Bug 922982

Summary:	www-client/chromium-121.0.6167.85: stablereq
Product:	Gentoo Linux	Reporter:	Matt Jolly <kangie>
Component:	Stabilization	Assignee:	Chromium Project <chromium>
Status:	RESOLVED OBSOLETE
Severity:	normal	CC:	amd64, arm64, kangie
Priority:	Normal	Keywords:	CC-ARCHES, SECURITY
Version:	unspecified	Flags:	nattka: sanity-check+
Hardware:	All
OS:	Linux
See Also:	https://bugs.gentoo.org/show_bug.cgi?id=923008 https://bugs.gentoo.org/show_bug.cgi?id=923010
Whiteboard:
Package list:	www-client/chromium-121.0.6167.85	Runtime testing required:	No
Bug Depends on:	923265
Bug Blocks:	922903

Description Matt Jolly gentoo-dev

2024-01-27 03:58:25 UTC

There are multiple high-severity CVEs fixed by this release; please stabilise.

Comment 1 NATTkA bot gentoo-dev

2024-01-27 04:00:10 UTC Comment hidden (obsolete)

Unable to check for sanity:

> no match for package: www-client/chromium-121.0.6167.85

Comment 2 NATTkA bot gentoo-dev

2024-01-27 07:36:15 UTC Comment hidden (obsolete)

Sanity check failed:

> www-client/chromium-121.0.6167.85
>   bdepend amd64 stable profile default/linux/amd64/17.1 (30 total)
>     dev-lang/rust[profiler]
>   bdepend amd64 dev profile default/linux/amd64/17.1/no-multilib/systemd (3 total)
>     dev-lang/rust[profiler]

Comment 3 Larry the Git Cow gentoo-dev

2024-01-27 08:35:29 UTC

The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=84db944af3d5e48473c5b59b25fd9b14fe6d2cba

commit 84db944af3d5e48473c5b59b25fd9b14fe6d2cba
Author:     Matt Jolly <Matt.Jolly@footclan.ninja>
AuthorDate: 2024-01-27 08:18:46 +0000
Commit:     Sam James <sam@gentoo.org>
CommitDate: 2024-01-27 08:35:22 +0000

    profiles/base: unmask dev-lang/rust[profiler] for stable
    
    The profiler is required to build chromium >=121.
    
    With the initial justification for masking the USE being
    somewhat flimsy, in the absence of rust maintainers to
    tell us otherwise we'll unmask it for stable
    and deal with any consequences.
    
    Bug: https://bugs.gentoo.org/922982
    Signed-off-by: Matt Jolly <Matt.Jolly@footclan.ninja>
    Closes: https://github.com/gentoo/gentoo/pull/35039
    Signed-off-by: Sam James <sam@gentoo.org>

 profiles/base/package.use.stable.mask | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

Comment 4 Matt Jolly gentoo-dev

2024-01-31 13:00:31 UTC

Abandoning this stablereq - chasing down some rust-related issues took us until the release of 121.0.6167.139 which has fixed additional high-severity CVEs - I'll file a new ticket for that soon.