Comment 1 Sam James 2020-04-16 19:20:49 UTC

PR is for chromium, google-chrome needs bump too

Comment 2 Larry the Git Cow 2020-04-16 19:25:42 UTC

The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=bca9b36ea529eca9b29863db59a25d3549e6bce4

commit bca9b36ea529eca9b29863db59a25d3549e6bce4
Author:     Stephan Hartmann <stha09@googlemail.com>
AuthorDate: 2020-04-16 12:19:06 +0000
Commit:     Mike Gilbert <floppym@gentoo.org>
CommitDate: 2020-04-16 19:25:28 +0000

    www-client/chromium: stable channel bumps to 81.0.4044.113
    
    Depend on >=media-libs/libvpx-1.8.2 for USE=system-vpx.
    
    Bug: https://bugs.gentoo.org/717652
    Bug: https://bugs.gentoo.org/696924
    Package-Manager: Portage-2.3.89, Repoman-2.3.20
    Signed-off-by: Stephan Hartmann <stha09@googlemail.com>
    Signed-off-by: Mike Gilbert <floppym@gentoo.org>
    Closes: https://github.com/gentoo/gentoo/pull/15371

 www-client/chromium/Manifest                      |   1 +
 www-client/chromium/chromium-81.0.4044.113.ebuild | 748 ++++++++++++++++++++++
 2 files changed, 749 insertions(+)

Comment 3 Sam James 2020-04-16 20:48:17 UTC

google-chrome went straight to stable:
https://github.com/gentoo/gentoo/commit/24695db0edeb755fc05d421a405cbeb0ca947798

81.0.4044.113.

Comment 4 Agostino Sarubbo 2020-04-17 10:13:18 UTC

amd64 stable.

Maintainer(s), please cleanup.
Security, please add it to the existing request, or file a new one.

Comment 5 Larry the Git Cow 2020-04-17 19:37:05 UTC

The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=635e5717f36c10289d2fe52793ae558b56ee4a1a

commit 635e5717f36c10289d2fe52793ae558b56ee4a1a
Author:     Stephan Hartmann <stha09@googlemail.com>
AuthorDate: 2020-04-17 16:16:18 +0000
Commit:     Mike Gilbert <floppym@gentoo.org>
CommitDate: 2020-04-17 19:36:48 +0000

    www-client/chromium: security cleanup
    
    Bug: https://bugs.gentoo.org/717652
    Package-Manager: Portage-2.3.89, Repoman-2.3.20
    Signed-off-by: Stephan Hartmann <stha09@googlemail.com>
    Signed-off-by: Mike Gilbert <floppym@gentoo.org>
    Closes: https://github.com/gentoo/gentoo/pull/15387

 www-client/chromium/Manifest                     |   1 -
 www-client/chromium/chromium-81.0.4044.92.ebuild | 748 -----------------------
 2 files changed, 749 deletions(-)

Comment 6 Sam James 2020-04-17 19:50:38 UTC

Thanks all.

Looks like chromium-81.0.4044.113 also requires libdrm >= 2.4.101 otherwise configuration fails with:

Package 'dri' requires 'libdrm >= 2.4.101' but version of libdrm is 2.4.100
Could not run pkg-config.

Looks like rebuilding mesa fixes the problem as found in https://bugs.gentoo.org/717322 (i"m using mesa-9999). I'm sorry for the noise..

Comment 9 Thomas Deutschmann (RETIRED) 2020-04-23 14:32:03 UTC

New GLSA request filed.

Comment 10 GLSAMaker/CVETool Bot 2020-04-23 14:37:57 UTC

This issue was resolved and addressed in
 GLSA 202004-12 at https://security.gentoo.org/glsa/202004-12
by GLSA coordinator Thomas Deutschmann (whissi).