nixpkgs-suyu/pkgs
aszlig ef753d210e
chromium: Update all channels to latest versions
Overview of the updated versions:

stable: 49.0.2623.87 -> 49.0.2623.110
beta:   50.0.2661.26 -> 50.0.2661.49
dev:    50.0.2661.18 -> 51.0.2693.2

Most notably, this includes a series of urgent security fixes:

 * CVE-2016-1646: Out-of-bounds read in V8. Credit to Wen Xu from
                  Tencent KeenLab.
 * CVE-2016-1647: Use-after-free in Navigation. Credit to anonymous.
 * CVE-2016-1648: Use-after-free in Extensions. Credit to anonymous.
 * CVE-2016-1649: Buffer overflow in libANGLE. Credit to lokihardt
                  working with HP's Zero Day Initiative / Pwn2Own.
 * CVE-2016-1650: Denial of service in PageCaptureSaveAsMHTMLFunction

The official release announcement with details about these fixes can be
found here:

http://googlechromereleases.blogspot.de/2016/03/stable-channel-update_24.html

Beta and stable could be also affected, although I didn't do a detailed
check whether that's the case.

As this introduces Chromium 51 as the dev version, I had to make the
following changes to make it build:

 * libexif got removed, so let's do that on our end as well.
   See https://codereview.chromium.org/1803883002 for details.
 * Chromium doesn't seem to compile with our version of libpng, so let's
   resort to the bundled libpng for now.
 * site_engagement_ui.cc uses isnan outside of std namespace, so
   we're fixing that in postPatch using sed.

I have successfully built all versions on i686-linux and x86_64-linux
and tested it using the VM tests.

Test reports can be found at the following evaluation of my Hydra:

https://headcounter.org/hydra/eval/314584

Thanks to @grahamc for reporting this.

Signed-off-by: aszlig <aszlig@redmoonstudios.org>
Reported-by: Graham Christensen <graham@grahamc.com>
Fixes: #14299
2016-03-30 15:24:39 +02:00
..
applications chromium: Update all channels to latest versions 2016-03-30 15:24:39 +02:00
build-support Revert "Remove PATH assumption from fhs-userenv." 2016-03-29 17:58:07 +03:00
data noto-fonts-emoji: add uncommited fix 2016-03-29 21:05:32 +03:00
desktops kde5.applications: 15.12.1 -> 15.12.3 2016-03-29 21:21:44 -05:00
development libpsl: list 2016-03-10 -> 2016-03-30 2016-03-30 14:56:04 +02:00
games steam: enable hardware decoding (for In-Home Streaming) 2016-03-29 09:17:15 +11:00
misc lilypond: set some HOME during the build for Metafont 2016-03-28 01:00:27 +02:00
os-specific Merge pull request #14296 from kragniz/zfs-0.6.5.6 2016-03-30 12:17:38 +02:00
servers Merge pull request #14255 from risicle/osrm_fixes 2016-03-28 16:15:16 +00:00
shells oh-my-zsh: 2016-03-19 -> 2016-03-24 2016-03-25 15:07:06 -04:00
stdenv Merge remote-tracking branch 'origin/staging' 2016-03-27 13:19:04 +01:00
test Replace references to all-packages.nix, by references to the top-level of nixpkgs repository. 2016-03-13 18:25:52 +00:00
tools enblend-enfuse: 4.1.5 -> 4.2; maintain 2016-03-30 14:56:04 +02:00
top-level Finance::Quote: 1.37 -> 1.38 & add missing dependency on CGI 2016-03-30 15:01:28 +02:00