From 1c978d782d92d4623156ba7d88d375de43f7ba5b Mon Sep 17 00:00:00 2001 From: Bernd Kuhls Date: Tue, 18 Jul 2023 20:32:38 +0200 Subject: [PATCH] package/wpewebkit: security bump version to 2.40.3 Removed md5 hash. Switch _SITE to https and update URL. Added dependency to host-unifdef, needed since upstream commit https://github.com/WebKit/WebKit/commit/f76a7e30e5749af897b83cc75b2534b1afa32552 Release notes: 2.40.3 - https://lists.webkit.org/pipermail/webkit-wpe/2023-June/000603.html 2.40.2 - https://lists.webkit.org/pipermail/webkit-wpe/2023-May/000598.html Fixes CVE-2023-28204 & CVE-2023-32373: https://lists.webkit.org/pipermail/webkit-wpe/2023-May/000599.html 2.40.1 - https://lists.webkit.org/pipermail/webkit-wpe/2023-April/000591.html 2.40.0 - https://lists.webkit.org/pipermail/webkit-wpe/2023-March/000589.html 2.39.91 - https://lists.webkit.org/pipermail/webkit-wpe/2023-March/000581.html 2.39.90 - https://lists.webkit.org/pipermail/webkit-wpe/2023-February/000577.html 2.39.5 - https://lists.webkit.org/pipermail/webkit-wpe/2023-January/000571.html USE_AVIF was enabled by default upstream: https://github.com/WebKit/WebKit/commit/3d60d9f93c64aac55c890160d00d008367e11e91 Add -DUSE_AVIF=OFF to _CONF_OPTS due to missing libavif package Signed-off-by: Bernd Kuhls Signed-off-by: Thomas Petazzoni --- package/wpewebkit/wpewebkit.hash | 7 +++---- package/wpewebkit/wpewebkit.mk | 7 ++++--- 2 files changed, 7 insertions(+), 7 deletions(-) diff --git a/package/wpewebkit/wpewebkit.hash b/package/wpewebkit/wpewebkit.hash index d5f628e1ee..aaeea2bcda 100644 --- a/package/wpewebkit/wpewebkit.hash +++ b/package/wpewebkit/wpewebkit.hash @@ -1,7 +1,6 @@ -# From https://wpewebkit.org/releases/wpewebkit-2.38.6.tar.xz.sums -md5 eb44d3132208218f3752170cae3220b8 wpewebkit-2.38.6.tar.xz -sha1 5c541a10e216d8d9ca48572b3dc0f82bfb2236c5 wpewebkit-2.38.6.tar.xz -sha256 dcb6591456393c5366ad9abc62a808137d4fea039cbc7ef4c8d64ead506d035b wpewebkit-2.38.6.tar.xz +# From https://wpewebkit.org/releases/wpewebkit-2.40.3.tar.xz.sums +sha1 c840bd76b2c86cb8ca0d68b56598cb0abbafc727 wpewebkit-2.40.3.tar.xz +sha256 05b6a9cb1d7d03485e0dc41b2a8e6f99a36aea23d32ba3ecb38d0d6860747ada wpewebkit-2.40.3.tar.xz # Hashes for license files: sha256 0b5d3a7cc325942567373b0ecd757d07c132e0ebd7c97bfc63f7e1a76094edb4 Source/WebCore/LICENSE-APPLE diff --git a/package/wpewebkit/wpewebkit.mk b/package/wpewebkit/wpewebkit.mk index 7b8ac67d92..c13a7201e6 100644 --- a/package/wpewebkit/wpewebkit.mk +++ b/package/wpewebkit/wpewebkit.mk @@ -4,8 +4,8 @@ # ################################################################################ -WPEWEBKIT_VERSION = 2.38.6 -WPEWEBKIT_SITE = http://www.wpewebkit.org/releases +WPEWEBKIT_VERSION = 2.40.3 +WPEWEBKIT_SITE = https://wpewebkit.org/releases WPEWEBKIT_SOURCE = wpewebkit-$(WPEWEBKIT_VERSION).tar.xz WPEWEBKIT_INSTALL_STAGING = YES WPEWEBKIT_LICENSE = LGPL-2.1+, BSD-2-Clause @@ -14,7 +14,7 @@ WPEWEBKIT_LICENSE_FILES = \ Source/WebCore/LICENSE-LGPL-2.1 WPEWEBKIT_CPE_ID_VENDOR = wpewebkit WPEWEBKIT_CPE_ID_PRODUCT = wpe_webkit -WPEWEBKIT_DEPENDENCIES = host-gperf host-python3 host-ruby \ +WPEWEBKIT_DEPENDENCIES = host-gperf host-python3 host-ruby host-unifdef \ harfbuzz cairo icu jpeg libepoxy libgcrypt libgles libsoup libtasn1 \ libpng libxslt openjpeg wayland-protocols webp wpebackend-fdo @@ -26,6 +26,7 @@ WPEWEBKIT_CONF_OPTS = \ -DENABLE_INTROSPECTION=OFF \ -DENABLE_MINIBROWSER=OFF \ -DENABLE_WEB_RTC=OFF \ + -DUSE_AVIF=OFF \ -DUSE_SOUP2=ON ifeq ($(BR2_PACKAGE_WPEWEBKIT_SANDBOX),y)