* [Backport] CVE-2023-29469 / Security bug 1433328 * [Backport] Security bug 1423360 * [Backport] CVE-2023-2137: Heap buffer overflow in sqlite * [Backport] Security bug 1427388 * [Backport] CVE-2023-2033: Type Confusion in V8 * [Backport] CVE-2023-1811: Use after free in Frames * [Backport] CVE-2023-1810: Heap buffer overflow in Visuals
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=97eee0b31f22ceab91ecc73e62e8d88ede6b3eb7 commit 97eee0b31f22ceab91ecc73e62e8d88ede6b3eb7 Author: Andreas Sturmlechner <asturm@gentoo.org> AuthorDate: 2023-05-20 19:10:10 +0000 Commit: Andreas Sturmlechner <asturm@gentoo.org> CommitDate: 2023-05-21 07:04:53 +0000 dev-qt/qtwebengine: add 5.15.9_p20230505, equiv. to upstream 5.15.14 Patched with security patches up to Chromium version: 113.0.5672.64 Bug: https://bugs.gentoo.org/906857 Signed-off-by: Andreas Sturmlechner <asturm@gentoo.org> dev-qt/qtwebengine/Manifest | 1 + .../qtwebengine-5.15.9_p20230505.ebuild | 269 +++++++++++++++++++++ 2 files changed, 270 insertions(+)
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=92a014e0248ada5ff0ab0e8b5799943cf06c61cd commit 92a014e0248ada5ff0ab0e8b5799943cf06c61cd Author: Andreas Sturmlechner <asturm@gentoo.org> AuthorDate: 2023-05-24 11:14:49 +0000 Commit: Andreas Sturmlechner <asturm@gentoo.org> CommitDate: 2023-05-24 11:15:04 +0000 dev-qt/qtwebengine: drop 5.15.9_p20230421 Bug: https://bugs.gentoo.org/906857 Signed-off-by: Andreas Sturmlechner <asturm@gentoo.org> dev-qt/qtwebengine/Manifest | 1 - .../qtwebengine-5.15.9_p20230421-gcc-13.patch | 134 ---------- .../qtwebengine-5.15.9_p20230421.ebuild | 272 --------------------- 3 files changed, 407 deletions(-)
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=bb5fab846ae931348e67bfbb9449edcfd292b956 commit bb5fab846ae931348e67bfbb9449edcfd292b956 Author: Andreas Sturmlechner <asturm@gentoo.org> AuthorDate: 2023-07-13 07:36:05 +0000 Commit: Andreas Sturmlechner <asturm@gentoo.org> CommitDate: 2023-07-13 08:42:10 +0000 dev-qt/qtwebengine: drop 5.15.9_p20230505, 5.15.10_p20230505 Bug: https://bugs.gentoo.org/906857 Bug: https://bugs.gentoo.org/909778 Signed-off-by: Andreas Sturmlechner <asturm@gentoo.org> dev-qt/qtwebengine/Manifest | 1 - .../qtwebengine-5.15.10_p20230505.ebuild | 269 --------------------- .../qtwebengine-5.15.9_p20230505.ebuild | 269 --------------------- 3 files changed, 539 deletions(-)
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/data/glsa.git/commit/?id=dd9cd4b6340b04f214138bcc4ca322bc52441f35 commit dd9cd4b6340b04f214138bcc4ca322bc52441f35 Author: GLSAMaker <glsamaker@gentoo.org> AuthorDate: 2023-11-25 09:50:35 +0000 Commit: Hans de Graaff <graaff@gentoo.org> CommitDate: 2023-11-25 09:51:04 +0000 [ GLSA 202311-11 ] QtWebEngine: Multiple Vulnerabilities Bug: https://bugs.gentoo.org/866332 Bug: https://bugs.gentoo.org/888181 Bug: https://bugs.gentoo.org/903544 Bug: https://bugs.gentoo.org/904290 Bug: https://bugs.gentoo.org/906857 Bug: https://bugs.gentoo.org/909778 Signed-off-by: GLSAMaker <glsamaker@gentoo.org> Signed-off-by: Hans de Graaff <graaff@gentoo.org> glsa-202311-11.xml | 163 +++++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 163 insertions(+)