summaryrefslogtreecommitdiffstats
path: root/CHROMIUM_VERSION
Commit message (Collapse)AuthorAgeFilesLines
* Update ChromiumMichael Brüning2024-03-181-1/+1
| | | | | | | | | | Submodule src/3rdparty 326fa478..34ec0d3e: * [Backport] Security bug 325296797 Pick-to: 6.6 Fixes: QTBUG-123292 Change-Id: I4052ff581d0414865f15d2386c3c4c970540482c Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
* Update ChromiumMichael Brüning2024-03-131-1/+1
| | | | | | | | | | | | | | | | | | | Submodule src/3rdparty 707f4e7c..326fa478: * [Backport] CVE-2024-25062 / Security bug 325094430 * [Backport] CVE-2024-1671: Inappropriate implementation in Site Isolation (2/2) * [Backport] CVE-2024-1671: Inappropriate implementation in Site Isolation (1/2) * [Backport] CVE-2024-1676: Inappropriate implementation in Navigation * [Backport] CVE-2024-1672: Inappropriate implementation in Content Security Policy. * [Backport] CVE-2024-1670: Use after free in Mojo * [Backport] Security bug 1504473 / 40945008 * [Backport] Security bug 1508758 / 41481379 * [Backport] Security bug 1518994 * Do not assert when ozone uses qt platform with vaapi Fixes: QTBUG-122931 Pick-to: 6.6 6.5 Change-Id: I6b9d3a8a4272e24fe818dc048113b170a3b191b5 Reviewed-by: Michal Klocek <michal.klocek@qt.io>
* Update ChromiumMichael Brüning2024-02-091-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | Submodule src/3rdparty e257d651..707f4e7c: * [Backport] CVE-2024-1284: Use after free in Mojo * [Backport] CVE-2024-1283: Heap buffer overflow in Skia * [Backport] CVE-2024-1059: Use after free in WebRTC * Fixup: [Backport] Security bug 1407197 * [Backport] Use raw strings for regexps in Python code. * [Backport] CVE-2024-1077: Use after free in Network * [Backport] CVE-2024-1060: Use after free in Canvas * [Backport] Security bug 1519980 * FIXUP: Fix build with VS Toolset 17.8 * Fix build with VS Toolset 17.8 * Remove unused python import * [Backport] Update vendored copy of six to 1.16.0. Pick-to: 6.5 Fixes: QTBUG-121845 Fixes: QTBUG-122095 Change-Id: Ice00b6537b19d2a7af7787b5f2989283c89130b7 Reviewed-by: Michal Klocek <michal.klocek@qt.io> (cherry picked from commit 8b521bfccd0ed6fe084bc0bf5b41ec04c31dc83b) Reviewed-by: Qt Cherry-pick Bot <cherrypick_bot@qt-project.org>
* Update ChromiumMichael Brüning2024-02-021-1/+1
| | | | | | | | | | | | | | | | | Submodule src/3rdparty 7b40abeb..e257d651: * [Backport] Security bug 1407197 (2/2) * [Backport] Security bug 1407197 (1/2) * [Backport] CVE-2024-0810: Insufficient policy enforcement in DevTools * [Backport] Security bug 1511389 (2/2) * [Backport] Dependency for security bug 1511389 (1/1) * [Backport] Security bug 1511389 (1/2) * [Backport] CVE-2024-0807: Use after free in WebAudio * [Backport] CVE-2024-0808: Integer underflow in WebUI Task-number: QTBUG-121685 Change-Id: Ie8e7a70265b142b65cea5bd89c9afa45fb0dec6c Reviewed-by: Michal Klocek <michal.klocek@qt.io> (cherry picked from commit 935caecbbff5ac79d2c43d6bdcd81fe7d83baedf)
* Update ChromiumMichael Brüning2024-01-191-1/+1
| | | | | | | | | | | | | Submodule src/3rdparty 38bef0c..7b40abeb: * [Backport] Security bug 1506535 * [Backport] CVE-2024-0518: Type Confusion in V8 * [Backport] CVE-2024-0519: Out of bounds memory access in V8 * Fix compilation without webrtc * Speculative fix for jumbo builds on windows Fixes: QTBUG-121229 Change-Id: I106c80206bc84c592d2fe1df770c391883d587df Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
* Update ChromiumMichael Brüning2024-01-171-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Submodule src/3rdparty 028cbdb7..38bef0cb: * FIXUP: FIXUP Do not include xproto when no x11 * [Backport] Security bug 1511689 * Fixup: [Backport] Security bug 1488199 * [Backport] CVE-2024-0222: Use after free in ANGLE * [Backport] CVE-2024-0223: Heap buffer overflow in ANGLE (3/3) * [Backport] CVE-2024-0223: Heap buffer overflow in ANGLE (2/3) * [Backport] CVE-2024-0223: Heap buffer overflow in ANGLE (1/3) * [Backport] CVE-2024-0224: Use after free in WebAudio * [Backport] CVE-2024-0225: Use after free in WebGPU * [Backport] CVE-2024-0333: Insufficient data validation in Extensions * [Backport] CVE-2023-7024: Heap buffer overflow in WebRTC * FIXUP: Fix compilation with system ICU * [Backport] Replace imp.load_source with importlib equivalent. * Do not include xproto when no x11 * [Backport] Security bug 1488199 (3/3) * [Backport] Security bug 1488199 (2/3) * [Backport] Security bug 1488199 (1/3) * Bump V8_PATCH_LEVEL * [Backport] Security bug 1505632 * [Backport] Security bug 1506726 * [Backport] CVE-2023-6706: Use after free in FedCM * [Backport] CVE-2023-6705: Use after free in WebRTC * [Backport] CVE-2023-6703: Use after free in Blink * [Backport] CVE-2023-6702: Type Confusion in V8 * FIXUP: Add missing pkg_config calls for system libs * Add missing pkg_config calls for system libs * [Backport] Security bug 1485266 * [Backport] CVE-2023-6510: Use after free in Media Capture Fixes: QTBUG-119857 Fixes: QTBUG-121003 Fixes: QTBUG-121004 Fixes: QTBUG-121005 Fixes: QTBUG-121006 Change-Id: Ic71d208d6f4cd285a60092936fb6a4ffc4620e6f Reviewed-by: Michal Klocek <michal.klocek@qt.io>
* Update ChromiumMichael Brüning2023-12-081-1/+1
| | | | | | | | | | | | | | | Submodule src/3rdparty 772cb04f..148f3965: * [Backport] CVE-2023-6346: Use after free in WebAudio * [Backport] CVE-2023-6347: Use after free in Mojo * [Backport] CVE-2023-6345: Integer overflow in Skia (2/2) * [Backport] CVE-2023-6345: Integer overflow in Skia (1/2) * [Backport] Check nullity of web preferences * Use pkg-config on mac if found * Fix compilation with mingw 13.1 Fixes: QTBUG-119568 Change-Id: Ib8369cd948bb541c81f7dfff0b37aec695cea4f9 Reviewed-by: Michal Klocek <michal.klocek@qt.io>
* Update ChromiumMichael Brüning2023-12-071-1/+1
| | | | | | | | | | Submodule src/3rdparty 772cb04f..6c805bf7: * [Backport] CVE-2023-6112: Use after free in Navigation * [Backport] CVE-2023-5997: Use after free in Garbage Collection Fixes: QTBUG-119158 Change-Id: I59ceb253adbe0ea03ee2c4757d510f1e8bd50a8d Reviewed-by: Michal Klocek <michal.klocek@qt.io>
* Update ChromiumMichael Brüning2023-11-181-1/+1
| | | | | | | | | | | | | | | Submodule src/3rdparty 4253d879..772cb04f: * Add android on windows build support * [Backport] CVE-2023-5996: Use after free in WebAudio * Do not require android support libs for 32bits Fixes: QTBUG-118891 Change-Id: Ic93d91df7365de9c8bc1b3c5b667c2537e9da6b1 Reviewed-by: Michal Klocek <michal.klocek@qt.io> (cherry picked from commit 71b4ebbf035d7a08184a43b896c4d51e1391421a) Reviewed-by: Jani Heikkinen <jani.heikkinen@qt.io> (cherry picked from commit c7d0da165e45aea19ef0f8331b18ebbeaa85b00c) Reviewed-by: Qt Cherry-pick Bot <cherrypick_bot@qt-project.org>
* Update ChromiumMichael Brüning2023-11-071-1/+1
| | | | | | | | | | | | | | | Submodule src/3rdparty 8146bf85..4253d879: * [Backport] CVE-2023-45853: Buffer overflow in MiniZip (2/2) * [Backport] CVE-2023-45853: Buffer overflow in MiniZip (1/2) * [Backport] Security bug 1471305 * [Backport] CVE-2023-5482 and CVE-2023-5849 * [Backport] Security bug 1478470 Fixes: QTBUG-118682 Change-Id: I067d1d9f7791d57d95a12a1f9762998d56ed4de2 Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io> (cherry picked from commit ec27984cfb257e94a0ca6fdb2e40c278fdf94663) Reviewed-by: Qt Cherry-pick Bot <cherrypick_bot@qt-project.org>
* Update ChromiumMichael Brüning2023-10-311-1/+1
| | | | | | | | | | | | | | | | | | | | | | Submodule src/3rdparty 75a9a538..8146bf85: * [Backport] CVE-2023-5218: Use after free in Site Isolation * [Backport] CVE-2023-5476: Use after free in Blink History * [Backport] CVE-2023-5486: Inappropriate implementation in Input * [Backport] Dependency for CVE-2023-5486: Inappropriate implementation in Input * [Backport] CVE-2023-5474: Heap buffer overflow in PDF * [Backport] CVE-2023-5475: Inappropriate implementation in DevTools * [Backport] CVE-2023-5484: Inappropriate implementation in Navigation * [Backport] CVE-2023-5487: Inappropriate implementation in Fullscreen * [Backport] Security bug 1472368 * [Backport] Security bug 1472365 and 1472366 * [Backport] Security bug 1486316 * Add shorter include paths workaround Task-number: QTBUG-118480 Change-Id: I8968b249bdea9e234c925cbdacf50d92d5c2f4c6 Reviewed-by: Michal Klocek <michal.klocek@qt.io> (cherry picked from commit d40ba15ec9cbc2e3c86d2cdf35aec6abd1d2a405) Reviewed-by: Qt Cherry-pick Bot <cherrypick_bot@qt-project.org>
* Update ChromiumMichael Brüning2023-10-131-1/+1
| | | | | | | | | | | | | | | | | | | | | | | Submodule src/3rdparty 14780aaa..75a9a538: * [Backport] Add Intel Meteorlake GPU series type * Fix ffmpeg assembly with newer binutil * [Backport] Security bug 1447972 (2/2) * [Backport] Security bug 1447972 (1/2) * [Backport] Security bug 1479104 * [Backport] Security bug 1480184 * [Backport] CVE-2023-5217: Heap buffer overflow in vp8 encoding in libvpx * Zygote: Prevent leaking control socket to child processes * FIXUP: jumbo build * [Backport] Set ABSL_OPTION_USE_STD_ANY to 2 * [Backport] Replace uses of re2::StringPiece::set(). * [Backport] Make absl::string_view a typedef for std::string_view * Fix broken copy of non-BMP characters Fixes: QTBUG-117653 Change-Id: I49b82a1f97ffda0f7ba2b3607217a178e51ee222 Reviewed-by: Michal Klocek <michal.klocek@qt.io> (cherry picked from commit 482839a0d315722f006cdd90a3e2eff97a991b2c) Reviewed-by: Qt Cherry-pick Bot <cherrypick_bot@qt-project.org>
* Update ChromiumMichael Brüning2023-09-191-1/+1
| | | | | | | | | | | | | | | | | | Submodule src/3rdparty a71ba6ff..14780aaa: * [Backport] Security bug 1427288 (2/2) * [Backport] Security bug 1427288 (1/2) * [Backport] Security bug 1449166 * [Backport] Security bug 1469534 * [Backport] CVE-2023-4909: Inappropriate implementation in Interstitials * [Backport] CVE-2023-4908: Inappropriate implementation in Picture in Picture * [Backport] CVE-2023-4902: Inappropriate implementation in Input Task-number: QTBUG-117059 Change-Id: I22da560b291cb984fffe1599a5f9845192458107 Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io> (cherry picked from commit 17c036b2a20f55daf7edcdafaf603a77130b8b04) Reviewed-by: Qt Cherry-pick Bot <cherrypick_bot@qt-project.org> (cherry picked from commit d44f6dc3427295f439eaa8fcaa70d9eb7f11fc88)
* Update ChromiumMichael Brüning2023-09-131-2/+2
| | | | | | | | | | | | | | | | | | Submodule src/3rdparty b295bd04..a71ba6ff: * [Backport] CVE-2023-4863: Heap buffer overflow in WebP * Bump V8_PATCH_LEVEL * [Backport] CVE-2023-4762: Type Confusion in V8 * [Backport] CVE-2023-4763: Use after free in Networks * [Backport] blink::HTMLMediaElement::ShouldReusePlayer: avoid dereferencing a potentally NULL domWindow * FIXUP: Qt GN integration * Avoid using libdrm Pick-to: 6.6.0 Fixes: QTBUG-115470 Fixes: QTBUG-116501 Change-Id: Ibeff96e0dca65b42ffe512627eab3c2f0f349c8c Reviewed-by: Michal Klocek <michal.klocek@qt.io> (cherry picked from commit e4d73afd5464bd7f34063e08aab55e8f6b16aa22)
* Update ChromiumMichael Brüning2023-09-011-1/+1
| | | | | | | | | | | | | | | Submodule src/3rdparty b02cdcee..b295bd04: * FIXUP: Temporary fix for missing macOS 12.3 SDK * Temporary fix for missing macOS 12.3 SDK * Fix build with clang * Disable Windows IME for GPU thread Task-number: QTBUG-73994 Fixes: QTBUG-116278 Change-Id: I9894f341a82b0c5887d38e9d2597ecc2bde11392 Reviewed-by: Michal Klocek <michal.klocek@qt.io> (cherry picked from commit 3e900b7a91a07fe356ffa9d5de8189cda93220a8) Reviewed-by: Qt Cherry-pick Bot <cherrypick_bot@qt-project.org>
* Update ChromiumMichael Brüning2023-08-281-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Submodule src/3rdparty 2d71c20d..cfa9a71a: * Fix for QtWebEngine crash on Windows * FIXUP: Add minimal webrtcdesktopcapture api for hangout services extension * FIXUP: Jumbo build * [Backport] CVE-2023-4078: Inappropriate implementation in Extensions (2/2) * [Backport] CVE-2023-4077: Insufficient data validation in Extensions (3/3) * [Backport] CVE-2023-4077 (2/3) and CVE-2023-4078 (1/2) * [Backport] CVE-2023-4077: Insufficient data validation in Extensions (1/3) * [Backport] Security bug 1429353 (2/2) * [Backport] Security bug 1429353 (1/2), dependency for CVE-2023-4077 and CVE-2023-4078 * [Backport] Security bug 1454544 * [Backport] Security bug 1465224 * [Backport] CVE-2023-4070: Type Confusion in V8 * [Backport] CVE-2023-4073: Out of bounds memory access in ANGLE. * [Backport] CVE-2023-4071: Heap buffer overflow in Visuals * [Backport] CVE-2023-4076: Use after free in WebRTC * [Backport] CVE-2023-4074: Use after free in Blink Task Scheduling * [Backport] CVE-2023-4068: Type Confusion in V8 * [Backport] Security bug 1464680 * [Backport] Security bug 1464682 * FIXUP: Fix build with enable_vulkan=false Task-number: QTBUG-115470 Fixes: QTBUG-115703 Change-Id: I1478381717e2189f74041c9e3b62751bdd089d45 Reviewed-by: Anu Aliyas <anu.aliyas@qt.io> Reviewed-by: Michal Klocek <michal.klocek@qt.io> (cherry picked from commit c4e1822f45a8d6a7941c908e72690fc2a578fef7) Reviewed-by: Qt Cherry-pick Bot <cherrypick_bot@qt-project.org>
* Fixup: Support MSVC 2019Michael Brüning2023-08-071-1/+1
| | | | | | | | | | Commit aacf93e14a6f102b79f4506b334ae8a4b014f0c2 contained a preliminary SHA1 for the qtwebengine-chromium repository. Update docs and the Chromium security patch version. Fixes: QTBUG-115713 Change-Id: Ic50d191b614144e624c747657303a0aff09907cd Reviewed-by: Michal Klocek <michal.klocek@qt.io>
* Update ChromiumMichael Brüning2023-06-221-1/+1
| | | | | | | | | | | | Submodule src/3rdparty ba3cfe92..a4a9769c: * [Backport] Security bug 1447430 Task-number: QTBUG-114754 Change-Id: I0aaa8c8783f5fdbb9617b0dc850caf31db6c3a36 Reviewed-by: Michal Klocek <michal.klocek@qt.io> Reviewed-by: Tarja Sundqvist <tarja.sundqvist@qt.io> (cherry picked from commit 8c23756c8a7b3dcadd6dff20f76d156e4dace876) Reviewed-by: Qt Cherry-pick Bot <cherrypick_bot@qt-project.org>
* Update ChromiumMichal Klocek2023-06-011-1/+1
| | | | | | | | | | | | | | | | | | | Submodule src/3rdparty 34482ee5..06943d86: * Fix name clash with SetForm * Add is_mingw helper and fix gn configurations * [Backport] CVE-2023-2724: Type Confusion in V8 * [Backport] CVE-2023-2723: Use after free in DevTools * [Backport] Security bug 1439691 * [Backport] Security bug 1442263 * [Backport] Security bug 1425115 * [Backport] CVE-2023-2721: Use after free in Navigation * Add workaround for broken windows.foundation.h header on mingw * Do not use posix_memalign with mingw * Fix nasm config for mingw * Add gn mingw compilation Change-Id: I557330876c215a700fa42fdf2679eb9218e50431 Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
* Update ChromiumMichael Brüning2023-04-191-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Submodule src/3rdparty 22fec96c..d3c3d748: * Revert "[Backport] CVE-2023-0704: Insufficient policy enforcement in DevTools" * Do not stop navigation during saving the page if not necessary * Pass through non-keymutex share handles * [Backport] CVE-2023-1236: Inappropriate implementation in Internals * [Backport] CVE-2023-0704: Insufficient policy enforcement in DevTools * [Backport] Security bug 1417585 * [Backport] Security bug 1418734 (2/2) * [Backport] Security bug 1418734 (1/2) * [Backport] Security bug 1415249 * [Backport] Security bug 1402921 * [Backport] Security bug 1337747 * [Backport] Security bug 1412991 * [Backport] CVE-2023-1532: Out of bounds read in GPU Video * [Backport] CVE-2023-1534: Out of bounds read in ANGLE * [Backport] CVE-2023-1531: Use after free in ANGLE * [Backport] CVE-2023-1530: Use after free in PDF (2/2) * [Backport] CVE-2023-1530: Use after free in PDF (1/2) * [Backport] CVE-2023-1529: Out of bounds memory access in WebHID * [Backport] CVE-2023-1235: Type Confusion in DevTools * [Backport] CVE-2023-1232: Insufficient policy enforcement in Resource Timing * [Backport] CVE-2023-1233: Insufficient policy enforcement in Resource Timing * [Backport] CVE-2023-1222: Heap buffer overflow in Web Audio API * [Backport] CVE-2023-1220: Heap buffer overflow in UMA * [Backport] CVE-2023-1219: Heap buffer overflow in Metrics (3/3) * [Backport] CVE-2023-1219: Heap buffer overflow in Metrics (2/3) * [Backport] CVE-2023-1219: Heap buffer overflow in Metrics (1/3) * [Backport] CVE-2023-1218: Use after free in WebRTC * [Backport] CVE-2023-1217: Stack buffer overflow in Crash reporting * [Backport] CVE-2023-1215: Type Confusion in CSS * [Backport] CVE-2023-1214: Type Confusion in V8 Pick-to: 6.5 Fixes: QTBUG-112166 Change-Id: I747f60f72cbf6847bc0ee89bee655972968da921 Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
* Update ChromiumMichael Brüning2023-02-221-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Submodule src/3rdparty 7e5ee9d6..10e54a07: * FIXUP: Fixes for building with MSVC * Fixup for [Backport] CVE-2023-0705: Integer overflow in Core (2/2) * Fix android on mac support * Add android config support * Merge branch 'upstream-master' into HEAD * Add android required resources for chromium repo * [Backport] CVE-2023-0696: Type Confusion in V8 * [Backport] Security bug 829317 (2/2) * [Backport] Security bug 829317 (1/2) * [Backport] CVE-2023-0705: Integer overflow in Core (2/2) * [Backport] CVE-2023-0705: Integer overflow in Core (1/2) * [Backport] Security bug 1400809 * [Backport] Security bug 1325096 * [Backport] CVE-2023-0701: Heap buffer overflow in WebUI. * [Backport] CVE-2023-0702: Type Confusion in Data Transfer * [Backport] CVE-2023-0699: Use after free in GPU (2/2) * [Backport] CVE-2023-0699: Use after free in GPU (1/2) * [Backport] CVE-2023-0703: Type Confusion in DevTools * [Backport] CVE-2023-0698: Out of bounds read in WebRTC (2/2) * [Backport] CVE-2023-0698: Out of bounds read in WebRTC (1/2) * Merge branch 'upstream-master' into 108-based * BASELINE: Update Chromium to 108.0.5359.220 Pick-to: 6.5 Task-number: QTBUG-111363 Task-number: QTBUG-83459 Change-Id: Id67893339f68e382e10ae10bbfddeffc8b60ae88 Reviewed-by: Michal Klocek <michal.klocek@qt.io> Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
* Update Chromium security backports version informationMichael Brüning2023-02-151-1/+1
| | | | | | Pick-to: 6.5 Change-Id: If905393d73892256175ac5059503a9fc4a6a32f6 Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
* Update ChromiumAllan Sandfeld Jensen2023-01-141-2/+2
| | | | | | | | | | Submodule src/3rdparty d7abc8b24..1ccfe20ad: > FIXUP: Jumbo builds > Merge remote-tracking branch 'origin/upstream-master' into 108-based Pick-to: 6.5 Change-Id: Ib11a7e5422415229c5ed109d63375c4953df97d2 Reviewed-by: Michael Brüning <michael.bruning@qt.io>
* Adaptations for 108-basedAllan Sandfeld Jensen2023-01-061-2/+2
| | | | | | | Pick-to: 6.5 Fixes: QTBUG-105147 Change-Id: I0022964903f3443cc97843c62468ab9be8ae2ed8 Reviewed-by: Peter Varga <pvarga@inf.u-szeged.hu>
* Update ChromiumAllan Sandfeld Jensen2022-12-021-2/+2
| | | | | | | | | | | Submodule src/3rdparty be36115f0..d3786fd69: > FIXUP: Fix browser DCHECK > FIXUP: Fixes for jumbo build > Merge branch 'upstream-master' into 106-based > Fix browser DCHECK Change-Id: Ia38b518a9c51f7a0da51de02f28b32374f5b9a3c Reviewed-by: Michael Brüning <michael.bruning@qt.io>
* Update chromium to 106-basedAllan Sandfeld Jensen2022-11-281-2/+2
| | | | | | Task-number: QTBUG-105147 Change-Id: I47b9e46df18420b75b205e818b117ee632680873 Reviewed-by: Michal Klocek <michal.klocek@qt.io>
* Update ChromiumMichael Brüning2022-11-031-1/+1
| | | | | | | | | | Sumbmodule src/3rdparty 24df9c9b..9457651e: > [Backport] CVE-2022-3723: Type Confusion in V8 Task-number: QTBUG-108106 Change-Id: Ic6ae78e84df7198e5729f1377b60d774e1b1e5fa Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
* Update ChromiumAllan Sandfeld Jensen2022-09-131-1/+1
| | | | | | | | | | | | | Submodule src/3rdparty 43b92e07d..1dc53de69: > [Backport] CVE-2022-3040: Use after free in Layout > [Backport] CVE-2022-3041: Use after free in WebSQL > [Backport] CVE-2022-3038: Use after free in Network Service > Merge branch 'upstream-master' into 102-based Fixes: QTBUG-106254 Pick-to: 6.4 6.4.0 Change-Id: Ifd55481c8d26f0e2cf8cb9e01cdaa8aa530354d8 Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
* Update ChromiumMichael Brüning2022-08-191-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | Submodule src/3rdparty 8496e134..620599a6: * 2nd fixup for [Backport] CVE-2022-2605 * Fixup for [Backport] CVE-2022-2605: Out of bounds read in Dawn (1/3) * [Backport] CVE-2022-2854: Use after free in SwiftShader * [Backport] CVE-2022-2860: Insufficient policy enforcement in Cookies * [Backport] CVE-2022-2855: Use after free in ANGLE * [Backport] CVE-2022-2857: Use after free in Blink * [Backport] CVE-2022-2853: Heap buffer overflow in Downloads * Disable accelerated_2d_canvas for Intel drivers on Windows * [Backport] CVE-2022-2605: Out of bounds read in Dawn (3/3) * [Backport] CVE-2022-2605: Out of bounds read in Dawn (2/3) * [Backport] CVE-2022-2605: Out of bounds read in Dawn (1/3) * Native spellchecker: Fix it when enabled * Fix build without spellcheck * [Backport] Security bug 1264288 * [Backport] Security bug 1333970 * [Backport] Security bug 1343889 Pick-to: 6.4 Fixes: QTBUG-104640 Task-number: QTBUG-1053266 Change-Id: I9fec122a689bcdf0afdec482b7a60cb5f811543d Reviewed-by: Michal Klocek <michal.klocek@qt.io>
* Advertise correct security levelAllan Sandfeld Jensen2022-04-061-1/+1
| | | | | | | | | | Otherwise it will look like we are still vulnerable to the critical CVEs Change-Id: I205e4b5cb72021f56621772d36a27f9fa5dc340c Reviewed-by: Michal Klocek <michal.klocek@qt.io> (cherry picked from commit 00e4a2ac3f694b5ec1999af3518f1c550b662057) Reviewed-by: Qt Cherry-pick Bot <cherrypick_bot@qt-project.org>
* Update ChromiumMichael Brüning2022-02-281-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Submodule src/3rdparty 2aad1f40..7dba564e: > Revert "[Backport] CVE-2022-0297: Use after free in Vulkan" > [Backport] CVE-2022-0297: Use after free in Vulkan > [Backport] Security bug 1292537 > [Backport] Security bug 1289394 > [Backport] Security bug 1289384 > [Backport] CVE-2022-0610: Inappropriate implementation in Gamepad API > [Backport] CVE-2022-0609: Use after free in Animation > [Backport] CVE-2022-0608: Integer overflow in Mojo > [Backport] CVE-2022-0607: Use after free in GPU > [Backport] CVE-2022-0606: Use after free in ANGLE > [Backport] CVE-2022-0303: Race in GPU Watchdog > [Backport] CVE-2021-4056: Type Confusion in loader > [Backport] CVE-2022-0466: Inappropriate implementation in Extensions Platform (4/4) > [Backport] CVE-2022-0466: Inappropriate implementation in Extensions Platform (3/4) > [Backport] CVE-2022-0466: Inappropriate implementation in Extensions Platform (2/4) > [Backport] CVE-2022-0466: Inappropriate implementation in Extensions Platform (1/4) > [Backport] CVE-2021-4066: Integer underflow in ANGLE > [Backport] Security bug 1268448 > [Backport] Security bug 1265570 > [Backport] Security bug 1252562 > [Backport] Security bug 1274113 > [Backport] CVE-2022-0470: Out of bounds memory access in V8 > [Backport] CVE-2022-0457: Type Confusion in V8 > [Backport] CVE-2022-0456: Use after free in Web Search > [Backport] CVE-2022-0453: Use after free in Reader Mode > [Backport] CVE-2022-0464: Use after free in Accessibility > [Backport] Security bug 1261415 > [Backport] CVE-2021-4053: Use after free in UI > [Backport] Security bug 1271747 > [Backport] CVE-2022-0468: Use after free in Payments (2/2) > [Backport] CVE-2022-0468: Use after free in Payments (1/2) > [Backport] CVE-2022-0461: Policy bypass in COOP > [Backport] CVE-2022-0460: Use after free in Window Dialog > [Backport] CVE-2022-0459: Use after free in Screen Capture > [Backport] CVE-2022-0306: Heap buffer overflow in PDFium > FIXUP: Keep the close button when "undocked", as we can dock differently > Fix more windows build errors on build without jumbo > FIXUP: Add missing include for Supplement Change-Id: I82671c60c00c940c4943a0df4234ac7286e9c0dd Pick-to: 6.3 Task-number: QTBUG-101051 Task-number: QTBUG-99099 Task-number: QTBUG-99720 Reviewed-by: Qt CI Bot <qt_ci_bot@qt-project.org> Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
* Adaptations for Chromium 94Allan Sandfeld Jensen2021-12-021-2/+2
| | | | | Change-Id: I9fb8998a3a7762b0aea70993ca231f0bbf4f7761 Reviewed-by: Michal Klocek <michal.klocek@qt.io>
* Update documented security patch levelAllan Sandfeld Jensen2021-10-201-1/+1
| | | | | | | | | Should have been with the security patch merge Change-Id: I7d41fb7eb8cb61a7eebf4edec70199e013db6561 Reviewed-by: Michal Klocek <michal.klocek@qt.io> (cherry picked from commit f861c5cbc305992f971e168646473f3ee60a3750) Reviewed-by: Qt Cherry-pick Bot <cherrypick_bot@qt-project.org>
* Add Chromium version source documentationAllan Sandfeld Jensen2021-09-101-0/+3
Change-Id: I9796f31dab4cac7f8fbf0fdc2474304f0cde8fc3 Reviewed-by: Michael Brüning <michael.bruning@qt.io> (cherry picked from commit 9b10ac64734f76c635c96d902217fd9d954915c1) Reviewed-by: Qt Cherry-pick Bot <cherrypick_bot@qt-project.org>
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-13 12:32:23 +0000