diff --git a/0001-fix-build-error-caused-by-CustomToJSObject.patch b/0001-fix-build-error-caused-by-CustomToJSObject.patch new file mode 100644 index 0000000000000000000000000000000000000000..b33730d68dfb84a0f24a3e09ebc86489e0a87d5b --- /dev/null +++ b/0001-fix-build-error-caused-by-CustomToJSObject.patch @@ -0,0 +1,27 @@ +From 730bffd856d2a1e56dd3bd2a0702282f19c5242a Mon Sep 17 00:00:00 2001 +From: Adrian Perez de Castro +Date: Thu, 20 Nov 2025 00:52:19 +0200 +Subject: [PATCH] Unreviewed build fix after 298234.287@webkitglib/2.50 + +* Source/WebCore/Modules/credentialmanagement/BasicCredential.idl: +Remove the CustomToJSObject flag to avoid a link error due to an +undefined toJS() symbol, letting the binding generator write the +function is enough for the Google Accounts quirk to work. + +Canonical link: https://commits.webkit.org/298234.297@webkitglib/2.50 +--- + Source/WebCore/Modules/credentialmanagement/BasicCredential.idl | 1 - + 1 file changed, 1 deletion(-) + +diff --git a/Source/WebCore/Modules/credentialmanagement/BasicCredential.idl b/Source/WebCore/Modules/credentialmanagement/BasicCredential.idl +index 42114f65fff97..9643b59bf6909 100644 +--- a/Source/WebCore/Modules/credentialmanagement/BasicCredential.idl ++++ b/Source/WebCore/Modules/credentialmanagement/BasicCredential.idl +@@ -25,7 +25,6 @@ + + [ + InterfaceName=Credential, +- CustomToJSObject, + EnabledByQuirk=shouldExposeCredentialsContainer, + Exposed=Window, + SecureContext diff --git a/0002-bugfix-for-CVE-2025-43421.patch b/0002-bugfix-for-CVE-2025-43421.patch new file mode 100644 index 0000000000000000000000000000000000000000..0e01b7c45855e0cd2f578fb99d947a75c7a03960 --- /dev/null +++ b/0002-bugfix-for-CVE-2025-43421.patch @@ -0,0 +1,27 @@ +From 56f026944a16a4baf82ddd6bae954c577de79d03 Mon Sep 17 00:00:00 2001 +From: Michael Catanzaro +Date: Fri, 21 Nov 2025 12:42:01 -0600 +Subject: [PATCH] Disable array allocation sinking + https://bugs.webkit.org/show_bug.cgi?id=300718 + +Unreviewed stable branch commit. + +Canonical link: https://commits.webkit.org/298234.299@webkitglib/2.50 +--- + Source/JavaScriptCore/runtime/OptionsList.h | 2 +- + 1 file changed, 1 insertion(+), 1 deletion(-) + +diff --git a/Source/JavaScriptCore/runtime/OptionsList.h b/Source/JavaScriptCore/runtime/OptionsList.h +index 3d65cb28ba8ed..5b0750dd25219 100644 +--- a/Source/JavaScriptCore/runtime/OptionsList.h ++++ b/Source/JavaScriptCore/runtime/OptionsList.h +@@ -629,7 +629,7 @@ bool hasCapacityToUseLargeGigacage(); + v(Bool, forceAllFunctionsToUseSIMD, false, Normal, "Force all functions to act conservatively w.r.t fp/vector registers for testing."_s) \ + v(Bool, useOMGInlining, true, Normal, "Use OMG inlining"_s) \ + v(Bool, freeRetiredWasmCode, true, Normal, "free BBQ/OMG-OSR wasm code once it's no longer reachable."_s) \ +- v(Bool, useArrayAllocationSinking, true, Normal, nullptr) \ ++ v(Bool, useArrayAllocationSinking, false, Normal, nullptr) \ + v(Bool, dumpFTLCodeSize, false, Normal, nullptr) \ + v(Bool, dumpOptimizationTracing, false, Normal, nullptr) \ + v(Unsigned, markedBlockDumpInfoCount, 0, Normal, nullptr) /* FIXME: rdar://139998916 */ \ + diff --git a/webkitgtk-2.48.5.tar.xz.asc b/webkitgtk-2.48.5.tar.xz.asc deleted file mode 100644 index f7337db2dd7a381c32c313d13ecca148f6b7e5ef..0000000000000000000000000000000000000000 --- a/webkitgtk-2.48.5.tar.xz.asc +++ /dev/null @@ -1,16 +0,0 @@ ------BEGIN PGP SIGNATURE----- - -iQIzBAABCgAdFiEEAToBJ6ycZbNP+mJSbBAJtpOXU5MFAmiMe7UACgkQbBAJtpOX -U5MrwA//TJ0W7S9Nbs2p4OIs6lQv+ntLrTVZAKFu+AUYJ/r3sUp9awGGivS37ZC8 -gh33JDqzt9pm1sVXGNTB8NmEcRUu9QfsEsJUUEnk7n6dLmQr8Cb7aXK8b4ma8Mgo -zLpuU5rHPtZ5Cx7Y3wXw0mNBf2ZcvHrFfVhDrrgziIMUu9dcuOVI3inEvfh8CKcO -a+j+j1qNvxLGgPOfkXZH/cvGckCLxJuQ+/aX0k/3Top6mSHJTeMxtU7K2bSkgQmC -GoSoRqOFLPBp2UxAKWYcgr8kh7wjt5mov3NtNyMmCC6bjwtwX3ClLjgQfHekS5Iu -niPm9Q/FoF1JSbiXrpPf8KZVTUg9D1lzQFvJYHl9w5gWGE6wgjxX7TM1ooYvW0Gr -v9FBDIXGlXid+hBx8j0igRQW/V6sH5uSt690m5ElZj4KkJ6+uhLkIMcSGc6HYWhI -vtCNytTGd9wsAB97bYvcJv/qEW94hnGSdE0HvarAcdZbO52oljOAtqzaYi7Hw111 -expNG3FU98UTWX0LHsv1c5/z9ph7x5EFyipkBML5J9LT8KV/+IrXPBkXQ45yaf3D -s+KpRlkxFGj9uFhRgl4OLR4UrSfgEkrAPnVud2zrIik+A4mHgX9y8FKmktFioJhU -faiEXzPzrHgMeEtlJW8vvWVoO9ZgIsYKma9sOn8aU/f7yjFak4I= -=KRFp ------END PGP SIGNATURE----- diff --git a/webkitgtk-2.48.5.tar.xz b/webkitgtk-2.50.2.tar.xz similarity index 77% rename from webkitgtk-2.48.5.tar.xz rename to webkitgtk-2.50.2.tar.xz index 045a75f993c007750e03063791dc9906dec6ef0b..ef3e0b97af8ed454016a713410bc0547a232a663 100644 Binary files a/webkitgtk-2.48.5.tar.xz and b/webkitgtk-2.50.2.tar.xz differ diff --git a/webkitgtk-2.50.2.tar.xz.asc b/webkitgtk-2.50.2.tar.xz.asc new file mode 100644 index 0000000000000000000000000000000000000000..265bd461999e449130715438f06fc79a776cc90e --- /dev/null +++ b/webkitgtk-2.50.2.tar.xz.asc @@ -0,0 +1,6 @@ +-----BEGIN PGP SIGNATURE----- + +iF0EABEIAB0WIQRao7wzT9fjNp58d7KRxVnb5MkSOwUCaR3bLAAKCRCRxVnb5MkS +O0YAAJ9N06J049oa6S7fA+LVWqJIwI8xOgCeKckYQFIFZwR1+DunDmrNS0CpALE= +=2J5G +-----END PGP SIGNATURE----- diff --git a/webkitgtk.spec b/webkitgtk.spec index 16256bd07cc58bf7327e7af5173fb65b23a6af39..9969b8a6be0070ed220a14e263304f80c1054b6e 100644 --- a/webkitgtk.spec +++ b/webkitgtk.spec @@ -16,7 +16,7 @@ %global with_gamepad 0 Name: webkitgtk -Version: 2.48.5 +Version: 2.50.2 Release: %{anolis_release}%{?dist} Summary: GTK web content engine library @@ -26,7 +26,10 @@ Source0: https://webkitgtk.org/releases/webkitgtk-%{version}.tar.xz Source1: https://webkitgtk.org/releases/webkitgtk-%{version}.tar.xz.asc Patch01: riscv-use-unknown-cpu.patch - +# https://src.fedoraproject.org/rpms/webkitgtk/c/03cbe02be65119886a4362787ba457c56043c4af +Patch02: 0001-fix-build-error-caused-by-CustomToJSObject.patch +# https://src.fedoraproject.org/rpms/webkitgtk/c/03cbe02be65119886a4362787ba457c56043c4af +Patch03: 0002-bugfix-for-CVE-2025-43421.patch BuildRequires: bison BuildRequires: bubblewrap @@ -455,6 +458,9 @@ export NINJA_STATUS="[2/2][%f/%t %es] " %endif %changelog +* Thu Nov 27 2025 YangCheng - 0.10.5-12 +- update to 2.50.2 to fix CVE-2025-43443,CVE-2025-43440,CVE-2025-43434,CVE-2025-43431,CVE-2025-43430,CVE-2025-43427,CVE-2025-43425,CVE-2025-43419,CVE-2025-43392 + * Tue Sep 23 2025 wh02252983 - 2.48.5-1 - update to 2.48.5 to fix CVE-2025-31273 CVE-2025-31278 CVE-2025-43212 - CVE-2025-43216 CVE-2025-6558 CVE-2025-43211 CVE-2025-43227 CVE-2025-43228