lp://staging/~chromium-team/chromium-browser/bionic-stable

Branch merges

Propose for merging

1 branch proposed for merging into this one.

No branches dependent on this one.

Related source package recipes

1 recipe using this branch. (?)

Create packaging recipe

Related snap packages

Related bugs

Bug #1667208: Ubuntu's selenium hardcodes a path that is valid for Debian, but not for Ubuntu	Medium	Fix Released
Bug #1742653: chromium-browser 63+ packages 50+ MB of binaries only needed at build time	High	Fix Released
Bug #1768653: chromium 66 FTBFS on armhf	High	Fix Released
Bug #1771847: chromium-browser.svg icon is outdated	Low	Fix Released
Bug #1828192: Please stop build-depending on libgnome-keyring	Medium	Fix Released
Bug #1853149: 78.0.3904.108-1 released for stable channel; fixes CVEs	High	Fix Released
Bug #1913069: [regression] Start-up page is blank after upgrading to version 88	High	Fix Released
Bug #1919146: Missing runtime dependency on libx11-xcb1	High	Fix Released

Link a bug report

Related blueprints

1699. By Nathan Teodosio on 2023-04-18

Upstream release: 112.0.5615.49.

1698. By Nathan Teodosio on 2023-04-01

* Upstream release: 112.0.5615.39.
* Add Nodejs 16.13.0 to the tarball. We can't get away with 14 anymore.
  - This is done by calling third_party/node/update_node_binaries, after
    extending it for ARM too and removing darwin and windows, which creates
    //third_party/node/linux/node-linux-{arm64/,armv7l/,x64/}, that are what
    differs the new .orig tarball from upstream's original tarball.
  - d/p/node-use-system-wide: removed.
* d/rules: Remove printing shasums, we won't be comparing it to upstream's
  because of the above anyway.
* d/p/c-std-17.patch: heavily extended.
* d/p/node-for-arm-too.patch: added.
* d/p/revert-outliner-disable.patch: added.
* d/p/add-missing-cstddef-include.patch: refreshed.
* d/p/gn-no-last-commit-position.patch: refreshed.
* d/p/gsimple-template-names.patch: refreshed.
* d/p/search-credit.patch: refreshed.

1697. By Nathan Teodosio on 2023-03-23

* Upstream release: 111.0.5563.64.
* d/p/widevine-enable-*.patch: extended for ARM.
* d/p/partition-allocator-missing-ioctl.patch: refreshed.

1696. By Nathan Teodosio on 2023-02-16

* Upstream release: 110.0.5481.100.
* d/p/warning-to-error.patch: refreshed.
* Refreshed patches hunks.

1695. By Nathan Teodosio on 2023-02-09

Add back keep alive timer.

It outputs every 30 min so that the build is not killed by inactivity.

1694. By Nathan Teodosio on 2023-01-13

* Upstream release: 109.0.5414.74.
* d/p/constexpr-doesnt-*.patch: refreshed & hunk added.
* d/p/build-with-old-libva-no-av1.patch: refreshed.
* d/p/c-std-17.patch: refreshed.
* d/p/gsimple-template-names.patch: added.
* d/p/use-python3-7.patch: added.
* d/p/warning-to-error.patch: added back with narrowing disable.
* d/rules:
  - delete use_allocator and use_allocator_shim from common_defines.
  - symbol_level 1->0.
* d/control:
  - Python 3.7 is build dependency.

1693. By Nathan Teodosio on 2022-12-02

* Upstream release: 108.0.5359.71.
* d/p/libaom-armhf-build-cpudetect.patch: dropped.
* d/p/c-std-17.patch: added.
* d/p/undefined-mulodi4.patch: added
* d/p/suppress-newer-clang-warning-flags.patch: refreshed.
* d/control: add qt5-default.
* chromium-browser.sh.in: enable page translation.

1692. By Nathan Teodosio on 2022-11-30

chromium-browser.sh.in: Enable page translation.

1691. By Nathan Teodosio on 2022-11-07

* constexpr-doesnt-produce-constant-expression.patch: added
* Disable Qt, as it creates build issues.
* Upstream release: 107.0.5304.87
  - CVE-2022-3723: Type Confusion in V8.
  - CVE-2022-3653: Heap buffer overflow in Vulkan.
  - CVE-2022-3654: Use after free in Layout.
  - CVE-2022-3655: Heap buffer overflow in Media Galleries.
  - CVE-2022-3656: Insufficient data validation in File System.
  - CVE-2022-3657: Use after free in Extensions.
  - CVE-2022-3658: Use after free in Feedback service on Chrome OS.
  - CVE-2022-3659: Use after free in Accessibility.
  - CVE-2022-3660: Inappropriate implementation in Full screen mode.
  - CVE-2022-3661: Insufficient data validation in Extensions.
  - CVE-2022-3445: Use after free in Skia.
  - CVE-2022-3446: Heap buffer overflow in WebSQL.
  - CVE-2022-3447: Inappropriate implementation in Custom Tabs.
  - CVE-2022-3448: Use after free in Permissions API.
  - CVE-2022-3449: Use after free in Safe Browsing.
  - CVE-2022-3450: Use after free in Peer Connection.
  - CVE-2022-3201: Insufficient validation of untrusted input in DevTools.
  - CVE-2022-3306: Use-after-free in Ash.
  - CVE-2022-3305: Use-after-free in Ash.
  - CVE-2022-3309: Use-after-free in ChromOS.
  - CVE-2022-3314: Use-after-free in ChromeOS.
  - CVE-2022-3312: Security: Locked devices.
  - CVE-2022-3318: Use-after-free in ChromeOS.
  - CVE-TBD: Use-after-free in OverlayManager.
  - CVE-TBD: Use-after-free in Ash.
  - CVE-TBD Security: Use-after-free in ARC
* debian/patches/undefined-mulodi4.patch: added
* debian/patches/allow-building-on-x86.patch: refreshed
* debian/patches/build-libc++-with-old-clang.patch: added
* debian/patches/build-with-old-libva-no-av1.patch: refreshed
* debian/patches/gn-no-last-commit-position.patch: refreshed
* debian/patches/linker-oom-armhf.patch: added
* debian/patches/search-credit.patch: refreshed
* debian/patches/series: refreshed
* debian/patches/set-rpath-on-chromium-executables.patch: added
* debian/patches/suppress-newer-clang-warning-flags.patch: refreshed

1690. By Nathan Teodosio on 2022-10-06

* Upstream release: 106.0.5249.91
  - CVE-2022-3370: Use after free in Custom Elements.
  - CVE-2022-3373: Out of bounds write in V8.
* debian/patches/build-with-old-libva-no-av1.patch: refreshed
* debian/patches/suppress-newer-clang-warning-flags.patch: refreshed
* debian/patches/build-no-invalid-constexpr-error.patch: refreshed
* debian/patches/fix-init-priority-max.patch: added