summaryrefslogtreecommitdiffstats
path: root/package/webkitgtk
Commit message (Collapse)AuthorAgeFilesLines
* webkitgtk: add upstream patch for failed gcc6 buildsGustavo Zacarias2016-10-111-0/+53
| | | | | | Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> [Thomas: add upstream patch description in the patch.] Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* webkitgtk: bump to version 2.12.5Gustavo Zacarias2016-09-062-4/+4
| | | | | Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* webkitgtk: security bump to version 2.12.4Gustavo Zacarias2016-08-282-4/+4
| | | | | | | | | | | | | | | | | | | | | | Fixes: CVE-2016-4590 - mishandles about: URLs, which allows remote attackers to bypass the Same Origin Policy via a crafted web site. CVE-2016-4591 - mishandles the location variable, which allows remote attackers to access the local filesystem via unspecified vectors. CVE-2016-4622 - allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, a different vulnerability than CVE-2016-4589, CVE-2016-4623, and CVE-2016-4624. CVE-2016-4624 - allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, a different vulnerability than CVE-2016-4589, CVE-2016-4622, and CVE-2016-4623. Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* Replace (e)glibc by glibcThomas Petazzoni2016-06-281-1/+1
| | | | | | | | | | | | | | | | Following the removal of eglibc support, this commit replaces all occurences of "(e)glibc" by just "glibc". Most of the occurences are in package Config.in comments. In addition, when the form "an (e)glibc ..." was used, it is replaced by "a glibc ...". [Peter: add new efi* packages, s/uclibc/uClibc as suggested by Romain, systemd / liquid-dsp tweaks as suggested by Yann] Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> Reviewed-by: Romain Naour <romain.naour@gmail.com> Acked-by: "Yann E. MORIN" <yann.morin.1998@free.fr> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* webkitgtk: security bump to version 2.12.3Gustavo Zacarias2016-05-242-4/+4
| | | | | | | | | | | Fixes: CVE-2016-1856 - allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site CVE-2016-1857 - allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* webkitgtk: new packageGustavo Zacarias2016-04-303-0/+170
Add the latest 2.12.x upstream stable branch. Both 2.4.x and 2.12.x can live side-by-side, however only the latest stable branch/releases are security-maintained, so add it unslotted. Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
OpenPOWER on IntegriCloud