File chromium-ffmpeg-extra.changes of Package chromium-ffmpeg-extra

-------------------------------------------------------------------
Sun Jul 16 07:54:55 UTC 2023 - Carsten Ziepke <kieltux@gmail.com>

- Rebase chromium 114.0.5735.198 for use as chromium-ffmpeg-extra

-------------------------------------------------------------------
Tue Jun 27 07:39:29 UTC 2023 - Andreas Stieger <andreas.stieger@gmx.de>

- Chromium 114.0.5735.198 (boo#1212755):
  * CVE-2023-3420: Type Confusion in V8
  * CVE-2023-3421: Use after free in Media
  * CVE-2023-3422: Use after free in Guest View

-------------------------------------------------------------------
Sun Jun 25 09:54:37 UTC 2023 - Callum Farmer <gmbr3@opensuse.org>

- Install Qt5 library & prepare for Qt6 in 115

-------------------------------------------------------------------
Wed Jun 14 05:23:16 UTC 2023 - Andreas Stieger <andreas.stieger@gmx.de>

- Chromium 114.0.5735.133 (boo#1212302):
  * CVE-2023-3214: Use after free in Autofill payments
  * CVE-2023-3215: Use after free in WebRTC
  * CVE-2023-3216: Type Confusion in V8
  * CVE-2023-3217: Use after free in WebXR
  * Various fixes from internal audits, fuzzing and other initiatives

-------------------------------------------------------------------
Wed Jun  7 18:13:06 UTC 2023 - Andreas Stieger <Andreas.Stieger@gmx.de>

- Fix Leap 15.4 build - chromium-114-revert-av1enc-lp154.patch

-------------------------------------------------------------------
Tue Jun  6 05:34:13 UTC 2023 - Andreas Stieger <andreas.stieger@gmx.de>

- Chromium 114.0.5735.106 (boo#1212044):
  * CVE-2023-3079: Type Confusion in V8

-------------------------------------------------------------------
Sun Jun  4 18:52:01 UTC 2023 - Callum Farmer <gmbr3@opensuse.org>

- Chromium 114.0.5735.90 (boo#1211843):
  * CSS text-wrap: balance is available
  * Cookies partitioned by top level site (CHIPS)
  * New Popover API
- Security fixes:
  * CVE-2023-2929: Out of bounds write in Swiftshader
  * CVE-2023-2930: Use after free in Extensions
  * CVE-2023-2931: Use after free in PDF
  * CVE-2023-2932: Use after free in PDF
  * CVE-2023-2933: Use after free in PDF
  * CVE-2023-2934: Out of bounds memory access in Mojo
  * CVE-2023-2935: Type Confusion in V8
  * CVE-2023-2936: Type Confusion in V8
  * CVE-2023-2937: Inappropriate implementation in Picture In Picture
  * CVE-2023-2938: Inappropriate implementation in Picture In Picture
  * CVE-2023-2939: Insufficient data validation in Installer
  * CVE-2023-2940: Inappropriate implementation in Downloads
  * CVE-2023-2941: Inappropriate implementation in Extensions API
- Drop patches:
  * chromium-103-VirtualCursor-std-layout.patch
  * chromium-113-system-zlib.patch
  * chromium-113-workaround_clang_bug-structured_binding.patch
- Add patches
  * chromium-114-workaround_clang_bug-structured_binding.patch
  * chromium-114-lld-argument.patch

-------------------------------------------------------------------
Tue May 30 21:53:45 UTC 2023 - Callum Farmer <gmbr3@opensuse.org>

- Un-bundle zlib again
- Remove un-needed patches:
  * chromium-112-default-comparison-operators.patch
  * chromium-109-clang-lp154.patch
  * chromium-clang-nomerge.patch
  * chromium-ffmpeg-lp152.patch
  * chromium-lp151-old-drm.patch
- Added patches:
  * chromium-113-system-zlib.patch

-------------------------------------------------------------------
Sun May 28 21:32:03 UTC 2023 - Andreas Stieger <andreas.stieger@gmx.de>

- build with llvm15 on Leap

-------------------------------------------------------------------
Tue May 16 21:16:23 UTC 2023 - Andreas Stieger <Andreas.Stieger@gmx.de>

- Chromium 113.0.5672.126 (boo#1211442):
  * CVE-2023-2721: Use after free in Navigation
  * CVE-2023-2722: Use after free in Autofill UI
  * CVE-2023-2723: Use after free in DevTools
  * CVE-2023-2724: Type Confusion in V8
  * CVE-2023-2725: Use after free in Guest View
  * CVE-2023-2726: Inappropriate implementation in WebApp Installs
  * Various fixes from internal audits, fuzzing and other initiatives

-------------------------------------------------------------------
Tue May  9 19:14:20 UTC 2023 - Andreas Stieger <Andreas.Stieger@gmx.de>

- Chromium 113.0.5672.92 (boo#1211211)
- Multiple security fixes (boo#1211036):
  * CVE-2023-2459: Inappropriate implementation in Prompts
  * CVE-2023-2460: Insufficient validation of untrusted input in Extensions
  * CVE-2023-2461: Use after free in OS Inputs
  * CVE-2023-2462: Inappropriate implementation in Prompts
  * CVE-2023-2463: Inappropriate implementation in Full Screen Mode
  * CVE-2023-2464: Inappropriate implementation in PictureInPicture
  * CVE-2023-2465: Inappropriate implementation in CORS
  * CVE-2023-2466: Inappropriate implementation in Prompts
  * CVE-2023-2467: Inappropriate implementation in Prompts
  * CVE-2023-2468: Inappropriate implementation in PictureInPicture
- drop chromium-94-sql-no-assert.patch
- drop no-location-leap151.patch
- add chromium-113-webview-namespace.patch
- add chromium-113-webauth-include-variant.patch
- add chromium-113-typename.patch
- add chromium-113-workaround_clang_bug-structured_binding.patch

-------------------------------------------------------------------
Wed Apr 19 19:55:51 UTC 2023 - Andreas Stieger <Andreas.Stieger@gmx.de>

- Chromium 112.0.5615.165 (boo#1210618):
  * CVE-2023-2133: Out of bounds memory access in Service Worker API
  * CVE-2023-2134: Out of bounds memory access in Service Worker API
  * CVE-2023-2135: Use after free in DevTools
  * CVE-2023-2136: Integer overflow in Skia
  * CVE-2023-2137: Heap buffer overflow in sqlite
- drop chromium-112-feed_protos.patch

-------------------------------------------------------------------
Sun Apr 16 02:10:30 UTC 2023 - Andreas Stieger <andreas.stieger@gmx.de>

- Fix Leap 15.4 build failures from default comparison operators
  defined outside of the class definition, a C++20 feature
  adding chromium-112-default-comparison-operators.patch

-------------------------------------------------------------------
Sat Apr 15 10:49:51 UTC 2023 - Andreas Stieger <andreas.stieger@gmx.de>

- Chromium 112.0.5615.121:
  * CVE-2023-2033: Type Confusion in V8 (boo#1210478)

-------------------------------------------------------------------
Fri Apr  7 07:57:40 UTC 2023 - Andreas Stieger <andreas.stieger@gmx.de>

- Revert a breaking change with chromium-112-feed_protos.patch

-------------------------------------------------------------------
Tue Apr  4 22:38:23 UTC 2023 - Andreas Stieger <andreas.stieger@gmx.de>

- Chromium 112.0.5615.49 
  * CSS now supports nesting rules.
  * The algorithm to set the initial focus on <dialog> elements was updated.
  * No-op fetch() handlers on service workers are skipped from now on to make navigations faster
  * The setter for document.domain is now deprecated.
  * The recorder in devtools can now record with pierce selectors.
  * Security fixes (boo#1210126):
  * CVE-2023-1810: Heap buffer overflow in Visuals
  * CVE-2023-1811: Use after free in Frames
  * CVE-2023-1812: Out of bounds memory access in DOM Bindings
  * CVE-2023-1813: Inappropriate implementation in Extensions
  * CVE-2023-1814: Insufficient validation of untrusted input in Safe Browsing
  * CVE-2023-1815: Use after free in Networking APIs
  * CVE-2023-1816: Incorrect security UI in Picture In Picture
  * CVE-2023-1817: Insufficient policy enforcement in Intents
  * CVE-2023-1818: Use after free in Vulkan
  * CVE-2023-1819: Out of bounds read in Accessibility
  * CVE-2023-1820: Heap buffer overflow in Browser History
  * CVE-2023-1821: Inappropriate implementation in WebShare
  * CVE-2023-1822: Incorrect security UI in Navigation
  * CVE-2023-1823: Inappropriate implementation in FedCM
-------------------------------------------------------------------
Sun Apr  2 10:10:49 UTC 2023 - Carsten Ziepke <kieltux@gmail.com>

- Use gcc11/gcc11-c++ for openSUSE Leap, use gcc12/gcc12-c++
  for openSUSE Tumbleweed, because fails with gcc13/gcc13-c++

-------------------------------------------------------------------
Thu Jul 14 16:38:50 UTC 2022 - Carsten Ziepke <kieltux@gmail.com>

- Rebase chromium 103.0.5060.114 for use as chromium-ffmpeg-extra
  - Fixes problems with audio and youtube video playback

-------------------------------------------------------------------
Sat Jul  9 12:52:33 UTC 2022 - Andreas Stieger <andreas.stieger@gmx.de>

- Chromium 103.0.5060.114 (boo#1201216)
  * CVE-2022-2294: Heap buffer overflow in WebRTC
  * CVE-2022-2295: Type Confusion in V8
  * CVE-2022-2296: Use after free in Chrome OS Shell

-------------------------------------------------------------------
Thu Jul  7 18:07:43 UTC 2022 - Andreas Stieger <andreas.stieger@gmx.de>

- Chromium 103.0.5060.66
  * no upstream release notes

-------------------------------------------------------------------
Sat Jun 25 10:43:48 UTC 2022 - Callum Farmer <gmbr3@opensuse.org>

- Chromium 103.0.5060.53 (boo#1200783)
  * CVE-2022-2156: Use after free in Base
  * CVE-2022-2157: Use after free in Interest groups
  * CVE-2022-2158: Type Confusion in V8
  * CVE-2022-2160: Insufficient policy enforcement in DevTools
  * CVE-2022-2161: Use after free in WebApp Provider
  * CVE-2022-2162: Insufficient policy enforcement in File System API
  * CVE-2022-2163: Use after free in Cast UI and Toolbar
  * CVE-2022-2164: Inappropriate implementation in Extensions API
  * CVE-2022-2165: Insufficient data validation in URL formatting
- Added patches:
  * chromium-103-FrameLoadRequest-type.patch
  * chromium-103-SubstringSetMatcher-packed.patch
  * chromium-103-VirtualCursor-std-layout.patch
  * chromium-103-compiler.patch
- Removed patches:
  * chromium-102-compiler.patch
  * chromium-91-sql-standard-layout-type.patch
  * chromium-101-libxml-unbundle.patch
  * chromium-102-fenced_frame_utils-include.patch
  * chromium-102-swiftshader-template-instantiation.patch
  * chromium-102-symbolize-include.patch
  * chromium-97-arm-tflite-cast.patch
  * chromium-97-ScrollView-reference.patch

-------------------------------------------------------------------
Fri Jun 10 15:35:20 UTC 2022 - Andreas Stieger <andreas.stieger@gmx.de>

- Chromium 102.0.5005.115 (boo#1200423)
  * CVE-2022-2007: Use after free in WebGPU
  * CVE-2022-2008: Out of bounds memory access in WebGL
  * CVE-2022-2010: Out of bounds read in compositing
  * CVE-2022-2011: Use after free in ANGLE

-------------------------------------------------------------------
Wed Jun  8 13:40:43 UTC 2022 - Callum Farmer <gmbr3@opensuse.org>

- Switch to GTK4 on TW and Leap 15.4+ (boo#1200139)

-------------------------------------------------------------------
Wed Jun  1 09:43:54 UTC 2022 - Callum Farmer <gmbr3@opensuse.org>

- Disable ARM control flow integrity, it causes build issues
  at the moment
- Try a different SVG (black logo on GNOME)
- Removed patches:
  * chromium-third_party-symbolize-missing-include.patch
  (replaced by chromium-102-symbolize-include.patch)

-------------------------------------------------------------------
Fri May 27 19:40:42 UTC 2022 - Callum Farmer <gmbr3@opensuse.org>

- Chromium 102.0.5001.61 (boo#1199893)
  * CVE-2022-1853: Use after free in Indexed DB
  * CVE-2022-1854: Use after free in ANGLE
  * CVE-2022-1855: Use after free in Messaging
  * CVE-2022-1856: Use after free in User Education
  * CVE-2022-1857: Insufficient policy enforcement in File System API
  * CVE-2022-1858: Out of bounds read in DevTools
  * CVE-2022-1859: Use after free in Performance Manager
  * CVE-2022-1860: Use after free in UI Foundations
  * CVE-2022-1861: Use after free in Sharing
  * CVE-2022-1862: Inappropriate implementation in Extensions
  * CVE-2022-1863: Use after free in Tab Groups
  * CVE-2022-1864: Use after free in WebApp Installs
  * CVE-2022-1865: Use after free in Bookmarks
  * CVE-2022-1866: Use after free in Tablet Mode
  * CVE-2022-1867: Insufficient validation of untrusted input in Data Transfer
  * CVE-2022-1868: Inappropriate implementation in Extensions API
  * CVE-2022-1869: Type Confusion in V8
  * CVE-2022-1870: Use after free in App Service
  * CVE-2022-1871: Insufficient policy enforcement in File System API
  * CVE-2022-1872: Insufficient policy enforcement in Extensions API
  * CVE-2022-1873: Insufficient policy enforcement in COOP
  * CVE-2022-1874: Insufficient policy enforcement in Safe Browsing
  * CVE-2022-1875: Inappropriate implementation in PDF
  * CVE-2022-1876: Heap buffer overflow in DevTools
- Added patches:
  * chromium-102-compiler.patch
  * chromium-102-fenced_frame_utils-include.patch
  * chromium-102-regex_pattern-array.patch
  * chromium-102-swiftshader-template-instantiation.patch
  * chromium-102-symbolize-include.patch
  * ffmpeg-new-channel-layout.patch
- Removed patches:
  * chromium-100-compiler.patch
  * chromium-80-QuicStreamSendBuffer-deleted-move-constructor.patch
  * chromium-95-quiche-include.patch
  * chromium-fix-swiftshader-template.patch
  * chromium-missing-include-tuple.patch
  * chromium-webrtc-stats-missing-vector.patch
  * chromium-101-segmentation_platform-type.patch

-------------------------------------------------------------------
Sun May 15 09:03:28 UTC 2022 - Andreas Stieger <andreas.stieger@gmx.de>

- Chromium 101.0.4951.67
  * fixes for other platforms

-------------------------------------------------------------------
Wed May 11 06:33:01 UTC 2022 - Andreas Stieger <andreas.stieger@gmx.de>

- Chromium 101.0.4951.64 (boo#1199409)
  * CVE-2022-1633: Use after free in Sharesheet
  * CVE-2022-1634: Use after free in Browser UI
  * CVE-2022-1635: Use after free in Permission Prompts
  * CVE-2022-1636: Use after free in Performance APIs
  * CVE-2022-1637: Inappropriate implementation in Web Contents
  * CVE-2022-1638: Heap buffer overflow in V8 Internationalization
  * CVE-2022-1639: Use after free in ANGLE
  * CVE-2022-1640: Use after free in Sharing
  * CVE-2022-1641: Use after free in Web UI Diagnostics

-------------------------------------------------------------------
Wed May  4 09:34:58 UTC 2022 - Callum Farmer <gmbr3@opensuse.org>

- Chromium 101.0.4951.54 (boo#1199118)
- Chromium 101.0.4951.41 (boo#1198917)
  * CVE-2022-1477: Use after free in Vulkan
  * CVE-2022-1478: Use after free in SwiftShader
  * CVE-2022-1479: Use after free in ANGLE
  * CVE-2022-1480: Use after free in Device API
  * CVE-2022-1481: Use after free in Sharing
  * CVE-2022-1482: Inappropriate implementation in WebGL
  * CVE-2022-1483: Heap buffer overflow in WebGPU
  * CVE-2022-1484: Heap buffer overflow in Web UI Settings
  * CVE-2022-1485: Use after free in File System API
  * CVE-2022-1486: Type Confusion in V8
  * CVE-2022-1487: Use after free in Ozone
  * CVE-2022-1488: Inappropriate implementation in Extensions API
  * CVE-2022-1489: Out of bounds memory access in UI Shelf
  * CVE-2022-1490: Use after free in Browser Switcher
  * CVE-2022-1491: Use after free in Bookmarks
  * CVE-2022-1492: Insufficient data validation in Blink Editing
  * CVE-2022-1493: Use after free in Dev Tools
  * CVE-2022-1494: Insufficient data validation in Trusted Types
  * CVE-2022-1495: Incorrect security UI in Downloads
  * CVE-2022-1496: Use after free in File Manager
  * CVE-2022-1497: Inappropriate implementation in Input
  * CVE-2022-1498: Inappropriate implementation in HTML Parser
  * CVE-2022-1499: Inappropriate implementation in WebAuthentication
  * CVE-2022-1500: Insufficient data validation in Dev Tools
  * CVE-2022-1501: Inappropriate implementation in iframe
- Added patches:
  * chromium-101-libxml-unbundle.patch
  * chromium-101-segmentation_platform-type.patch
- Removed patches:
  * chromium-100-SCTHashdanceMetadata-move.patch
  * chromium-100-GLImplementationParts-constexpr.patch
  * chromium-100-macro-typo.patch
  
-------------------------------------------------------------------
Sun Apr 24 05:23:26 UTC 2022 - Carsten Ziepke <kieltux@gmail.com>

- Rebase chromium 100.0.4896.127 for use as chromium-ffmpeg-extra

-------------------------------------------------------------------
Thu Apr 21 10:04:22 UTC 2022 - Callum Farmer <gmbr3@opensuse.org>

- Fixes for go 1.18

-------------------------------------------------------------------
Fri Apr 15 07:29:35 UTC 2022 - Andreas Stieger <andreas.stieger@gmx.de>

- Chromium 100.0.4896.127 (boo#1198509)
  * CVE-2022-1364: Type Confusion in V8
  * Various fixes from internal audits, fuzzing and other initiatives

-------------------------------------------------------------------
Tue Apr 12 05:02:45 UTC 2022 - Andreas Stieger <andreas.stieger@gmx.de>

- Chromium 100.0.4896.88 (boo#1198361)
  * CVE-2022-1305: Use after free in storage
  * CVE-2022-1306: Inappropriate implementation in compositing
  * CVE-2022-1307: Inappropriate implementation in full screen
  * CVE-2022-1308: Use after free in BFCache
  * CVE-2022-1309: Insufficient policy enforcement in developer tools
  * CVE-2022-1310: Use after free in regular expressions
  * CVE-2022-1311: Use after free in Chrome OS shell
  * CVE-2022-1312: Use after free in storage
  * CVE-2022-1313: Use after free in tab groups
  * CVE-2022-1314: Type Confusion in V8
  * Various fixes from internal audits, fuzzing and other initiatives

-------------------------------------------------------------------
Sun Apr 10 13:52:31 UTC 2022 - Callum Farmer <gmbr3@opensuse.org>

- Patches for GCC 12:
  * chromium-fix-swiftshader-template.patch
  * chromium-missing-include-tuple.patch
  * chromium-webrtc-stats-missing-vector.patch

-------------------------------------------------------------------
Tue Apr  5 02:11:03 UTC 2022 - Andreas Stieger <andreas.stieger@gmx.de>

- Chromium 100.0.4896.75:
  * CVE-2022-1232: Type Confusion in V8 (boo#1198053)

-------------------------------------------------------------------
Wed Mar 30 16:25:44 UTC 2022 - Callum Farmer <gmbr3@opensuse.org>

- Chromium 100.0.4896.60 (boo#1197680)
  * CVE-2022-1125: Use after free in Portals
  * CVE-2022-1127: Use after free in QR Code Generator
  * CVE-2022-1128: Inappropriate implementation in Web Share API
  * CVE-2022-1129: Inappropriate implementation in Full Screen Mode
  * CVE-2022-1130: Insufficient validation of untrusted input in WebOTP
  * CVE-2022-1131: Use after free in Cast UI
  * CVE-2022-1132: Inappropriate implementation in Virtual Keyboard
  * CVE-2022-1133: Use after free in WebRTC
  * CVE-2022-1134: Type Confusion in V8
  * CVE-2022-1135: Use after free in Shopping Cart
  * CVE-2022-1136: Use after free in Tab Strip
  * CVE-2022-1137: Inappropriate implementation in Extensions
  * CVE-2022-1138: Inappropriate implementation in Web Cursor
  * CVE-2022-1139: Inappropriate implementation in Background Fetch API
  * CVE-2022-1141: Use after free in File Manager
  * CVE-2022-1142: Heap buffer overflow in WebUI
  * CVE-2022-1143: Heap buffer overflow in WebUI
  * CVE-2022-1144: Use after free in WebUI
  * CVE-2022-1145: Use after free in Extensions
  * CVE-2022-1146: Inappropriate implementation in Resource Timing
- Added patches:
  * chromium-100-compiler.patch
  * chromium-100-GLImplementationParts-constexpr.patch
  * chromium-100-InMilliseconds-constexpr.patch
  * chromium-100-SCTHashdanceMetadata-move.patch
  * chromium-100-macro-typo.patch
- Removed patches:
  * chromium-98-compiler.patch
  * chromium-86-nearby-explicit.patch
  * chromium-glibc-2.34.patch
  * chromium-v8-missing-utility-include.patch
  * chromium-99-AutofillAssistantModelExecutor-NoDestructor.patch

-------------------------------------------------------------------
Tue Mar 29 09:23:28 UTC 2022 - Andreas Schwab <schwab@suse.de>

- Update disk constraints

-------------------------------------------------------------------
Sat Mar 26 15:10:15 UTC 2022 - Andreas Stieger <andreas.stieger@gmx.de>

- Chromium 99.0.4844.84:
  * CVE-2022-1096: Type Confusion in V8 (boo#1197552)

-------------------------------------------------------------------
Mon Mar 21 05:07:25 UTC 2022 - Andreas Stieger <andreas.stieger@gmx.de>

- Chromium 99.0.4844.82:
  * Fix potential problem in Hangouts (boo#1197332)

-------------------------------------------------------------------
Wed Mar 16 09:36:49 UTC 2022 - Andreas Stieger <andreas.stieger@gmx.de>

- Chromium 99.0.4844.74 (boo#1197163)
  * CVE-2022-0971: Use after free in Blink Layout
  * CVE-2022-0972: Use after free in Extensions
  * CVE-2022-0973: Use after free in Safe Browsing
  * CVE-2022-0974: Use after free in Splitscreen
  * CVE-2022-0975: Use after free in ANGLE
  * CVE-2022-0976: Heap buffer overflow in GPU
  * CVE-2022-0977: Use after free in Browser UI
  * CVE-2022-0978: Use after free in ANGLE
  * CVE-2022-0979: Use after free in Safe Browsing
  * CVE-2022-0980: Use after free in New Tab Page
  * Various fixes from internal audits, fuzzing and other initiatives

-------------------------------------------------------------------
Fri Mar  4 10:46:36 UTC 2022 - Callum Farmer <gmbr3@opensuse.org>

- Chromium 99.0.4844.51 (boo#1196641)
  * CVE-2022-0789: Heap buffer overflow in ANGLE
  * CVE-2022-0790: Use after free in Cast UI
  * CVE-2022-0791: Use after free in Omnibox
  * CVE-2022-0792: Out of bounds read in ANGLE
  * CVE-2022-0793: Use after free in Views
  * CVE-2022-0794: Use after free in WebShare
  * CVE-2022-0795: Type Confusion in Blink Layout
  * CVE-2022-0796: Use after free in Media
  * CVE-2022-0797: Out of bounds memory access in Mojo
  * CVE-2022-0798: Use after free in MediaStream
  * CVE-2022-0799: Insufficient policy enforcement in Installer
  * CVE-2022-0800: Heap buffer overflow in Cast UI
  * CVE-2022-0801: Inappropriate implementation in HTML parser
  * CVE-2022-0802: Inappropriate implementation in Full screen mode
  * CVE-2022-0803: Inappropriate implementation in Permissions
  * CVE-2022-0804: Inappropriate implementation in Full screen mode
  * CVE-2022-0805: Use after free in Browser Switcher
  * CVE-2022-0806: Data leak in Canvas
  * CVE-2022-0807: Inappropriate implementation in Autofill
  * CVE-2022-0808: Use after free in Chrome OS Shell
  * CVE-2022-0809: Out of bounds memory access in WebXR
- Removed patches:
  * chromium-96-EnumTable-crash.patch
  * chromium-89-missing-cstring-header.patch
  * chromium-95-libyuv-aarch64.patch
  * chromium-95-libyuv-arm.patch
  * chromium-98-MiraclePtr-gcc-ice.patch
  * chromium-98-WaylandFrameManager-check.patch
- Added patches:
  * chromium-97-arm-tflite-cast.patch
  * chromium-98-gtk4-build.patch
  * chromium-99-AutofillAssistantModelExecutor-NoDestructor.patch
  * chromium-98-EnumTable-crash.patch
  * chromium-third_party-symbolize-missing-include.patch
  * chromium-v8-missing-utility-include.patch

-------------------------------------------------------------------
Tue Feb 15 19:13:43 UTC 2022 - Andreas Stieger <andreas.stieger@gmx.de>

- Chromium 98.0.4758.102 (boo#1195986)
  * CVE-2022-0603: Use after free in File Manager
  * CVE-2022-0604: Heap buffer overflow in Tab Groups
  * CVE-2022-0605: Use after free in Webstore API
  * CVE-2022-0606: Use after free in ANGLE
  * CVE-2022-0607: Use after free in GPU
  * CVE-2022-0608: Integer overflow in Mojo
  * CVE-2022-0609: Use after free in Animation
  * CVE-2022-0610: Inappropriate implementation in Gamepad API
  * Various fixes from internal audits, fuzzing and other initiatives

-------------------------------------------------------------------
Thu Feb  3 19:35:46 UTC 2022 - Andreas Stieger <andreas.stieger@gmx.de>

- Chromium 98.0.4758.80 (boo#1195420)
  * CVE-2022-0452: Use after free in Safe Browsing
  * CVE-2022-0453: Use after free in Reader Mode
  * CVE-2022-0454: Heap buffer overflow in ANGLE
  * CVE-2022-0455: Inappropriate implementation in Full Screen Mode
  * CVE-2022-0456: Use after free in Web Search
  * CVE-2022-0457: Type Confusion in V8
  * CVE-2022-0459: Use after free in Screen Capture
  * CVE-2022-0460: Use after free in Window Dialog
  * CVE-2022-0461: Policy bypass in COOP
  * CVE-2022-0462: Inappropriate implementation in Scroll
  * CVE-2022-0463: Use after free in Accessibility
  * CVE-2022-0464: Use after free in Accessibility
  * CVE-2022-0465: Use after free in Extensions
  * CVE-2022-0466: Inappropriate implementation in Extensions Platform
  * CVE-2022-0467: Inappropriate implementation in Pointer Lock
  * CVE-2022-0468: Use after free in Payments
  * CVE-2022-0469: Use after free in Cast
  * CVE-2022-0470: Out of bounds memory access in V8
  * Various fixes from internal audits, fuzzing and other initiatives
- drop upstreamed patches:
  * chromium-97-Point-constexpr.patch
- add patches:
  * chromium-98-MiraclePtr-gcc-ice.patch
  * chromium-98-WaylandFrameManager-check.patch
- change chromium-97-compiler.patch to chromium-98-compiler.patch

-------------------------------------------------------------------
Fri Jan 21 06:43:25 UTC 2022 - Andreas Stieger <andreas.stieger@gmx.de>

- Chromium 97.0.4692.99 (boo#1194919):
  * CVE-2022-0289: Use after free in Safe browsing
  * CVE-2022-0290: Use after free in Site isolation
  * CVE-2022-0291: Inappropriate implementation in Storage
  * CVE-2022-0292: Inappropriate implementation in Fenced Frames
  * CVE-2022-0293: Use after free in Web packaging
  * CVE-2022-0294: Inappropriate implementation in Push messaging
  * CVE-2022-0295: Use after free in Omnibox
  * CVE-2022-0296: Use after free in Printing
  * CVE-2022-0297: Use after free in Vulkan
  * CVE-2022-0298: Use after free in Scheduling
  * CVE-2022-0300: Use after free in Text Input Method Editor
  * CVE-2022-0301: Heap buffer overflow in DevTools
  * CVE-2022-0302: Use after free in Omnibox
  * CVE-2022-0303: Race in GPU Watchdog
  * CVE-2022-0304: Use after free in Bookmarks
  * CVE-2022-0305: Inappropriate implementation in Service Worker API
  * CVE-2022-0306: Heap buffer overflow in PDFium
  * CVE-2022-0307: Use after free in Optimization Guide
  * CVE-2022-0308: Use after free in Data Transfer
  * CVE-2022-0309: Inappropriate implementation in Autofill
  * CVE-2022-0310: Heap buffer overflow in Task Manager
  * CVE-2022-0311: Heap buffer overflow in Task Manager
  * Various fixes from internal audits, fuzzing and other initiatives
- drop upstreamed patches:
  * fix-tag-dragging-in-Mutter.patch
  * fix-tag-dragging-in-KWin.patch

-------------------------------------------------------------------
Thu Jan 20 09:46:50 UTC 2022 - Callum Farmer <gmbr3@opensuse.org>

- Revert chromium-94-ffmpeg-roll.patch on TW: fix moved to
  FFmpeg

-------------------------------------------------------------------
Sun Jan 16 12:05:13 UTC 2022 - Carsten Ziepke <kieltux@gmail.com>

- Rebase chromium 97.0.4692.71 for use as chromium-ffmpeg-extra
- Use gcc10 instead of gcc 11

Tue Jan 11 20:00:16 UTC 2022 - Callum Farmer <gmbr3@opensuse.org>

- Chromium 97.0.4692.71 (boo#1194331):
  * CVE-2022-0096: Use after free in Storage
  * CVE-2022-0097: Inappropriate implementation in DevTools
  * CVE-2022-0098: Use after free in Screen Capture
  * CVE-2022-0099: Use after free in Sign-in
  * CVE-2022-0100: Heap buffer overflow in Media streams API
  * CVE-2022-0101: Heap buffer overflow in Bookmarks
  * CVE-2022-0102: Type Confusion in V8
  * CVE-2022-0103: Use after free in SwiftShader
  * CVE-2022-0104: Heap buffer overflow in ANGLE
  * CVE-2022-0105: Use after free in PDF
  * CVE-2022-0106: Use after free in Autofill
  * CVE-2022-0107: Use after free in File Manager API
  * CVE-2022-0108: Inappropriate implementation in Navigation
  * CVE-2022-0109: Inappropriate implementation in Autofill
  * CVE-2022-0110: Incorrect security UI in Autofill
  * CVE-2022-0111: Inappropriate implementation in Navigation
  * CVE-2022-0112: Incorrect security UI in Browser UI
  * CVE-2022-0113: Inappropriate implementation in Blink
  * CVE-2022-0114: Out of bounds memory access in Web Serial
  * CVE-2022-0115: Uninitialized Use in File API
  * CVE-2022-0116: Inappropriate implementation in Compositing
  * CVE-2022-0117: Policy bypass in Service Workers
  * CVE-2022-0118: Inappropriate implementation in WebShare
  * CVE-2022-0120: Inappropriate implementation in Passwords
- Removed patches:
  * chromium-96-CommandLine-include.patch
  * chromium-96-RestrictedCookieManager-tuple.patch
  * chromium-96-DrmRenderNodePathFinder-include.patch
  * chromium-96-CouponDB-include.patch
  * chromium-96-freetype-unbundle.patch
  * chromium-96-compiler.patch
  * chromium-vaapi.patch
  * chromium-86-nearby-include.patch
- Added patches:
  * chromium-97-compiler.patch
  * chromium-97-Point-constexpr.patch
  * chromium-97-ScrollView-reference.patch
  * chromium-95-libyuv-arm.patch
  * fix-tag-dragging-in-KWin.patch
  * fix-tag-dragging-in-Mutter.patch

-------------------------------------------------------------------
Thu Dec 30 15:30:19 UTC 2021 - Callum Farmer <gmbr3@opensuse.org>

- Revert wayland fixes because it doesn't handle GPU correctly
  (boo#1194182)

-------------------------------------------------------------------
Thu Dec 30 08:38:17 UTC 2021 - Martin Liška <mliska@suse.cz>

- Use GCC 11, but disable LTO (boo#1194055).

-------------------------------------------------------------------
Wed Dec 29 12:23:48 UTC 2021 - Callum Farmer <gmbr3@opensuse.org>

- Use our own copy of the wrapper so that we can use the fixes
  for Wayland

-------------------------------------------------------------------
Sun Dec 26 23:02:18 UTC 2021 - Callum Farmer <gmbr3@opensuse.org>

- Define GNU_SOURCE and fix the below patched issues
- Removed patches:
  * chromium-86-f_seal.patch
  * chromium-90-fseal.patch

-------------------------------------------------------------------
Fri Dec 24 11:24:13 UTC 2021 - Callum Farmer <gmbr3@opensuse.org>

- Added patches:
  * chromium-96-freetype-unbundle.patch
  * chromium-96-EnumTable-crash.patch
- Unbundle freetype on TW
- Unbundle icu on 15.4
- Disable lto and update _constraints on aarch64
- Remove MEIPreload: it gets installed through component updater

-------------------------------------------------------------------
Wed Dec 15 10:54:35 UTC 2021 - Callum Farmer <gmbr3@opensuse.org>

- Revert to gcc10 on TW: gcc11 is entirely broken
- No auto thread LTO: linker crash on ARM

-------------------------------------------------------------------
Tue Dec 14 15:24:47 UTC 2021 - Andreas Stieger <andreas.stieger@gmx.de>

- Chromium 96.0.4664.110 (boo#1193713):
  * CVE-2021-4098: Insufficient data validation in Mojo
  * CVE-2021-4099: Use after free in Swiftshader
  * CVE-2021-4100: Object lifecycle issue in ANGLE
  * CVE-2021-4101: Heap buffer overflow in Swiftshader
  * CVE-2021-4102: Use after free in V8

-------------------------------------------------------------------
Thu Dec  9 09:49:23 UTC 2021 - Callum Farmer <gmbr3@opensuse.org>

- Lord of the Browsers: The Two Compilers:
  * Go back to GCC
  * GCC: LTO removes needed assembly symbols
  * Clang: issues with libstdc++
- Chromium 96.0.4664.93 (boo#1193519):
  * CVE-2021-4052: Use after free in web apps
  * CVE-2021-4053: Use after free in UI
  * CVE-2021-4079: Out of bounds write in WebRTC
  * CVE-2021-4054: Incorrect security UI in autofill
  * CVE-2021-4078: Type confusion in V8
  * CVE-2021-4055: Heap buffer overflow in extensions
  * CVE-2021-4056: Type Confusion in loader
  * CVE-2021-4057: Use after free in file API
  * CVE-2021-4058: Heap buffer overflow in ANGLE
  * CVE-2021-4059: Insufficient data validation in loader
  * CVE-2021-4061: Type Confusion in V8
  * CVE-2021-4062: Heap buffer overflow in BFCache
  * CVE-2021-4063: Use after free in developer tools
  * CVE-2021-4064: Use after free in screen capture
  * CVE-2021-4065: Use after free in autofill
  * CVE-2021-4066: Integer underflow in ANGLE
  * CVE-2021-4067: Use after free in window manager
  * CVE-2021-4068: Insufficient validation of untrusted input in new tab page
- Chromium 96.0.4664.45 (boo#1192734):
  * CVE-2021-38007: Type Confusion in V8
  * CVE-2021-38008: Use after free in media
  * CVE-2021-38009: Inappropriate implementation in cache
  * CVE-2021-38006: Use after free in storage foundation
  * CVE-2021-38005: Use after free in loader
  * CVE-2021-38010: Inappropriate implementation in service workers
  * CVE-2021-38011: Use after free in storage foundation
  * CVE-2021-38012: Type Confusion in V8
  * CVE-2021-38013: Heap buffer overflow in fingerprint recognition
  * CVE-2021-38014: Out of bounds write in Swiftshader
  * CVE-2021-38015: Inappropriate implementation in input
  * CVE-2021-38016: Insufficient policy enforcement in background fetch
  * CVE-2021-38017: Insufficient policy enforcement in iframe sandbox
  * CVE-2021-38018: Inappropriate implementation in navigation
  * CVE-2021-38019: Insufficient policy enforcement in CORS
  * CVE-2021-38020: Insufficient policy enforcement in contacts picker
  * CVE-2021-38021: Inappropriate implementation in referrer
  * CVE-2021-38022: Inappropriate implementation in WebAuthentication
- Removed old patches:
  * chromium-95-compiler.patch
  * chromium-95-BitstreamReader-namespace.patch
  * chromium-95-system-zlib.patch
  * chromium-older-harfbuzz.patch
  * pipewire-do-not-typecheck-the-portal-session_handle.patch
- Removed build breaking patches:
  * chromium-93-EnumTable-crash.patch
- Added patches:
  * chromium-96-compiler.patch
  * chromium-96-CommandLine-include.patch
  * chromium-96-RestrictedCookieManager-tuple.patch
  * chromium-96-DrmRenderNodePathFinder-include.patch
  * chromium-96-CouponDB-include.patch
- Changed patches:
  * gcc-enable-lto.patch: see above

-------------------------------------------------------------------
Fri Nov 19 09:32:39 UTC 2021 - Callum Farmer <gmbr3@opensuse.org>

- Ensure newer libs and LLVM is used on Leap (boo#1192310)

-------------------------------------------------------------------
Wed Nov 17 10:08:55 UTC 2021 - Steve Kowalik <steven.kowalik@suse.com>

- Explicitly BuildRequire python3-six.

-------------------------------------------------------------------
Wed Nov 10 20:03:53 UTC 2021 - Carsten Ziepke <kieltux@gmail.com>

- Chromium 95.0.4638.69 (boo#1192184):
  * CVE-2021-37997: Use after free in Sign-In
  * CVE-2021-37998: Use after free in Garbage Collection
  * CVE-2021-37999: Insufficient data validation in New Tab Page
  * CVE-2021-38000: Insufficient validation of untrusted input in Intents
  * CVE-2021-38001: Type Confusion in V8
  * CVE-2021-38002: Use after free in Web Transport
  * CVE-2021-38003: Inappropriate implementation in V8
- Chromium 95.0.4638.54 (boo#1191844):
  * CVE-2021-37981: Heap buffer overflow in Skia
  * CVE-2021-37982: Use after free in Incognito
  * CVE-2021-37983: Use after free in Dev Tools
  * CVE-2021-37984: Heap buffer overflow in PDFium
  * CVE-2021-37985: Use after free in V8
  * CVE-2021-37986: Heap buffer overflow in Settings
  * CVE-2021-37987: Use after free in Network APIs
  * CVE-2021-37988: Use after free in Profiles
  * CVE-2021-37989: Inappropriate implementation in Blink
  * CVE-2021-37990: Inappropriate implementation in WebView
  * CVE-2021-37991: Race in V8
  * CVE-2021-37992: Out of bounds read in WebAudio
  * CVE-2021-37993: Use after free in PDF Accessibility
  * CVE-2021-37996: Insufficient validation of untrusted input in Downloads
  * CVE-2021-37994: Inappropriate implementation in iFrame Sandbox
  * CVE-2021-37995: Inappropriate implementation in WebApp Installer
- Added patches:
  * chromium-95-BitstreamReader-namespace.patch
  * chromium-95-compiler.patch
  * chromium-95-libyuv-aarch64.patch
  * chromium-95-quiche-include.patch
  * chromium-95-system-zlib.patch
- Removed patches:
  * chromium-94-compiler.patch
  * chromium-91-libyuv-aarch64.patch
  * chromium-90-ruy-include.patch
  * chromium-94-CustomSpaces-include.patch

-------------------------------------------------------------------
Sat Oct  9 05:32:48 UTC 2021 - Carsten Ziepke <kieltux@gmail.com>

- Removed patches:
  * chromium-94-ffmpeg-roll.patch

-------------------------------------------------------------------
Fri Oct  8 19:46:13 UTC 2021 - Carsten Ziepke <kieltux@gmail.com>

- Chromium 94.0.4606.81 (boo#1191463):
  * CVE-2021-37977: Use after free in Garbage Collection
  * CVE-2021-37978: Heap buffer overflow in Blink
  * CVE-2021-37979: Heap buffer overflow in WebRTC
  * CVE-2021-37980: Inappropriate implementation in Sandbox
- Re-add after accidental deletion:
  * chromium-93-InkDropHost-crash.patch
- Chromium 94.0.4606.54 (boo#1190765):
  * CVE-2021-37956: Use after free in Offline use
  * CVE-2021-37957: Use after free in WebGPU
  * CVE-2021-37958: Inappropriate implementation in Navigation
  * CVE-2021-37959: Use after free in Task Manager
  * CVE-2021-37960: Inappropriate implementation in Blink graphics
  * CVE-2021-37961: Use after free in Tab Strip
  * CVE-2021-37962: Use after free in Performance Manager
  * CVE-2021-37963: Side-channel information leakage in DevTools
  * CVE-2021-37964: Inappropriate implementation in ChromeOS Networking
  * CVE-2021-37965: Inappropriate implementation in Background Fetch API
  * CVE-2021-37966: Inappropriate implementation in Compositing
  * CVE-2021-37967: Inappropriate implementation in Background Fetch API
  * CVE-2021-37968: Inappropriate implementation in Background Fetch API
  * CVE-2021-37969: Inappropriate implementation in Google Updater
  * CVE-2021-37970: Use after free in File System API
  * CVE-2021-37971: Incorrect security UI in Web Browser UI
  * CVE-2021-37972: Out of bounds read in libjpeg-turbo
- Chromium 94.0.4606.61 (boo#1191166):
  * CVE-2021-37973: Use after free in Portals
- Chromium 94.0.4606.71 (boo#1191204):
  * CVE-2021-37974 : Use after free in Safe Browsing
  * CVE-2021-37975 : Use after free in V8
  * CVE-2021-37976 : Information leak in core
- Added patches:
  * chromium-94-CustomSpaces-include.patch
  * chromium-94-sql-no-assert.patch
  * chromium-older-harfbuzz.patch
  * chromium-94-ffmpeg-roll.patch
  * chromium-94-compiler.patch
- Removed patches:
  * chromium-freetype-2.11.patch
  * chromium-93-ContextSet-permissive.patch
  * chromium-93-ClassProperty-include.patch
  * chromium-93-BluetoothLowEnergyScanFilter-include.patch
  * chromium-93-HashPasswordManager-include.patch
  * chromium-93-pdfium-include.patch
  * chromium-93-DevToolsEmbedderMessageDispatcher-include.patch
  * chromium-93-FormForest-constexpr.patch
  * chromium-93-ScopedTestDialogAutoConfirm-include.patch
  * chromium-93-InkDropHost-crash.patch
  * chromium-91-compiler.patch
  * chromium-glibc-2.33.patch
  * chromium-shim_headers.patch

-------------------------------------------------------------------
Fri Sep 24 17:16:41 UTC 2021 - Carsten Ziepke <kieltux@gmail.com>

- Add patch to fix Leap 15.2 build:
  * chromium-ffmpeg-lp152.patch
- Change system-libdrm.patch: add to unbundle instead of changing
  header path

-------------------------------------------------------------------
Sun Sep 19 19:41:03 UTC 2021 - Carsten Ziepke <kieltux@gmail.com>

- Update to 93.0.4577.82
  Branch of https://build.opensuse.org/project/show/network:chromium
- Drop conditional build for libffmpeg, we want it here definitely

-------------------------------------------------------------------
Tue Oct 16 05:18:00 UTC 2018 - avvissu@yandex.by

- Add chromium-old-glibc.patch

-------------------------------------------------------------------
Fri Sep 21 20:49:51 UTC 2018 - fisiu@opensuse.org

- Update to 69.0.3497.100.

-------------------------------------------------------------------
Sat Mar 24 00:09:38 UTC 2018 - fisiu@opensuse.org

- Make symlink to allow Opera find libffmpeg.so.

-------------------------------------------------------------------
Fri Feb  2 23:21:51 UTC 2018 - fisiu@opensuse.org

- Update to 64.0.3282.134
- Drop fix-gn-bootstrap.diff: fixed upstream.
- Drop fix-gn-bootstrap.diff: build with gcc7.
- Add chromium-angle.patch: fix build issue.
- Add chromium-memcpy.patch: fix build issue.

-------------------------------------------------------------------
Mon Oct 16 15:42:17 UTC 2017 - avvissu@yandex.by

- Update to 61.0.3163.100

-------------------------------------------------------------------
Fri Jun 23 20:05:27 UTC 2017 - avvissu@yandex.by

- Update to 59.0.3071.104

-------------------------------------------------------------------
Fri Apr 28 05:04:38 UTC 2017 - avvissu@yandex.by

- Update to 58.0.3029.81

-------------------------------------------------------------------
Tue Apr 11 05:24:41 UTC 2017 - avvissu@yandex.by

- Use a custom toolchain

-------------------------------------------------------------------
Wed Apr  5 17:08:12 UTC 2017 - avvissu@yandex.by

- Remove --verbose flag
- Add chromium-fix-gn-bootstrap.patch

-------------------------------------------------------------------
Wed Mar 29 14:01:10 UTC 2017 - avvissu@yandex.by

- Initial release

 
-------------------------------------------------------------------
Sun Jul 16 07:54:55 UTC 2023 - Carsten Ziepke <kieltux@gmail.com>
​
- Rebase chromium 114.0.5735.198 for use as chromium-ffmpeg-extra
​
-------------------------------------------------------------------
Tue Jun 27 07:39:29 UTC 2023 - Andreas Stieger <andreas.stieger@gmx.de>
​
- Chromium 114.0.5735.198 (boo#1212755):
  * CVE-2023-3420: Type Confusion in V8
  * CVE-2023-3421: Use after free in Media
  * CVE-2023-3422: Use after free in Guest View
​
-------------------------------------------------------------------
Sun Jun 25 09:54:37 UTC 2023 - Callum Farmer <gmbr3@opensuse.org>
​
- Install Qt5 library & prepare for Qt6 in 115
​
-------------------------------------------------------------------
Wed Jun 14 05:23:16 UTC 2023 - Andreas Stieger <andreas.stieger@gmx.de>
​
- Chromium 114.0.5735.133 (boo#1212302):
  * CVE-2023-3214: Use after free in Autofill payments
  * CVE-2023-3215: Use after free in WebRTC
  * CVE-2023-3216: Type Confusion in V8
  * CVE-2023-3217: Use after free in WebXR
  * Various fixes from internal audits, fuzzing and other initiatives
​
-------------------------------------------------------------------
Wed Jun  7 18:13:06 UTC 2023 - Andreas Stieger <Andreas.Stieger@gmx.de>
​
- Fix Leap 15.4 build - chromium-114-revert-av1enc-lp154.patch
​
-------------------------------------------------------------------
Tue Jun  6 05:34:13 UTC 2023 - Andreas Stieger <andreas.stieger@gmx.de>
​
- Chromium 114.0.5735.106 (boo#1212044):
  * CVE-2023-3079: Type Confusion in V8
​
-------------------------------------------------------------------
Sun Jun  4 18:52:01 UTC 2023 - Callum Farmer <gmbr3@opensuse.org>
​
- Chromium 114.0.5735.90 (boo#1211843):
  * CSS text-wrap: balance is available
  * Cookies partitioned by top level site (CHIPS)
  * New Popover API
- Security fixes:
  * CVE-2023-2929: Out of bounds write in Swiftshader
  * CVE-2023-2930: Use after free in Extensions
  * CVE-2023-2931: Use after free in PDF
  * CVE-2023-2932: Use after free in PDF
  * CVE-2023-2933: Use after free in PDF
  * CVE-2023-2934: Out of bounds memory access in Mojo
  * CVE-2023-2935: Type Confusion in V8
  * CVE-2023-2936: Type Confusion in V8
  * CVE-2023-2937: Inappropriate implementation in Picture In Picture
  * CVE-2023-2938: Inappropriate implementation in Picture In Picture
  * CVE-2023-2939: Insufficient data validation in Installer
  * CVE-2023-2940: Inappropriate implementation in Downloads
  * CVE-2023-2941: Inappropriate implementation in Extensions API
- Drop patches:
  * chromium-103-VirtualCursor-std-layout.patch
  * chromium-113-system-zlib.patch
  * chromium-113-workaround_clang_bug-structured_binding.patch
- Add patches
  * chromium-114-workaround_clang_bug-structured_binding.patch
  * chromium-114-lld-argument.patch
​
-------------------------------------------------------------------
Tue May 30 21:53:45 UTC 2023 - Callum Farmer <gmbr3@opensuse.org>
​
- Un-bundle zlib again
- Remove un-needed patches:
  * chromium-112-default-comparison-operators.patch
  * chromium-109-clang-lp154.patch
  * chromium-clang-nomerge.patch
  * chromium-ffmpeg-lp152.patch
  * chromium-lp151-old-drm.patch
- Added patches:
  * chromium-113-system-zlib.patch
​
-------------------------------------------------------------------
Sun May 28 21:32:03 UTC 2023 - Andreas Stieger <andreas.stieger@gmx.de>
​
- build with llvm15 on Leap
​
-------------------------------------------------------------------
Tue May 16 21:16:23 UTC 2023 - Andreas Stieger <Andreas.Stieger@gmx.de>
​
- Chromium 113.0.5672.126 (boo#1211442):
  * CVE-2023-2721: Use after free in Navigation
  * CVE-2023-2722: Use after free in Autofill UI
  * CVE-2023-2723: Use after free in DevTools
  * CVE-2023-2724: Type Confusion in V8
  * CVE-2023-2725: Use after free in Guest View
  * CVE-2023-2726: Inappropriate implementation in WebApp Installs
  * Various fixes from internal audits, fuzzing and other initiatives
​
-------------------------------------------------------------------
Tue May  9 19:14:20 UTC 2023 - Andreas Stieger <Andreas.Stieger@gmx.de>
​
- Chromium 113.0.5672.92 (boo#1211211)
- Multiple security fixes (boo#1211036):
  * CVE-2023-2459: Inappropriate implementation in Prompts
  * CVE-2023-2460: Insufficient validation of untrusted input in Extensions
  * CVE-2023-2461: Use after free in OS Inputs
  * CVE-2023-2462: Inappropriate implementation in Prompts
  * CVE-2023-2463: Inappropriate implementation in Full Screen Mode
  * CVE-2023-2464: Inappropriate implementation in PictureInPicture
  * CVE-2023-2465: Inappropriate implementation in CORS
  * CVE-2023-2466: Inappropriate implementation in Prompts
  * CVE-2023-2467: Inappropriate implementation in Prompts
  * CVE-2023-2468: Inappropriate implementation in PictureInPicture
- drop chromium-94-sql-no-assert.patch
- drop no-location-leap151.patch
- add chromium-113-webview-namespace.patch
- add chromium-113-webauth-include-variant.patch
- add chromium-113-typename.patch
- add chromium-113-workaround_clang_bug-structured_binding.patch
​
-------------------------------------------------------------------
Wed Apr 19 19:55:51 UTC 2023 - Andreas Stieger <Andreas.Stieger@gmx.de>
​
- Chromium 112.0.5615.165 (boo#1210618):
  * CVE-2023-2133: Out of bounds memory access in Service Worker API
  * CVE-2023-2134: Out of bounds memory access in Service Worker API
  * CVE-2023-2135: Use after free in DevTools
  * CVE-2023-2136: Integer overflow in Skia
  * CVE-2023-2137: Heap buffer overflow in sqlite
- drop chromium-112-feed_protos.patch
​
-------------------------------------------------------------------
Sun Apr 16 02:10:30 UTC 2023 - Andreas Stieger <andreas.stieger@gmx.de>
​
- Fix Leap 15.4 build failures from default comparison operators
  defined outside of the class definition, a C++20 feature
  adding chromium-112-default-comparison-operators.patch
​
-------------------------------------------------------------------
Sat Apr 15 10:49:51 UTC 2023 - Andreas Stieger <andreas.stieger@gmx.de>
​
- Chromium 112.0.5615.121:
  * CVE-2023-2033: Type Confusion in V8 (boo#1210478)
​
-------------------------------------------------------------------
Fri Apr  7 07:57:40 UTC 2023 - Andreas Stieger <andreas.stieger@gmx.de>
​
- Revert a breaking change with chromium-112-feed_protos.patch
​
-------------------------------------------------------------------
Tue Apr  4 22:38:23 UTC 2023 - Andreas Stieger <andreas.stieger@gmx.de>
​
- Chromium 112.0.5615.49 
  * CSS now supports nesting rules.
  * The algorithm to set the initial focus on <dialog> elements was updated.
  * No-op fetch() handlers on service workers are skipped from now on to make navigations faster
  * The setter for document.domain is now deprecated.
  * The recorder in devtools can now record with pierce selectors.
  * Security fixes (boo#1210126):
  * CVE-2023-1810: Heap buffer overflow in Visuals
  * CVE-2023-1811: Use after free in Frames
  * CVE-2023-1812: Out of bounds memory access in DOM Bindings
  * CVE-2023-1813: Inappropriate implementation in Extensions
  * CVE-2023-1814: Insufficient validation of untrusted input in Safe Browsing
  * CVE-2023-1815: Use after free in Networking APIs
  * CVE-2023-1816: Incorrect security UI in Picture In Picture
  * CVE-2023-1817: Insufficient policy enforcement in Intents
  * CVE-2023-1818: Use after free in Vulkan
  * CVE-2023-1819: Out of bounds read in Accessibility
  * CVE-2023-1820: Heap buffer overflow in Browser History
  * CVE-2023-1821: Inappropriate implementation in WebShare
  * CVE-2023-1822: Incorrect security UI in Navigation
  * CVE-2023-1823: Inappropriate implementation in FedCM
-------------------------------------------------------------------
Sun Apr  2 10:10:49 UTC 2023 - Carsten Ziepke <kieltux@gmail.com>
​
- Use gcc11/gcc11-c++ for openSUSE Leap, use gcc12/gcc12-c++
  for openSUSE Tumbleweed, because fails with gcc13/gcc13-c++
​
-------------------------------------------------------------------
Thu Jul 14 16:38:50 UTC 2022 - Carsten Ziepke <kieltux@gmail.com>
​
- Rebase chromium 103.0.5060.114 for use as chromium-ffmpeg-extra
  - Fixes problems with audio and youtube video playback
​
-------------------------------------------------------------------
Sat Jul  9 12:52:33 UTC 2022 - Andreas Stieger <andreas.stieger@gmx.de>
​
- Chromium 103.0.5060.114 (boo#1201216)
  * CVE-2022-2294: Heap buffer overflow in WebRTC
  * CVE-2022-2295: Type Confusion in V8
  * CVE-2022-2296: Use after free in Chrome OS Shell
​
-------------------------------------------------------------------
Thu Jul  7 18:07:43 UTC 2022 - Andreas Stieger <andreas.stieger@gmx.de>
​
- Chromium 103.0.5060.66
  * no upstream release notes
​
-------------------------------------------------------------------
Sat Jun 25 10:43:48 UTC 2022 - Callum Farmer <gmbr3@opensuse.org>
​
- Chromium 103.0.5060.53 (boo#1200783)
  * CVE-2022-2156: Use after free in Base
  * CVE-2022-2157: Use after free in Interest groups
  * CVE-2022-2158: Type Confusion in V8
  * CVE-2022-2160: Insufficient policy enforcement in DevTools
  * CVE-2022-2161: Use after free in WebApp Provider
  * CVE-2022-2162: Insufficient policy enforcement in File System API
  * CVE-2022-2163: Use after free in Cast UI and Toolbar
  * CVE-2022-2164: Inappropriate implementation in Extensions API
  * CVE-2022-2165: Insufficient data validation in URL formatting
- Added patches:
  * chromium-103-FrameLoadRequest-type.patch
  * chromium-103-SubstringSetMatcher-packed.patch
  * chromium-103-VirtualCursor-std-layout.patch
  * chromium-103-compiler.patch
- Removed patches:
  * chromium-102-compiler.patch
  * chromium-91-sql-standard-layout-type.patch
  * chromium-101-libxml-unbundle.patch
  * chromium-102-fenced_frame_utils-include.patch
  * chromium-102-swiftshader-template-instantiation.patch
  * chromium-102-symbolize-include.patch
  * chromium-97-arm-tflite-cast.patch
  * chromium-97-ScrollView-reference.patch
​
-------------------------------------------------------------------
Fri Jun 10 15:35:20 UTC 2022 - Andreas Stieger <andreas.stieger@gmx.de>
​
- Chromium 102.0.5005.115 (boo#1200423)
  * CVE-2022-2007: Use after free in WebGPU
  * CVE-2022-2008: Out of bounds memory access in WebGL
  * CVE-2022-2010: Out of bounds read in compositing
  * CVE-2022-2011: Use after free in ANGLE
​
-------------------------------------------------------------------
Wed Jun  8 13:40:43 UTC 2022 - Callum Farmer <gmbr3@opensuse.org>
​
- Switch to GTK4 on TW and Leap 15.4+ (boo#1200139)
​
-------------------------------------------------------------------
Wed Jun  1 09:43:54 UTC 2022 - Callum Farmer <gmbr3@opensuse.org>
​
- Disable ARM control flow integrity, it causes build issues
  at the moment
- Try a different SVG (black logo on GNOME)
- Removed patches:
  * chromium-third_party-symbolize-missing-include.patch
  (replaced by chromium-102-symbolize-include.patch)
​
-------------------------------------------------------------------
Fri May 27 19:40:42 UTC 2022 - Callum Farmer <gmbr3@opensuse.org>
​
- Chromium 102.0.5001.61 (boo#1199893)
  * CVE-2022-1853: Use after free in Indexed DB
  * CVE-2022-1854: Use after free in ANGLE
  * CVE-2022-1855: Use after free in Messaging
  * CVE-2022-1856: Use after free in User Education
  * CVE-2022-1857: Insufficient policy enforcement in File System API
  * CVE-2022-1858: Out of bounds read in DevTools
  * CVE-2022-1859: Use after free in Performance Manager
  * CVE-2022-1860: Use after free in UI Foundations
  * CVE-2022-1861: Use after free in Sharing
  * CVE-2022-1862: Inappropriate implementation in Extensions
  * CVE-2022-1863: Use after free in Tab Groups
  * CVE-2022-1864: Use after free in WebApp Installs
  * CVE-2022-1865: Use after free in Bookmarks
  * CVE-2022-1866: Use after free in Tablet Mode
  * CVE-2022-1867: Insufficient validation of untrusted input in Data Transfer
  * CVE-2022-1868: Inappropriate implementation in Extensions API
  * CVE-2022-1869: Type Confusion in V8
  * CVE-2022-1870: Use after free in App Service
  * CVE-2022-1871: Insufficient policy enforcement in File System API
  * CVE-2022-1872: Insufficient policy enforcement in Extensions API
  * CVE-2022-1873: Insufficient policy enforcement in COOP
  * CVE-2022-1874: Insufficient policy enforcement in Safe Browsing
  * CVE-2022-1875: Inappropriate implementation in PDF
  * CVE-2022-1876: Heap buffer overflow in DevTools
- Added patches:
  * chromium-102-compiler.patch
  * chromium-102-fenced_frame_utils-include.patch
  * chromium-102-regex_pattern-array.patch
  * chromium-102-swiftshader-template-instantiation.patch
  * chromium-102-symbolize-include.patch
  * ffmpeg-new-channel-layout.patch
- Removed patches:
  * chromium-100-compiler.patch
  * chromium-80-QuicStreamSendBuffer-deleted-move-constructor.patch
  * chromium-95-quiche-include.patch
  * chromium-fix-swiftshader-template.patch
  * chromium-missing-include-tuple.patch
  * chromium-webrtc-stats-missing-vector.patch
  * chromium-101-segmentation_platform-type.patch
​
-------------------------------------------------------------------
Sun May 15 09:03:28 UTC 2022 - Andreas Stieger <andreas.stieger@gmx.de>
​
- Chromium 101.0.4951.67
  * fixes for other platforms
​
-------------------------------------------------------------------
Wed May 11 06:33:01 UTC 2022 - Andreas Stieger <andreas.stieger@gmx.de>
​
- Chromium 101.0.4951.64 (boo#1199409)
  * CVE-2022-1633: Use after free in Sharesheet
  * CVE-2022-1634: Use after free in Browser UI
  * CVE-2022-1635: Use after free in Permission Prompts
  * CVE-2022-1636: Use after free in Performance APIs
  * CVE-2022-1637: Inappropriate implementation in Web Contents
  * CVE-2022-1638: Heap buffer overflow in V8 Internationalization
  * CVE-2022-1639: Use after free in ANGLE
  * CVE-2022-1640: Use after free in Sharing
  * CVE-2022-1641: Use after free in Web UI Diagnostics
​
-------------------------------------------------------------------
Wed May  4 09:34:58 UTC 2022 - Callum Farmer <gmbr3@opensuse.org>
​
- Chromium 101.0.4951.54 (boo#1199118)
- Chromium 101.0.4951.41 (boo#1198917)
  * CVE-2022-1477: Use after free in Vulkan
  * CVE-2022-1478: Use after free in SwiftShader
  * CVE-2022-1479: Use after free in ANGLE
  * CVE-2022-1480: Use after free in Device API
  * CVE-2022-1481: Use after free in Sharing
  * CVE-2022-1482: Inappropriate implementation in WebGL
  * CVE-2022-1483: Heap buffer overflow in WebGPU
  * CVE-2022-1484: Heap buffer overflow in Web UI Settings
  * CVE-2022-1485: Use after free in File System API
  * CVE-2022-1486: Type Confusion in V8
  * CVE-2022-1487: Use after free in Ozone
  * CVE-2022-1488: Inappropriate implementation in Extensions API
  * CVE-2022-1489: Out of bounds memory access in UI Shelf
  * CVE-2022-1490: Use after free in Browser Switcher
  * CVE-2022-1491: Use after free in Bookmarks
  * CVE-2022-1492: Insufficient data validation in Blink Editing
  * CVE-2022-1493: Use after free in Dev Tools
  * CVE-2022-1494: Insufficient data validation in Trusted Types
  * CVE-2022-1495: Incorrect security UI in Downloads
  * CVE-2022-1496: Use after free in File Manager
  * CVE-2022-1497: Inappropriate implementation in Input
  * CVE-2022-1498: Inappropriate implementation in HTML Parser
  * CVE-2022-1499: Inappropriate implementation in WebAuthentication
  * CVE-2022-1500: Insufficient data validation in Dev Tools
  * CVE-2022-1501: Inappropriate implementation in iframe
- Added patches:
  * chromium-101-libxml-unbundle.patch
  * chromium-101-segmentation_platform-type.patch
- Removed patches:
  * chromium-100-SCTHashdanceMetadata-move.patch
  * chromium-100-GLImplementationParts-constexpr.patch
  * chromium-100-macro-typo.patch
  
-------------------------------------------------------------------
Sun Apr 24 05:23:26 UTC 2022 - Carsten Ziepke <kieltux@gmail.com>
​
- Rebase chromium 100.0.4896.127 for use as chromium-ffmpeg-extra
​
-------------------------------------------------------------------
Thu Apr 21 10:04:22 UTC 2022 - Callum Farmer <gmbr3@opensuse.org>
​
- Fixes for go 1.18
​
-------------------------------------------------------------------
Fri Apr 15 07:29:35 UTC 2022 - Andreas Stieger <andreas.stieger@gmx.de>
​
- Chromium 100.0.4896.127 (boo#1198509)
  * CVE-2022-1364: Type Confusion in V8
  * Various fixes from internal audits, fuzzing and other initiatives
​
-------------------------------------------------------------------
Tue Apr 12 05:02:45 UTC 2022 - Andreas Stieger <andreas.stieger@gmx.de>
​
- Chromium 100.0.4896.88 (boo#1198361)
  * CVE-2022-1305: Use after free in storage
  * CVE-2022-1306: Inappropriate implementation in compositing
  * CVE-2022-1307: Inappropriate implementation in full screen
  * CVE-2022-1308: Use after free in BFCache
  * CVE-2022-1309: Insufficient policy enforcement in developer tools
  * CVE-2022-1310: Use after free in regular expressions
  * CVE-2022-1311: Use after free in Chrome OS shell
  * CVE-2022-1312: Use after free in storage
  * CVE-2022-1313: Use after free in tab groups
  * CVE-2022-1314: Type Confusion in V8
  * Various fixes from internal audits, fuzzing and other initiatives
​
-------------------------------------------------------------------
Sun Apr 10 13:52:31 UTC 2022 - Callum Farmer <gmbr3@opensuse.org>
​
- Patches for GCC 12:
  * chromium-fix-swiftshader-template.patch
  * chromium-missing-include-tuple.patch
  * chromium-webrtc-stats-missing-vector.patch
​
-------------------------------------------------------------------
Tue Apr  5 02:11:03 UTC 2022 - Andreas Stieger <andreas.stieger@gmx.de>
​
- Chromium 100.0.4896.75:
  * CVE-2022-1232: Type Confusion in V8 (boo#1198053)
​
-------------------------------------------------------------------
Wed Mar 30 16:25:44 UTC 2022 - Callum Farmer <gmbr3@opensuse.org>
​
- Chromium 100.0.4896.60 (boo#1197680)
  * CVE-2022-1125: Use after free in Portals
  * CVE-2022-1127: Use after free in QR Code Generator
  * CVE-2022-1128: Inappropriate implementation in Web Share API
  * CVE-2022-1129: Inappropriate implementation in Full Screen Mode
  * CVE-2022-1130: Insufficient validation of untrusted input in WebOTP
  * CVE-2022-1131: Use after free in Cast UI
  * CVE-2022-1132: Inappropriate implementation in Virtual Keyboard
  * CVE-2022-1133: Use after free in WebRTC
  * CVE-2022-1134: Type Confusion in V8
  * CVE-2022-1135: Use after free in Shopping Cart
  * CVE-2022-1136: Use after free in Tab Strip
  * CVE-2022-1137: Inappropriate implementation in Extensions
  * CVE-2022-1138: Inappropriate implementation in Web Cursor
  * CVE-2022-1139: Inappropriate implementation in Background Fetch API
  * CVE-2022-1141: Use after free in File Manager
  * CVE-2022-1142: Heap buffer overflow in WebUI
  * CVE-2022-1143: Heap buffer overflow in WebUI
  * CVE-2022-1144: Use after free in WebUI
  * CVE-2022-1145: Use after free in Extensions
  * CVE-2022-1146: Inappropriate implementation in Resource Timing
- Added patches:
  * chromium-100-compiler.patch
  * chromium-100-GLImplementationParts-constexpr.patch
  * chromium-100-InMilliseconds-constexpr.patch
  * chromium-100-SCTHashdanceMetadata-move.patch
  * chromium-100-macro-typo.patch
- Removed patches:
  * chromium-98-compiler.patch
  * chromium-86-nearby-explicit.patch
  * chromium-glibc-2.34.patch
  * chromium-v8-missing-utility-include.patch
  * chromium-99-AutofillAssistantModelExecutor-NoDestructor.patch
​
-------------------------------------------------------------------
Tue Mar 29 09:23:28 UTC 2022 - Andreas Schwab <schwab@suse.de>
​
- Update disk constraints
​
-------------------------------------------------------------------
Sat Mar 26 15:10:15 UTC 2022 - Andreas Stieger <andreas.stieger@gmx.de>
​
- Chromium 99.0.4844.84:
  * CVE-2022-1096: Type Confusion in V8 (boo#1197552)
​
-------------------------------------------------------------------
Mon Mar 21 05:07:25 UTC 2022 - Andreas Stieger <andreas.stieger@gmx.de>
​
- Chromium 99.0.4844.82:
  * Fix potential problem in Hangouts (boo#1197332)
​
-------------------------------------------------------------------
Wed Mar 16 09:36:49 UTC 2022 - Andreas Stieger <andreas.stieger@gmx.de>
​
- Chromium 99.0.4844.74 (boo#1197163)
  * CVE-2022-0971: Use after free in Blink Layout
  * CVE-2022-0972: Use after free in Extensions
  * CVE-2022-0973: Use after free in Safe Browsing
  * CVE-2022-0974: Use after free in Splitscreen
  * CVE-2022-0975: Use after free in ANGLE
  * CVE-2022-0976: Heap buffer overflow in GPU
  * CVE-2022-0977: Use after free in Browser UI
  * CVE-2022-0978: Use after free in ANGLE
  * CVE-2022-0979: Use after free in Safe Browsing
  * CVE-2022-0980: Use after free in New Tab Page
  * Various fixes from internal audits, fuzzing and other initiatives
​
-------------------------------------------------------------------
Fri Mar  4 10:46:36 UTC 2022 - Callum Farmer <gmbr3@opensuse.org>
​
- Chromium 99.0.4844.51 (boo#1196641)
  * CVE-2022-0789: Heap buffer overflow in ANGLE
  * CVE-2022-0790: Use after free in Cast UI
  * CVE-2022-0791: Use after free in Omnibox
  * CVE-2022-0792: Out of bounds read in ANGLE
  * CVE-2022-0793: Use after free in Views
  * CVE-2022-0794: Use after free in WebShare
  * CVE-2022-0795: Type Confusion in Blink Layout
  * CVE-2022-0796: Use after free in Media
  * CVE-2022-0797: Out of bounds memory access in Mojo
  * CVE-2022-0798: Use after free in MediaStream
  * CVE-2022-0799: Insufficient policy enforcement in Installer
  * CVE-2022-0800: Heap buffer overflow in Cast UI
  * CVE-2022-0801: Inappropriate implementation in HTML parser
  * CVE-2022-0802: Inappropriate implementation in Full screen mode
  * CVE-2022-0803: Inappropriate implementation in Permissions
  * CVE-2022-0804: Inappropriate implementation in Full screen mode
  * CVE-2022-0805: Use after free in Browser Switcher
  * CVE-2022-0806: Data leak in Canvas
  * CVE-2022-0807: Inappropriate implementation in Autofill
  * CVE-2022-0808: Use after free in Chrome OS Shell
  * CVE-2022-0809: Out of bounds memory access in WebXR
- Removed patches:
  * chromium-96-EnumTable-crash.patch
  * chromium-89-missing-cstring-header.patch
  * chromium-95-libyuv-aarch64.patch
  * chromium-95-libyuv-arm.patch
  * chromium-98-MiraclePtr-gcc-ice.patch
  * chromium-98-WaylandFrameManager-check.patch
- Added patches:
  * chromium-97-arm-tflite-cast.patch
  * chromium-98-gtk4-build.patch
  * chromium-99-AutofillAssistantModelExecutor-NoDestructor.patch
  * chromium-98-EnumTable-crash.patch
  * chromium-third_party-symbolize-missing-include.patch
  * chromium-v8-missing-utility-include.patch
​
-------------------------------------------------------------------
Tue Feb 15 19:13:43 UTC 2022 - Andreas Stieger <andreas.stieger@gmx.de>
​
- Chromium 98.0.4758.102 (boo#1195986)
  * CVE-2022-0603: Use after free in File Manager
  * CVE-2022-0604: Heap buffer overflow in Tab Groups
  * CVE-2022-0605: Use after free in Webstore API
  * CVE-2022-0606: Use after free in ANGLE
  * CVE-2022-0607: Use after free in GPU
  * CVE-2022-0608: Integer overflow in Mojo
  * CVE-2022-0609: Use after free in Animation
  * CVE-2022-0610: Inappropriate implementation in Gamepad API
  * Various fixes from internal audits, fuzzing and other initiatives
​
-------------------------------------------------------------------
Thu Feb  3 19:35:46 UTC 2022 - Andreas Stieger <andreas.stieger@gmx.de>
​
- Chromium 98.0.4758.80 (boo#1195420)
  * CVE-2022-0452: Use after free in Safe Browsing
  * CVE-2022-0453: Use after free in Reader Mode
  * CVE-2022-0454: Heap buffer overflow in ANGLE
  * CVE-2022-0455: Inappropriate implementation in Full Screen Mode
  * CVE-2022-0456: Use after free in Web Search
  * CVE-2022-0457: Type Confusion in V8
  * CVE-2022-0459: Use after free in Screen Capture
  * CVE-2022-0460: Use after free in Window Dialog
  * CVE-2022-0461: Policy bypass in COOP
  * CVE-2022-0462: Inappropriate implementation in Scroll
  * CVE-2022-0463: Use after free in Accessibility
  * CVE-2022-0464: Use after free in Accessibility
  * CVE-2022-0465: Use after free in Extensions
  * CVE-2022-0466: Inappropriate implementation in Extensions Platform
  * CVE-2022-0467: Inappropriate implementation in Pointer Lock
  * CVE-2022-0468: Use after free in Payments
  * CVE-2022-0469: Use after free in Cast
  * CVE-2022-0470: Out of bounds memory access in V8
  * Various fixes from internal audits, fuzzing and other initiatives
- drop upstreamed patches:
  * chromium-97-Point-constexpr.patch
- add patches:
  * chromium-98-MiraclePtr-gcc-ice.patch
  * chromium-98-WaylandFrameManager-check.patch
- change chromium-97-compiler.patch to chromium-98-compiler.patch
​
-------------------------------------------------------------------
Fri Jan 21 06:43:25 UTC 2022 - Andreas Stieger <andreas.stieger@gmx.de>
​
- Chromium 97.0.4692.99 (boo#1194919):
  * CVE-2022-0289: Use after free in Safe browsing
  * CVE-2022-0290: Use after free in Site isolation
  * CVE-2022-0291: Inappropriate implementation in Storage
  * CVE-2022-0292: Inappropriate implementation in Fenced Frames
  * CVE-2022-0293: Use after free in Web packaging
  * CVE-2022-0294: Inappropriate implementation in Push messaging
  * CVE-2022-0295: Use after free in Omnibox
  * CVE-2022-0296: Use after free in Printing
  * CVE-2022-0297: Use after free in Vulkan
  * CVE-2022-0298: Use after free in Scheduling
  * CVE-2022-0300: Use after free in Text Input Method Editor
  * CVE-2022-0301: Heap buffer overflow in DevTools
  * CVE-2022-0302: Use after free in Omnibox
  * CVE-2022-0303: Race in GPU Watchdog
  * CVE-2022-0304: Use after free in Bookmarks
  * CVE-2022-0305: Inappropriate implementation in Service Worker API
  * CVE-2022-0306: Heap buffer overflow in PDFium
  * CVE-2022-0307: Use after free in Optimization Guide
  * CVE-2022-0308: Use after free in Data Transfer
  * CVE-2022-0309: Inappropriate implementation in Autofill
  * CVE-2022-0310: Heap buffer overflow in Task Manager
  * CVE-2022-0311: Heap buffer overflow in Task Manager
  * Various fixes from internal audits, fuzzing and other initiatives
- drop upstreamed patches:
  * fix-tag-dragging-in-Mutter.patch
  * fix-tag-dragging-in-KWin.patch
​
-------------------------------------------------------------------
Thu Jan 20 09:46:50 UTC 2022 - Callum Farmer <gmbr3@opensuse.org>
​
- Revert chromium-94-ffmpeg-roll.patch on TW: fix moved to
  FFmpeg
​
-------------------------------------------------------------------
Sun Jan 16 12:05:13 UTC 2022 - Carsten Ziepke <kieltux@gmail.com>
​
- Rebase chromium 97.0.4692.71 for use as chromium-ffmpeg-extra
- Use gcc10 instead of gcc 11
​
Tue Jan 11 20:00:16 UTC 2022 - Callum Farmer <gmbr3@opensuse.org>
​
- Chromium 97.0.4692.71 (boo#1194331):
  * CVE-2022-0096: Use after free in Storage
  * CVE-2022-0097: Inappropriate implementation in DevTools
  * CVE-2022-0098: Use after free in Screen Capture
  * CVE-2022-0099: Use after free in Sign-in
  * CVE-2022-0100: Heap buffer overflow in Media streams API
  * CVE-2022-0101: Heap buffer overflow in Bookmarks
  * CVE-2022-0102: Type Confusion in V8
  * CVE-2022-0103: Use after free in SwiftShader
  * CVE-2022-0104: Heap buffer overflow in ANGLE
  * CVE-2022-0105: Use after free in PDF
  * CVE-2022-0106: Use after free in Autofill
  * CVE-2022-0107: Use after free in File Manager API
  * CVE-2022-0108: Inappropriate implementation in Navigation
  * CVE-2022-0109: Inappropriate implementation in Autofill
  * CVE-2022-0110: Incorrect security UI in Autofill
  * CVE-2022-0111: Inappropriate implementation in Navigation
  * CVE-2022-0112: Incorrect security UI in Browser UI
  * CVE-2022-0113: Inappropriate implementation in Blink
  * CVE-2022-0114: Out of bounds memory access in Web Serial
  * CVE-2022-0115: Uninitialized Use in File API
  * CVE-2022-0116: Inappropriate implementation in Compositing
  * CVE-2022-0117: Policy bypass in Service Workers
  * CVE-2022-0118: Inappropriate implementation in WebShare
  * CVE-2022-0120: Inappropriate implementation in Passwords
- Removed patches:
  * chromium-96-CommandLine-include.patch
  * chromium-96-RestrictedCookieManager-tuple.patch
  * chromium-96-DrmRenderNodePathFinder-include.patch
  * chromium-96-CouponDB-include.patch
  * chromium-96-freetype-unbundle.patch
  * chromium-96-compiler.patch
  * chromium-vaapi.patch
  * chromium-86-nearby-include.patch
- Added patches:
  * chromium-97-compiler.patch
  * chromium-97-Point-constexpr.patch
  * chromium-97-ScrollView-reference.patch
  * chromium-95-libyuv-arm.patch
  * fix-tag-dragging-in-KWin.patch
  * fix-tag-dragging-in-Mutter.patch 
​
-------------------------------------------------------------------
Thu Dec 30 15:30:19 UTC 2021 - Callum Farmer <gmbr3@opensuse.org>
​
- Revert wayland fixes because it doesn't handle GPU correctly
  (boo#1194182)
​
-------------------------------------------------------------------
Thu Dec 30 08:38:17 UTC 2021 - Martin Liška <mliska@suse.cz>
​
- Use GCC 11, but disable LTO (boo#1194055).
​
-------------------------------------------------------------------
Wed Dec 29 12:23:48 UTC 2021 - Callum Farmer <gmbr3@opensuse.org>
​
- Use our own copy of the wrapper so that we can use the fixes
  for Wayland
​
-------------------------------------------------------------------
Sun Dec 26 23:02:18 UTC 2021 - Callum Farmer <gmbr3@opensuse.org>
​
- Define GNU_SOURCE and fix the below patched issues
- Removed patches:
  * chromium-86-f_seal.patch
  * chromium-90-fseal.patch
​
-------------------------------------------------------------------
Fri Dec 24 11:24:13 UTC 2021 - Callum Farmer <gmbr3@opensuse.org>
​
- Added patches:
  * chromium-96-freetype-unbundle.patch
  * chromium-96-EnumTable-crash.patch
- Unbundle freetype on TW
- Unbundle icu on 15.4
- Disable lto and update _constraints on aarch64
- Remove MEIPreload: it gets installed through component updater
​
-------------------------------------------------------------------
Wed Dec 15 10:54:35 UTC 2021 - Callum Farmer <gmbr3@opensuse.org>
​
- Revert to gcc10 on TW: gcc11 is entirely broken
- No auto thread LTO: linker crash on ARM
​
-------------------------------------------------------------------
Tue Dec 14 15:24:47 UTC 2021 - Andreas Stieger <andreas.stieger@gmx.de>
​
- Chromium 96.0.4664.110 (boo#1193713):
  * CVE-2021-4098: Insufficient data validation in Mojo
  * CVE-2021-4099: Use after free in Swiftshader
  * CVE-2021-4100: Object lifecycle issue in ANGLE
  * CVE-2021-4101: Heap buffer overflow in Swiftshader
  * CVE-2021-4102: Use after free in V8
​
-------------------------------------------------------------------
Thu Dec  9 09:49:23 UTC 2021 - Callum Farmer <gmbr3@opensuse.org>
​
- Lord of the Browsers: The Two Compilers:
  * Go back to GCC
  * GCC: LTO removes needed assembly symbols
  * Clang: issues with libstdc++
- Chromium 96.0.4664.93 (boo#1193519):
  * CVE-2021-4052: Use after free in web apps
  * CVE-2021-4053: Use after free in UI
  * CVE-2021-4079: Out of bounds write in WebRTC
  * CVE-2021-4054: Incorrect security UI in autofill
  * CVE-2021-4078: Type confusion in V8
  * CVE-2021-4055: Heap buffer overflow in extensions
  * CVE-2021-4056: Type Confusion in loader
  * CVE-2021-4057: Use after free in file API
  * CVE-2021-4058: Heap buffer overflow in ANGLE
  * CVE-2021-4059: Insufficient data validation in loader
  * CVE-2021-4061: Type Confusion in V8
  * CVE-2021-4062: Heap buffer overflow in BFCache
  * CVE-2021-4063: Use after free in developer tools
  * CVE-2021-4064: Use after free in screen capture
  * CVE-2021-4065: Use after free in autofill
  * CVE-2021-4066: Integer underflow in ANGLE
  * CVE-2021-4067: Use after free in window manager
  * CVE-2021-4068: Insufficient validation of untrusted input in new tab page
- Chromium 96.0.4664.45 (boo#1192734):
  * CVE-2021-38007: Type Confusion in V8
  * CVE-2021-38008: Use after free in media
  * CVE-2021-38009: Inappropriate implementation in cache
  * CVE-2021-38006: Use after free in storage foundation
  * CVE-2021-38005: Use after free in loader
  * CVE-2021-38010: Inappropriate implementation in service workers
  * CVE-2021-38011: Use after free in storage foundation
  * CVE-2021-38012: Type Confusion in V8
  * CVE-2021-38013: Heap buffer overflow in fingerprint recognition
  * CVE-2021-38014: Out of bounds write in Swiftshader
  * CVE-2021-38015: Inappropriate implementation in input
  * CVE-2021-38016: Insufficient policy enforcement in background fetch
  * CVE-2021-38017: Insufficient policy enforcement in iframe sandbox
  * CVE-2021-38018: Inappropriate implementation in navigation
  * CVE-2021-38019: Insufficient policy enforcement in CORS
  * CVE-2021-38020: Insufficient policy enforcement in contacts picker
  * CVE-2021-38021: Inappropriate implementation in referrer
  * CVE-2021-38022: Inappropriate implementation in WebAuthentication
- Removed old patches:
  * chromium-95-compiler.patch
  * chromium-95-BitstreamReader-namespace.patch
  * chromium-95-system-zlib.patch
  * chromium-older-harfbuzz.patch
  * pipewire-do-not-typecheck-the-portal-session_handle.patch
- Removed build breaking patches:
  * chromium-93-EnumTable-crash.patch
- Added patches:
  * chromium-96-compiler.patch
  * chromium-96-CommandLine-include.patch
  * chromium-96-RestrictedCookieManager-tuple.patch
  * chromium-96-DrmRenderNodePathFinder-include.patch
  * chromium-96-CouponDB-include.patch
- Changed patches:
  * gcc-enable-lto.patch: see above
​
-------------------------------------------------------------------
Fri Nov 19 09:32:39 UTC 2021 - Callum Farmer <gmbr3@opensuse.org>
​
- Ensure newer libs and LLVM is used on Leap (boo#1192310)
​
-------------------------------------------------------------------
Wed Nov 17 10:08:55 UTC 2021 - Steve Kowalik <steven.kowalik@suse.com>
​
- Explicitly BuildRequire python3-six.
​
-------------------------------------------------------------------
Wed Nov 10 20:03:53 UTC 2021 - Carsten Ziepke <kieltux@gmail.com>
​
- Chromium 95.0.4638.69 (boo#1192184):
  * CVE-2021-37997: Use after free in Sign-In
  * CVE-2021-37998: Use after free in Garbage Collection
  * CVE-2021-37999: Insufficient data validation in New Tab Page
  * CVE-2021-38000: Insufficient validation of untrusted input in Intents
  * CVE-2021-38001: Type Confusion in V8
  * CVE-2021-38002: Use after free in Web Transport
  * CVE-2021-38003: Inappropriate implementation in V8
- Chromium 95.0.4638.54 (boo#1191844):
  * CVE-2021-37981: Heap buffer overflow in Skia
  * CVE-2021-37982: Use after free in Incognito
  * CVE-2021-37983: Use after free in Dev Tools
  * CVE-2021-37984: Heap buffer overflow in PDFium
  * CVE-2021-37985: Use after free in V8
  * CVE-2021-37986: Heap buffer overflow in Settings
  * CVE-2021-37987: Use after free in Network APIs
  * CVE-2021-37988: Use after free in Profiles
  * CVE-2021-37989: Inappropriate implementation in Blink
  * CVE-2021-37990: Inappropriate implementation in WebView
  * CVE-2021-37991: Race in V8
  * CVE-2021-37992: Out of bounds read in WebAudio
  * CVE-2021-37993: Use after free in PDF Accessibility
  * CVE-2021-37996: Insufficient validation of untrusted input in Downloads
  * CVE-2021-37994: Inappropriate implementation in iFrame Sandbox
  * CVE-2021-37995: Inappropriate implementation in WebApp Installer
- Added patches:
  * chromium-95-BitstreamReader-namespace.patch
  * chromium-95-compiler.patch
  * chromium-95-libyuv-aarch64.patch
  * chromium-95-quiche-include.patch
  * chromium-95-system-zlib.patch
- Removed patches:
  * chromium-94-compiler.patch
  * chromium-91-libyuv-aarch64.patch
  * chromium-90-ruy-include.patch
  * chromium-94-CustomSpaces-include.patch
​
-------------------------------------------------------------------
Sat Oct  9 05:32:48 UTC 2021 - Carsten Ziepke <kieltux@gmail.com>
​
- Removed patches:
  * chromium-94-ffmpeg-roll.patch
​
-------------------------------------------------------------------
Fri Oct  8 19:46:13 UTC 2021 - Carsten Ziepke <kieltux@gmail.com>
​
- Chromium 94.0.4606.81 (boo#1191463):
  * CVE-2021-37977: Use after free in Garbage Collection
  * CVE-2021-37978: Heap buffer overflow in Blink
  * CVE-2021-37979: Heap buffer overflow in WebRTC
  * CVE-2021-37980: Inappropriate implementation in Sandbox
- Re-add after accidental deletion:
  * chromium-93-InkDropHost-crash.patch
- Chromium 94.0.4606.54 (boo#1190765):
  * CVE-2021-37956: Use after free in Offline use
  * CVE-2021-37957: Use after free in WebGPU
  * CVE-2021-37958: Inappropriate implementation in Navigation
  * CVE-2021-37959: Use after free in Task Manager
  * CVE-2021-37960: Inappropriate implementation in Blink graphics
  * CVE-2021-37961: Use after free in Tab Strip
  * CVE-2021-37962: Use after free in Performance Manager
  * CVE-2021-37963: Side-channel information leakage in DevTools
  * CVE-2021-37964: Inappropriate implementation in ChromeOS Networking
  * CVE-2021-37965: Inappropriate implementation in Background Fetch API
  * CVE-2021-37966: Inappropriate implementation in Compositing
  * CVE-2021-37967: Inappropriate implementation in Background Fetch API
  * CVE-2021-37968: Inappropriate implementation in Background Fetch API
  * CVE-2021-37969: Inappropriate implementation in Google Updater
  * CVE-2021-37970: Use after free in File System API
  * CVE-2021-37971: Incorrect security UI in Web Browser UI
  * CVE-2021-37972: Out of bounds read in libjpeg-turbo
- Chromium 94.0.4606.61 (boo#1191166):
  * CVE-2021-37973: Use after free in Portals
- Chromium 94.0.4606.71 (boo#1191204):
  * CVE-2021-37974 : Use after free in Safe Browsing
  * CVE-2021-37975 : Use after free in V8
  * CVE-2021-37976 : Information leak in core
- Added patches:
  * chromium-94-CustomSpaces-include.patch
  * chromium-94-sql-no-assert.patch
  * chromium-older-harfbuzz.patch
  * chromium-94-ffmpeg-roll.patch
  * chromium-94-compiler.patch
- Removed patches:
  * chromium-freetype-2.11.patch
  * chromium-93-ContextSet-permissive.patch
  * chromium-93-ClassProperty-include.patch
  * chromium-93-BluetoothLowEnergyScanFilter-include.patch
  * chromium-93-HashPasswordManager-include.patch
  * chromium-93-pdfium-include.patch
  * chromium-93-DevToolsEmbedderMessageDispatcher-include.patch
  * chromium-93-FormForest-constexpr.patch
  * chromium-93-ScopedTestDialogAutoConfirm-include.patch
  * chromium-93-InkDropHost-crash.patch
  * chromium-91-compiler.patch
  * chromium-glibc-2.33.patch
  * chromium-shim_headers.patch 
​
-------------------------------------------------------------------
Fri Sep 24 17:16:41 UTC 2021 - Carsten Ziepke <kieltux@gmail.com>
​
- Add patch to fix Leap 15.2 build:
  * chromium-ffmpeg-lp152.patch
- Change system-libdrm.patch: add to unbundle instead of changing
  header path
​
-------------------------------------------------------------------
Sun Sep 19 19:41:03 UTC 2021 - Carsten Ziepke <kieltux@gmail.com>
​
- Update to 93.0.4577.82
  Branch of https://build.opensuse.org/project/show/network:chromium
- Drop conditional build for libffmpeg, we want it here definitely
​
-------------------------------------------------------------------
Tue Oct 16 05:18:00 UTC 2018 - avvissu@yandex.by
​
- Add chromium-old-glibc.patch
​
-------------------------------------------------------------------
Fri Sep 21 20:49:51 UTC 2018 - fisiu@opensuse.org
​
- Update to 69.0.3497.100.
​
-------------------------------------------------------------------
Sat Mar 24 00:09:38 UTC 2018 - fisiu@opensuse.org
​
- Make symlink to allow Opera find libffmpeg.so.
​
-------------------------------------------------------------------
Fri Feb  2 23:21:51 UTC 2018 - fisiu@opensuse.org
​
- Update to 64.0.3282.134
- Drop fix-gn-bootstrap.diff: fixed upstream.
- Drop fix-gn-bootstrap.diff: build with gcc7.
- Add chromium-angle.patch: fix build issue.
- Add chromium-memcpy.patch: fix build issue.
​
-------------------------------------------------------------------
Mon Oct 16 15:42:17 UTC 2017 - avvissu@yandex.by
​
- Update to 61.0.3163.100
​
-------------------------------------------------------------------
Fri Jun 23 20:05:27 UTC 2017 - avvissu@yandex.by
​
- Update to 59.0.3071.104
​
-------------------------------------------------------------------
Fri Apr 28 05:04:38 UTC 2017 - avvissu@yandex.by
​
- Update to 58.0.3029.81
​
-------------------------------------------------------------------
Tue Apr 11 05:24:41 UTC 2017 - avvissu@yandex.by
​
- Use a custom toolchain
​
-------------------------------------------------------------------
Wed Apr  5 17:08:12 UTC 2017 - avvissu@yandex.by
​
- Remove --verbose flag
- Add chromium-fix-gn-bootstrap.patch
​
-------------------------------------------------------------------
Wed Mar 29 14:01:10 UTC 2017 - avvissu@yandex.by
​
- Initial release
​
​