obsolete

FEDORA-2020-5933c201ee created by catanzaro 2 years ago for Fedora 32

Update to WebKitGTK 2.28.0.

  • Add API to enable Process Swap on (Cross-site) Navigation.
  • Add user messages API for the communication with the web extension.
  • Add support for same-site cookies.
  • Service workers are enabled by default.
  • Add support for Pointer Lock API.
  • Add flatpak sandbox support.
  • Make ondemand hardware acceleration policy never leave accelerated compositing mode.
  • Always use a light theme for rendering form controls.
  • Add about:gpu to show information about the graphics stack.
  • CVE fixes: CVE-2020-10018

This update has been submitted for testing by catanzaro.

2 years ago

catanzaro edited this update.

2 years ago

This update's test gating status has been changed to 'ignored'.

2 years ago

This update has been pushed to testing.

2 years ago
User Icon decathorpe commented & provided feedback 2 years ago

Nit-pick: With some unrelated changes in fedora 31 and 30, builds from this fedora 32 update now have a lower NVR than the builds from fedora 31 or 30.

When doing such "unrelated fixes" in older branches, it's recommended to append .1 to the Release (like 1%{?dist}.1, and then incrementing that postfix number) instead of incrementing the Release like normal. This preserves a correct upgrade path within and across releases.

User Icon catanzaro commented & provided feedback 2 years ago

Hm, I thought we didn't care about upgrade path anymore because dist-upgrade downgrades everything automatically... is that wrong?

I can remember to do this in the future, though.

User Icon catanzaro commented & provided feedback 2 years ago

I have another change to make anyway, so I'll call it -7 to fix the upgrade path.

User Icon decathorpe commented & provided feedback 2 years ago

Well, it's mostly true that "upgrade path" doesn't matter anymore (you're right that dist-upgrades do distro-sync - and downgrade - now by default).

In this case, this turned out to not be a problem, but in other cases, I found updates that were missing from f32 entirely (which is a problem, since package downgrades aren't exactly supported, and it's not good for f32 to be missing bugfixes and security updates).

But thanks for fixing it anyway :)

This update has been obsoleted by webkit2gtk3-2.28.0-7.fc32.

2 years ago

Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
14 days
Dates
submitted
2 years ago
in testing
2 years ago
modified
2 years ago
BZ#1811722 CVE-2020-10018 webkit2gtk3: webkitgtk: Denial of service issue in accessibility/AXObjectCache.cpp [fedora-all]
0
0

Automated Test Results