| Commit message (Collapse) | Author | Age | Files | Lines |
... | |
|
|
|
|
|
|
|
|
|
|
|
|
| |
Submodule src/3rdparty 8a0c6063..84f63010:
> [Backport] CVE-2020-6540: Heap buffer overflow in Skia
> Fix webrtc build with GCC 10
> FIXUP: [Backport] CVE-2020-6493: Use after free in WebAuthentication
> [Backport] Handle invalid type mixing in CSS clamp()
> [Backport] CVE-2020-6493: Use after free in WebAuthentication
> [Backport] Security bug 1087158
Change-Id: I1289579cbe81cd4bee9cf49103dc384f81913888
Reviewed-by: Michal Klocek <michal.klocek@qt.io>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Pulls in the changes:
cc32214f8dc [Backport] Security bugs 1087629 and 1029569
1cf3807d934 [Backport] Security bug 1052492
a5e8bd5e8c9 [Backport] CVE-2020-6533: Type Confusion in V8.
da24a7f8bcb [Backport] CVE-2020-6532: Use after free in SCTP
e402452015f [Backport] CVE-2020-6541: Use after free in WebUSB
8a0c6063c5b [Backport] Security bug 1102408
Task-number: QTBUG-85606
Change-Id: I7a17702c7290e135bcdc3074c27e8fc89a6ac4c9
Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
|
|
|
|
|
|
|
|
|
|
|
|
| |
Submodule src/3rdparty 0a4240a9..4a996760:
> Fix building FIDO with gcc5
> [Backport] CVE-2020-6512: Type Confusion in V8 (3/3)
Fixes: QTBUG-85117
Task-number: QTBUG-54720
Change-Id: I074831454b469c17a71f2ca75a075ee48157970d
Reviewed-by: Tamas Zakor <ztamas@inf.u-szeged.hu>
Reviewed-by: Michal Klocek <michal.klocek@qt.io>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Pulls in the changes:
7e405525e92 [Backport] CVE-2020-6530: Out of bounds memory access in developer tools
99fe8bdb44a [Backport] CVE-2020-6531: Side-channel information leakage in scroll to text
52367e8e753 [Backport] Security bug 1065731
d61a4348c47 Fix WebAuth build
9222c8b73ab [Backport] Security bug 1054229
c3d5696193a [Backport] Security bug 1065122
9b27a193c63 [Backport] Dependency for CVE-2020-6534
0b8e0d451a3 [Backport] CVE-2020-6534: Heap buffer overflow in WebRTC
0a4240a9c42 FIXUP: Fix WebAuth build
Task-number: QTBUG-85606
Change-Id: I2995f9c3ea4b63fc8af1699a377c2d74359c67a8
Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Pulls in the changes:
d19ddc13c6b Build openh264 with -DX86_32_PICASM on x86
2c7da754bb4 [Backport] CVE-2020-6518: Use after free in developer tools
b44a099f737 [Backport] CVE-2020-6523: Out of bounds write in Skia
1c142fada62 [Backport] CVE-2020-6524: Heap buffer overflow in WebAudio
5748e38c2f2 [Backport] CVE-2020-6526: Inappropriate implementation in iframe sandbox
d41f723f492 [Backport] CVE-2020-6529: Inappropriate implementation in WebRTC
e61ea405c3c [Backport] CVE-2020-6535: Insufficient data validation in WebUI
288befc5a1e [Backport] Security bug 1090543
Task-number: QTBUG-85606
Change-Id: Ib675a80bd78cfb7f2d27cc528fe016775fb8d482
Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Pulls in the changes:
9bea57931fd [Backport] CVE-2020-6510: Heap buffer overflow in background fetch
dac11cfa7af [Backport] CVE-2020-6511: Side-channel information leakage in CSP (1/2)
ce4b0e7fe74 [Backport] CVE-2020-6511: Side-channel information leakage in CSP (2/2)
4ba6053c609 [Backport] CVE-2020-6512: Type Confusion in V8 (1/2)
2be01d83ffc [Backport] CVE-2020-6512: Type Confusion in V8 (2/2)
c3a7b41c75c [Backport] CVE-2020-6513: Heap buffer overflow in PDFium
7d0c0b1385a [Backport] CVE-2020-6514: Inappropriate implementation in WebRTC
Task-number: QTBUG-85606
Change-Id: Ifa02d4e4c5f8f771250dbc2e9f519f9db7f2c080
Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
|
|
|
|
|
|
|
|
| |
Submodule src/3rdparty 809e16e4..840c8e5f:
> Make navigation on back/forward mouse buttons optional
Change-Id: I191f7781cf9b824b743b80a05a3e819a414ee546
Reviewed-by: Michael Brüning <michael.bruning@qt.io>
|
|
|
|
|
|
|
|
|
|
| |
Submodule src/3rdparty c91f4d20..809e16e4:
> Add cookie filter to URL requests cookie headers
> Use audio-manager app-name for MPRIS
Fixes: QTBUG-85526
Change-Id: Icab26cad3cea8e2ee021a3e589f41bf0543d64fa
Reviewed-by: Michael Brüning <michael.bruning@qt.io>
|
|
|
|
|
|
|
|
|
|
| |
Submodule src/3rdparty 87e5a52b..c91f4d20:
> FIXUP: Extend url library for WebEngine custom schemes
> Fix angle_platform_impl after 80 rebase
Fixes: QTBUG-85119
Change-Id: Iba5127f82d3ade9ca5868ce453ce7b402504d327
Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This makes it possible to tell the difference between multiple
applications using QtWebEngine.
Submodule src/3rdparty 15a42873..87e5a52b:
> Pass through a new application name argument to utility processes
> Fix libjpeg_turbo for ARM32
> Add missing include in certificate net log
Fixes: QTBUG-85363
Change-Id: Ib5426d2e431eb3032f76270885c9cf2d83a75ac8
Reviewed-by: Kirill Burtsev <kirill.burtsev@qt.io>
|
|
|
|
|
|
|
|
|
|
|
| |
Submodule src/3rdparty f5132764..91d9d3cb:
> FIXUP: Build devtools modules with system nodejs
> Build devtools modules with system nodejs
> FIXUP: Make XScrnSaver optional
> [macOS] Add CoreProfile to the valid configurations for GPU switching
Change-Id: I635a1c82a023de182a2586cf3342e21e170e8a50
Reviewed-by: Michal Klocek <michal.klocek@qt.io>
|
|
|
|
|
|
|
|
|
|
| |
Pulls in the following changes:
4e8ca195e4a Fix crash on run with blink setting DarkModeImagePolicy=kFilterSmart
3670a2bf53d [Backport] CVE-2020-6506: Insufficient policy enforcement in WebView
Task-number: QTBUG-84406
Change-Id: I230720e35da30ef0d339840a03baf80d8ad9a774
Reviewed-by: Michal Klocek <michal.klocek@qt.io>
|
|
|
|
|
|
|
|
|
|
|
| |
Submodule src/3rdparty 1f33565e..f5132764:
* 342c9a71221 [Backport] CVE-2020-6475 1/2
* 2e9d7420741 [Backport] CVE-2020-6475 2/2
* f51327640e8 FIXUP: Fix crash in file-selector tests
Task-number: QTBUG-84406
Change-Id: I4f71784fd60c1a4b5b093f87831f37213f60e3ee
Reviewed-by: Michal Klocek <michal.klocek@qt.io>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Pulls in changes:
* 015b291414b [Backport] CVE-2020-6468
* b3742c1f45f [Backport] Security bug 1075907
* 675ccd3d7e0 [Backport] Security bug 1025302
* cbe73527af6 [Backport] Security Bug 1070012 1/5
* dc28ec4d3db [Backport] Security Bug 1070012 2/5
* 62806d1b0ef [Backport] Security Bug 1070012 3/5
* 96dbb8f6ecc [Backport] Security Bug 1070012 4/5
* 1f33565e67d [Backport] Security Bug 1070012 5/5
Task-number: QTBUG-84406
Change-Id: If330375a7d987dac751bec963c462a7487130256
Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Pulls in the following changes:
* 5a257d8e5e2 Enable NativeThemeAura on macOS too
* f21a77feb40 [Backport] CVE-2020-6467
* b5f7f2dc043 [Backport] Security Bug 1061933
* 3f5177bbb30 [Backport] Security Bug 1058515
* 71cbe89147d [Backport] Security Bug 1057369
* 915899195a3 [Backport] Security Bug 1056161
* 403c46ebedd [Backport] Security Bug 1051439
* 59102e31351 [Backport] Security Bug 1048619
Task-number: QTBUG-84406
Change-Id: If2ae8612e979d323e4fb7074a999a99f2082e28c
Reviewed-by: Kirill Burtsev <kirill.burtsev@qt.io>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Submodule src/3rdparty 7b4ef184..ec9c3b76:
* ec9c3b76caa [Backport] CVE-2020-6490
* ad22f47c8ed [Backport] CVE-2020-6489
* 2633ca37468 [Backport] CVE-2020-6487
* b1bad8887df [Backport] CVE-2020-6486
* f4560c1d204 [Backport] CVE-2020-6483
* ea55d54f152 [Backport] CVE-2020-6482
Task-number: QTBUG-84406
Change-Id: Id47d6be9249610bf0287c2c7aad6b5d1f5136c0f
Reviewed-by: Michal Klocek <michal.klocek@qt.io>
Reviewed-by: Michael Brüning <michael.bruning@qt.io>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Submodule src/3rdparty 7b2f027e..7b4ef184:
* 7b4ef1845d8 [Backport] CVE-2020-6481
* 53a8f71a325 [Backport] CVE-2020-6480
* 55fd59d3f67 [Backport] CVE-2020-6476
* dad7ea2ac15 [Backport] CVE-2020-6474
* 5f6ef2ef4b9 [Backport] CVE-2020-6473
* 9b0f09682c6 [Backport] CVE-2020-6472
* 678c0786648 [Backport] CVE-2020-6471
* ef79dfc84c9 [Backport] CVE-2020-6470
* 404035be60e Fix compilation on arm with old glibc 2.17
* fb5b255f72b Fix VS2017 builds
* e7480805907 Fix VS2017 builds
* e8d83a96d2e [Backport] Fix DCHECK in ~ExtensionFunction().
* b1b3c56422b [Backport] Support Unicode non-characters in
Change-Id: I8e681f8d63531ac81ef4fee61d453b77ec311824
Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
|
|
|
|
|
|
|
|
|
|
|
| |
Submodule src/3rdparty 62364782..7b2f027e:
> FIXUP: Qt GN integration
> FIXUP: Fix url_utils for QtWebEngine
> FIXUP: Fix build with GCC 10
> [Backport] Remove soon-to-be removed getAllFieldPositions
Change-Id: Ic05c43566816750aee82e84f3938dbd68a874517
Reviewed-by: Michal Klocek <michal.klocek@qt.io>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Two security fixes from latest Chrome 81 release
Changes:
aeb7ab73da2 Fix initialize of cdm for sandbox from widevine-path
e6dee42d4b9 Compile fix: Use size_t and not uint32_t for CalculatePitchAndSize
e1e4198d872 Speculative fix for xkbcommon include
eaf11e78eaf Fix build with GCC 10
d2576708e9c [Backport] Fix for CVE-2020-6464
8b2e2db6f1f FIXUP: Fixes for jumbo build
623647821aa [Backport] Update usrsctp to 81-version (CVE-2020-6831)
Fixes: QTBUG-83618
Change-Id: Iec4ce2f9e8fe2e9ed2b670c265444669a4c75b93
Reviewed-by: Michal Klocek <michal.klocek@qt.io>
|
|
|
|
|
|
|
|
|
|
|
|
| |
Pull in changes from 81.0.4044.129
Changes:
165753b3781 [Backport] CVE-2020-6462: Use after free in task scheduling
6f260e5b2f7 [Backport] CVE-2020-6461: Use after free in storage
Task-number: QTBUG-83618
Change-Id: I99c8c918cafed69dd7371f34cbfb56d67d3091b0
Reviewed-by: Michal Klocek <michal.klocek@qt.io>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This pulls in the following changes:
* ca5ef7e4a6c [Backport] Security bug 1053939 1/2
* 6d98471a3e1 [Backport] Security bug 1053939 2/2
* f3fbe32fb25 [Backport] Security bug 1025740 1/2
* 798537f6ebb [Backport] Security bug 1025740 2/2
* 9b37796d4fa [Backport] Fix for CVE-2020-6444 1/2
* 0173823bbde [Backport] CVE-2020-6458
* 4b088342587 [Backport] Fix for CVE-2020-6444 2/2
Task-number: QTBUG-83618
Change-Id: I3665e1ae37015c179e1dfc9a70b6665a8fbfe17c
Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This pulls in the following changes:
* 361a0c7f9d4 [Backport] Fix for security issue 1030167
* 6f434937c47 [Backport] Fix for security issue 1050090
* 2eb01dd7314 [Backport] CVE-2020-6432
* 20a811a4b2d [Backport] Fix for security issue 609527
* e23a74469f4 [Backport] Fix for security issue 818327
* 8154ce0fcad [Backport] CVE-2020-6459
* 17dd703700e [Backport] CVE-2020-6460
* bb3309303f4 [Backport] Security bug 1055933
Task-number: QTBUG-83618
Change-Id: I2ba8aca7a370267196e849be6a95b52c729cbc2a
Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This pulls in the following changes:
* e9d336d7889 [Backport] Fix for CVE-2020-6443
* d9342640fab [Backport] Fix for CVE-2020-6442
* 28996bc48bc [Backport] Fix for CVE-2020-6441
* 0b633aff1dd [Backport] Fix for CVE-2020-6439
* a6cb9e378be [Backport] Fix for CVE-2020-6438
Task-number: QTBUG-83618
Change-Id: I26053cdd9065a00f55ab746a9105a61a6049a31f
Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This pulls in the following changes:
* 39d2873778c [Backport] CVE-2020-6433
* 0f16d8d83e4 [Backport] CVE-2020-6434
* 8a691f31947 [Backport] CVE-2020-6435
* 904d83d41b4 [Backport] CVE-2020-6436
* 88274f362d7 [Backport] CVE-2020-6430 2/2
Change-Id: I8a341eecf40b8ab0f572d6f521c47cf2f075d4d2
Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This pulls in the following changes:
* daeb5ccdfaf Disable alternate window station of Windows sandbox
* 6f916658d9f Fix recursive deadlock in sandbox::InitLibcLocaltimeFunctions
* 5a7809f25c4 [Backport] CVE-2020-6454 1/2
* 70e5d6e68c2 [Backport] CVE-2020-6454 2/2
* c44739c246c [Backport] CVE-2020-6430 1/2
* 2cd39da1f70 [Backport] CVE-2020-6456
* 020de77cb35 [Backport] CVE-2020-6431
Task-number: QTBUG-83618
Change-Id: Ic221a0897197e737767f2b7f4a3cb0dabad4ee80
Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Changes:
1b05827804e BASELINE: Update Chromium to 80.0.3987.163
03d44c1c2cd Merge remote-tracking branch 'origin/upstream-master' into 80-based
28396737685 [Backport] Fix for security issue 1066893
2ccc559ca7d Update sqlite, fixing CVE-2020-6455
d5c4b6230b7 Fix gn compilation on mac with Xcode 11.4
55a8f34b5de [Backport] When suspending context, don't clear handlers
580c53c725c [Backport] Fix for CVE-2020-6423
6564891efb8 Fix crash in file-selector tests
Change-Id: I9de280a9e9e7606761b709d16b4417893a592233
Reviewed-by: Michal Klocek <michal.klocek@qt.io>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Offscreen canvas requires surface embedding which is a viz-only feature.
Accelerated canvas uses gpu memory buffers which don't work with old renderer.
Updates src/3rdparty with dependent change
* 757b9f45 Expose WebPreferences::disable_features_depending_on_viz
Fixes: QTBUG-56147
Change-Id: I90322f05554af43de5db9e386929d4faf5e65b6d
Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
|
|
|
|
|
|
|
|
|
|
|
|
| |
This pulls in the following changes:
* c81ff02d Fix ozone builds of ANGLE
* 6c9c6c8b Fix skia crash on Windows after 77-merge
* 10f68b30 Fix viz crash when cleanup
* b25b21fa Stop sending ViewMsg_SetBackgroundOpaque to renderer
Change-Id: I14059823b1ae1510f86c3850e1654a224df01684
Reviewed-by: Michal Klocek <michal.klocek@qt.io>
|
|
|
|
|
| |
Change-Id: Icaf68648cbc2c13a61fc3b208ff1e64ca36c90b6
Reviewed-by: Jüri Valdmann <juri.valdmann@qt.io>
|
|
|
|
|
|
|
|
|
|
|
| |
Changes:
1e19109f2cd Fix skia crash on Windows after 77-merge
ef0a09b990f Fix ozone builds of ANGLE
9424dc7ceec Fix build with spell-checking disabled
Fixes: QTBUG-82894
Change-Id: Icf9ea86ad4cd3887a718f5d4d3be2e391264cb6b
Reviewed-by: Michal Klocek <michal.klocek@qt.io>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Simplifies our snapshoting and includes among other
files the chrome command-line preference store, which
we can use with minor adaptations.
Submodule src/3rdparty 07787da4..4ea22135:
> Fix build for expanded sources
> Merge "Merge remote-tracking branch 'origin/upstream-master' into 79-based" into 79-based
> Don't trigger quad blending for opacity
> FIXUP: Fix build with gcc 5
> [Backport] Allow restricted clock_nanosleep in Linux sandbox
Change-Id: Ibdf7b24c0fbe920edd61f550913dca02ed67cd20
Reviewed-by: Jüri Valdmann <juri.valdmann@qt.io>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Use added API to treat user-agent changes like accept-language changes.
3rdparty changes:
> Allow changing user-agent without replace the entire network context
> Destroy old network context before creating the replacement
> Enable plugin.mojom for plugin placeholder
> Suppress racy DCHECK
> Restore -fno-delete-null-pointer-checks
Change-Id: Ie94f74332704313d63e064c61118afc53a95c0d8
Reviewed-by: Jüri Valdmann <juri.valdmann@qt.io>
|
|
|
|
|
|
|
|
| |
Fixes: QTBUG-80737
Fixes: QTBUG-81556
Fixes: QTBUG-81614
Change-Id: Ie6a69cdbf46d0508bff226f1b8fed28a618e1949
Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This pulls in the following changes:
c1be521d4b0 Create an AudioOutputIPCFactory even without WebRTC
35b6d2c4838 third_party perfetto: add missing include for clang, asan and no_pch
6c2cf4c4571 Fix access after move
86de069171e FIXUP: Fix building with g++ 5
5c2d377121c Suppress racy DCHECK
458aa4294db Fix generation of attribution documentation
a370b2f7a7e Don't force gpu process launch on macOS with vizdc and no GL
5b79320c013 Expose StoragePartitionImpl::InitNetworkContext
bbc3a3082b4 [Backport] Fix input spinner double-increment.
432e1a9b1a0 Suppress DCHECK triggered by NGInlineNode::ComputeMinMaxSize
caa20eed16d Add explicit dependencies on spellcheck buildflags
c3737fb3824 [Backport] metatrace: remove memset and trivial-ctor assumption
12a57d9c943 Fix recursive deadlock in sandbox::InitLibcLocaltimeFunctions
Change-Id: Id06aa2d5a148d3805ebd172ab21db2400f78f19a
Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
|
|
|
|
|
|
|
|
|
|
| |
Pulls in following changes:
* 3bbfff059e3 FIXUP: Support GPU service on UI thread with viz
* a9a20127e8a Improve jpeg headers handling
Change-Id: I0c81edbb24e984a798bb71444a4a6498a38abb38
Reviewed-by: Michael Brüning <michael.bruning@qt.io>
|
|
|
|
|
|
|
|
|
|
| |
Pulls in the following change:
* 0f7953646c1 [Backport] Allow restricted clock_nanosleep in Linux sandbox
Change-Id: I317ff3c5f068577e2eb7e0a49820ec19f4eb5300
Fixes: QTBUG-81313
Reviewed-by: Michal Klocek <michal.klocek@qt.io>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Pulls in following changes:
* c68e3faa08f [Backport] CVE-2019-13735: Out of bounds write in V8
* c0a7f013646 [Backport] CVE-2019-13754: Insufficient policy enforcement in extensions. (1/3)
* 11f1bad3655 [Backport] CVE-2019-13754: Insufficient policy enforcement in extensions (2/3)
* 9df23a4c06e [Backport] CVE-2019-13754: Insufficient policy enforcement in extensions. (3/3)
* fd8cf772447 [Backport] Security bug 1028191
* 8417e835260 [Backport] Security bug 974375
* 046bd9f50b6 [Backport] Security bug 889276
* 5fc987f210c [Backport] Security bug 1033260
* 9f87a1ede7c [Backport] CVE-2019-13755: Insufficient policy enforcement in extensions.
* cb8bce9edb2 Fix compile issues for ios
* fb54428bc4c Fix crash on page allocator
* e687bc69cdc Fix properly not working about_credits target
* 41d474d0e7c [Backport] CVE-2019-13745 1/2
* 6cd2b35a453 [Backport] CVE-2019-13746 1/2
* e89fce7cfa3 [Backport] CVE-2019-13746 2/2
* b7ce677ea5c [Backport] CVE-2019-13745 2/2
Task-number: QTBUG-80735
Change-Id: I15be332ef55ede2d110e0ba87c54fa936fd0bf18
Reviewed-by: Michael Brüning <michael.bruning@qt.io>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Pulls in security patches:
* 545b591cee6 [Backport] Security bug 1027905
* 9e44d0450c1 [Backport] CVE-2019-13747: Uninitialized Use in rendering.
* f32f09593b6 [Backport] Security bug 1025089
* 684a48706ad [Backport] Security bug 1016703
* ee0ec6e55f0 [Backport] CVE-2019-13757: Incorrect security UI in Omnibox (1/2)
* d5651e21821 [Backport] CVE-2019-13757: Incorrect security UI in Omnibox (2/2)
* 05833b160db [Backport] CVE-2019-13739
* 5e753a5b1d7 [Backport] CVE-2019-13738
Task-number: QTBUG-80735
Change-Id: Iad1afccce59ee09496e560f69d9dbe3743b29b06
Reviewed-by: Michael Brüning <michael.bruning@qt.io>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Pulls in following patches:
* 8da0a5162d1 Downgrade ninja to 1.8.2
* b7034d08035 Add icudtl for ios build
* 9720a8a9863 [Backport] CVE-2020-6377
* 253d8a0fa71 [Backport] CVE-2019-13728: Out of bounds write in V8
* def05352967 [Backport] Re-land: Only invoke text and element fragment anchors after layout.
* 73ef65b5273 [Backport] CVE-2019-13741: Insufficient validation of untrusted input in Blink
* f49943cf837 [Backport] CVE-2019-13762: Insufficient policy enforcement in downloads.
* 5357f8ae628 [Backport] CVE-2019-13758: Insufficient policy enforcement in navigation.
* 5ca9a877b4b [Backport] CVE-2019-13761: Incorrect security UI in Omnibox.
Task-number: QTBUG-80735
Change-Id: If217ba889192cc124705faec79c46c9aec535baf
Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Pulls in following security patches:
* cc309aa8518 [Backport] Avoid leaking GamepadService in tests
* b7e2744f519 [Backport] Fix for CVE-2019-13727
* 85d5ec666bd Reland [Backport] CVE-2019-13701
* 114a6d752f1 [Backport] Fix for CVE-2019-13730: Type Confusion in V8
* ad6efac8e5b [Backport] Fix for CVE-2019-13732: Use after free in WebAudio
* 446eda0fc43 [Backport] Fix for CVE-2019-13764: Type Confusion in V8
* 13e4a6f608c [Backport] CVE-2019-13734: Out of bounds write in SQLite
* 7d9eea8e630 [Backport] Security bug 1017020
* 3d5ac733f8b [Backport] Security bug 1017961
* 945f5405f3e [Backport] CVE-2019-13736
* 3299cadf406 [Backport] CVE-2019-13737
Task-number: QTBUG-80735
Change-Id: Iea135ae6c655046464470929296efb728e1286e4
Reviewed-by: Michael Brüning <michael.bruning@qt.io>
|
|
|
|
|
|
|
|
|
|
| |
Submodule src/3rdparty dd8389c5..325f3b07:
> Disable dumb code
> Fix 32bit sandboxing on Windows
> Merge remote-tracking branch 'origin/upstream-master' into 77-based
Change-Id: Ibae8b8269a41eb3d832a706151c45860230980b2
Reviewed-by: Michael Brüning <michael.bruning@qt.io>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This pulls in the following changes:
c7bb975f833 Fix manifests for extensions
88050fc712d Fix rebuilding of about resources every time
4a0ac259d12 third_party quiche: add missing include for iostate
819bf79725a [Backport] Set priority for requests whose load is emulated
db19ca9c53c Fix FlingScheduler in viz mode
dd8389c580c FIXUP: Fix manifests for extensions
Change-Id: I7299c2e3c75840e943173191e28f4f1a1d42b087
Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Pulls in following changes:
* 7d2876b9557 Fix url_utils for QtWebEngine
* bfea09e6e17 FIXUP: Add net::URLRequest::first_party_url()
* 0d4406b3688 [Backport] Security bug 961614 1/8
* b1a56dab182 [Backport] Security bug 961614 2/8
* b9718cd4aa0 [Backport] Security bug 961614 3/8
* 821f375089e [Backport] Security bug 961614 4/8
* ee18fd483a7 [Backport] Security bug 961614 5/8
* 105f1e578c3 [Backport] Security bug 961614 6/8
* 09050e17c6a [Backport] Security bug 961614 7/8
* 634aff72b47 [Backport] Security bug 961614 8/8
* c5eb4cfff7f [Backport] Security bug 775511
* 120ccb55b5c [Backport] Security bug 1015945
* 939daf833ff [Backport] Security bug 955191
Task-number: QTBUG-79465
Change-Id: Ic9585b656477fae364ab17631db7487e8a00d46c
Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Pulls in following patchs:
* 77c86be6077 BASELINE: Update Chromium to 77.0.3865.129
* cbc9c4a3c8d Merge remote-tracking branch 'origin/upstream-master' into 77-based
* 6f690b4418f Merge "Merge remote-tracking branch 'origin/upstream-master' into 77-based" into 77-based
* d61464c1e69 Fix is_main_frame in intercept_navigation_throttle
* 41d6b0b2f16 [Backport] Secuirty bug 1014607
* e751f134d6b [Backport] Security bug 1016450
* 5b40e1d793e [Backport] Security bug 1018406
Task-number: QTBUG-79465
Change-Id: I0fd5c5bbdeb5d3478d9646540bca0550f0eb3819
Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Pulls in following changes:
* 1d9d75d072e Fix '/Zc:twoPahse' unknown compiler option warning
* 55c0556c1ca [Backport] Security Bug 1003313
* d5f6e269885 [Backport] CVE-2019-13721
* c1fd5c47504 [Backport] Security bug 1011551
* e9b6a6d0cf9 [Backport] Security bug 1006544
* 8a477bb16f9 [Backport] Security bug 997401
* 6ed410d94fc [Backport] Security bug 995591
* ccde4d23e60 [Backport] Security bug 993266
* 8564d6c04aa [Backport] Security bug 989909
Task-number: QTBUG-79465
Change-Id: I54841d9116c65fdab62eba5199382686297e960a
Reviewed-by: Michael Brüning <michael.bruning@qt.io>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This pulls in the following changes:
7e3ec623081 [Backport] Fix for CVE-2019-13720
59d24cbd63e Fix QRC cookies for tests with network-service
42c122dcb80 Fix Windows sandbox for heterogeneous executables
4d310ae5bc3 [Backport] CVE-2019-13700
d9cbe788437 [Backport] CVE-2019-13701
30dfb122e96 [Backport] CVE-2019-13704
51fdc9e9dc6 [Backport] CVE-2019-13706
9ea3feb658c [Backport] CVE-2019-13711 1/2
6ab99196115 [Backport] CVE-2019-13711 2/2
394da2e8dd7 [Backport] CVE-2019-15903
929d812ae1d [Backport] CVE-2019-13714
6c31ac36355 [Backport] CVE-2019-13715
bf4615cbfa1 [Backport] CVE-2019-13718
35fb44f1bdc [macOS] Fix build error with new deployment target
03e611b862a Revert "[Backport] CVE-2019-13701"
948c21d2163 Support GPU service on UI thread with viz
147452f856e Fix previous fix for new macOS deployment target
cf3564f25ee FIXUP: Support GPU service on UI thread with viz
040ccbbef2d Fix pdfium build on macOS
Task-number: QTBUG-79940
Change-Id: I6e3046b3b5d855cbfd8657dcaa816649938f73a5
Reviewed-by: Michal Klocek <michal.klocek@qt.io>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Pulls in the following changes:
cd435b32a24 Fix crash on exit on Windows
3a617f46cd9 FIXUP: Bring enable_webrtc back
34662922afe Convert asserts to logs and returns in the PpapiHost
27947d92157 Fix compilation with system ICU
e49a67d250a Disable long presentation time DCHECK
e9b4b34de81 Remove broken symlinks
134f953c5b4 Apply workarounds to build extensions with gcc 5.3.1 on 77-based
c212ffca5c7 Adapt DrawQuad::ShouldDrawWithBlending() to work with both compositors
6e50fb5037b Fixup rtc_use_x11
88a931558e2 FIXUP: Apply workarounds to build extensions with gcc 5.3.1 on 77-based
Change-Id: I2bab0f1d3fc2c8a85fe9f4d3ebf47d63024b1a6c
Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
|
|
|
|
|
|
| |
Fixes: QTBUG-77267
Change-Id: I181e24cf80ebee6991b95dde6c636f0d169b40a4
Reviewed-by: Peter Varga <pvarga@inf.u-szeged.hu>
|
|
|
|
|
|
|
|
|
|
|
| |
Pulls in the following Chromium changes:
7ac85fb4cc6 Fix building with pulseaudio 13
7956dfb8d20 Support qrc protocol in UrlPattern
9af3b1bf632 Fix pressure of tablet events
Task-number: QTBUG-76173
Change-Id: Iffc21ed6eb0a99e2b96780ce4f11629d38f8b47e
Reviewed-by: Peter Varga <pvarga@inf.u-szeged.hu>
|
|
|
|
|
|
|
|
| |
Needs corresponding 3rdparty change.
Fixes: QTBUG-71885
Change-Id: I791bc3da5a7a66e03470e9e05bf25a997101b018
Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
|