From: Raspbian automatic forward porter <root@raspbian.org>
Date: Sat, 31 Dec 2022 23:24:26 +0000 (+0000)
Subject: Merge version 2.38.2-1~deb11u1+rpi1 and 2.38.3-1~deb11u1 to produce 2.38.3-1~deb11u1... 
X-Git-Tag: archive/raspbian/2.38.3-1_deb11u1+rpi1
X-Git-Url: https://dgit.raspbian.org/?a=commitdiff_plain;h=411e4ec6b9ea654d2c2375596f83f022ae91e02e;p=webkit2gtk.git

Merge version 2.38.2-1~deb11u1+rpi1 and 2.38.3-1~deb11u1 to produce 2.38.3-1~deb11u1+rpi1
---

c50c3ef48c129ed8cf7989f21a6e7705aa0c6216
diff --cc debian/changelog
index e3bef28b0d,b48e5b8aed..a50e651d9b
--- a/debian/changelog
+++ b/debian/changelog
@@@ -1,14 -1,12 +1,20 @@@
- webkit2gtk (2.38.2-1~deb11u1+rpi1) bullseye-staging; urgency=medium
++webkit2gtk (2.38.3-1~deb11u1+rpi1) bullseye-staging; urgency=medium
 +
 +  [changes brought forward from 2.6.2+dfsg1-3+rpi1 by Peter Michael Green <plugwash@raspbian.org> at Sun, 25 Jan 2015 02:14:50 +0000]
 +  * Disable javascript JIT as it doesn't appear to be armv6 compatible
 +    (at least I assume that is the cause of the assembler errors)
 +
-  -- Raspbian forward porter <root@raspbian.org>  Tue, 08 Nov 2022 23:12:50 +0000
++ -- Raspbian forward porter <root@raspbian.org>  Sat, 31 Dec 2022 23:24:26 +0000
 +
- webkit2gtk (2.38.2-1~deb11u1) bullseye-security; urgency=medium
+ webkit2gtk (2.38.3-1~deb11u1) bullseye-security; urgency=medium
  
    * Rebuild for bullseye-security.
+   * The WebKitGTK security advisory WSA-2022-0011 lists the following
+     security fixes in the latest versions of WebKitGTK:
+     - CVE-2022-42863 (fixed in 2.38.0).
+     - CVE-2022-46691 (fixed in 2.38.1).
+     - CVE-2022-42852, CVE-2022-42856, CVE-2022-42867, CVE-2022-46692,
+       CVE-2022-46698, CVE-2022-46699, CVE-2022-46700 (fixed in 2.38.3).
    * gcc 10 segfaults when building webkit in amd64 (see #1008098) so use
      clang instead. Keep using gcc in other architectures because clang has
      problems in at least i386, arm64 and mipsel (see #1010329 and