https://code.qt.io/cgit/qt/qtwebengine.git/commit/?h=5.15&id=56ba5c9789700433b469ee9a3057eaeabad64d54 https://code.qt.io/cgit/qt/qtwebengine.git/commit/?h=5.15&id=6369c52cebd276f03856dd333af727fd8427ac63 New snapshot to follow up soon...
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=3b363104490499e964301ec743e7e6d825255063 commit 3b363104490499e964301ec743e7e6d825255063 Author: Andreas Sturmlechner <asturm@gentoo.org> AuthorDate: 2021-12-14 18:10:13 +0000 Commit: Andreas Sturmlechner <asturm@gentoo.org> CommitDate: 2021-12-14 18:12:51 +0000 dev-qt/qtwebengine: 5.15.2_p20211210 snapshot bump Patched with security patches up to Chromium version: 96.0.4664.93 Snapshotted at: Branch: 5.15.8 Commit: 6369c52cebd276f03856dd333af727fd8427ac63 Submodule qtwebengine-chromium.git: Branch: 87-based Commit: 2918e073086af29bd3e4176cd2403dffa789fdc0 Bug: https://bugs.gentoo.org/828099 Bug: https://bugs.gentoo.org/829161 Package-Manager: Portage-3.0.30, Repoman-3.0.3 Signed-off-by: Andreas Sturmlechner <asturm@gentoo.org> dev-qt/qtwebengine/Manifest | 1 + ...ngine-5.15.2_p20211210-sandbox-glibc-2.34.patch | 27 +++ .../qtwebengine-5.15.2_p20211210.ebuild | 228 +++++++++++++++++++++ 3 files changed, 256 insertions(+)
https://code.qt.io/cgit/qt/qtwebengine.git/commit/?h=5.15.8&id=96e932d73057c3e705b849249fb02e1837b7576d
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=24cfbf9a44c750b6b1f47d56981c4df58c581911 commit 24cfbf9a44c750b6b1f47d56981c4df58c581911 Author: Andreas Sturmlechner <asturm@gentoo.org> AuthorDate: 2021-12-25 00:07:21 +0000 Commit: Andreas Sturmlechner <asturm@gentoo.org> CommitDate: 2021-12-25 00:10:29 +0000 dev-qt/qtwebengine: 5.15.2_p20211216 snapshot bump Patched with security patches up to Chromium version: 96.0.4664.110 Snapshotted at: Branch: 5.15 Commit: 1c9785bf7eee038f6f0b8e2d73dcb9588f6d60c1 Submodule qtwebengine-chromium.git: Branch: 87-based Commit: 0ad2814370799a2161057d92231fe3ee00e2fe98 Bug: https://bugs.gentoo.org/829161 Package-Manager: Portage-3.0.30, Repoman-3.0.3 Signed-off-by: Andreas Sturmlechner <asturm@gentoo.org> dev-qt/qtwebengine/Manifest | 1 + ...qtwebengine-5.15.2_p20210521-clang-libc++.patch | 10 + .../qtwebengine-5.15.2_p20211216.ebuild | 233 +++++++++++++++++++++ 3 files changed, 244 insertions(+)
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=13b149204829892b18787e3d974d719d1a0669dd commit 13b149204829892b18787e3d974d719d1a0669dd Author: Andreas Sturmlechner <asturm@gentoo.org> AuthorDate: 2021-12-28 12:19:14 +0000 Commit: Andreas Sturmlechner <asturm@gentoo.org> CommitDate: 2021-12-28 12:19:24 +0000 dev-qt/qtwebengine: Cleanup vulnerable 5.15.2_p20211019 Bug: https://bugs.gentoo.org/829161 Package-Manager: Portage-3.0.30, Repoman-3.0.3 Signed-off-by: Andreas Sturmlechner <asturm@gentoo.org> dev-qt/qtwebengine/Manifest | 1 - ...ne-5.15.2_p20210824-abseil-cpp-glibc-2.34.patch | 72 ------- ...gine-5.15.2_p20210824-breakpad-glibc-2.34.patch | 72 ------- .../qtwebengine-5.15.2_p20211019.ebuild | 229 --------------------- 4 files changed, 374 deletions(-)
GLSA request filed
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/data/glsa.git/commit/?id=3212eacb7aa1bccb5bf765cd0a4fb91d206ad2c5 commit 3212eacb7aa1bccb5bf765cd0a4fb91d206ad2c5 Author: GLSAMaker <glsamaker@gentoo.org> AuthorDate: 2022-08-14 14:29:30 +0000 Commit: Sam James <sam@gentoo.org> CommitDate: 2022-08-14 14:33:57 +0000 [ GLSA 202208-25 ] Chromium, Google Chrome, Microsoft Edge, QtWebEngine: Multiple Vulnerabilities Bug: https://bugs.gentoo.org/773040 Bug: https://bugs.gentoo.org/787950 Bug: https://bugs.gentoo.org/800181 Bug: https://bugs.gentoo.org/810781 Bug: https://bugs.gentoo.org/815397 Bug: https://bugs.gentoo.org/828519 Bug: https://bugs.gentoo.org/829161 Bug: https://bugs.gentoo.org/834477 Bug: https://bugs.gentoo.org/835397 Bug: https://bugs.gentoo.org/835761 Bug: https://bugs.gentoo.org/836011 Bug: https://bugs.gentoo.org/836381 Bug: https://bugs.gentoo.org/836777 Bug: https://bugs.gentoo.org/836830 Bug: https://bugs.gentoo.org/837497 Bug: https://bugs.gentoo.org/838049 Bug: https://bugs.gentoo.org/838433 Bug: https://bugs.gentoo.org/838682 Bug: https://bugs.gentoo.org/841371 Bug: https://bugs.gentoo.org/843035 Bug: https://bugs.gentoo.org/843728 Bug: https://bugs.gentoo.org/847370 Bug: https://bugs.gentoo.org/847613 Bug: https://bugs.gentoo.org/848864 Bug: https://bugs.gentoo.org/851003 Bug: https://bugs.gentoo.org/851009 Bug: https://bugs.gentoo.org/853229 Bug: https://bugs.gentoo.org/853643 Bug: https://bugs.gentoo.org/854372 Signed-off-by: GLSAMaker <glsamaker@gentoo.org> Signed-off-by: Sam James <sam@gentoo.org> glsa-202208-25.xml | 284 +++++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 284 insertions(+)
GLSA done, all done.