From f795d7c0d4b5a831dd847911c355c8d01d0a235f Mon Sep 17 00:00:00 2001 From: Antti Kokko Date: Tue, 27 Oct 2020 10:02:11 +0200 Subject: Add changes file for Qt 5.15.2 Pick-to: dev 5.15 Change-Id: If1c29cc043736619513620120f96133575bf28d5 Reviewed-by: Allan Sandfeld Jensen --- dist/changes-5.15.2 | 82 +++++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 82 insertions(+) create mode 100644 dist/changes-5.15.2 (limited to 'dist') diff --git a/dist/changes-5.15.2 b/dist/changes-5.15.2 new file mode 100644 index 000000000..de6ffc584 --- /dev/null +++ b/dist/changes-5.15.2 @@ -0,0 +1,82 @@ +Qt 5.15.2 is a bug-fix release. It maintains both forward and backward +compatibility (source and binary) with Qt 5.15.1. + +For more details, refer to the online documentation included in this +distribution. The documentation is also available online: + + https://doc.qt.io/qt-5.15/index.html + +The Qt version 5.15 series is binary compatible with the 5.14.x series. +Applications compiled for 5.14 will continue to run with 5.15. + +Some of the changes listed in this file include issue tracking numbers +corresponding to tasks in the Qt Bug Tracker: + + https://bugreports.qt.io/ + +Each of these identifiers can be entered in the bug tracker to obtain more +information about a particular change. + +**************************************************************************** +* Library * +**************************************************************************** + +General +------- + - [QTBUG-84632] Warn about QtWebengineProcess launching from network share + on Windows. + - [QTBUG-85363] Handle non-ASCII names for PulseAudio + - [QTBUG-85494] Fix regression crash when not handling QQuickWebEngineNewViewRequest + - [QTBUG-85817] Fix crashes on resize + - [QTBUG-86672] Fix remapped menu key being mapped back to menu key + - [QTBUG-86945] Fix crash when opening a PDF in debug build on windows. + - [QTBUG-87129] Mention node.js build-time dependency + - The QtWebEngineProcess now has a version number + - The old compositor has been removed and can no longer be restored using + command line argument. + +Chromium +-------- + + - The Chromium version has been updated to 83.0.4103.122 + - Security fixes from Chromium up to version 86.0.4240.111, including: + - CVE-2020-6540: Heap buffer overflow in Skia + - CVE-2020-6557: Inappropriate implementation in networking + - CVE-2020-6561: Inappropriate implementation in Content Security Policy + - CVE-2020-6562: Insufficient policy enforcement in Blink + - CVE-2020-6569: Integer overflow in WebUSB + - CVE-2020-6570: Side-channel information leakage in WebRTC + - CVE-2020-6573: Use after free in video + - CVE-2020-6571: Incorrect security UI in Omnibox + - CVE-2020-6575: Race in Mojo + - CVE-2020-6576: Use after free in offscreen canvas + - CVE-2020-15959: Insufficient policy enforcement in networking + - CVE-2020-15960: Out of bounds read in storage + - CVE-2020-15961: Insufficient policy enforcement in extensions + - CVE-2020-15962: Insufficient policy enforcement in serial + - CVE-2020-15963 + - CVE-2020-15964: Insufficient data validation in media + - CVE-2020-15965: Out of bounds write in V8 + - CVE-2020-15966 + - CVE-2020-15968: Use after free in Blink + - CVE-2020-15969: Use after free in WebRTC. + - CVE-2020-15972: Use after free in audio. + - CVE-2020—15973: Insufficient policy enforcement in extensions + - CVE-2020-15974: Integer overflow in Blink + - CVE-2020-15976: Use after free in WebXR + - CVE-2020-15977: Insufficient data validation in dialogs. + - CVE-2020-15978: Insufficient data validation in navigation + - CVE-2020-15979: Inappropriate implementation in V8. + - CVE-2020-15985: Inappropriate implementation in Blink. + - CVE-2020-15987: Use after free in WebRTC + - CVE-2020-15989: Uninitialized Use in PDFium + - CVE-2020-15992: Insufficient policy enforcement in networking + - CVE-2020-15999: Heap buffer overflow in freetype + - CVE-2020-16001: Use after free in media. + - CVE-2020-16002: Use after free in PDFium + - CVE-2020-16003: Use after free in printing + - Security bug 1106091 + - Security bug 1107824 + - Security bug 1111149 + - Security bug 1125199 + -- cgit v1.2.1 From 35c7e9134a1a5e0390c42ea2df06a749255497ff Mon Sep 17 00:00:00 2001 From: Allan Sandfeld Jensen Date: Tue, 3 Nov 2020 22:32:39 +0100 Subject: Update Chromium MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Including security issue under active exploit. Submodule src/3rdparty 55b3d183..fb6ab5e4: > [Backport] Security bug 1137608 > [Backport] CVE-2020-16011: Heap buffer overflow in UI on Windows. > [Backport] CVE-2020-16009: Inappropriate implementation in V8 > [Backport] CVE-2020-16008: Stack buffer overflow in WebRTC > [Backport] CVE-2020-16005: Insufficient policy enforcement in ANGLE > Fix assert when running tests build with -no-webengine-webrtc Change-Id: Ic9ee45fbd78c999881454e5e0e3091489f637aae Reviewed-by: Michael Brüning --- dist/changes-5.15.2 | 7 ++++++- 1 file changed, 6 insertions(+), 1 deletion(-) (limited to 'dist') diff --git a/dist/changes-5.15.2 b/dist/changes-5.15.2 index de6ffc584..8d48468b1 100644 --- a/dist/changes-5.15.2 +++ b/dist/changes-5.15.2 @@ -39,7 +39,7 @@ Chromium -------- - The Chromium version has been updated to 83.0.4103.122 - - Security fixes from Chromium up to version 86.0.4240.111, including: + - Security fixes from Chromium up to version 86.0.4240.183, including: - CVE-2020-6540: Heap buffer overflow in Skia - CVE-2020-6557: Inappropriate implementation in networking - CVE-2020-6561: Inappropriate implementation in Content Security Policy @@ -75,8 +75,13 @@ Chromium - CVE-2020-16001: Use after free in media. - CVE-2020-16002: Use after free in PDFium - CVE-2020-16003: Use after free in printing + - CVE-2020-16005: Insufficient policy enforcement in ANGLE + - CVE-2020-16008: Stack buffer overflow in WebRTC + - CVE-2020-16009: Inappropriate implementation in V8 + - CVE-2020-16011: Heap buffer overflow in UI on Windows. - Security bug 1106091 - Security bug 1107824 - Security bug 1111149 - Security bug 1125199 + - Security bug 1137608 -- cgit v1.2.1