Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 800181

Summary: <dev-qt/qtwebengine-5.15.2_p20210625: Multiple vulnerabilities
Product: Gentoo Security Reporter: Andreas Sturmlechner <asturm>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Status: IN_PROGRESS ---    
Severity: normal Flags: nattka: sanity-check-
Priority: Normal    
Version: unspecified   
Hardware: All   
OS: Linux   
See Also: https://bugs.gentoo.org/show_bug.cgi?id=796521
https://bugs.gentoo.org/show_bug.cgi?id=795204
https://bugs.gentoo.org/show_bug.cgi?id=792084
https://bugs.gentoo.org/show_bug.cgi?id=789420
https://bugs.gentoo.org/show_bug.cgi?id=785889
Whiteboard: A2 [glsa?]
Package list:
dev-qt/qtwebengine-5.15.2_p20210625
Runtime testing required: ---
Bug Depends on: 787950    
Bug Blocks: 795201, 810781, 792054    

Description Andreas Sturmlechner gentoo-dev 2021-07-03 14:26:43 UTC
Too many really to keep track of.

See also: https://code.qt.io/cgit/qt/qtwebengine-chromium.git/log/?h=87-based&qt=range&q=0b959ee2
Comment 1 Larry the Git Cow gentoo-dev 2021-07-04 20:40:25 UTC
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=393d361644d173d4ea6bfaaaa224f4a07ffef9bf

commit 393d361644d173d4ea6bfaaaa224f4a07ffef9bf
Author:     Andreas Sturmlechner <asturm@gentoo.org>
AuthorDate: 2021-07-03 14:45:46 +0000
Commit:     Andreas Sturmlechner <asturm@gentoo.org>
CommitDate: 2021-07-04 20:40:06 +0000

    dev-qt/qtwebengine: Drop 5.15.2_p20210521
    
    Overshadowed by 5.15.2_p20210625.
    
    Bug: https://bugs.gentoo.org/800181
    Package-Manager: Portage-3.0.20, Repoman-3.0.3
    Signed-off-by: Andreas Sturmlechner <asturm@gentoo.org>

 dev-qt/qtwebengine/Manifest                        |   1 -
 .../qtwebengine-5.15.2_p20210521.ebuild            | 215 ---------------------
 2 files changed, 216 deletions(-)
Comment 2 Andreas Sturmlechner gentoo-dev 2021-07-14 10:36:23 UTC
arches please stabilise.
Comment 3 Agostino Sarubbo gentoo-dev 2021-07-17 07:44:36 UTC
x86 stable
Comment 4 Sam James archtester gentoo-dev Security 2021-07-18 00:33:33 UTC
amd64 done
Comment 5 Sam James archtester gentoo-dev Security 2021-07-22 06:06:53 UTC
arm64 done

all arches done
Comment 6 Sam James archtester gentoo-dev Security 2021-07-22 06:07:40 UTC
Please cleanup, thanks!
Comment 7 Larry the Git Cow gentoo-dev 2021-07-22 09:35:50 UTC
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=1e28eaa9c45fdfeb0c75271d0cf52e427032dd76

commit 1e28eaa9c45fdfeb0c75271d0cf52e427032dd76
Author:     Andreas Sturmlechner <asturm@gentoo.org>
AuthorDate: 2021-07-22 09:28:29 +0000
Commit:     Andreas Sturmlechner <asturm@gentoo.org>
CommitDate: 2021-07-22 09:35:34 +0000

    dev-qt/qtwebengine: 5.15.2_p20210421 security cleanup
    
    Bug: https://bugs.gentoo.org/800181
    Package-Manager: Portage-3.0.20, Repoman-3.0.3
    Signed-off-by: Andreas Sturmlechner <asturm@gentoo.org>

 dev-qt/qtwebengine/Manifest                        |   1 -
 .../files/qtwebengine-5.15.2_p20210406-gcc11.patch | 126 -------
 .../files/qtwebengine-5.15.2_p20210406-icu69.patch |  92 -----
 .../qtwebengine-5.15.2_p20210421-qtbug-91773.patch | 372 ---------------------
 .../qtwebengine-5.15.2_p20210421.ebuild            | 218 ------------
 5 files changed, 809 deletions(-)
Comment 8 Andreas Sturmlechner gentoo-dev 2021-07-22 09:36:56 UTC
Cleanup done.
Comment 9 Andreas Sturmlechner gentoo-dev 2021-07-26 18:35:31 UTC
qt proj done anyway, ping security.
Comment 10 NATTkA bot gentoo-dev 2021-09-19 13:44:36 UTC
Unable to check for sanity:

> no match for package: dev-qt/qtwebengine-5.15.2_p20210625