Backport new version to p8 branch

Security fixes:
CVE-2017-5121: Out-of-bounds access in V8. Reported by Jordan Rabet, Microsoft Offensive Security Research and Microsoft ChakraCore team on 2017-09-14
CVE-2017-5122: Out-of-bounds access in V8. Reported by Choongwoo Han of Naver Corporation on 2017-08-04

Backport new version to p8 branch

New version (61.0.3163.79).
Security fixes:
CVE-2017-5111: Use after free in PDFium. Reported by Luat Nguyen (@l4wio) of KeenLab, Tencent on 2017-06-27
CVE-2017-5112: Heap buffer overflow in WebGL. Reported by Tobias Klein (www.trapkit.de) on 2017-07-10
CVE-2017-5113: Heap buffer overflow in Skia. Reported by Anonymous on 2017-07-20
CVE-2017-5114: Memory lifecycle issue in PDFium. Reported by Ke Liu of Tencent's Xuanwu LAB on 2017-08-07
CVE-2017-5115: Type confusion in V8. Reported by Marco Giovannini on 2017-07-17
CVE-2017-5116: Type confusion in V8. Reported Guang Gong of Alpha Team, Qihoo 360 on 2017-08-28
CVE-2017-5117: Use of uninitialized value in Skia. Reported by Tobias Klein (www.trapkit.de) on 2017-07-04
CVE-2017-5118: Bypass of Content Security Policy in Blink. Reported by WenXu Wu of Tencent's Xuanwu Lab on 2017-07-24
CVE-2017-5119: Use of uninitialized value in Skia. Reported by Anonymous on 2017-05-22
CVE-2017-5120: Potential HTTPS downgrade during redirect navigation. Reported by Xiaoyin Liu (@general_nfs) on 2017-05-05

Backport new version to p8 branch

Add missing libraries (ALT#33750).

New version (60.0.3112.90).

Backport new version to p8 branch

New version (60.0.3112.78).
Security fixes:
CVE-2017-5091: Use after free in IndexedDB. Reported by Ned Williamson on 2017-06-02
CVE-2017-5092: Use after free in PPAPI. Reported by Yu Zhou, Yuan Deng of Ant-financial Light-Year Security Lab on 2017-06-15
CVE-2017-5093: UI spoofing in Blink. Reported by Luan Herrera on 2015-10-31
CVE-2017-5094: Type confusion in extensions. Reported by Anonymous on 2017-03-19
CVE-2017-5095: Out-of-bounds write in PDFium. Reported by Anonymous on 2017-06-13
CVE-2017-5096: User information leak via Android intents. Reported by Takeshi Terada on 2017-04-23
CVE-2017-5097: Out-of-bounds read in Skia. Reported by Anonymous on 2017-07-11
CVE-2017-5098: Use after free in V8. Reported by Jihoon Kim on 2017-07-11
CVE-2017-5099: Out-of-bounds write in PPAPI. Reported by Yuan Deng, Yu Zhou of Ant-financial Light-Year Security Lab on 2017-06-15
CVE-2017-5100: Use after free in Chrome Apps. Reported by Anonymous on 2017-05-04
CVE-2017-5101: URL spoofing in OmniBox. Reported by Luan Herrera on 2017-01-17
CVE-2017-5102: Uninitialized use in Skia. Reported by Anonymous on 2017-05-30
CVE-2017-5103: Uninitialized use in Skia. Reported by Anonymous on 2017-05-25
CVE-2017-5104: UI spoofing in browser. Reported by Khalil Zhani on 2017-06-02
CVE-2017-7000: Pointer disclosure in SQLite. Reported by Chaitin Security Research Lab (@ChaitinTech) working with Trend Micro's Zero Day Initiative
CVE-2017-5105: URL spoofing in OmniBox. Reported by Rayyan Bijoora on 2017-06-06
CVE-2017-5106: URL spoofing in OmniBox. Reported by Jack Zac on 2017-04-24
CVE-2017-5107: User information leak via SVG. Reported by David Kohlbrenner of UC San Diego on 2017-01-27
CVE-2017-5108: Type confusion in PDFium. Reported by Guang Gong of Alpha Team, Qihoo 360 on 2017-02-24
CVE-2017-5109: UI spoofing in browser. Reported by Jose Maria Acuna Morgado on 2017-04-11
CVE-2017-5110: UI spoofing in payments dialog. Reported by xisigr of Tencent's Xuanwu Lab on 2017-05-02

Backport new version to p8 branch

New version (59.0.3071.86).
Security fixes:
CVE-2017-5070: Type confusion in V8. Reported by Zhao Qixun(@S0rryMybad) of Qihoo 360 Vulcan Team on 2017-05-16
CVE-2017-5071: Out of bounds read in V8. Reported by Choongwoo Han on 2017-04-26
CVE-2017-5072: Address spoofing in Omnibox. Reported by Rayyan Bijoora on 2017-04-07
CVE-2017-5073: Use after free in print preview. Reported by Khalil Zhani on 2017-04-28
CVE-2017-5074: Use after free in Apps Bluetooth. Reported by anonymous on 2017-03-09
CVE-2017-5075: Information leak in CSP reporting. Reported by Emmanuel Gil Peyrot on 2017-01-05
CVE-2017-5086: Address spoofing in Omnibox. Reported by Rayyan Bijoora on 2017-05-16
CVE-2017-5076: Address spoofing in Omnibox. Reported by Samuel Erb on 2017-05-06
CVE-2017-5077: Heap buffer overflow in Skia. Reported by Sweetchip on 2017-04-28
CVE-2017-5078: Possible command injection in mailto handling. Reported by Jose Carlos Exposito Bueno on 2017-04-12
CVE-2017-5079: UI spoofing in Blink. Reported by Khalil Zhani on 2017-04-20
CVE-2017-5080: Use after free in credit card autofill. Reported by Khalil Zhani on 2017-04-05
CVE-2017-5081: Extension verification bypass. Reported by Andrey Kovalev (@L1kvID) Yandex Security Team on 2016-12-07
CVE-2017-5082: Insufficient hardening in credit card editor. Reported by Nightwatch Cybersecurity Research on 2017-05-11
CVE-2017-5083: UI spoofing in Blink. Reported by Khalil Zhani on 2017-04-24
CVE-2017-5085: Inappropriate javascript execution on WebUI pages. Reported by Zhiyang Zeng of Tencent security platform department on 2017-02-15

Backport new version to p8 branch

New version (58.0.3029.110).

Backport new version to p8 branch

New version (57.0.2987.110).
Security fixes:
CVE-2017-5030: Memory corruption in V8. Credit to Brendon Tiszka
CVE-2017-5031: Use after free in ANGLE. Credit to Looben Yang
CVE-2017-5032: Out of bounds write in PDFium. Credit to Ashfaq Ansari - Project Srishti
CVE-2017-5029: Integer overflow in libxslt. Credit to Holger Fuhrmannek
CVE-2017-5034: Use after free in PDFium. Credit to Ke Liu of Tencent's Xuanwu LAB
CVE-2017-5035: Incorrect security UI in Omnibox. Credit to Enzo Aguado
CVE-2017-5036: Use after free in PDFium. Credit to Anonymous
CVE-2017-5037: Multiple out of bounds writes in ChunkDemuxer. Credit to Yongke Wang of Tencent's Xuanwu Lab (xlab.tencent.com)
CVE-2017-5039: Use after free in PDFium. Credit to jinmo123
CVE-2017-5040: Information disclosure in V8. Credit to Choongwoo Han
CVE-2017-5041: Address spoofing in Omnibox. Credit to Jordi Chancel
CVE-2017-5033: Bypass of Content Security Policy in Blink. Credit to Nicolai Grodum
CVE-2017-5042: Incorrect handling of cookies in Cast. Credit to Mike Ruddy
CVE-2017-5038: Use after free in GuestView. Credit to Anonymous
CVE-2017-5043: Use after free in GuestView. Credit to Anonymous
CVE-2017-5044: Heap overflow in Skia. Credit to Kushal Arvind Shah of Fortinet's FortiGuard Labs
CVE-2017-5045: Information disclosure in XSS Auditor. Credit to Dhaval Kapil (vampire)
CVE-2017-5046: Information disclosure in Blink. Credit to Masato Kinugawa

Backport new version to p8 branch