summaryrefslogtreecommitdiffstats
path: root/src/3rdparty
Commit message (Collapse)AuthorAgeFilesLines
...
* Update ChromiumAllan Sandfeld Jensen2020-08-051-0/+0
| | | | | | | | | | | | | Submodule src/3rdparty 8a0c6063..84f63010: > [Backport] CVE-2020-6540: Heap buffer overflow in Skia > Fix webrtc build with GCC 10 > FIXUP: [Backport] CVE-2020-6493: Use after free in WebAuthentication > [Backport] Handle invalid type mixing in CSS clamp() > [Backport] CVE-2020-6493: Use after free in WebAuthentication > [Backport] Security bug 1087158 Change-Id: I1289579cbe81cd4bee9cf49103dc384f81913888 Reviewed-by: Michal Klocek <michal.klocek@qt.io>
* Update ChromiumMichael Brüning2020-08-031-0/+0
| | | | | | | | | | | | | | Pulls in the changes: cc32214f8dc [Backport] Security bugs 1087629 and 1029569 1cf3807d934 [Backport] Security bug 1052492 a5e8bd5e8c9 [Backport] CVE-2020-6533: Type Confusion in V8. da24a7f8bcb [Backport] CVE-2020-6532: Use after free in SCTP e402452015f [Backport] CVE-2020-6541: Use after free in WebUSB 8a0c6063c5b [Backport] Security bug 1102408 Task-number: QTBUG-85606 Change-Id: I7a17702c7290e135bcdc3074c27e8fc89a6ac4c9 Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
* Do not turn web auth offAllan Sandfeld Jensen2020-07-301-0/+0
| | | | | | | | | | | | Submodule src/3rdparty 0a4240a9..4a996760: > Fix building FIDO with gcc5 > [Backport] CVE-2020-6512: Type Confusion in V8 (3/3) Fixes: QTBUG-85117 Task-number: QTBUG-54720 Change-Id: I074831454b469c17a71f2ca75a075ee48157970d Reviewed-by: Tamas Zakor <ztamas@inf.u-szeged.hu> Reviewed-by: Michal Klocek <michal.klocek@qt.io>
* Update ChromiumMichael Brüning2020-07-271-0/+0
| | | | | | | | | | | | | | | | | Pulls in the changes: 7e405525e92 [Backport] CVE-2020-6530: Out of bounds memory access in developer tools 99fe8bdb44a [Backport] CVE-2020-6531: Side-channel information leakage in scroll to text 52367e8e753 [Backport] Security bug 1065731 d61a4348c47 Fix WebAuth build 9222c8b73ab [Backport] Security bug 1054229 c3d5696193a [Backport] Security bug 1065122 9b27a193c63 [Backport] Dependency for CVE-2020-6534 0b8e0d451a3 [Backport] CVE-2020-6534: Heap buffer overflow in WebRTC 0a4240a9c42 FIXUP: Fix WebAuth build Task-number: QTBUG-85606 Change-Id: I2995f9c3ea4b63fc8af1699a377c2d74359c67a8 Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
* Update ChromiumMichael Brüning2020-07-221-0/+0
| | | | | | | | | | | | | | | | Pulls in the changes: d19ddc13c6b Build openh264 with -DX86_32_PICASM on x86 2c7da754bb4 [Backport] CVE-2020-6518: Use after free in developer tools b44a099f737 [Backport] CVE-2020-6523: Out of bounds write in Skia 1c142fada62 [Backport] CVE-2020-6524: Heap buffer overflow in WebAudio 5748e38c2f2 [Backport] CVE-2020-6526: Inappropriate implementation in iframe sandbox d41f723f492 [Backport] CVE-2020-6529: Inappropriate implementation in WebRTC e61ea405c3c [Backport] CVE-2020-6535: Insufficient data validation in WebUI 288befc5a1e [Backport] Security bug 1090543 Task-number: QTBUG-85606 Change-Id: Ib675a80bd78cfb7f2d27cc528fe016775fb8d482 Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
* Update ChromiumMichael Brüning2020-07-221-0/+0
| | | | | | | | | | | | | | | Pulls in the changes: 9bea57931fd [Backport] CVE-2020-6510: Heap buffer overflow in background fetch dac11cfa7af [Backport] CVE-2020-6511: Side-channel information leakage in CSP (1/2) ce4b0e7fe74 [Backport] CVE-2020-6511: Side-channel information leakage in CSP (2/2) 4ba6053c609 [Backport] CVE-2020-6512: Type Confusion in V8 (1/2) 2be01d83ffc [Backport] CVE-2020-6512: Type Confusion in V8 (2/2) c3a7b41c75c [Backport] CVE-2020-6513: Heap buffer overflow in PDFium 7d0c0b1385a [Backport] CVE-2020-6514: Inappropriate implementation in WebRTC Task-number: QTBUG-85606 Change-Id: Ifa02d4e4c5f8f771250dbc2e9f519f9db7f2c080 Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
* Disable navigation on back/forward mouse buttons in Qt 5Allan Sandfeld Jensen2020-07-171-0/+0
| | | | | | | | Submodule src/3rdparty 809e16e4..840c8e5f: > Make navigation on back/forward mouse buttons optional Change-Id: I191f7781cf9b824b743b80a05a3e819a414ee546 Reviewed-by: Michael Brüning <michael.bruning@qt.io>
* Add the cookie filter to URL requestsAllan Sandfeld Jensen2020-07-151-0/+0
| | | | | | | | | | Submodule src/3rdparty c91f4d20..809e16e4: > Add cookie filter to URL requests cookie headers > Use audio-manager app-name for MPRIS Fixes: QTBUG-85526 Change-Id: Icab26cad3cea8e2ee021a3e589f41bf0543d64fa Reviewed-by: Michael Brüning <michael.bruning@qt.io>
* Update chromiumKirill Burtsev2020-07-061-0/+0
| | | | | | | | | | Submodule src/3rdparty 87e5a52b..c91f4d20: > FIXUP: Extend url library for WebEngine custom schemes > Fix angle_platform_impl after 80 rebase Fixes: QTBUG-85119 Change-Id: Iba5127f82d3ade9ca5868ce453ce7b402504d327 Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
* Set application name based on source application nameAllan Sandfeld Jensen2020-07-021-0/+0
| | | | | | | | | | | | | | This makes it possible to tell the difference between multiple applications using QtWebEngine. Submodule src/3rdparty 15a42873..87e5a52b: > Pass through a new application name argument to utility processes > Fix libjpeg_turbo for ARM32 > Add missing include in certificate net log Fixes: QTBUG-85363 Change-Id: Ib5426d2e431eb3032f76270885c9cf2d83a75ac8 Reviewed-by: Kirill Burtsev <kirill.burtsev@qt.io>
* Update ChromiumAllan Sandfeld Jensen2020-06-231-0/+0
| | | | | | | | | | | Submodule src/3rdparty f5132764..91d9d3cb: > FIXUP: Build devtools modules with system nodejs > Build devtools modules with system nodejs > FIXUP: Make XScrnSaver optional > [macOS] Add CoreProfile to the valid configurations for GPU switching Change-Id: I635a1c82a023de182a2586cf3342e21e170e8a50 Reviewed-by: Michal Klocek <michal.klocek@qt.io>
* Update ChromiumMichael Brüning2020-06-221-0/+0
| | | | | | | | | | Pulls in the following changes: 4e8ca195e4a Fix crash on run with blink setting DarkModeImagePolicy=kFilterSmart 3670a2bf53d [Backport] CVE-2020-6506: Insufficient policy enforcement in WebView Task-number: QTBUG-84406 Change-Id: I230720e35da30ef0d339840a03baf80d8ad9a774 Reviewed-by: Michal Klocek <michal.klocek@qt.io>
* Update ChromiumKirill Burtsev2020-06-161-0/+0
| | | | | | | | | | | Submodule src/3rdparty 1f33565e..f5132764: * 342c9a71221 [Backport] CVE-2020-6475 1/2 * 2e9d7420741 [Backport] CVE-2020-6475 2/2 * f51327640e8 FIXUP: Fix crash in file-selector tests Task-number: QTBUG-84406 Change-Id: I4f71784fd60c1a4b5b093f87831f37213f60e3ee Reviewed-by: Michal Klocek <michal.klocek@qt.io>
* Update ChromiumMichal Klocek2020-06-151-0/+0
| | | | | | | | | | | | | | | | | Pulls in changes: * 015b291414b [Backport] CVE-2020-6468 * b3742c1f45f [Backport] Security bug 1075907 * 675ccd3d7e0 [Backport] Security bug 1025302 * cbe73527af6 [Backport] Security Bug 1070012 1/5 * dc28ec4d3db [Backport] Security Bug 1070012 2/5 * 62806d1b0ef [Backport] Security Bug 1070012 3/5 * 96dbb8f6ecc [Backport] Security Bug 1070012 4/5 * 1f33565e67d [Backport] Security Bug 1070012 5/5 Task-number: QTBUG-84406 Change-Id: If330375a7d987dac751bec963c462a7487130256 Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
* Update ChromiumMichael Brüning2020-06-151-0/+0
| | | | | | | | | | | | | | | | Pulls in the following changes: * 5a257d8e5e2 Enable NativeThemeAura on macOS too * f21a77feb40 [Backport] CVE-2020-6467 * b5f7f2dc043 [Backport] Security Bug 1061933 * 3f5177bbb30 [Backport] Security Bug 1058515 * 71cbe89147d [Backport] Security Bug 1057369 * 915899195a3 [Backport] Security Bug 1056161 * 403c46ebedd [Backport] Security Bug 1051439 * 59102e31351 [Backport] Security Bug 1048619 Task-number: QTBUG-84406 Change-Id: If2ae8612e979d323e4fb7074a999a99f2082e28c Reviewed-by: Kirill Burtsev <kirill.burtsev@qt.io>
* Update ChromiumKirill Burtsev2020-06-101-0/+0
| | | | | | | | | | | | | | | Submodule src/3rdparty 7b4ef184..ec9c3b76: * ec9c3b76caa [Backport] CVE-2020-6490 * ad22f47c8ed [Backport] CVE-2020-6489 * 2633ca37468 [Backport] CVE-2020-6487 * b1bad8887df [Backport] CVE-2020-6486 * f4560c1d204 [Backport] CVE-2020-6483 * ea55d54f152 [Backport] CVE-2020-6482 Task-number: QTBUG-84406 Change-Id: Id47d6be9249610bf0287c2c7aad6b5d1f5136c0f Reviewed-by: Michal Klocek <michal.klocek@qt.io> Reviewed-by: Michael Brüning <michael.bruning@qt.io>
* Update ChromiumKirill Burtsev2020-06-091-0/+0
| | | | | | | | | | | | | | | | | | | | Submodule src/3rdparty 7b2f027e..7b4ef184: * 7b4ef1845d8 [Backport] CVE-2020-6481 * 53a8f71a325 [Backport] CVE-2020-6480 * 55fd59d3f67 [Backport] CVE-2020-6476 * dad7ea2ac15 [Backport] CVE-2020-6474 * 5f6ef2ef4b9 [Backport] CVE-2020-6473 * 9b0f09682c6 [Backport] CVE-2020-6472 * 678c0786648 [Backport] CVE-2020-6471 * ef79dfc84c9 [Backport] CVE-2020-6470 * 404035be60e Fix compilation on arm with old glibc 2.17 * fb5b255f72b Fix VS2017 builds * e7480805907 Fix VS2017 builds * e8d83a96d2e [Backport] Fix DCHECK in ~ExtensionFunction(). * b1b3c56422b [Backport] Support Unicode non-characters in Change-Id: I8e681f8d63531ac81ef4fee61d453b77ec311824 Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
* Update ChromiumAllan Sandfeld Jensen2020-05-261-0/+0
| | | | | | | | | | | Submodule src/3rdparty 62364782..7b2f027e: > FIXUP: Qt GN integration > FIXUP: Fix url_utils for QtWebEngine > FIXUP: Fix build with GCC 10 > [Backport] Remove soon-to-be removed getAllFieldPositions Change-Id: Ic05c43566816750aee82e84f3938dbd68a874517 Reviewed-by: Michal Klocek <michal.klocek@qt.io>
* Update Chromiumv5.15.0-rc2v5.15.0Allan Sandfeld Jensen2020-05-071-0/+0
| | | | | | | | | | | | | | | | | Two security fixes from latest Chrome 81 release Changes: aeb7ab73da2 Fix initialize of cdm for sandbox from widevine-path e6dee42d4b9 Compile fix: Use size_t and not uint32_t for CalculatePitchAndSize e1e4198d872 Speculative fix for xkbcommon include eaf11e78eaf Fix build with GCC 10 d2576708e9c [Backport] Fix for CVE-2020-6464 8b2e2db6f1f FIXUP: Fixes for jumbo build 623647821aa [Backport] Update usrsctp to 81-version (CVE-2020-6831) Fixes: QTBUG-83618 Change-Id: Iec4ce2f9e8fe2e9ed2b670c265444669a4c75b93 Reviewed-by: Michal Klocek <michal.klocek@qt.io>
* Update Chromiumv5.15.0-rc1Allan Sandfeld Jensen2020-04-291-0/+0
| | | | | | | | | | | | Pull in changes from 81.0.4044.129 Changes: 165753b3781 [Backport] CVE-2020-6462: Use after free in task scheduling 6f260e5b2f7 [Backport] CVE-2020-6461: Use after free in storage Task-number: QTBUG-83618 Change-Id: I99c8c918cafed69dd7371f34cbfb56d67d3091b0 Reviewed-by: Michal Klocek <michal.klocek@qt.io>
* Update ChromiumMichal Klocek2020-04-261-0/+0
| | | | | | | | | | | | | | | | This pulls in the following changes: * ca5ef7e4a6c [Backport] Security bug 1053939 1/2 * 6d98471a3e1 [Backport] Security bug 1053939 2/2 * f3fbe32fb25 [Backport] Security bug 1025740 1/2 * 798537f6ebb [Backport] Security bug 1025740 2/2 * 9b37796d4fa [Backport] Fix for CVE-2020-6444 1/2 * 0173823bbde [Backport] CVE-2020-6458 * 4b088342587 [Backport] Fix for CVE-2020-6444 2/2 Task-number: QTBUG-83618 Change-Id: I3665e1ae37015c179e1dfc9a70b6665a8fbfe17c Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
* Update ChromiumMichal Klocek2020-04-261-0/+0
| | | | | | | | | | | | | | | | | This pulls in the following changes: * 361a0c7f9d4 [Backport] Fix for security issue 1030167 * 6f434937c47 [Backport] Fix for security issue 1050090 * 2eb01dd7314 [Backport] CVE-2020-6432 * 20a811a4b2d [Backport] Fix for security issue 609527 * e23a74469f4 [Backport] Fix for security issue 818327 * 8154ce0fcad [Backport] CVE-2020-6459 * 17dd703700e [Backport] CVE-2020-6460 * bb3309303f4 [Backport] Security bug 1055933 Task-number: QTBUG-83618 Change-Id: I2ba8aca7a370267196e849be6a95b52c729cbc2a Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
* Update ChromiumKirill Burtsev2020-04-241-0/+0
| | | | | | | | | | | | | | This pulls in the following changes: * e9d336d7889 [Backport] Fix for CVE-2020-6443 * d9342640fab [Backport] Fix for CVE-2020-6442 * 28996bc48bc [Backport] Fix for CVE-2020-6441 * 0b633aff1dd [Backport] Fix for CVE-2020-6439 * a6cb9e378be [Backport] Fix for CVE-2020-6438 Task-number: QTBUG-83618 Change-Id: I26053cdd9065a00f55ab746a9105a61a6049a31f Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
* Update ChromiumMichal Klocek2020-04-221-0/+0
| | | | | | | | | | | | | This pulls in the following changes: * 39d2873778c [Backport] CVE-2020-6433 * 0f16d8d83e4 [Backport] CVE-2020-6434 * 8a691f31947 [Backport] CVE-2020-6435 * 904d83d41b4 [Backport] CVE-2020-6436 * 88274f362d7 [Backport] CVE-2020-6430 2/2 Change-Id: I8a341eecf40b8ab0f572d6f521c47cf2f075d4d2 Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
* Update ChromiumMichal Klocek2020-04-221-0/+0
| | | | | | | | | | | | | | | | This pulls in the following changes: * daeb5ccdfaf Disable alternate window station of Windows sandbox * 6f916658d9f Fix recursive deadlock in sandbox::InitLibcLocaltimeFunctions * 5a7809f25c4 [Backport] CVE-2020-6454 1/2 * 70e5d6e68c2 [Backport] CVE-2020-6454 2/2 * c44739c246c [Backport] CVE-2020-6430 1/2 * 2cd39da1f70 [Backport] CVE-2020-6456 * 020de77cb35 [Backport] CVE-2020-6431 Task-number: QTBUG-83618 Change-Id: Ic221a0897197e737767f2b7f4a3cb0dabad4ee80 Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
* Update ChromiumAllan Sandfeld Jensen2020-04-211-0/+0
| | | | | | | | | | | | | | | Changes: 1b05827804e BASELINE: Update Chromium to 80.0.3987.163 03d44c1c2cd Merge remote-tracking branch 'origin/upstream-master' into 80-based 28396737685 [Backport] Fix for security issue 1066893 2ccc559ca7d Update sqlite, fixing CVE-2020-6455 d5c4b6230b7 Fix gn compilation on mac with Xcode 11.4 55a8f34b5de [Backport] When suspending context, don't clear handlers 580c53c725c [Backport] Fix for CVE-2020-6423 6564891efb8 Fix crash in file-selector tests Change-Id: I9de280a9e9e7606761b709d16b4417893a592233 Reviewed-by: Michal Klocek <michal.klocek@qt.io>
* Disable accelerated and offscreen canvas for old rendererJüri Valdmann2020-04-151-0/+0
| | | | | | | | | | | | | | Offscreen canvas requires surface embedding which is a viz-only feature. Accelerated canvas uses gpu memory buffers which don't work with old renderer. Updates src/3rdparty with dependent change * 757b9f45 Expose WebPreferences::disable_features_depending_on_viz Fixes: QTBUG-56147 Change-Id: I90322f05554af43de5db9e386929d4faf5e65b6d Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
* Update ChromiumJüri Valdmann2020-04-091-0/+0
| | | | | | | | | | | | This pulls in the following changes: * c81ff02d Fix ozone builds of ANGLE * 6c9c6c8b Fix skia crash on Windows after 77-merge * 10f68b30 Fix viz crash when cleanup * b25b21fa Stop sending ViewMsg_SetBackgroundOpaque to renderer Change-Id: I14059823b1ae1510f86c3850e1654a224df01684 Reviewed-by: Michal Klocek <michal.klocek@qt.io>
* Adaptations for Chromium 80Allan Sandfeld Jensen2020-04-071-0/+0
| | | | | Change-Id: Icaf68648cbc2c13a61fc3b208ff1e64ca36c90b6 Reviewed-by: Jüri Valdmann <juri.valdmann@qt.io>
* Update ChromiumAllan Sandfeld Jensen2020-03-161-0/+0
| | | | | | | | | | | Changes: 1e19109f2cd Fix skia crash on Windows after 77-merge ef0a09b990f Fix ozone builds of ANGLE 9424dc7ceec Fix build with spell-checking disabled Fixes: QTBUG-82894 Change-Id: Icf9ea86ad4cd3887a718f5d4d3be2e391264cb6b Reviewed-by: Michal Klocek <michal.klocek@qt.io>
* Update chromium + simplify snapshotAllan Sandfeld Jensen2020-03-111-0/+0
| | | | | | | | | | | | | | | | Simplifies our snapshoting and includes among other files the chrome command-line preference store, which we can use with minor adaptations. Submodule src/3rdparty 07787da4..4ea22135: > Fix build for expanded sources > Merge "Merge remote-tracking branch 'origin/upstream-master' into 79-based" into 79-based > Don't trigger quad blending for opacity > FIXUP: Fix build with gcc 5 > [Backport] Allow restricted clock_nanosleep in Linux sandbox Change-Id: Ibdf7b24c0fbe920edd61f550913dca02ed67cd20 Reviewed-by: Jüri Valdmann <juri.valdmann@qt.io>
* Update user-agent without replacing entire network contextAllan Sandfeld Jensen2020-03-031-0/+0
| | | | | | | | | | | | | | Use added API to treat user-agent changes like accept-language changes. 3rdparty changes: > Allow changing user-agent without replace the entire network context > Destroy old network context before creating the replacement > Enable plugin.mojom for plugin placeholder > Suppress racy DCHECK > Restore -fno-delete-null-pointer-checks Change-Id: Ie94f74332704313d63e064c61118afc53a95c0d8 Reviewed-by: Jüri Valdmann <juri.valdmann@qt.io>
* Adaptations for Chromium 79Allan Sandfeld Jensen2020-02-281-0/+0
| | | | | | | | Fixes: QTBUG-80737 Fixes: QTBUG-81556 Fixes: QTBUG-81614 Change-Id: Ie6a69cdbf46d0508bff226f1b8fed28a618e1949 Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
* Update ChromiumJüri Valdmann2020-02-251-0/+0
| | | | | | | | | | | | | | | | | | | | | This pulls in the following changes: c1be521d4b0 Create an AudioOutputIPCFactory even without WebRTC 35b6d2c4838 third_party perfetto: add missing include for clang, asan and no_pch 6c2cf4c4571 Fix access after move 86de069171e FIXUP: Fix building with g++ 5 5c2d377121c Suppress racy DCHECK 458aa4294db Fix generation of attribution documentation a370b2f7a7e Don't force gpu process launch on macOS with vizdc and no GL 5b79320c013 Expose StoragePartitionImpl::InitNetworkContext bbc3a3082b4 [Backport] Fix input spinner double-increment. 432e1a9b1a0 Suppress DCHECK triggered by NGInlineNode::ComputeMinMaxSize caa20eed16d Add explicit dependencies on spellcheck buildflags c3737fb3824 [Backport] metatrace: remove memset and trivial-ctor assumption 12a57d9c943 Fix recursive deadlock in sandbox::InitLibcLocaltimeFunctions Change-Id: Id06aa2d5a148d3805ebd172ab21db2400f78f19a Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
* Update ChromiumMichal Klocek2020-01-201-0/+0
| | | | | | | | | | Pulls in following changes: * 3bbfff059e3 FIXUP: Support GPU service on UI thread with viz * a9a20127e8a Improve jpeg headers handling Change-Id: I0c81edbb24e984a798bb71444a4a6498a38abb38 Reviewed-by: Michael Brüning <michael.bruning@qt.io>
* Update ChromiumMichael Brüning2020-01-181-0/+0
| | | | | | | | | | Pulls in the following change: * 0f7953646c1 [Backport] Allow restricted clock_nanosleep in Linux sandbox Change-Id: I317ff3c5f068577e2eb7e0a49820ec19f4eb5300 Fixes: QTBUG-81313 Reviewed-by: Michal Klocek <michal.klocek@qt.io>
* Update ChromiumMichal Klocek2020-01-171-0/+0
| | | | | | | | | | | | | | | | | | | | | | | | | Pulls in following changes: * c68e3faa08f [Backport] CVE-2019-13735: Out of bounds write in V8 * c0a7f013646 [Backport] CVE-2019-13754: Insufficient policy enforcement in extensions. (1/3) * 11f1bad3655 [Backport] CVE-2019-13754: Insufficient policy enforcement in extensions (2/3) * 9df23a4c06e [Backport] CVE-2019-13754: Insufficient policy enforcement in extensions. (3/3) * fd8cf772447 [Backport] Security bug 1028191 * 8417e835260 [Backport] Security bug 974375 * 046bd9f50b6 [Backport] Security bug 889276 * 5fc987f210c [Backport] Security bug 1033260 * 9f87a1ede7c [Backport] CVE-2019-13755: Insufficient policy enforcement in extensions. * cb8bce9edb2 Fix compile issues for ios * fb54428bc4c Fix crash on page allocator * e687bc69cdc Fix properly not working about_credits target * 41d474d0e7c [Backport] CVE-2019-13745 1/2 * 6cd2b35a453 [Backport] CVE-2019-13746 1/2 * e89fce7cfa3 [Backport] CVE-2019-13746 2/2 * b7ce677ea5c [Backport] CVE-2019-13745 2/2 Task-number: QTBUG-80735 Change-Id: I15be332ef55ede2d110e0ba87c54fa936fd0bf18 Reviewed-by: Michael Brüning <michael.bruning@qt.io>
* Update ChromiumMichal Klocek2020-01-171-0/+0
| | | | | | | | | | | | | | | | | Pulls in security patches: * 545b591cee6 [Backport] Security bug 1027905 * 9e44d0450c1 [Backport] CVE-2019-13747: Uninitialized Use in rendering. * f32f09593b6 [Backport] Security bug 1025089 * 684a48706ad [Backport] Security bug 1016703 * ee0ec6e55f0 [Backport] CVE-2019-13757: Incorrect security UI in Omnibox (1/2) * d5651e21821 [Backport] CVE-2019-13757: Incorrect security UI in Omnibox (2/2) * 05833b160db [Backport] CVE-2019-13739 * 5e753a5b1d7 [Backport] CVE-2019-13738 Task-number: QTBUG-80735 Change-Id: Iad1afccce59ee09496e560f69d9dbe3743b29b06 Reviewed-by: Michael Brüning <michael.bruning@qt.io>
* Update ChromiumMichal Klocek2020-01-171-0/+0
| | | | | | | | | | | | | | | | | | Pulls in following patches: * 8da0a5162d1 Downgrade ninja to 1.8.2 * b7034d08035 Add icudtl for ios build * 9720a8a9863 [Backport] CVE-2020-6377 * 253d8a0fa71 [Backport] CVE-2019-13728: Out of bounds write in V8 * def05352967 [Backport] Re-land: Only invoke text and element fragment anchors after layout. * 73ef65b5273 [Backport] CVE-2019-13741: Insufficient validation of untrusted input in Blink * f49943cf837 [Backport] CVE-2019-13762: Insufficient policy enforcement in downloads. * 5357f8ae628 [Backport] CVE-2019-13758: Insufficient policy enforcement in navigation. * 5ca9a877b4b [Backport] CVE-2019-13761: Incorrect security UI in Omnibox. Task-number: QTBUG-80735 Change-Id: If217ba889192cc124705faec79c46c9aec535baf Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
* Update ChromiumMichal Klocek2020-01-141-0/+0
| | | | | | | | | | | | | | | | | | | | Pulls in following security patches: * cc309aa8518 [Backport] Avoid leaking GamepadService in tests * b7e2744f519 [Backport] Fix for CVE-2019-13727 * 85d5ec666bd Reland [Backport] CVE-2019-13701 * 114a6d752f1 [Backport] Fix for CVE-2019-13730: Type Confusion in V8 * ad6efac8e5b [Backport] Fix for CVE-2019-13732: Use after free in WebAudio * 446eda0fc43 [Backport] Fix for CVE-2019-13764: Type Confusion in V8 * 13e4a6f608c [Backport] CVE-2019-13734: Out of bounds write in SQLite * 7d9eea8e630 [Backport] Security bug 1017020 * 3d5ac733f8b [Backport] Security bug 1017961 * 945f5405f3e [Backport] CVE-2019-13736 * 3299cadf406 [Backport] CVE-2019-13737 Task-number: QTBUG-80735 Change-Id: Iea135ae6c655046464470929296efb728e1286e4 Reviewed-by: Michael Brüning <michael.bruning@qt.io>
* Update chromiumAllan Sandfeld Jensen2019-12-181-0/+0
| | | | | | | | | | Submodule src/3rdparty dd8389c5..325f3b07: > Disable dumb code > Fix 32bit sandboxing on Windows > Merge remote-tracking branch 'origin/upstream-master' into 77-based Change-Id: Ibae8b8269a41eb3d832a706151c45860230980b2 Reviewed-by: Michael Brüning <michael.bruning@qt.io>
* Update ChromiumJüri Valdmann2019-12-121-0/+0
| | | | | | | | | | | | | | This pulls in the following changes: c7bb975f833 Fix manifests for extensions 88050fc712d Fix rebuilding of about resources every time 4a0ac259d12 third_party quiche: add missing include for iostate 819bf79725a [Backport] Set priority for requests whose load is emulated db19ca9c53c Fix FlingScheduler in viz mode dd8389c580c FIXUP: Fix manifests for extensions Change-Id: I7299c2e3c75840e943173191e28f4f1a1d42b087 Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
* Update ChromiumMichal Klocek2019-11-281-0/+0
| | | | | | | | | | | | | | | | | | | | | | Pulls in following changes: * 7d2876b9557 Fix url_utils for QtWebEngine * bfea09e6e17 FIXUP: Add net::URLRequest::first_party_url() * 0d4406b3688 [Backport] Security bug 961614 1/8 * b1a56dab182 [Backport] Security bug 961614 2/8 * b9718cd4aa0 [Backport] Security bug 961614 3/8 * 821f375089e [Backport] Security bug 961614 4/8 * ee18fd483a7 [Backport] Security bug 961614 5/8 * 105f1e578c3 [Backport] Security bug 961614 6/8 * 09050e17c6a [Backport] Security bug 961614 7/8 * 634aff72b47 [Backport] Security bug 961614 8/8 * c5eb4cfff7f [Backport] Security bug 775511 * 120ccb55b5c [Backport] Security bug 1015945 * 939daf833ff [Backport] Security bug 955191 Task-number: QTBUG-79465 Change-Id: Ic9585b656477fae364ab17631db7487e8a00d46c Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
* Update ChormiumMichal Klocek2019-11-281-0/+0
| | | | | | | | | | | | | | | Pulls in following patchs: * 77c86be6077 BASELINE: Update Chromium to 77.0.3865.129 * cbc9c4a3c8d Merge remote-tracking branch 'origin/upstream-master' into 77-based * 6f690b4418f Merge "Merge remote-tracking branch 'origin/upstream-master' into 77-based" into 77-based * d61464c1e69 Fix is_main_frame in intercept_navigation_throttle * 41d6b0b2f16 [Backport] Secuirty bug 1014607 * e751f134d6b [Backport] Security bug 1016450 * 5b40e1d793e [Backport] Security bug 1018406 Task-number: QTBUG-79465 Change-Id: I0fd5c5bbdeb5d3478d9646540bca0550f0eb3819 Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
* Update ChromiumMichal Klocek2019-11-271-0/+0
| | | | | | | | | | | | | | | | | | Pulls in following changes: * 1d9d75d072e Fix '/Zc:twoPahse' unknown compiler option warning * 55c0556c1ca [Backport] Security Bug 1003313 * d5f6e269885 [Backport] CVE-2019-13721 * c1fd5c47504 [Backport] Security bug 1011551 * e9b6a6d0cf9 [Backport] Security bug 1006544 * 8a477bb16f9 [Backport] Security bug 997401 * 6ed410d94fc [Backport] Security bug 995591 * ccde4d23e60 [Backport] Security bug 993266 * 8564d6c04aa [Backport] Security bug 989909 Task-number: QTBUG-79465 Change-Id: I54841d9116c65fdab62eba5199382686297e960a Reviewed-by: Michael Brüning <michael.bruning@qt.io>
* Update ChromiumJüri Valdmann2019-11-191-0/+0
| | | | | | | | | | | | | | | | | | | | | | | | | | | | This pulls in the following changes: 7e3ec623081 [Backport] Fix for CVE-2019-13720 59d24cbd63e Fix QRC cookies for tests with network-service 42c122dcb80 Fix Windows sandbox for heterogeneous executables 4d310ae5bc3 [Backport] CVE-2019-13700 d9cbe788437 [Backport] CVE-2019-13701 30dfb122e96 [Backport] CVE-2019-13704 51fdc9e9dc6 [Backport] CVE-2019-13706 9ea3feb658c [Backport] CVE-2019-13711 1/2 6ab99196115 [Backport] CVE-2019-13711 2/2 394da2e8dd7 [Backport] CVE-2019-15903 929d812ae1d [Backport] CVE-2019-13714 6c31ac36355 [Backport] CVE-2019-13715 bf4615cbfa1 [Backport] CVE-2019-13718 35fb44f1bdc [macOS] Fix build error with new deployment target 03e611b862a Revert "[Backport] CVE-2019-13701" 948c21d2163 Support GPU service on UI thread with viz 147452f856e Fix previous fix for new macOS deployment target cf3564f25ee FIXUP: Support GPU service on UI thread with viz 040ccbbef2d Fix pdfium build on macOS Task-number: QTBUG-79940 Change-Id: I6e3046b3b5d855cbfd8657dcaa816649938f73a5 Reviewed-by: Michal Klocek <michal.klocek@qt.io>
* Update ChromiumMichael Brüning2019-10-231-0/+0
| | | | | | | | | | | | | | | | | | Pulls in the following changes: cd435b32a24 Fix crash on exit on Windows 3a617f46cd9 FIXUP: Bring enable_webrtc back 34662922afe Convert asserts to logs and returns in the PpapiHost 27947d92157 Fix compilation with system ICU e49a67d250a Disable long presentation time DCHECK e9b4b34de81 Remove broken symlinks 134f953c5b4 Apply workarounds to build extensions with gcc 5.3.1 on 77-based c212ffca5c7 Adapt DrawQuad::ShouldDrawWithBlending() to work with both compositors 6e50fb5037b Fixup rtc_use_x11 88a931558e2 FIXUP: Apply workarounds to build extensions with gcc 5.3.1 on 77-based Change-Id: I2bab0f1d3fc2c8a85fe9f4d3ebf47d63024b1a6c Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
* Adaptations for Chromium 77Allan Sandfeld Jensen2019-10-111-0/+0
| | | | | | Fixes: QTBUG-77267 Change-Id: I181e24cf80ebee6991b95dde6c636f0d169b40a4 Reviewed-by: Peter Varga <pvarga@inf.u-szeged.hu>
* Support qrc protocol in @match rules of user scriptsSzabolcs David2019-09-301-0/+0
| | | | | | | | | | | Pulls in the following Chromium changes: 7ac85fb4cc6 Fix building with pulseaudio 13 7956dfb8d20 Support qrc protocol in UrlPattern 9af3b1bf632 Fix pressure of tablet events Task-number: QTBUG-76173 Change-Id: Iffc21ed6eb0a99e2b96780ce4f11629d38f8b47e Reviewed-by: Peter Varga <pvarga@inf.u-szeged.hu>
* Use ui::CompositorJüri Valdmann2019-08-221-0/+0
| | | | | | | | Needs corresponding 3rdparty change. Fixes: QTBUG-71885 Change-Id: I791bc3da5a7a66e03470e9e05bf25a997101b018 Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-02 06:18:42 +0000