Page MenuHomeSolus

Update brave to 1.14.81
ClosedPublic

Authored by Jacalz on Sep 20 2020, 9:52 AM.

Details

Summary

Summarized Changelog:

  • Implemented additional farbling protections for fingerprinters accessing CPU information.
  • Implemented additional farbling protections for fingerprinters accessing media hardware information.
  • Fixed Brave accepting TLS 1.0 and TLS 1.1 certificates without warning users.
  • Fixed not being able to authenticate and use the Google Calendar and Keep extensions.
  • Fixed Brave registering as Chromium instead of Brave under Pulseaudio.
  • Fixed a couple issues related to Brave ads and wallets.
  • Upgraded Chromium to 85.0.4183.102.

Security:

  • High CVE-2020-6573: Use after free in video.
  • High CVE-2020-6575: Race in Mojo.
  • High CVE-2020-6576: Use after free in offscreen canvas.
  • High CVE-2020-15959: Insufficient policy enforcement in networking.
Test Plan
  • Test a couple websites to make sure that it works.

Diff Detail

Repository
R4107 brave
Lint
Automatic diff as part of commit; lint not applicable.
Unit
Automatic diff as part of commit; unit tests not applicable.

Event Timeline

Jacalz created this revision.Sep 20 2020, 9:52 AM
Jacalz requested review of this revision.Sep 20 2020, 9:52 AM
JoshStrobl accepted this revision.Sep 22 2020, 1:30 PM
JoshStrobl added a subscriber: JoshStrobl.

LGTM, thanks!

This revision is now accepted and ready to land.Sep 22 2020, 1:30 PM
This revision was automatically updated to reflect the committed changes.