SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for chromium-desktop-kde-19.0.1079.0-1.14.1.i586.rpm :
Sat Mar 24 13:00:00 2012 tittiatcokeAATTgmail.com
- Update to 19.0.1079
Security Fixes (bnc#754456):

* High CVE-2011-3050: Use-after-free with first-letter handling

* High CVE-2011-3045: libpng integer issue from upstream

* High CVE-2011-3051: Use-after-free in CSS cross-fade handling

* High CVE-2011-3052: Memory corruption in WebGL canvas handling

* High CVE-2011-3053: Use-after-free in block splitting

* Low CVE-2011-3054: Apply additional isolations to webui
privileges

* Low CVE-2011-3055: Prompt in the browser native UI for unpacked
extension installation

* High CVE-2011-3056: Cross-origin violation with “magic iframe”.

* Low CVE-2011-3049: Extension web request API can interfere with
system requests
Other Fixes:

* The short-cut key for caps lock (Shift + Search) is disabled
when an accessibility screen reader is enabled

* Fixes an issue with files not being displayed in File Manager
when some file names contain UTF-8 characters (generally
accented characters)

* Fixed dialog boxes in settings. (Issue: 118031)

* Fixed flash videos turning white on mac when running with
- -disable-composited-core-animation-plugins (Issue: 117916)

* Change to look for correctly sized favicon when multiple images
are provided. (Issue: 118275)

* Fixed issues - 116044, 117470, 117068, 117668, 118620

Wed Mar 21 13:00:00 2012 tittiatcokeAATTgmail.com
- Update to 19.0.1077

Sun Mar 18 13:00:00 2012 tittiatcokeAATTgmail.com
- Update to 19.0.1074
- Build Chromium on openSUSE > 12.1 with the gold linker
- Fix build issues with GCC 4.7

Thu Mar 15 13:00:00 2012 tittiatcokeAATTgmail.com
- Update to 19.0.1071

* Several fixes and improvements in the new Settings, Extensions,
and Help pages.

* Fixed the flashing when switched between composited and
non-composited mode. [Issue: 116603]

* Fixed stability issues 116913, 117217, 117347, 117081

Sun Mar 11 13:00:00 2012 tittiatcokeAATTgmail.com
- Update to 19.0.1066

* Fixed Chrome install/update resets Google search preferences
(Issue: 105390)

* Don\'t trigger accelerated compositing on 3D CSS when using
swiftshader (Issue: 116401)

* Fixed a GPU crash (Issue: 116096)

* More fixes for Back button frequently hangs (Issue: 93427)

* Bastion now works (Issue: 116285)

* Fixed Composited layer sorting irregularity with accelerated
canvas (Issue: 102943)

* Fixed Composited layer sorting irregularity with accelerated
canvas (Issue: 102943)

* Fixed Google Feedback causes render process to use too much
memory (Issue: 114489)

* Fixed after upgrade, some pages are rendered as blank
(Issue: 109888)

* Fixed Pasting text into a single-line text field shouldn\'t
keep literal newlines (Issue: 106551)
- Security Fixes:

* Critical CVE-2011-3047: Errant plug-in load and GPU process
memory corruption

* Critical CVE-2011-3046: UXSS and bad history navigation.

Mon Mar 5 13:00:00 2012 vdziewieckiAATTsuse.com
- add Provides: browser(npapi) FATE#313084

Sat Mar 3 13:00:00 2012 tittiatcokeAATTgmail.com
- Update to 19.0.1060

* Fixed NTP signed in state is missing (Issue: 112676)

* Fixed gmail seems to redraw itself (all white) occasionally
(Issue: 111263)

* Focus \"OK\" button on Javascript dialogs (Issue: 111015)

* Fixed Back button frequently hangs (Issue: 93427)

* Increase the buffer size to fix muted playback rate
(Issue: 108239)

* Fixed Empty span with line-height renders with non-zero height
(Issue: 109811)

* Marked the Certum Trusted Network CA as an issuer of
extended-validation (EV) certificates.

* Fixed importing of bookmarks, history, etc. from Firefox 10+.

* Fixed issues - 114001, 110785, 114168, 114598, 111663, 113636,
112676

* Fixed several crashes (Issues: 111376, 108688, 114391)

* Fixed Firefox browser in Import Bookmarks and Settings
drop-down (Issue: 114476)

* Sync: Sessions aren\'t associating pre-existing tabs
(Issue: 113319)

* Fixed All \"Extensions\" make an entry under the \"NTP Apps\"
page (Issue: 113672)
+ Security Fixes (bnc#750407):

* High CVE-2011-3031: Use-after-free in v8 element wrapper.

* High CVE-2011-3032: Use-after-free in SVG value handling.

* High CVE-2011-3033: Buffer overflow in the Skia drawing library.

* High CVE-2011-3034: Use-after-free in SVG document handling.

* High CVE-2011-3035: Use-after-free in SVG use handling.

* High CVE-2011-3036: Bad cast in line box handling.

* High CVE-2011-3037: Bad casts in anonymous block splitting.

* High CVE-2011-3038: Use-after-free in multi-column handling.

* High CVE-2011-3039: Use-after-free in quote handling.

* High CVE-2011-3040: Out-of-bounds read in text handling.

* High CVE-2011-3041: Use-after-free in class attribute handling.

* High CVE-2011-3042: Use-after-free in table section handling.

* High CVE-2011-3043: Use-after-free in flexbox with floats.

* High CVE-2011-3044: Use-after-free with SVG animation elements.
- Remove the external ffmepg headers and start using the ones
delivered with Chromium. Changes to Chromium are no longer in line
with any ffmpeg version :-(. So we can only use the Chromium
ffmpeg headers.

Mon Feb 20 13:00:00 2012 tittiatcokeAATTgmail.com
- Update to 19.0.1046

* Security updates
+ CVE-2011-3015: Integer overflows in PDF codecs.
+ CVE-2011-3016: Read-after-free with counter nodes.
+ CVE-2011-3017: Possible use-after-free in database handling.
+ CVE-2011-3018: Heap overflow in path rendering.
+ CVE-2011-3019: Heap buffer overflow in MKV handling.
+ CVE-2011-3020: Native client validator error.
+ CVE-2011-3021: Use-after-free in subframe loading.
+ CVE-2011-3022: Inappropriate use of http for translation script.
+ CVE-2011-3023: Use-after-free with drag and drop.
+ CVE-2011-3024: Browser crash with empty x509 certificate.
+ CVE-2011-3025: Out-of-bounds read in h.264 parsing.
+ CVE-2011-3026: Integer overflow / truncation in libpng.
+ CVE-2011-3027: Bad cast in column handling.

Wed Feb 15 13:00:00 2012 tittiatcokeAATTgmail.com
- Update to 19.0.1042

* Make speech input bubble borders close with the bubble
[Issue: 112194]

* Fixed stability issues
[Issues: 113531, 113492, 113654, 113546, 113847, 114011]

* Use Google’s online spellchecker to identify misspelled words
as well as provide suggestions, for pasted text only.

* Fix: open incognito windows at exit created extra normal
windows when the session was restored

* When translating a page, get the code and translation via HTTPS

Fri Feb 10 13:00:00 2012 tittiatcokeAATTgmail.com
- Update to 19.0.1037

* Fix crashing timing bug where panel animates after its closed
(issue#111120)

* Remove patch to build with newer glib version. This was merged
upstream

* Added option to disable building with gold for x86_64. Used
linker option \"--icf=none\" is not supported yet.

Mon Feb 6 13:00:00 2012 tittiatcokeAATTgmail.com
- Update to 19.0.1031

* Block plugins for platform apps
To block plugins a new content settings has been added, with
the highest priority (i.e. at the front of the list). This
could be used down the track to hang off more platform app
specific stuff.

* Remove unconditional -msse3 -mssse3 CFLAGS from media.gyp
(issue#107532)

* Refactoring of Settings page

* Other bugfixes

* Security Fixes:
CVE-2011-3953: Avoid clipboard monitoring after paste event.
CVE-2011-3954: Crash with excessive database usage.
CVE-2011-3955: Crash aborting an IndexDB transaction
CVE-2011-3956: Incorrect handling of sandboxed origins inside
extensions
CVE-2011-3957: Use-after-free in PDF garbage collection
CVE-2011-3958: Bad casts with column spans
CVE-2011-3959: Buffer overflow in locale handling
CVE-2011-3960: Out-of-bounds read in audio decoding
CVE-2011-3961: Race condition after crash of utility process
CVE-2011-3962: Out-of-bounds read in path clipping
CVE-2011-3963: Out-of-bounds read in PDF fax image handling
CVE-2011-3964: URL bar confusion after drag + drop
CVE-2011-3965: Crash in signature check
CVE-2011-3966: Use-after-free in stylesheet error handling
CVE-2011-3967: Crash with unusual certificate.
CVE-2011-3968: Use-after-free in CSS handling
CVE-2011-3969: Use-after-free in SVG layout.
CVE-2011-3970: Out-of-bounds read in libxslt
CVE-2011-3971: Use-after-free with mousemove events
CVE-2011-3972: Out-of-bounds read in shader translator

Sun Jan 29 13:00:00 2012 tittiatcokeAATTgmail.com
- Update to 18.0.1022

* Security fixes (bnc#743319)
+ CVE-2011-3924 Use-after-free vulnerability
+ CVE-2011-3925 Use-after-free vulnerability
+ CVE-2011-3926 Heap-based buffer overflow in the tree builder
+ CVE-2011-3927 Skia does not perform all required
initialization of values
+ CVE-2011-3928 Use-after-free vulnerability

* Compile the chrome_sandbox binary with -fPIE flags

Mon Jan 23 13:00:00 2012 tittiatcokeAATTgmail.com
- Update to 18.0.1017

* Security Issues fixed (bnc#740493)
+ CVE-2011-3921 Use-after-free in animation frames
+ CVE-2011-3919 Heap-buffer-overflow in libxml
+ CVE-2011-3922 Stack-buffer-overflow in glyph handling

Sat Dec 31 13:00:00 2011 tittiatcokeAATTgmail.com
- Update to 18.0.992

* Delay some extension startup until after first run import.
(issue 108286)

* Add function support for Sleep with TimeDelta input.
(issue 108171)

* Make webstore installs work when the Downloads folder is missing.
(issue 108812)

* Disable GL_EXT_texture_storage support in Linux. (issue 107782)

Wed Dec 28 13:00:00 2011 tittiatcokeAATTgmail.com
- Update to 18.0.985
+ Webkit layout:

* Suppress a leak in http/tests/appcache/reload.html
(issue 108621)

* Suppress a leak in xmlhttprequest/workers/referer.html
(issue 108622)

* Extend the suppression for uninit value in
fast/forms/input-text-paste-maxlength.html (issue 106183)

* Suppress memory leaks in
fast/files/workers/worker-read-blob-async.html
(issue 108624)

* Suppress a leak in
websocket/tests/hybi/workers/receive-arraybuffer.html
(issue 108627)

* Suppress a leak in
http/tests/xmlhttprequest/workers/methods-async.html
(issue 108628)
+ Set opaque on the WebMediaPlayerClient based on the decoder

Mon Dec 19 13:00:00 2011 tittiatcokeAATTgmail.com
- Update to 18.0.975
+ Updating extensions code to use UTF16. (issue#71980)
+ Assign F5 to cycle forward (issue#107417)
+ [Sync] Add NOTREACHED for empty passphrase (issue#104189)
+ Add libudev as build-dependency (issue#79050)
+ Enable mnemonic and bookmark folder key activation on menu
(issue#107869)
- Removed conflict with xine-browser-plugins.

Wed Dec 14 13:00:00 2011 tittiatcokeAATTgmail.com
- Update to 18.0.972

* Security issues fixed: (bnc#736716)
+ CVE-2011-3903: Out-of-bounds read in regex matching.
+ CVE-2011-3905: Out-of-bounds reads in libxml.
+ CVE-2011-3906: Out-of-bounds read in PDF parser.
+ CVE-2011-3907: URL bar spoofing with view-source.
+ CVE-2011-3908: Out-of-bounds read in SVG parsing.
+ CVE-2011-3909: [64-bit only] Memory corruption in CSS
property array.
+ CVE-2011-3910: Out-of-bounds read in YUV video frame
handling.
+ CVE-2011-3911: Out-of-bounds read in PDF.
+ CVE-2011-3912: Use-after-free in SVG filters.
+ CVE-2011-3914: Out-of-bounds write in v8 i18n handling
+ CVE-2011-3915: Buffer overflow in PDF font handling.
+ CVE-2011-3916: Out-of-bounds reads in PDF cross references.
+ CVE-2011-3917: Stack-buffer-overflow in FileWatcher.
+ CVE-2011-3904: Use-after-free in bidi handling.

* No longer build against the system libjpeg, but build against
the libjpeg that comes with Chromium to prevent graphics
issues

* Chromium for openSUSE:Factory now builds against libjpeg8

* Removed explicit -fPIC from the C-flags

Sat Dec 10 13:00:00 2011 tittiatcokeAATTgmail.com
- Update to 18.0.968
+ Print preview: Disable the right context menu items in print
preview. (issue#106876,#106915)
+ Fix page zoom for plug-in documents (PDF, etc.)
(issue#106013,#106228)
+ ntp: track number of times a user switches pages in a single
session (issue#106575)
+
 
ICM