Fedora has issued an advisory today (January 30): https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/2MLX3OHXV7SCLP5MK4AA5TVXPPNSWDUP/ It updates the bundled Chromium code to a newer version with more security fixes. Advisory will be as follows. Advisory: ======================== Updated qtwebengine5 packages fix security vulnerabilities: The qtwebengine5 package has been updated to version 5.15.8, fixing several security issues in the bundled chromium code. References: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/2MLX3OHXV7SCLP5MK4AA5TVXPPNSWDUP/ ======================== Updated packages in core/updates_testing: ======================== qtwebengine5-5.15.8-1.mga8 qtwebengine5-doc-5.15.8-1.mga8 libqt5pdf5-5.15.8-1.mga8 libqt5webengine-devel-5.15.8-1.mga8 libqt5webengine5-5.15.8-1.mga8 libqt5webenginewidgets5-5.15.8-1.mga8 libqt5pdfwidgets5-5.15.8-1.mga8 libqt5webenginecore5-5.15.8-1.mga8 from qtwebengine5-5.15.8-1.mga8.src.rpm
Assigning this to DavidG as you are the main visible actual 'packager' of this SRPM.
Assignee: bugsquad => geiger.david68210
Assignee: geiger.david68210 => qa-bugs
MGA8-64 Plasma on Lenovo B50 in Dutch No installation issues. Ref bug 29777 for using konqueror to test. Youtube video plays OK, newspaper site is OK with thext and pictures, but video fail, see e.g. https://www.standaard.be/cnt/dmf20220131_94310556 When I click on the video, there flashes a message "Sorry ......" on the screen, but to quickly to read. On the CLI I get at that moment: [8561:13:0131/150517.502665:ERROR:batching_media_log.cc(38)] MediaEvent: {"error":"FFmpegDemuxer: no supported streams"} [8561:13:0131/150517.503441:ERROR:batching_media_log.cc(38)] MediaEvent: {"error":"FFmpegDemuxer: no supported streams"} [8561:1:0131/150517.586216:ERROR:batching_media_log.cc(35)] MediaEvent: {"pipeline_error":14} [8561:1:0131/150517.586580:ERROR:batching_media_log.cc(35)] MediaEvent: {"pipeline_error":14} js: VIDEOJS: ERROR: (CODE:3 MEDIA_ERR_DECODE) 4032 - undefined [object Object] js: The resource https://www.googletagservices.com/tag/js/gpt.js was preloaded using link preload but not used within a few seconds from the window's load event. Please make sure it has an appropriate `as` value and it is preloaded intentionally.
CC: (none) => herman.viaene
That's to be expected. Fedora patched out a lot of the ffmpeg stuff.
Testing the failing site of comment 2 before updating: I see the Sorry.. message (also here too quickly vanishing) and the last lines from "VIDEOJS" and on are the same. Different lines in between. So I would say that is not a regression of qtwebengine.
CC: (none) => fri
@Herman: Since it appears that the issue you saw is "to be expected," and existed before the update so "is not a regression," do you have any objection to an OK for this? Did you see any other issues?
CC: (none) => andrewsfarm
No other issues.
Whiteboard: (none) => MGA8-64-OK
Validating. Advisory in Comment 0.
Keywords: (none) => validated_updateCC: (none) => sysadmin-bugs
CC: (none) => davidwhodginsKeywords: (none) => advisory
An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2022-0050.html
Status: NEW => RESOLVEDResolution: (none) => FIXED