commit webkit2gtk3 for openSUSE:Factory

Wed, 07 Feb 2024 09:48:50 -0800 

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package webkit2gtk3 for openSUSE:Factory 
checked in at 2024-02-07 18:47:27
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/webkit2gtk3 (Old)
 and      /work/SRC/openSUSE:Factory/.webkit2gtk3.new.1815 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Package is "webkit2gtk3"

Wed Feb  7 18:47:27 2024 rev:186 rq:1144552 version:2.42.5

Changes:
--------
--- /work/SRC/openSUSE:Factory/webkit2gtk3/webkit2gtk3.changes  2024-01-26 
22:45:43.072847966 +0100
+++ /work/SRC/openSUSE:Factory/.webkit2gtk3.new.1815/webkit2gtk3.changes        
2024-02-07 18:48:20.846563765 +0100
@@ -1,0 +2,17 @@
+Mon Feb  5 16:58:41 UTC 2024 - Michael Gorse <mgo...@suse.com>
+
+- Update to version 2.42.5 (boo#1219604):
+  + Fix webkit_web_context_allow_tls_certificate_for_host to
+    handle IPv6 URIs produced by SoupURI.
+  + Ignore stops with offset zero before last one when rendering
+    gradients with cairo.
+  + Write bwrapinfo.json to disk for xdg-desktop-portal.
+  + Fix gamepads detection by correctly handling focused window in
+    GTK4.
+  + Fix several crashes and rendering issues.
+  + Security fixes: CVE-2024-23222, CVE-2024-23206, CVE-2024-23213.
+- Drop webkit2gtk3-CVE-2024-23222.patch: fixed upstream.
+- Add webkit2gtk3-llint-build-fix.patch: fix the build for non-x86
+  architectures.
+
+-------------------------------------------------------------------
@@ -73 +90 @@
-  + Security fixes: CVE-2023-41993.
+  + Security fixes: CVE-2023-41993, CVE-2023-40414.
@@ -92 +109 @@
-    CVE-2023-42890.
+    CVE-2023-42890, CVE-2014-1745.
@@ -589 +606 @@
-    CVE-2022-32933.
+    CVE-2022-32933, CVE-2023-42833.

Old:
----
  webkit2gtk3-CVE-2024-23222.patch
  webkitgtk-2.42.4.tar.xz
  webkitgtk-2.42.4.tar.xz.asc

New:
----
  webkit2gtk3-llint-build-fix.patch
  webkitgtk-2.42.5.tar.xz
  webkitgtk-2.42.5.tar.xz.asc

BETA DEBUG BEGIN:
  Old:  + Security fixes: CVE-2024-23222, CVE-2024-23206, CVE-2024-23213.
- Drop webkit2gtk3-CVE-2024-23222.patch: fixed upstream.
- Add webkit2gtk3-llint-build-fix.patch: fix the build for non-x86
BETA DEBUG END:

BETA DEBUG BEGIN:
  New:- Drop webkit2gtk3-CVE-2024-23222.patch: fixed upstream.
- Add webkit2gtk3-llint-build-fix.patch: fix the build for non-x86
  architectures.
BETA DEBUG END:

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ webkit2gtk3.spec ++++++
--- /var/tmp/diff_new_pack.VlVvot/_old  2024-02-07 18:48:32.810994027 +0100
+++ /var/tmp/diff_new_pack.VlVvot/_new  2024-02-07 18:48:32.826994602 +0100
@@ -74,7 +74,7 @@
 Name:           webkit2%{_gtknamesuffix}
 ### FIXME ### Drop the disabling of LTO on next release/versionbump
 %define _lto_cflags %{nil}
-Version:        2.42.4
+Version:        2.42.5
 Release:        0
 Summary:        Library for rendering web content, GTK+ Port
 License:        BSD-3-Clause AND LGPL-2.0-or-later
@@ -91,8 +91,8 @@
 Patch1:         webkit2gtk3-create-destroy-egl-image.patch
 # PATCH-FIX-UPSTREAM webkit2gtk3-disable-dmabuf-nvidia.patch boo#1216778 
mgo...@suse.com -- disable the DMABuf renderer for NVIDIA proprietary drivers.
 Patch2:         webkit2gtk3-disable-dmabuf-nvidia.patch
-# PATCH-FIX-UPSTREAM webkit2gtk3-CVE-2024-23222.patch bsc#1219113 
mgo...@suse.com -- fix a type confusion issue.
-Patch3:         webkit2gtk3-CVE-2024-23222.patch
+# PATCH-FIX-UPSTREAM webkit2gtk3-llint-build-fix.patch mgo...@suse.com -- fix 
the build for non-x86 architectures.
+Patch3:         webkit2gtk3-llint-build-fix.patch
 
 BuildRequires:  Mesa-libEGL-devel
 BuildRequires:  Mesa-libGL-devel
@@ -432,7 +432,9 @@
 
 
 
+
 # Expand %%lang_package to Obsoletes its older-name counterpart
+
 %package -n WebKitGTK-%{_apiver}-lang
 Summary:        Translations for package %{name}
 Group:          System/Localization

++++++ webkit2gtk3-llint-build-fix.patch ++++++
>From 3d5373575695b293b8559155431d0079a6153aff Mon Sep 17 00:00:00 2001
From: Michael Catanzaro <mcatanz...@redhat.com>
Date: Mon, 5 Feb 2024 11:00:49 -0600
Subject: [PATCH] =?UTF-8?q?[GTK]=20[2.42.5]=20LowLevelInterpreter.cpp:339:?=
 =?UTF-8?q?21:=20error:=20=E2=80=98t6=E2=80=99=20was=20not=20declared=20in?=
 =?UTF-8?q?=20this=20scope=20https://bugs.webkit.org/show=5Fbug.cgi=3Fid?=
 =?UTF-8?q?=3D268739?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Unreviewed build fix. Seems a backport went badly, and we didn't notice
because the code is architecture-specific.

* Source/JavaScriptCore/llint/LowLevelInterpreter.cpp:
(JSC::CLoop::execute):
---
 Source/JavaScriptCore/llint/LowLevelInterpreter.cpp | 2 --
 1 file changed, 2 deletions(-)

diff --git a/Source/JavaScriptCore/llint/LowLevelInterpreter.cpp 
b/Source/JavaScriptCore/llint/LowLevelInterpreter.cpp
index 5064ead6cd2e..9a2e2653b121 100644
--- a/Source/JavaScriptCore/llint/LowLevelInterpreter.cpp
+++ b/Source/JavaScriptCore/llint/LowLevelInterpreter.cpp
@@ -336,8 +336,6 @@ JSValue CLoop::execute(OpcodeID entryOpcodeID, void* 
executableAddress, VM* vm,
     UNUSED_VARIABLE(t2);
     UNUSED_VARIABLE(t3);
     UNUSED_VARIABLE(t5);
-    UNUSED_VARIABLE(t6);
-    UNUSED_VARIABLE(t7);
 
     struct StackPointerScope {
         StackPointerScope(CLoopStack& stack)
-- 
2.43.0



++++++ webkitgtk-2.42.4.tar.xz -> webkitgtk-2.42.5.tar.xz ++++++
/work/SRC/openSUSE:Factory/webkit2gtk3/webkitgtk-2.42.4.tar.xz 
/work/SRC/openSUSE:Factory/.webkit2gtk3.new.1815/webkitgtk-2.42.5.tar.xz 
differ: char 27, line 1

Reply via email to