SECURITY: Fedora 32 Update: kf5-messagelib-19.12.2-2.fc32
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2021-bdaf015218
2021-02-02 02:22:09.324191
--------------------------------------------------------------------------------
Name : kf5-messagelib
Product : Fedora 32
Version : 19.12.2
Release : 2.fc32
URL : https://cgit.kde.org/messagelib.git/
Summary : KDE Message libraries
Description :
KDE Message libraries.
--------------------------------------------------------------------------------
Update Information:
This update rebases QtWebEngine to the latest Qt 5 release, 5.15.2, fixing
dozens of security issues. (The same version is already shipped on Fedora 33 and
Rawhide.) The included kf5-messagelib update backports a fix for compatibility
with QtWebEngine 5.15.x. The Chromium version has been updated to
83.0.4103.122, with backported security fixes from Chromium up to version
86.0.4240.183. That fixes dozens of security issues compared to 5.14.2. This
version also adds the Qt PDF module, a Qt wrapper around PDFium. This is a
separate library and cannot cause backwards compatibility issues. In addition,
several bugs have been fixed, see the Changes files: *
https://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.15.0?h=5.15 *
https://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.15.1?h=5.15 *
https://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/changes-5.15.2?h=5.15
Behavior Changes since 5.14.2: * XSS Auditing has been removed, and the
XSSAuditingEnabled setting no longer has any effect. * [QTBUG-79864] The viz
display compositor is now used by default on all platforms, but can be disabled
with --disable-viz-display-compositor. * The network layer integration has been
rewritten to use Chromium's network service, and now runs in a separate
sandboxed process by default. * [QTBUG-83656] CTRL+mouse wheel page zoom fixed,
and now works by default.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 29 2021 Kevin Kofler - 19.12.2-2
- Backport fix for loading headers w/ QtWebEngine 5.15 from 20.04.2 (kde#422746)
- Add missing BuildRequires: cmake(Qca-qt5)
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2021-bdaf015218' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
A kf5-messagelib security update has been released for Fedora 32.