Electron 9.2.1 2020-08-18T21:22:02Z ()

Release Notes for v9.2.1

Fixes

• fix loading shared worker scripts over custom protocol
• fix crash when loading worker scripts with nodeIntegration enabled. #24750
• Fixed a crash that could occur when using in-memory sessions. #25002
• Fixed an issue where some Node.js methods would not work with URL instances constructed in the renderer process. #24862
• Fixed an issue where the Save button did not function in PDF previews. #24996
• Fixed inactive windows having active titlebar on Windows. #24873
• Fixed missing guid parameter in Linux crash reports. #24898
• Increased maximum length for crash keys from 127B to 20KB. #24854
• [a11y] fix an issue where voiceover doesn't read the first item selected from a ARIA combobox. #25004

Other Changes

• Backported the fix to CVE-2020-6532: Use after free in SCTP. #24887
• Backported the fix to CVE-2020-6537: Type Confusion in V8. #24885
• Resolve network issues that prevented RTC calls from being connected due to network IP address changes and ICE. (Chromium issue 1113227). #24997

Unknown

• Fixed issues with CORS when making requests from extensions. #24915

Electron 9.2.0 2020-08-07T18:17:14Z ()

Release Notes for v9.2.0

Features

• Added new worldSafeExecuteJavaScript webPreference to ensure that the return values from webFrame.executeJavaScript are world safe when context isolation is enabled. #24712 (Also in 10)

  Fixes

• Fixed a crash that could happen when using hookWindowMessage on Windows. #24769 (Also in 10)

• Fixed an issue where suspend/resume were emitted twice on macOS. #24845 (Also in 8, 10)

• Fixed crash when navigating from a page with webview that has inherited zoom level. #24764 (Also in 8, 10)

• Save crash reports locally when uploadToServer: false on linux. #24788 (Also in 10)

• Fixed an a11y regression where children reported an index in parent greater than the parent child count. #24765

Electron 9.1.2 2020-07-28T23:29:49Z ()

Release Notes for v9.1.2

Fixes

• Fix: remove unnecessary corner mask overriding to increase window resize performance. #24702
• Fixed an issue where VoiceOver was unable to navigate from the top-level window back into the web contents. #24699
• Protocol response streams are now destroyed if the request is aborted. #24657

Other Changes

• Improved the performance of sending JS primitives over the context bridge. #24746

Electron 9.1.1 2020-07-20T22:44:53Z ()

Release Notes for v9.1.1

Fixes

• Fixed a termination crash on Web Workers with Node.js integration enabled. #24464
• Fixed an issue where webContents.print() would sometimes hang with invalid settings. #24508
• Fixed an issue where cpu and heap profiling in Node.js did not work properly with --cpu-prof, --heap-prof, and related CLI flags. #24541
• Fixed an issue where macOS window vibrancy active state did not always match the active state of the window. #24533
• Fixed broken --trace-sync-io flag in Node.js. #24648
• Fixed clipboard.readBuffer returning incorrect value. #24469
• Fixed potentially invalid duplex mode settings on Linux. #24547

Other Changes

• Fix: DCHECK failure in value.IsHeapObject() in objectsdebug.cc. (Chromium security issue 1084820). #24566
• Fix: XSS on chrome://histograms/ with a compromised renderer. (Chromium security issue 1073409). #24625
• Fix: crash when executing debugger.sendCommand. (Chromium security issue 1016278). #24620
• Fix: heap-use-after-free in content::NavigationRequest::OnWillProcessResponseProcessed. (Chromium security issue 1090543). #24569
• Fix: heap-use-after-free in ui::AXTreeSerializerblink (Chromium security issue 1065122). #24557
• Fix: iframe in victim page can detect Scroll To Text Fragment activation. (Chromium security issue 1042986). #24624
• Fix: integer overflow in GrTextBlob::Make. (Chromium security issue 1080481). #24586
• Fix: javascript URI sandbox flags aren't propagated in a blank string case. (Chromium security issue 1074340). #24621
• Fix: memcpy-param-overlap in AudioBuffer::copyFromChannel. (Chromium security issue 1081722). #24582
• Fix: remove leaks of post-redirect URL for <script> in the CSP reports and stacktraces of errors (Chromium security issue 1074317). #24560
• Fix: update webrtc root certificate. (Chromium security issue 978779). #24617
• Fix: upgrade SQLite to 3.32.1. (Chromium security issue 1087629). #24554
• Fix: use-after-free in devtools console. (Chromium security issue 986051). #24614
• Fix: use-of-uninitialized-value in amr_read_header. (Chromium security issue 1065731). #24594
• Fix: usrsctp is called with pointer as network address. (Chromium security issue 1076703). #24563

Documentation

• Documentation changes: #24516

Electron 9.1.0 2020-07-06T22:37:54Z ()

Release Notes for v9.1.0

Features

• Added support for MessagePort in the main process. #24323
• Added support for suspend and resume events to Windows. #24283
• Added support for suspend and resume events to macOS. #24294
• Expose sessionId associated with a target from debugger module. #24398
• Implemented systemPreferences.getMediaAccessStatus() on Windows. #24312

Fixes

• Fixed an intermittent high-CPU usage problem caused a system clock issue during sleep. #24415
• Fixed an issue where some old notifications were not properly removed from the Notification Center on macOS. #24406
• Fixed bug on macOS where the main window could be targeted for a focus event when it was disabled behind a modal. #24354