-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Thu, 08 Feb 2024 13:15:33 +0100 Source: webkit2gtk Architecture: source Version: 2.42.5-1~deb11u1 Distribution: bullseye-security Urgency: medium Maintainer: Debian WebKit Maintainers <pkg-webkit-maintainers@lists.alioth.debian.org> Changed-By: Alberto Garcia <berto@igalia.com> Changes: webkit2gtk (2.42.5-1~deb11u1) bullseye-security; urgency=medium . * Rebuild for bullseye-security. * The WebKitGTK security advisory WSA-2024-0001 lists the following security fixes in the latest versions of WebKitGTK: - CVE-2023-42833 (fixed in 2.38.0). - CVE-2014-1745 (fixed in 2.42.0). - CVE-2023-40414 (fixed in 2.42.1). - CVE-2024-23222, CVE-2024-23213, CVE-2024-23206 (fixed in 2.42.5). * gcc 10 segfaults when building webkit in amd64 (see #1008098) so use clang instead. Keep using gcc in other architectures because clang has problems in at least i386, arm64 and mipsel (see #1010329 and #1016811). - debian/rules: Tell CMake to use clang. - debian/control.in: Build depend on clang. * Build libsoup2 packages only. - debian/rules: Set ENABLE_SOUP3=NO, ENABLE_GTK4=NO and USE_PREBUILT_DOCS=YES. - debian/control.in: Remove build dependency on ccache. * debian/rules: - Disable USE_AVI, USE_GBM, USE_GSTREAMER_TRANSCODER and USE_JPEGXL due to missing or additional build dependencies. * debian/control.in: - Don't require version 1.20.0 of libgstreamer-plugins-bad1.0-dev. - Remove build dependency on libjxl-dev. * debian/patches/disable-dmabuf.patch: - Disable the DMABuf renderer in all cases in bullseye (see #1054101). Checksums-Sha1: af59262e51d8368897d8b33039f4225d36ec919a 3929 webkit2gtk_2.42.5-1~deb11u1.dsc e9ea758c390a433d10c26865dac3c3c5fd8912e0 85816 webkit2gtk_2.42.5-1~deb11u1.debian.tar.xz a5c5b4c933abc495db8cd28cd53c310a1fb503d8 15507 webkit2gtk_2.42.5-1~deb11u1_source.buildinfo Checksums-Sha256: 497b95e3c1e3a364b40ad06f3eea3b7b8ed525c5d164255031065b61a8f5dd6b 3929 webkit2gtk_2.42.5-1~deb11u1.dsc 7b812514700af92ee7a79ba6f71757814a2628390e60fd5dc73ad8fabd4ca2a2 85816 webkit2gtk_2.42.5-1~deb11u1.debian.tar.xz de3c3fac181b93fe4715398f263eb6ce0a07229a95f797d31ab4134688a1f185 15507 webkit2gtk_2.42.5-1~deb11u1_source.buildinfo Files: 9df2183c0dc5b4ec48aa4232dfd36cc9 3929 web optional webkit2gtk_2.42.5-1~deb11u1.dsc 293f8245c9f1e0128bbff9d2b71ee729 85816 web optional webkit2gtk_2.42.5-1~deb11u1.debian.tar.xz a0c8a3a91b405036a18cac2a789c7761 15507 web optional webkit2gtk_2.42.5-1~deb11u1_source.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEYrwugQBKzlHMYFizAAyEYu0C2AIFAmXEzTEACgkQAAyEYu0C 2ALymA/+JQmR5sf4uTeK1mIIGvgIZvVQgRVoNAziphgUvyXt4RscWW3Nt2k03nqZ OlHiKGPvD9NkOoAtQHOgbpR7qVadwQ8c5bXwIlXIrkgGd1dF3wN9HAdUM2nCjRQN llL0B4q9KYEUH2kw+yltaTbungXp//ZjvsmuRKAQkjTmZpkhSErw7tE6VYNVFMJs KR45NsjZ7FAGlC8zqH5Aw4oCsZ5da9hBtx04fR2UQkoezmfevx/XEerEs6WCNT3V LoZaitG0SpNIpNj3Jc2+AkDonV1rbmzdascUliTwGDfBkxROpF7odf0cZaGSYp9c 9QRUyYApX/ZLDoJ63tTpyhwkH3zrcPWg4xdgfsHdxykOi+hA+4jhoI+hCwWHcHMG 0kNTqZE0W9Sc89M4dbilhQRxBPI3nIAFNeMZBQs/iXV5erRTYrSOaJJk6ljNhepc bdAnyx2X2CXMdYdv7xGz7gdDhQAFJG6LomINCSyZKET26yNhiyTe2xrJLaIVzgAC RI9k4UH598xzGeUXp7eDSTf35GeIf5sTPzv4nf6o2rkyq9coFJOgfixJzmtI/vL3 wfNSyQunwHGHF0afVl3/d5oUXpB1Y3QZVymWtc8UQ9kRrw/3OP9r4X+kv3hXQ5pD PHaIYk+dYpCF8e/NYPeIZqSQYrC+8KEeJ/iLVZ84pAAwMvGxvEE= =zU4I -----END PGP SIGNATURE-----