-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Sat, 11 Nov 2017 14:26:11 +0200 Source: webkit2gtk Binary: libjavascriptcoregtk-4.0-18 libjavascriptcoregtk-4.0-dev libjavascriptcoregtk-4.0-bin gir1.2-javascriptcoregtk-4.0 libwebkit2gtk-4.0-37 libwebkit2gtk-4.0-dev libwebkit2gtk-4.0-doc gir1.2-webkit2-4.0 libwebkit2gtk-4.0-37-gtk2 Architecture: source Version: 2.18.3-1 Distribution: unstable Urgency: high Maintainer: Debian WebKit Maintainers <pkg-webkit-maintainers@lists.alioth.debian.org> Changed-By: Alberto Garcia <berto@igalia.com> Description: gir1.2-javascriptcoregtk-4.0 - JavaScript engine library from WebKitGTK+ - GObject introspection gir1.2-webkit2-4.0 - Web content engine library for GTK+ - GObject introspection data libjavascriptcoregtk-4.0-18 - JavaScript engine library from WebKitGTK+ libjavascriptcoregtk-4.0-bin - JavaScript engine library from WebKitGTK+ - command-line interpre libjavascriptcoregtk-4.0-dev - JavaScript engine library from WebKitGTK+ - development files libwebkit2gtk-4.0-37 - Web content engine library for GTK+ libwebkit2gtk-4.0-37-gtk2 - Web content engine library for GTK+ - GTK+2 plugin process libwebkit2gtk-4.0-dev - Web content engine library for GTK+ - development files libwebkit2gtk-4.0-doc - Web content engine library for GTK+ - documentation Closes: 881341 Changes: webkit2gtk (2.18.3-1) unstable; urgency=high . * New upstream release. * The WebKitGTK+ security advisory WSA-2017-0009 lists the following security fixes in the latest versions of WebKitGTK+: + CVE-2017-13783, CVE-2017-13784, CVE-2017-13785, CVE-2017-13791, CVE-2017-13792, CVE-2017-13793, CVE-2017-13794, CVE-2017-13795, CVE-2017-13796 and CVE-2017-13802 (fixed in 2.18.1). + CVE-2017-13788, CVE-2017-13798, CVE-2017-13803 (fixed in 2.18.3) * Several cross-compilation fixes in debian/rules (thanks, Helmut Grohne) (Closes: #881341): + Include /usr/share/dpkg/architecture.mk instead of calling dpkg-architecture manually to set the DEB_*_ARCH variables. + Use DEB_BUILD_ARCH_BITS to decide whether to pass --no-keep-memory to the linker. + Use DEB_HOST_ARCH to decide whether to use -g1, -DENABLE_JIT=OFF and -DUSE_GSTREAMER_GL=OFF. + Remove the --no-relax flag for alpha, this was a workaround for a 10 year old binutils bug. Checksums-Sha1: 197b697fcc6fc2c5477e5cbe788d2b8ae8911bd9 3985 webkit2gtk_2.18.3-1.dsc 164cad34281ef597a3d4ad214e8037c3ddef4d17 14824668 webkit2gtk_2.18.3.orig.tar.xz 9710177c01b0f1cb71402a4066945d3b1f63503c 195 webkit2gtk_2.18.3.orig.tar.xz.asc a840b5459b3bceae838e9a71faee9a48e87ae8be 55220 webkit2gtk_2.18.3-1.debian.tar.xz a63682027226cb2c15136bf22ac4770ed9a29892 16367 webkit2gtk_2.18.3-1_source.buildinfo Checksums-Sha256: 91951c4c5c5a261a9caf30ed57416eb6254355060a7fbfe3f37e5e42c4a29888 3985 webkit2gtk_2.18.3-1.dsc e15420e1616a6f70f321541d467af5ca285bff66b1e0fa68a01df3ccf1b18f9e 14824668 webkit2gtk_2.18.3.orig.tar.xz 96cc2a9385e0c21a98b2446cb267f29a4d8b2b7db37a92b3741813b8fb9ba1a8 195 webkit2gtk_2.18.3.orig.tar.xz.asc 11ed971ac38a867647302a16425b8ad113a4854ef6e571c44a8e12ab2b5bccf8 55220 webkit2gtk_2.18.3-1.debian.tar.xz 47a54241097fcaa022f2e0559711f9de5e0b6733846bedfe9ff6defb43864231 16367 webkit2gtk_2.18.3-1_source.buildinfo Files: 3b42397da22e1e035ac86375ec9edff3 3985 web optional webkit2gtk_2.18.3-1.dsc 264a22d7467deae606e42b6eb5dd65af 14824668 web optional webkit2gtk_2.18.3.orig.tar.xz a29de5184eaec1c1efdf1bc892e4cc25 195 web optional webkit2gtk_2.18.3.orig.tar.xz.asc e821106431498eb588c6fa81bfd707c1 55220 web optional webkit2gtk_2.18.3-1.debian.tar.xz ae16bbd5c68e9406344e0d5440b648f4 16367 web optional webkit2gtk_2.18.3-1_source.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEG4Kq8pR5Ln9Vhk8+vjIZrz7UE0EFAloG7YsACgkQvjIZrz7U E0GJbQ//S3gav55bCu1lv4gXaHhfNYCA2qV8sJyndZYRAbqzQ+eVQzR+DLMJXnT5 y9KaK5js6MguRL02Zr8XdDHaWNrWKP6cJuRyOzF6alTrgrGpmLFBQNUIqOxrbHeC 34GYZ2k7cLqB5LuJtM8F2AKsbFrOmtw2lPRqGIe7c7BAjA7XVmZ2zPvm+00fMEFV nWCOs8FLYdMzOLQWvvPFa8T85BD+B0wm76ixH3yQCsAclwkwmTGzfr2HsiLwQhuv wv0ozSczwg1E7OOxtTMnR1pD7UHdP3ZEcf3X/SBs+U0pDJ9HoMKv6JOh5KIYpqPI n0CYzKiBNyvAXmNpG8okmOmYXoym8VNJmsdwDlj0kJ9fpGFGlgc91rstg/u67ff1 5dKaIlVhL4T6QKvAQcmii4Raf3MP8qHvVZkS3ZgskWVwep2FO1ZRqohNM/BCBbXP 6FrXoP9EYK6Evn5slnvWI/w3M/8lnQnoApnPSzB9NWfECNgtoT0mNNfPTYj/0Ll6 r/4xTH8WlSyDm9JXVI50QXcCO2769YKsky8ndU8IIaltSlpnF6rYedyk1dd5zsyf 4TYdbtjPiws7QEPgpXMwG8i27xNvZr3JDhsmJ5Bs5lMkyy9q1Xn8FJvRlWpwDZM1 L2l4QsoUBiGxoiqF99IMtT53MO+JTulcSgqAVh7gTw70ta2McD0= =11qm -----END PGP SIGNATURE-----