Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package chromium for openSUSE:Factory checked in at 2026-05-04 12:49:37 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/chromium (Old) and /work/SRC/openSUSE:Factory/.chromium.new.30200 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "chromium" Mon May 4 12:49:37 2026 rev:517 rq:1350524 version:148.0.7778.96 Changes: -------- --- /work/SRC/openSUSE:Factory/chromium/chromium.changes 2026-04-26 21:13:45.271405836 +0200 +++ /work/SRC/openSUSE:Factory/.chromium.new.30200/chromium.changes 2026-05-04 12:51:07.915587490 +0200 @@ -2 +2 @@ -Sat Apr 25 07:23:43 UTC 2026 - Andreas Stieger <[email protected]> +Sun May 3 14:15:05 UTC 2026 - Andreas Stieger <[email protected]> @@ -4 +4,2 @@ -- promote Chromium 148 to early stable +- Fix build failure in seccomp_bpf sandbox + add chromium-fix-sandbox-with-glibc-2.43.patch @@ -7 +8 @@ -Thu Apr 23 19:03:26 UTC 2026 - Andreas Stieger <[email protected]> +Thu Apr 30 06:20:24 UTC 2026 - Andreas Stieger <[email protected]> @@ -9 +10,8 @@ -- Chromium 148.0.7778.56 (beta released 2026-04-23) +- Chromium 148.0.7778.96 (earyly stable release 2026-04-29): + * no explicit changelog, includes security fixes from + 147.0.7727.137 (boo#1263158) + +------------------------------------------------------------------- +Wed Apr 29 09:24:58 UTC 2026 - Andreas Stieger <[email protected]> + +- Chromium 148.0.7778.56 (early stable released 2026-04-23) @@ -45,0 +54,35 @@ + +------------------------------------------------------------------- +Tue Apr 28 20:50:03 UTC 2026 - Andreas Stieger <[email protected]> + +- Chromium 147.0.7727.137 (boo#1263158) + * CVE-2026-7363: Use after free in Canvas + * CVE-2026-7361: Use after free in iOS + * CVE-2026-7344: Use after free in Accessibility + * CVE-2026-7343: Use after free in Views + * CVE-2026-7333: Use after free in GPU + * CVE-2026-7360: Insufficient validation of untrusted input in Compositing + * CVE-2026-7359: Use after free in ANGLE + * CVE-2026-7358: Use after free in Animation + * CVE-2026-7334: Use after free in Views + * CVE-2026-7357: Use after free in GPU + * CVE-2026-7356: Use after free in Navigation + * CVE-2026-7354: Out of bounds read and write in Angle + * CVE-2026-7353: Heap buffer overflow in Skia + * CVE-2026-7352: Use after free in Media + * CVE-2026-7351: Race in MHTML + * CVE-2026-7350: Use after free in WebMIDI + * CVE-2026-7349: Use after free in Cast + * CVE-2026-7348: Use after free in Codecs + * CVE-2026-7335: Use after free in media + * CVE-2026-7336: Use after free in WebRTC + * CVE-2026-7337: Type Confusion in V8 + * CVE-2026-7347: Use after free in Chromoting + * CVE-2026-7346: Inappropriate implementation in Tint + * CVE-2026-7345: Insufficient validation of untrusted input in Feedback + * CVE-2026-7338: Use after free in Cast + * CVE-2026-7342: Use after free in WebView + * CVE-2026-7341: Use after free in WebRTC + * CVE-2026-7339: Heap buffer overflow in WebRTC + * CVE-2026-7340: Integer overflow in ANGLE + * CVE-2026-7355: Use after free in Media Old: ---- chromium-148.0.7778.56-linux.tar.xz New: ---- chromium-148.0.7778.96-linux.tar.xz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ chromium.spec ++++++ --- /var/tmp/diff_new_pack.te8l7e/_old 2026-05-04 12:51:20.212093784 +0200 +++ /var/tmp/diff_new_pack.te8l7e/_new 2026-05-04 12:51:20.216093948 +0200 @@ -132,7 +132,7 @@ %global official_build 1 Name: chromium%{n_suffix} -Version: 148.0.7778.56 +Version: 148.0.7778.96 Release: 0 Summary: Google's open source browser project License: BSD-3-Clause AND LGPL-2.1-or-later @@ -169,6 +169,7 @@ # gentoo/fedora/arch patchset Patch15: chromium-125-compiler.patch Patch98: chromium-102-regex_pattern-array.patch +Patch99: chromium-fix-sandbox-with-glibc-2.43.patch # PATCH-FIX-SUSE: allow prop codecs to be set with chromium branding Patch202: chromium-prop-codecs.patch Patch240: chromium-117-string-convert.patch ++++++ _scmsync.obsinfo ++++++ --- /var/tmp/diff_new_pack.te8l7e/_old 2026-05-04 12:51:20.380100702 +0200 +++ /var/tmp/diff_new_pack.te8l7e/_new 2026-05-04 12:51:20.384100866 +0200 @@ -1,6 +1,6 @@ -mtime: 1777101857 -commit: 361fee9b62f264c020066f9aaceabd17545f55c2204f33030654e1b58538f5e2 +mtime: 1777817800 +commit: 1ce3f077d8e4479a33a87274719bd04334b52ea715fe3ae10e0d8b4e6c4eb1df url: https://src.opensuse.org/chromium/chromium -revision: 361fee9b62f264c020066f9aaceabd17545f55c2204f33030654e1b58538f5e2 +revision: 1ce3f077d8e4479a33a87274719bd04334b52ea715fe3ae10e0d8b4e6c4eb1df projectscmsync: https://src.opensuse.org/chromium/_ObsPrj.git ++++++ build.specials.obscpio ++++++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/chromium-fix-sandbox-with-glibc-2.43.patch new/chromium-fix-sandbox-with-glibc-2.43.patch --- old/chromium-fix-sandbox-with-glibc-2.43.patch 1970-01-01 01:00:00.000000000 +0100 +++ new/chromium-fix-sandbox-with-glibc-2.43.patch 2026-05-03 16:16:40.000000000 +0200 @@ -0,0 +1,12 @@ +Source: Gentoo, https://github.com/gentoo/gentoo/blob/master/www-client/chromium/files/cr144-glibc-2.43.patch +Upstream: Reported, https://crbug.com/456218403 +Reason: Fix build with glibc 2.43 + +--- a/sandbox/linux/system_headers/linux_seccomp.h ++++ b/sandbox/linux/system_headers/linux_seccomp.h +@@ -7,4 +7,5 @@ + + #include <stdint.h> ++#include <signal.h> + #include <sys/ioctl.h> + ++++++ build.specials.obscpio ++++++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/.gitignore new/.gitignore --- old/.gitignore 1970-01-01 01:00:00.000000000 +0100 +++ new/.gitignore 2026-05-03 16:16:40.000000000 +0200 @@ -0,0 +1,4 @@ +.osc +*.patch~ +*-build/ +.*.swp diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/chromium-fix-sandbox-with-glibc-2.43.patch new/chromium-fix-sandbox-with-glibc-2.43.patch --- old/chromium-fix-sandbox-with-glibc-2.43.patch 1970-01-01 01:00:00.000000000 +0100 +++ new/chromium-fix-sandbox-with-glibc-2.43.patch 2026-05-03 16:16:40.000000000 +0200 @@ -0,0 +1,12 @@ +Source: Gentoo, https://github.com/gentoo/gentoo/blob/master/www-client/chromium/files/cr144-glibc-2.43.patch +Upstream: Reported, https://crbug.com/456218403 +Reason: Fix build with glibc 2.43 + +--- a/sandbox/linux/system_headers/linux_seccomp.h ++++ b/sandbox/linux/system_headers/linux_seccomp.h +@@ -7,4 +7,5 @@ + + #include <stdint.h> ++#include <signal.h> + #include <sys/ioctl.h> + ++++++ chromium-148.0.7778.56-linux.tar.xz -> chromium-148.0.7778.96-linux.tar.xz ++++++ /work/SRC/openSUSE:Factory/chromium/chromium-148.0.7778.56-linux.tar.xz /work/SRC/openSUSE:Factory/.chromium.new.30200/chromium-148.0.7778.96-linux.tar.xz differ: char 15, line 1
