Sourced from CefSharp.WinForms's releases.

v85.3.130

October 25, 2020, CEF 85.3.13+gcd6cbe0+chromium-85.0.4183.121 / Chromium 85.0.4183.121

• CEF now supports the Chromium Network Service: If you are upgrading from a version prior to 75.1.x please make sure you read cefsharp/CefSharp#2743.
• Visual C++ 2015 or greater is required, see Notes below for more information

⚠️ Critical Security Update

See Heap overflow in the freetype library (CVE-2020-15999) for details.

Change Log

• Includes updated Chromium Embedded Framework(CEF) version for CVE-2020-15999 Heap overflow in the freetype library.

For a complete list of changes see the 85.3.x Milestone.

i️ Notes

• CefSharp requires a minimum of Visual C++ 2015. See cefsharp/CefSharp#1983 for details. You can bin deploy the VC++ dependencies, read the FAQ for more details. VC++ 2017/2019 are backwards compatible. For a list of files included in the packages see https://github.com/cefsharp/CefSharp/wiki/Output-files-description-table-%28Redistribution%29
• Chromium has removed support for Windows XP, Windows Vista, Windows Server 2003 and Windows Server 2008. See https://chrome.googleblog.com/2015/11/updates-to-chrome-platform-support.html
• Starting in June 2019 Google will block logins from CEF based browsers to Google Services, this includes Gmail, Drive, Docs, see https://security.googleblog.com/2019/04/better-protection-against-man-in-middle.html?m=1 for further discussion see https://groups.google.com/a/chromium.org/d/msg/embedder-dev/STyM5ZNTHMM/POj1v_cqBgAJ
• Due to licensing issues default builds do not support proprietary codecs like H264/AAC, sites like Netflix/Twitter/Instagram/Facebook won't play video/audio. See #1479 for more info. MP3 audio is supported, MP4 video is not.
• Anyone new to CefSharp should read the General Usage Guide
• This project uses GitLink for better debugging, you can step directly into much of the project source directly from Visual Studio see #1680 for details on how to enable GitLink
• WPF now has touch support which is enabled by default. Support for Stylus is not enabled by default, see cefsharp/CefSharp#228 for further details

⚠️ Known Issues

• WPF there is some visible tearing/glitches on resize, GPU Compositing has been disabled by default as a workaround #3114
• WinForms when running on Windows 10 Anniversary pressing certain key combinations freezes the browser see #1822 The issue has been reported upstream, there are workarounds listed in #1822
• Save as PDF is not working when viewing PDF with Print Preview enabled see https://bitbucket.org/chromiumembedded/cef/issues/2867/save-as-pdf-is-not-working-in-pdf-viewer
• WPF touch scroll aborted if browser navigates within document https://bitbucket.org/chromiumembedded/cef/issues/2936/osr-touch-scrolling-initiated-by-touch
• Fonts incorrectly loaded on Win7 see https://bitbucket.org/chromiumembedded/cef/issues/2858/fonts-not-loading-look-wrong-on-windows-7
• window.focus() does not bring popup window to front see https://bitbucket.org/chromiumembedded/cef/issues/2931/windowfocus-does-not-bring-the-window-to
• OnProtocolExecution Page goes blank after link click see https://bitbucket.org/chromiumembedded/cef/issues/2715/onprotocolexecution-page-goes-blank-after
• Crash on Win10 when computer wakes from sleep see https://bitbucket.org/chromiumembedded/cef/issues/2924/crash-on-libcef-when-windows-10-wakes-from
• Background colour cannot be override for popups see https://bitbucket.org/chromiumembedded/cef/issues/2482/background_color-cannot-be-overridden-for
• WPF Browser goes blank if used in combination with TabControl see #2779
• CefSettings.IgnoreCertificateErrors no longer works, use the ignore-certificate-errors command line arg as a workaround or alternatively use OnCertificateError to selectively allow a certificate and/or display a dialog to your users see https://stackoverflow.com/a/35564187/852806 for an example.
• See https://bitbucket.org/chromiumembedded/cef/issues?status=new&status=open for other known issues
• See https://github.com/cefsharp/CefSharp/issues?q=is%3Aissue+is%3Aopen+label%3Aknown-issue for other known issues

⚠️ Breaking Changes ⚠️

• CefSettings.RegisterExtension method has been removed see cefsharp/CefSharp#3184

• DefaultRequestHandler class has been removed, use RequestHandler instead, see cefsharp/CefSharp#3124

• Javascript Binding Naming is now configurable, BindingOptions.CamelCaseJavascriptNames has been removed see cefsharp/CefSharp#3141 for an updated usage example.

• For Network Service API changes see cefsharp/CefSharp#2743

• All paths (CachePath, BrowserSubProcessPath, etc) must be absolute paths, if using a non-absolute path an exception will be throw. See #3102 for details.

• When using a RequestContext you must ensure that RequestContextSettings.CachePath is equal to or a child of CefSettings.RootCachePath See cefsharp/CefSharp#3111 for details

• Adobe Flash is disabled by default, it can be re-enabled if required #3048 (Flash support is scheduled to be removed from Chromium)

... (truncated)

• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.