE-2021-38005: Use after free in loader (2/3)
> [Backport] CVE-2021-38005: Use after free in loader (1/3)
> [Backport] CVE-2021-38019: Insufficient policy enforcement in CORS
> [Backport] CVE-2021-38007: Type Confusion in V8
> [Backport] CVE-2021-38009: Inappropriate implementation in cache
> [Backport] Dependency for CVE-2021-38009
> [Backport] CVE-2021-38012: Type Confusion in V8
> [Backport] CVE-2021-38010: Inappropriate implementation in service workers
> [Backport] Security bug 1252858
> [Backport] Security bug 1241912
> [Backport] CVE-2021-37994 : Inappropriate implementation in iFrame Sandbox
> [Backport] Dependency for CVE-2021-37994
> [Backport] CVE-2021-37996 : Insufficient validation of untrusted input in Downloads
> [Backport] CVE-2021-37989 : Inappropriate implementation in Blink
> [Backport] CVE-2021-37985 : Use after free in V8
> [Backport] Security bug 1245870
> [Backport] CVE-2021-37992 : Out of bounds read in WebAudio
> [Backport] CVE-2021-37993 : Use after free in PDF Accessibility
Task-number: QTBUG-95568
Task-number: QTBUG-99099
Fixes: QTBUG-99282
Fixes: QTBUG-99285
Change-Id: I0b5d1fff98e1c83458a99d4badf40b7ef49cc660
Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
Diffstat (limited to 'src/3rdparty')
| m--------- | src/3rdparty | 0 |
1 files changed, 0 insertions, 0 deletions
diff --git a/src/3rdparty b/src/3rdparty -Subproject 735b1a398df409a98e84ed0eb1afb0bafdd9dff +Subproject 2335554cb5b76f9e72a01d700c78e930e653c96 |