diff --git a/backport-CVE-2025-43421.patch b/backport-CVE-2025-43421.patch deleted file mode 100644 index 26e2361bb603aa06f6360d062ff21e2d79e22cba..0000000000000000000000000000000000000000 --- a/backport-CVE-2025-43421.patch +++ /dev/null @@ -1,26 +0,0 @@ -From 56f026944a16a4baf82ddd6bae954c577de79d03 Mon Sep 17 00:00:00 2001 -From: Michael Catanzaro -Date: Fri, 21 Nov 2025 12:42:01 -0600 -Subject: [PATCH] Disable array allocation sinking - https://bugs.webkit.org/show_bug.cgi?id=300718 - -Unreviewed stable branch commit. - -Canonical link: https://commits.webkit.org/298234.299@webkitglib/2.50 ---- - Source/JavaScriptCore/runtime/OptionsList.h | 2 +- - 1 file changed, 1 insertion(+), 1 deletion(-) - -diff --git a/Source/JavaScriptCore/runtime/OptionsList.h b/Source/JavaScriptCore/runtime/OptionsList.h -index 3d65cb28ba8ed..5b0750dd25219 100644 ---- a/Source/JavaScriptCore/runtime/OptionsList.h -+++ b/Source/JavaScriptCore/runtime/OptionsList.h -@@ -629,7 +629,7 @@ bool hasCapacityToUseLargeGigacage(); - v(Bool, forceAllFunctionsToUseSIMD, false, Normal, "Force all functions to act conservatively w.r.t fp/vector registers for testing."_s) \ - v(Bool, useOMGInlining, true, Normal, "Use OMG inlining"_s) \ - v(Bool, freeRetiredWasmCode, true, Normal, "free BBQ/OMG-OSR wasm code once it's no longer reachable."_s) \ -- v(Bool, useArrayAllocationSinking, true, Normal, nullptr) \ -+ v(Bool, useArrayAllocationSinking, false, Normal, nullptr) \ - v(Bool, dumpFTLCodeSize, false, Normal, nullptr) \ - v(Bool, dumpOptimizationTracing, false, Normal, nullptr) \ - v(Unsigned, markedBlockDumpInfoCount, 0, Normal, nullptr) /* FIXME: rdar://139998916 */ \ diff --git a/webkit2gtk4_1.spec b/webkit2gtk4_1.spec index 219b2f8558db043b898cdcdff5d157460e83b84b..ccfa784810fffb569ad4aaa20f6902b4862526da 100644 --- a/webkit2gtk4_1.spec +++ b/webkit2gtk4_1.spec @@ -22,8 +22,8 @@ %bcond_with gamepad Name: webkit2gtk4.1 -Version: 2.50.2 -Release: 2 +Version: 2.50.3 +Release: 1 Summary: GTK web content engine library License: BSD-3-Clause AND LGPL-2.0-or-later URL: https://www.webkitgtk.org/ @@ -33,8 +33,6 @@ Patch1000: webkitgtk-add-loongarch-and-sw.patch # clang 17 has bug on Wunsafe-buffer-usage, disable it for now Patch1001: webkitgtk-2.48.1-drop-Wunsafe-buffer-usage.patch -Patch6000: backport-CVE-2025-43421.patch - #Dependency BuildRequires: bison BuildRequires: bubblewrap @@ -272,6 +270,9 @@ files for developing applications that use JavaScript engine from webkit2gtk-4.1 %endif %changelog +* Sat Dec 06 2025 Funda Wang - 2.50.3-1 +- update to version 2.50.3 + * Wed Nov 26 2025 lingsheng - 2.50.2-2 - fix CVE-2025-43421 diff --git a/webkitgtk-2.50.2.tar.xz b/webkitgtk-2.50.3.tar.xz similarity index 32% rename from webkitgtk-2.50.2.tar.xz rename to webkitgtk-2.50.3.tar.xz index 673935708645268d67e47af65ab04617b0d8a0be..9c875b35685f9c4863fc15bab3b1b306cad24339 100644 --- a/webkitgtk-2.50.2.tar.xz +++ b/webkitgtk-2.50.3.tar.xz @@ -1,3 +1,3 @@ version https://git-lfs.github.com/spec/v1 -oid sha256:19ab61f2d44e62cd443673943d2d5341b84d08405f67a7c37b7a77ad3550f880 -size 43761112 +oid sha256:70a006b4695bb6b2e157e801f5a0d029f4110f050c6f0882decd8a3bf594d54f +size 43772540 diff --git a/webkitgtk.spec b/webkitgtk.spec index 7ec708eeb3b22acb728bea496d8857d861ac9c1b..1ace6bcb68d7f59e150382c1510742a2f0c831d6 100644 --- a/webkitgtk.spec +++ b/webkitgtk.spec @@ -22,8 +22,8 @@ %bcond_with gamepad Name: webkitgtk -Version: 2.50.2 -Release: 2 +Version: 2.50.3 +Release: 1 Summary: GTK web content engine library License: BSD-3-Clause AND LGPL-2.0-or-later URL: https://www.webkitgtk.org/ @@ -33,8 +33,6 @@ Patch1000: webkitgtk-add-loongarch-and-sw.patch # clang 17 has bug on Wunsafe-buffer-usage, disable it for now Patch1001: webkitgtk-2.48.1-drop-Wunsafe-buffer-usage.patch -Patch6000: backport-CVE-2025-43421.patch - #Dependency BuildRequires: bison BuildRequires: bubblewrap @@ -294,6 +292,9 @@ files for developing applications that use JavaScript engine from webkit2gtk-4.0 %endif %changelog +* Sat Dec 06 2025 Funda Wang - 2.50.3-1 +- update to 2.50.3 + * Wed Nov 26 2025 lingsheng - 2.50.2-2 - fix CVE-2025-43421 diff --git a/webkitgtk6_0.spec b/webkitgtk6_0.spec index 04f22ee6fcf4073cdf4b63dfe078a876d050fd14..d4a8bbfe48217ea6d73f457bb1fe29d626a3ab49 100644 --- a/webkitgtk6_0.spec +++ b/webkitgtk6_0.spec @@ -22,8 +22,8 @@ %bcond_with gamepad Name: webkitgtk6.0 -Version: 2.50.2 -Release: 2 +Version: 2.50.3 +Release: 1 Summary: GTK web content engine library License: BSD-3-Clause AND LGPL-2.0-or-later URL: https://www.webkitgtk.org/ @@ -33,8 +33,6 @@ Patch1000: webkitgtk-add-loongarch-and-sw.patch # clang 17 has bug on Wunsafe-buffer-usage, disable it for now Patch1001: webkitgtk-2.48.1-drop-Wunsafe-buffer-usage.patch -Patch6000: backport-CVE-2025-43421.patch - #Dependency BuildRequires: bison BuildRequires: bubblewrap @@ -270,6 +268,9 @@ files for developing applications that use JavaScript engine from webkitgtk-6.0. %endif %changelog +* Sat Dec 06 2025 Funda Wang - 2.50.3-1 +- update to 2.50.3 + * Wed Nov 26 2025 lingsheng - 2.50.2-2 - fix CVE-2025-43421