This release fixes CVE-2020-6831 and CVE-2020-6464.
* gnu/packages/chromium.scm (%chromium-version): Set to 81.0.4044.138.
(%chromium-origin): Update hash.
This fixes CVE-2020-6462 and CVE-2020-6461.
* gnu/packages/chromium.scm (%chromium-version): Set to 81.0.4044.129.
(%ungoogled-revision): Set to c2a89fb6b5b559c826796c811741fa8ed3e11de8.
(%chromium-origin, %ungoogled-origin): Update hashes.
This fixes CVE-2020-6459, CVE-2020-6460, and CVE-2020-6458.
* gnu/packages/chromium.scm (%chromium-version): Set to 81.0.4044.122.
(%ungoogled-revision): Set to 31d6e60c96481599b42072b4489e4468280198e3.
(%chromium-origin, %ungoogled-origin): Update hashes.
This release fixes CVE-2020-6430, CVE-2020-6456, CVE-2020-6431, CVE-2020-6432,
CVE-2020-6433, CVE-2020-6434, CVE-2020-6435, CVE-2020-6436, CVE-2020-6437,
CVE-2020-6438, CVE-2020-6439, CVE-2020-6440, CVE-2020-6441, CVE-2020-6442,
CVE-2020-6443, CVE-2020-6444, CVE-2020-6445, CVE-2020-6446, CVE-2020-6447,
and CVE-2020-6448.
* gnu/packages/chromium.scm (%preserved-third-party-files): Adjust for 81.
(%chromium-version): Set to 81.0.4044.92.
(%ungoogled-revision): Set to b484ad4c0bdb696c86d941798ae6b0e2bd0db35d.
(%debian-revision): Set to debian/81.0.4044.92-1.
(%chromium-origin, %ungoogled-origin, %debian-origin): Update hashes.
(ungoogled-chromium-source): Remove PYTHON-2 from the environment, use
PYTHON-WRAPPER instead. Call "remove_bundled_libraries.py" using PYTHON-2
directly.
(ungoogled-chromium)[arguments]: Remove "is_cfi=false" from #:configure-flags.
Adjust CXXFLAGS to ignore unknown compiler warnings.
[inputs]: Change from ICU4C to ICU4C-66.1.
This releases fixes CVE-2020-6422, CVE-2020-6424, CVE-2020-6425,
CVE-2020-6426, CVE-2020-6427, CVE-2020-6428, CVE-2020-6429, CVE-2019-20503,
and CVE-2020-6449.
* gnu/packages/chromium.scm (%chromium-version): Set to 80.0.3987.149.
(%ungoogled-revision): Set to 516e2d990a50a4bbeb8c583e56333c2935e2af95.
(%chromium-origin, %ungoogled-origin): Update hashes.
* gnu/packages/chromium.scm (%chromium-version): Set to 80.0.3987.132.
(%ungoogled-revision): Set to 7e68f18f1d16a132fe7d913a176daf79897eaa58.
(%chromium-origin): Update hash.
(%ungoogled-origin): Change back to canonical upstream. Update hash.
This release fixes CVE-2020-6407 and CVE-2020-6418.
* gnu/packages/chromium.scm (%chromium-version): Set to 80.0.3987.122.
(%ungoogled-revision): Update to 6056988937eb.
(%chromium-origin): Update hash.
(%ungoogled-origin): Download from pull request, update hash.
This is a follow-up to commit f613d459be.
* gnu/packages/chromium.scm (%preserved-third-party-files): Annotate newly
added entries with license information.
* gnu/packages/chromium.scm (%preserved-third-party-files): Adjust for
Chromium 80.
(%chromium-version): Set to 80.0.3987.116.
(%ungoogled-revision): Set to bb952f18c8c80c569583edd8dbb0b54443f49043.
(%debian-revision): Set to debian/80.0.3987.116-1.
(%chromium-origin, %ungoogled-origin, %debian-origin): Update hashes.
(ungoogled-chromium)[arguments]: In #:configure-flags, add "is_cfi=false".
Remove "is_clang", "enable_iterator_debugging", "exclude_unwind_tables",
"use_jumbo_build", "jumbo_file_merge_limit". Adjust environment for building
with Clang.
[native-inputs]: Remove GCC-8. Add CLANG-9 and LD-WRAPPER-NEXT.
* gnu/packages/chromium.scm (%chromium-version): Set to 79.0.3945.130.
(%ungoogled-revision): Set to e2fae99.
(%debian-revision): Set to debian/79.0.3945.130-2.
(%chromium-origin, %ungoogled-origin, %debian-origin): Update hashes.
(ungoogled-chromium-source): Ignore comments in debian/patches/series.
(libvpx/chromium, gentoo-patch): Remove variables.
(ungoogled-chromium)[inputs]: Change from LIBVPX/CHROMIUM to LIBVPX.
(ungoogled-chromium/wayland): Add 'ozone_platform="wayland"' in #:configure-flags.
This fixes CVE-2019-13723 and CVE-2019-13724.
* gnu/packages/chromium.scm (%chromium-version): Set to 78.0.3904.108.
(%ungoogled-revision): Set to 8f065138317a6152b20decc224027a5192ba76b1.
(%chromium-origin, %ungoogled-origin): Update hashes.
* gnu/packages/chromium.scm (%preserved-third-party-files): Adjust for
Chromium 78.
(%chromium-version): Set to 78.0.3904.97.
(%ungoogled-revision): Set to acaf16383f264d8a2f24142ad054c9b4355771d3.
(%debian-revision): Set to e43d74632091324774a5049668782dba7b09cf72.
(%chromium-origin, %ungoogled-origin, %debian-origin): Update hashes.
(gentoo-patches, %auxiliary-patches): Remove variables.
(ungoogled-chromium-source): Adjust Debian patches for 78. Don't apply
%AUXILIARY-PATCHES.
(libvpx/chromium): New variable.
(ungoogled-chromium)[arguments]: Add substitution for ICU headers. Adjust
other substitutions for 78. Remove obsolete workaround. Increase ulimit in
'build' phase. Don't install '22x22' icon, which no longer exists.
[inputs]: Change from LIBVPX to LIBVPX/CHROMIUM.
[properties]: Remove HIDDEN?.
(ungoogled-chromium-wayland)[inputs]: Don't remove inherited inputs.
(ungoogled-chromium-is-deprecated, ungoogled-chromium-wayland-is-deprecated):
Remove variables.
This package has known security flaws that are being exploited in the wild.
See <https://lists.gnu.org/archive/html/guix-devel/2019-10/msg00576.html> for
why it has not been updated.
* gnu/packages/chromium.scm (ungoogled-chromium)[properties]: Set #:hidden? #t.
(ungoogled-chromium-is-deprecated, ungoogled-chromium-wayland-is-deprecated):
New public variables.
This release fixes CVE-2019-5867 and CVE-2019-5868.
* gnu/packages/chromium.scm (%chromium-version): Set to 76.0.3809.100.
(%ungoogled-revision): Set to 8eba5c0.
(%chromium-origin, %ungoogled-origin): Update hashes.
* gnu/packages/chromium.scm (%preserved-third-party-files): Adjust for 76.
(%chromium-version): Set to 76.0.3809.87.
(%ungoogled-revision): Set to 6ea939002bae43a27910e03569d43519d07842e7.
(%debian-revision): Set to debian/76.0.3809.87-2.
(%chromium-origin, %ungoogled-origin, %debian-origin): Update hashes.
(gentoo-patch, gentoo-patches): New procedures.
(%auxiliary-patches): New variable.
(ungoogled-chromium-source): Ignore Ungoogleds bundled Debian patches, as well
as some of Debians build fixes. Apply %AUXILIARY-PATCHES.
(ungoogled-chromium)[arguments]: Adjust unbundling substitutions. Do not set
Blink symbol level.
...but limit the memory usage. Tested with --cores=8 on a 16 GiB RAM machine.
* gnu/packages/chromium.scm (ungoogled-chromium)[arguments]: Remove <#:parallel-build?>.
Add "jumbo_file_merge_limit=8" in <#:configure-flags>.
* gnu/packages/chromium.scm (%preserved-third-party-files): Preserve
"third_party/wayland/wayland_scanner_wrapper.py" and "third_party/wayland-protocols".
(ungoogled-chromium/wayland): New public variable.
This fixes CVE-2019-972921 and CVE-2019-951487.
* gnu/packages/chromium.scm (%chromium-version): Set to 75.0.3770.142.
(%chromium-origin): Update hash.