Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 787950 - <dev-qt/qtwebengine-5.15.2_p20210421: Multiple vulnerabilities
Summary: <dev-qt/qtwebengine-5.15.2_p20210421: Multiple vulnerabilities
Status: CONFIRMED
Alias: None
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal normal (vote)
Assignee: Gentoo Security
URL:
Whiteboard: A2 [glsa?]
Keywords: PullRequest
Depends on:
Blocks: 800181
  Show dependency tree
 
Reported: 2021-05-03 18:42 UTC by Andreas Sturmlechner
Modified: 2021-07-26 18:40 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Andreas Sturmlechner gentoo-dev 2021-05-03 18:42:19 UTC
Too many really to keep track of.

See also: https://code.qt.io/cgit/qt/qtwebengine-chromium.git/log/?h=87-based&qt=range&q=3f594ea1
Comment 1 NATTkA bot gentoo-dev 2021-05-03 18:44:20 UTC Comment hidden (obsolete)
Comment 2 Larry the Git Cow gentoo-dev 2021-05-06 20:09:36 UTC
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=39f0ab3ba085648310449bdb6cf8ae9c9ffbef3a

commit 39f0ab3ba085648310449bdb6cf8ae9c9ffbef3a
Author:     Andreas Sturmlechner <asturm@gentoo.org>
AuthorDate: 2021-05-04 23:22:07 +0000
Commit:     Andreas Sturmlechner <asturm@gentoo.org>
CommitDate: 2021-05-06 20:04:04 +0000

    profiles: Unmask all the things
    
    - app-office/libreoffice-7.1.3.2
    - app-office/libreoffice-l10n-7.1.3.2
    - app-text/poppler-21.05.0
    - dev-libs/boost-1.76.0
    - dev-util/boost-build-1.76.0
    - dev-libs/icu-69.1
    - dev-libs/icu-layoutex-69.1
    - dev-qt/qtwebengine-5.15.2_p20210421
    
    Bug: https://bugs.gentoo.org/787950
    Bug: https://bugs.gentoo.org/788112
    Signed-off-by: Andreas Sturmlechner <asturm@gentoo.org>

 profiles/package.mask | 20 --------------------
 1 file changed, 20 deletions(-)
Comment 3 NATTkA bot gentoo-dev 2021-05-06 20:16:34 UTC Comment hidden (obsolete)
Comment 4 Sam James archtester gentoo-dev Security 2021-06-01 09:00:06 UTC
x86 done
Comment 5 Sam James archtester gentoo-dev Security 2021-06-01 09:00:09 UTC
amd64 done
Comment 6 Sam James archtester gentoo-dev Security 2021-06-01 10:47:41 UTC
arm64 done

all arches done
Comment 7 John Helmert III gentoo-dev Security 2021-06-02 02:23:09 UTC
Please cleanup
Comment 8 Larry the Git Cow gentoo-dev 2021-06-14 09:25:47 UTC
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=34183adb0b20533e5a61c1ab863ace6108193aa7

commit 34183adb0b20533e5a61c1ab863ace6108193aa7
Author:     Andreas Sturmlechner <asturm@gentoo.org>
AuthorDate: 2021-06-14 09:25:07 +0000
Commit:     Andreas Sturmlechner <asturm@gentoo.org>
CommitDate: 2021-06-14 09:25:36 +0000

    dev-qt/qtwebengine: 5.15.2_p20210224 security cleanup
    
    Bug: https://bugs.gentoo.org/787950
    Package-Manager: Portage-3.0.20, Repoman-3.0.3
    Signed-off-by: Andreas Sturmlechner <asturm@gentoo.org>

 dev-qt/qtwebengine/Manifest                        |   1 -
 ...-5.15.2_p20210224-fix-crash-w-app-locales.patch | 135 ---------------
 .../qtwebengine-5.15.2_p20210224.ebuild            | 189 ---------------------
 3 files changed, 325 deletions(-)
Comment 9 NATTkA bot gentoo-dev 2021-07-22 09:36:23 UTC Comment hidden (obsolete)
Comment 10 Andreas Sturmlechner gentoo-dev 2021-07-26 18:36:07 UTC
qt proj done anyway, ping security.
Comment 11 NATTkA bot gentoo-dev 2021-07-26 18:40:26 UTC
Resetting sanity check; package list is empty or all packages are done.