Skip to content

Update submodule Chromium

David Faure requested to merge dfaure/qtwebengine:work/dfaure/2021-12-update-chromium into kde/5.15

This brings in a large amount of changes

  • b77d64307a4 - Bump V8_PATCH_LEVEL (2 days ago)
  • 764c8558b0f - [Backport] CVE-2021-4078: Type confusion in V8 (2 days ago)
  • 371dfe28a34 - [Backport] CVE-2021-4079: Out of bounds write in WebRTC (2 days ago)
  • 16d0d63ede4 - [Backport] Security bug 1259899 (2 days ago)
  • e0abe24fe7b - [Backport] CVE-2021-4062: Heap buffer overflow in BFCache (2 days ago)
  • ef54f3d63fd - [Backport] CVE-2021-4059: Insufficient data validation in loader (2 days ago)
  • 5aeb41626e3 - [Backport] CVE-2021-4058: Heap buffer overflow in ANGLE (2/2) (2 days ago)
  • c76e04186ad - [Backport] CVE-2021-4058: Heap buffer overflow in ANGLE (1/2) (2 days ago)
  • 50e9ebbfc3c - [Backport] CVE-2021-4057: Use after free in file API (2 days ago)
  • 1df82e89295 - Use wglSetPixelFormat directly only if in software mode (3 days ago)
  • b3ec1114d8f - Compile with GCC 11 -std=c++20 (4 days ago)
  • bfc2de04055 - [Backport] CVE-2021-37996 : Insufficient validation of untrusted input in Downloads (10 days ago)
  • 460be974cd0 - [Backport] CVE-2021-38001 : Type Confusion in V8 (10 days ago)
  • 825745fdbd0 - [Backport] Security bug 1252858 (10 days ago)
  • df07ad645cf - [Backport] CVE-2021-37989 : Inappropriate implementation in Blink (10 days ago)
  • 4797e6e848b - [Backport] Dependency for CVE-2021-37989 (10 days ago)
  • d1d8974783c - [Backport] CVE-2021-38022: Inappropriate implementation in WebAuthentication (10 days ago)
  • c4f05eef5e4 - [Backport] CVE-2021-38012: Type Confusion in V8 (10 days ago)
  • 77eb03c0ff1 - [Backport] CVE-2021-38010: Inappropriate implementation in service workers (10 days ago)
  • c7d8826a6d6 - [Backport] CVE-2021-38021: Inappropriate implementation in referrer (10 days ago)
  • a81a024f3a5 - [Backport] CVE-2021-38005: Use after free in loader (3/3) (10 days ago)
  • e1bdb5dff96 - [Backport] CVE-2021-38005: Use after free in loader (2/3) (10 days ago)
  • 51c9803f8ac - [Backport] CVE-2021-38005: Use after free in loader (1/3) (10 days ago)
  • c3635c792e4 - [Backport] CVE-2021-38019: Insufficient policy enforcement in CORS (10 days ago)
  • f1d999742b7 - [Backport] CVE-2021-38007: Type Confusion in V8 (10 days ago)
  • 61f0637953b - [Backport] CVE-2021-38017: Insufficient policy enforcement in iframe sandbox (10 days ago)
  • 695cc63e436 - [Backport] CVE-2021-38009: Inappropriate implementation in cache (10 days ago)
  • 7382407581b - [Backport] Dependency for CVE-2021-38009 (10 days ago)
  • 3fce22f9ce9 - [Backport] CVE-2021-38015: Inappropriate implementation in input (10 days ago)
  • 814d594ab39 - [Backport] CVE-2021-38018: Inappropriate implementation in navigation (10 days ago)
  • 0b15e3a1283 - Revert "Stop orphan child processes from staying alive on Windows" (10 days ago)
  • 961f13c6876 - Fix stack overflow on gpu channel recreate with an error (10 days ago)
  • f878faa317d - [Backport] Security bug 1245870 (2 weeks ago)
  • 060cd95a1f3 - [Backport] CVE-2021-37993 : Use after free in PDF Accessibility (2 weeks ago)
  • a1153aa778d - [Backport] CVE-2021-37984 : Heap buffer overflow in PDFium (2 weeks ago)
  • 5814c143eb5 - [Backport] CVE-2021-37992 : Out of bounds read in WebAudio (2 weeks ago)
  • f33d6723535 - [Backport] CVE-2021-37987 : Use after free in Network APIs (2 weeks ago)
  • b497b6ac860 - [Backport] CVE-2021-38003 : Inappropriate implementation in V8 (2 weeks ago)
  • d63517a0ebc - [Backport] CVE-2021-3541 libxml2: Exponential entity expansion attack bypasses all existing protection mechanisms (3 weeks ago)
  • ce0357a3a86 - [Backport] CVE-2021-3517: libxml2: Heap-based buffer overflow in xmlEncodeEntitiesInternal() in entities.c (3 weeks ago)
  • 8c0a9b4459f - Revert "[Backport] Security bug 1239116" (8 weeks ago)
  • b3c5d18a071 - [Backport] Linux sandbox: update syscalls numbers on 32-bit platforms (8 weeks ago)
  • 7f07b1c3d90 - [Backport] sandbox: linux: allow clock_nanosleep & gettime64 (8 weeks ago)
  • 549b2ecfd28 - [Backport] Linux sandbox: update syscall numbers for all platforms. (8 weeks ago)
  • d33026ed7c5 - Revert "[Backport] CVE-2021-37976 : Information leak in core" (8 weeks ago)
  • 29c41fac33d - [Backport] Ease HarfBuzz API change with feature detection (8 weeks ago)
  • e1b1c8fbfdc - Bump V8_PATCH_LEVEL (8 weeks ago)
  • bb7d5f412de - CVE-2021-37972 : Out of bounds read in libjpeg-turbo (8 weeks ago)
  • f56401ddcec - Add switch for static and dynamic crt (8 weeks ago)
  • 2577bccb3d5 - [Backport] Security bug 1248665 (8 weeks ago)
  • 231761dbed7 - [Backport] CVE-2021-37975 : Use after free in V8 (8 weeks ago)
  • 3301102062f - [Backport] CVE-2021-37980 : Inappropriate implementation in Sandbox (8 weeks ago)
  • 10bdc1bcce9 - [Backport] CVE-2021-37979 : Heap buffer overflow in WebRTC (2/2) (8 weeks ago)
  • 41bf49c17a6 - [Backport] CVE-2021-37979 : Heap buffer overflow in WebRTC (1/2) (8 weeks ago)
  • 316ff0b2e0e - [Backport] CVE-2021-37978 : Heap buffer overflow in Blink (8 weeks ago)
  • c9eee8926c9 - [Backport] CVE-2021-37976 : Information leak in core (8 weeks ago)
  • b0d03b2f484 - [Backport] CVE-2021-30616: Use after free in Media. (9 weeks ago)
  • 75e6c138ad9 - [Backport] Dependency for CVE-2021-30616 (9 weeks ago)
  • be58035b0bf - [Backport] CVE-2021-37962 : Use after free in Performance Manager (2/2) (9 weeks ago)
  • 842b1fe73c3 - [Backport] CVE-2021-37962 : Use after free in Performance Manager (1/2) (9 weeks ago)
  • a12aac1d65a - [Backport] CVE-2021-37973 : Use after free in Portals (9 weeks ago)
  • 31327570494 - [Backport] CVE-2021-37971 : Incorrect security UI in Web Browser UI. (9 weeks ago)
  • e1c9ef661cc - [Backport] CVE-2021-37968 : Inappropriate implementation in Background Fetch API (9 weeks ago)
  • 8170b884540 - [Backport] CVE-2021-37967 : Inappropriate implementation in Background Fetch API (9 weeks ago)
  • 39c2ae1a9ea - [Backport] Linux sandbox: return ENOSYS for clone3 (10 weeks ago)
  • be0320febb6 - [Backport] Linux sandbox: fix fstatat() crash (2 months ago)
  • 0ef198c9ee2 - [Backport] Reland "Reland "Linux sandbox syscall broker: use struct kernel_stat"" (2 months ago)
  • 1950f23d465 - [Backport] Security bug 1238178 (2/2) (3 months ago)
  • 45133cbadf5 - [Backport] Security bug 1238178 (1/2) (3 months ago)
  • 6643e7a877c - [Backport] CVE-2021-30633: Use after free in Indexed DB API (2/2) (3 months ago)
  • af07badd6ff - [Backport] CVE-2021-30633: Use after free in Indexed DB API (1/2) (3 months ago)
  • 19808bff72b - [Backport] CVE-2021-30630: Inappropriate implementation in Blink (3 months ago)
  • 3b2c685c26a - [Backport] CVE-2021-30629: Use after free in Permissions (3 months ago)
  • b84f1aa1c79 - [Backport] CVE-2021-30628: Stack buffer overflow in ANGLE (3 months ago)
  • f1f2f28fb4e - [Backport] CVE-2021-30627: Type Confusion in Blink layout (3 months ago)
  • 4b12199073d - [Backport] CVE-2021-30626: Out of bounds memory access in ANGLE (3 months ago)
  • df0ac531326 - [Backport] CVE-2021-30625: Use after free in Selection API (3 months ago)
  • adcb7c9d94a - [Backport] Security bug 1239116 (3 months ago)
  • f0834350e21 - [Backport] Security bug 1206289 (3 months ago)
  • ca1eed2838b - [Backport] CVE-2021-30613: Use after free in Base internals (3 months ago)
  • 68f44b4acae - [Backport] Security bug 1227228 (3 months ago)
  • d59527ce172 - [Backport] CVE-2021-30618: Inappropriate implementation in DevTools (3 months ago)
  • 9f71911e38c - [Backport] CVE-2021-30560: Use after free in Blink XSLT (4 months ago)
  • c8087cb6809 - [Backport] CVE-2021-30566: Stack buffer overflow in Printing (4 months ago)
  • 7a8e3587227 - [Backport] CVE-2021-30585: Use after free in sensor handling (4 months ago)
  • 80ed2154da5 - Bump V8_PATCH_LEVEL (4 months ago)
  • 1c68d71eabf - [Backport] Security bug 1228036 (4 months ago)
  • d2c0e58eab2 - [Backport] CVE-2021-30604: Use after free in ANGLE (4 months ago)
  • fabc9bb01c0 - [Backport] CVE-2021-30603: Race in WebAudio (4 months ago)
  • 36f3419335f - [Backport] CVE-2021-30602: Use after free in WebRTC (4 months ago)
  • 6f4b9a24c6e - [Backport] CVE-2021-30599: Type Confusion in V8 (4 months ago)
  • e9fe457edfc - [Backport] CVE-2021-30598: Type Confusion in V8 (4 months ago)
  • d07208fe7ea - [Backport] Security bug 1227933 (4 months ago)
  • 6ed7e70372b - [Backport] Security bug 1205059 (4 months ago)
  • 2327f834a33 - [Backport] Security bug 1184294 (4 months ago)
  • 6d3335345c0 - [Backport] Security bug 1198385 (4 months ago)
  • 45ec486f694 - [Backport] CVE-2021-30588: Type Confusion in V8 (4 months ago)
  • 4c129f0da7f - [Backport] CVE-2021-30587: Inappropriate implementation in Compositing on Windows (4 months ago)
  • 4c5ea7104ef - [Backport] CVE-2021-30573: Use after free in GPU (4 months ago)
  • df0ce074884 - [Backport] CVE-2021-30569, security bugs 1198216 and 1204814 (4 months ago)
  • 362ebc273c3 - [Backport] CVE-2021-30568: Heap buffer overflow in WebGL (4 months ago)
  • d2679dfe289 - [Backport] CVE-2021-30541: Use after free in V8 (4 months ago)
  • c49a1b46977 - [Backport] Security bugs 1197786 and 1194330 (4 months ago)
  • 24fe4f7088e - [Backport] Security bug 1194689 (4 months ago)
  • d20a32ba7b3 - [Backport] CVE-2021-30563: Type Confusion in V8 (4 months ago)
  • 82dbe6ec610 - [Backport] Security bug 1211215 (4 months ago)
  • 63aa70704eb - [Backport] Security bug 1209558 (4 months ago)
  • 5ddd26eb1c1 - [Backport] CVE-2021-30553: Use after free in Network service (4 months ago)
  • ce44e18e5ea - [Backport] CVE-2021-30548: Use after free in Loader (4 months ago)
  • dccd70ff668 - [Backport] CVE-2021-30547: Out of bounds write in ANGLE (4 months ago)
  • 99850871829 - [Backport] CVE-2021-30556: Use after free in WebAudio (4 months ago)
  • dcd69a31bd0 - [Backport] CVE-2021-30559: Out of bounds write in ANGLE (4 months ago)
  • 09404bcb076 - [Backport] CVE-2021-30533: Insufficient policy enforcement in PopupBlocker (4 months ago)
  • 9995d429475 - [Backport] Security bug 1202534 (4 months ago)
  • 8b6c2cc8db1 - [Backport] CVE-2021-30536: Out of bounds read in V8 (4 months ago)
  • 5db4492a5ee - [Backport] CVE-2021-30522: Use after free in WebAudio (5 months ago)
  • 0b959ee26c9 - [Backport] CVE-2021-30554 Use after free in WebGL (6 months ago)
  • 8a287eeecee - [Backport] CVE-2021-30551: Type Confusion in V8 (6 months ago)
  • 9e6ebb137db - [Backport] CVE-2021-30544: Use after free in BFCache (6 months ago)
  • 00d148cb209 - [Backport] CVE-2021-30535: Double free in ICU (6 months ago)
  • e11e1e26681 - [Backport] CVE-2021-30534: Insufficient policy enforcement in iFrameSandbox (6 months ago)
  • 260e76054ff - [Backport] CVE-2021-30530: Out of bounds memory access in WebAudio (6 months ago)
  • 559f74945e1 - [Backport] CVE-2021-30523: Use after free in WebRTC (6 months ago)
  • 7948becb538 - Generate mojo bindings before compiling extension API registration (6 months ago)
  • eaffb82d5ee - [Backport] Security bug 1201938 (7 months ago)
  • 951cdb36065 - [Backport] Security bug 1201340 (7 months ago)
  • 9827f0c6df6 - [Backport] Security bug 1195331 (7 months ago)
  • 96953e10399 - [Backport] Security bug 1204071 (7 months ago)
  • 5353de15a14 - [Backport] CVE-2021-30518: Heap buffer overflow in Reader Mode (7 months ago)
  • 4646e31fd96 - [Backport] CVE-2021-30516: Heap buffer overflow in History. (7 months ago)
  • 01441068d6d - [Backport] CVE-2021-30515: Use after free in File API (7 months ago)
  • 59c82b51677 - [Backport] CVE-2021-30513: Type Confusion in V8 (7 months ago)
  • a7025feb1be - [Backport] CVE-2021-30512: Use after free in Notifications (7 months ago)
  • b1620340b6b - [Backport] CVE-2021-30510: Race in Aura (7 months ago)
  • f5056d02494 - [Backport] CVE-2021-30508: Heap buffer overflow in Media Feeds (7 months ago)
  • 5b2293cf1f2 - Workaround revoked certificate check on Linux (7 months ago)
  • dc35950b9ee - FIXUP: third_party perfetto: add missing include for clang, asan and no_pch (7 months ago)
  • 12ecfd11e32 - Bump V8_PATCH_LEVEL (7 months ago)
  • b498f4ce3f5 - Fix build with GCC 11 (7 months ago)
  • 1d3b13e9634 - Make clang to inline load/store atomic calls for YieldSortKey struct (7 months ago)
  • f6730fe81a0 - Enable XkbKeyboardLayoutEngine::SetCurrentLayoutByName for Qt (7 months ago)
  • 6c7b4ffb3fe - FIXUP: Avoid crashing on new window in cross-origin isolated content (8 months ago)
  • a12ed350a0e - [Backport] Security bug 1198309 (8 months ago)
  • 19b53b4edf5 - [Backport] CVE-2021-21231: Insufficient data validation in V8 (8 months ago)
  • a2df8318fb9 - [Backport] CVE-2021-21230: Type Confusion in V8 (8 months ago)
  • 7d388ce5668 - [Backport] CVE-2021-21233: Heap buffer overflow in ANGLE (8 months ago)
  • 364aa54de0b - [Backport] CVE-2021-21227: Insufficient data validation in V8 (8 months ago)
  • 79fbaa22794 - Avoid crashing on new window in cross-origin isolated content (8 months ago)
  • e67c7b49247 - Fix build with system ICU 69 (8 months ago)
  • 3f594ea1afb - [Backport] Security bug 1155297 (3/3) (8 months ago)
  • 547614323c1 - [Backport] Security bug 1155297 (2/3) (8 months ago)
  • c4de3b47741 - [Backport] Security bug 1155297 (1/3) (8 months ago)
  • 5dc9d788f58 - [Backport] Security bug 1192552 (8 months ago)
  • 0cf8a1fb984 - [Backport] CVE-2021-21225: Out of bounds memory access in V8 (2/2) (8 months ago)
  • f06ec0465b8 - [Backport] CVE-2021-21225: Out of bounds memory access in V8 (1/2) (8 months ago)
  • d217134e930 - [Backport] CVE-2021-21224: Type Confusion in V8 (8 months ago)
  • f6b6811b9e0 - [Backport] CVE-2021-21223: Integer overflow in Mojo (8 months ago)
  • 116e1489a70 - [Backport] CVE-2021-21222: Heap buffer overflow in V8 (8 months ago)
  • dd45b1a169f - [Backport] CVE-2021-21209: Inappropriate implementation in storage (5/5) (8 months ago)
  • 6b330a48241 - [Backport] CVE-2021-21209: Inappropriate implementation in storage (4/5) (8 months ago)
  • 8783292e8cb - [Backport] CVE-2021-21209: Inappropriate implementation in storage (3/5) (8 months ago)
  • 4e34cdf60a6 - [Backport] CVE-2021-21209: Inappropriate implementation in storage (2/5) (8 months ago)
  • 683d6198ead - [Backport] CVE-2021-21209: Inappropriate implementation in storage (1/5) (8 months ago)
  • 9d25daa8097 - [Backport] Security bug 1184441 (8 months ago)
  • a234ab006cf - [Backport] Security bug 1162424 (8 months ago)
  • c38ae3ec480 - [Backport] Security bug 1190525 (8 months ago)
  • ea429e40a41 - [Backport] Security bug 1161759 (8 months ago)
  • ecc53407b84 - [Backport] Security bug 1175503 (8 months ago)
  • 6189ff47fe0 - [Backport] Security bugs 1175522 and 1181276 (8 months ago)
  • 0303f41582d - [Backport] CVE-2021-21219: Uninitialized Use in PDFium (8 months ago)
  • 7406137818b - [Backport] CVE-2021-21217 and CVE-2021-21218: Uninitialized Use in PDFium (8 months ago)
  • aac48dd2cd1 - [Backport] CVE-2021-21214: Use after free in Network API (8 months ago)
  • edc86cc74b9 - [Backport] CVE-2021-21213: Use after free in WebMIDI (8 months ago)
  • e2170d71995 - [Backport] CVE-2021-21207: Use after free in IndexedDB (8 months ago)
  • ccaea82df05 - [Backport] CVE-2021-21221: Insufficient validation of untrusted input in Mojo (8 months ago)
  • 9b94ebcc1f9 - [Backport] CVE-2021-21204: Use after free in Blink. (8 months ago)
  • c53cc6c9f24 - [Backport] CVE-2021-21203: Use after free in Blink (8 months ago)
  • 88d217a8b9e - [Backport] CVE-2021-21202: Use after free in extensions. (8 months ago)
  • 53a608aff9c - [Backport] CVE-2021-21201: Use after free in permissions (8 months ago)
  • 6764c29f7c5 - Add first_party_url for net::SiteForCookies (8 months ago)
  • 94be4331d0b - [Backport] CVE-2021-21220: Insufficient validation of untrusted input in V8 for x86_64 (8 months ago)
  • 2419957e28c - [Backport] CVE-2021-21206: Use after free in Blink (8 months ago)
  • b09d3799969 - Fix build with no extensions on mac (8 months ago)

Change-Id: I75db1be27c6de979d469d20a1644a2e99ce04f2c

Merge request reports