This fixes CVE-2019-13723 and CVE-2019-13724.
* gnu/packages/chromium.scm (%chromium-version): Set to 78.0.3904.108.
(%ungoogled-revision): Set to 8f065138317a6152b20decc224027a5192ba76b1.
(%chromium-origin, %ungoogled-origin): Update hashes.
* gnu/packages/chromium.scm (%preserved-third-party-files): Adjust for
Chromium 78.
(%chromium-version): Set to 78.0.3904.97.
(%ungoogled-revision): Set to acaf16383f264d8a2f24142ad054c9b4355771d3.
(%debian-revision): Set to e43d74632091324774a5049668782dba7b09cf72.
(%chromium-origin, %ungoogled-origin, %debian-origin): Update hashes.
(gentoo-patches, %auxiliary-patches): Remove variables.
(ungoogled-chromium-source): Adjust Debian patches for 78. Don't apply
%AUXILIARY-PATCHES.
(libvpx/chromium): New variable.
(ungoogled-chromium)[arguments]: Add substitution for ICU headers. Adjust
other substitutions for 78. Remove obsolete workaround. Increase ulimit in
'build' phase. Don't install '22x22' icon, which no longer exists.
[inputs]: Change from LIBVPX to LIBVPX/CHROMIUM.
[properties]: Remove HIDDEN?.
(ungoogled-chromium-wayland)[inputs]: Don't remove inherited inputs.
(ungoogled-chromium-is-deprecated, ungoogled-chromium-wayland-is-deprecated):
Remove variables.
This package has known security flaws that are being exploited in the wild.
See <https://lists.gnu.org/archive/html/guix-devel/2019-10/msg00576.html> for
why it has not been updated.
* gnu/packages/chromium.scm (ungoogled-chromium)[properties]: Set #:hidden? #t.
(ungoogled-chromium-is-deprecated, ungoogled-chromium-wayland-is-deprecated):
New public variables.
This release fixes CVE-2019-5867 and CVE-2019-5868.
* gnu/packages/chromium.scm (%chromium-version): Set to 76.0.3809.100.
(%ungoogled-revision): Set to 8eba5c0.
(%chromium-origin, %ungoogled-origin): Update hashes.
* gnu/packages/chromium.scm (%preserved-third-party-files): Adjust for 76.
(%chromium-version): Set to 76.0.3809.87.
(%ungoogled-revision): Set to 6ea939002bae43a27910e03569d43519d07842e7.
(%debian-revision): Set to debian/76.0.3809.87-2.
(%chromium-origin, %ungoogled-origin, %debian-origin): Update hashes.
(gentoo-patch, gentoo-patches): New procedures.
(%auxiliary-patches): New variable.
(ungoogled-chromium-source): Ignore Ungoogleds bundled Debian patches, as well
as some of Debians build fixes. Apply %AUXILIARY-PATCHES.
(ungoogled-chromium)[arguments]: Adjust unbundling substitutions. Do not set
Blink symbol level.
...but limit the memory usage. Tested with --cores=8 on a 16 GiB RAM machine.
* gnu/packages/chromium.scm (ungoogled-chromium)[arguments]: Remove <#:parallel-build?>.
Add "jumbo_file_merge_limit=8" in <#:configure-flags>.
* gnu/packages/chromium.scm (%preserved-third-party-files): Preserve
"third_party/wayland/wayland_scanner_wrapper.py" and "third_party/wayland-protocols".
(ungoogled-chromium/wayland): New public variable.
This fixes CVE-2019-972921 and CVE-2019-951487.
* gnu/packages/chromium.scm (%chromium-version): Set to 75.0.3770.142.
(%chromium-origin): Update hash.
This is a follow-up to commit 40594fdcb9e360d68e5444771b5467ba5bbbfcf2.
* gnu/packages/chromium.scm (%preserved-third-party-files): Remove
'third_party/pdfium/third_party/libopenjpeg20'.
(ungoogled-chromium)[arguments]: Fix typo in #:configure-flags.
The update to Chromium 73 includes more than 60 security fixes. See the
release announcement for more information:
<https://chromereleases.googleblog.com/2019/03/stable-channel-update-for-desktop_12.html>.
* gnu/packages/chromium.scm (%preserved-third-party-files): Drop
"net/third_party/http2" and "net/third_party/spdy". Add "v8/src/third_party/siphash".
(%chromium-version): Update to 73.0.3683.86.
(%ungoogled-revision): Update to 4c7fb6d1a86602999f30b58ef8b331b2115c5ad8.
(%debian-revision): New variable.
(ungoogled-chromium-source): Add an origin for Debians packaging scripts.
Adjust for Ungoogled refactoring and add a procedure for applying Debian
patches. Replace unneeded LET* for LET and reindent.
(ungoogled-chromium)[arguments]: Remove one obsolete substitution, add two others.