Bump CefSharp.Wpf from 81.3.100 to 86.0.241 in /ChromiumWebBrowser/ChromiumWebBrowser

[dependabot[bot]]

Bumps CefSharp.Wpf from 81.3.100 to 86.0.241.

Release notes

Sourced from CefSharp.Wpf's releases.

v86.0.241

November 27, 2020, CEF 86.0.24+g85e79d4+chromium-86.0.4240.198 / Chromium 86.0.4240.198

• CEF now supports the Chromium Network Service: If you are upgrading from a version prior to 75.1.x please make sure you read cefsharp/CefSharp#2743.
• Visual C++ 2015 or greater is required, see Notes below for more information

⚠️ Critical Security Update

While every effort has been made to ensure the accuracy and completeness of the information, no guarantee is given nor responsibility taken for errors or omissions in the list of security exploits listed here. For the definitive source of information please refer to the Chrome Releases Blog for official announcements from Google. Only security exploits that are currently listed as in the wild at time this release was published are listed here. Review the official release announcements from Google Chrome for a full list of security exploits.

See https://chromereleases.googleblog.com/2020/11/stable-channel-update-for-desktop_11.html and https://chromereleases.googleblog.com/2020/11/stable-channel-update-for-desktop.html

There are no details available to the public yet

• CVE-2020-16013
• CVE-2020-16017
• CVE-2020-16009

Google is aware of reports that exploits for CVE-2020-16013, CVE-2020-16017 and CVE-2020-16009 exist in the wild. At time of writing these are the exploits Google is aware of reports

See the following for full list of security fixes

• https://chromereleases.googleblog.com/2020/10/stable-channel-update-for-desktop.html
• https://chromereleases.googleblog.com/2020/10/stable-channel-update-for-desktop_20.html
• https://chromereleases.googleblog.com/2020/11/stable-channel-update-for-desktop_9.html
• https://chromereleases.googleblog.com/2020/11/stable-channel-update-for-desktop_11.html

Change Log

• Includes updated Chromium version which includes security fixes for CVE-2020-16013 and CVE-2020-16017

For a complete list of changes see the 86.0.x Milestone.

ℹ️ Notes

• CefSharp requires a minimum of Visual C++ 2015. See cefsharp/CefSharp#1983 for details. You can bin deploy the VC++ dependencies, read the FAQ for more details. VC++ 2017/2019 are backwards compatible. For a list of files included in the packages see https://github.com/cefsharp/CefSharp/wiki/Output-files-description-table-%28Redistribution%29
• Chromium has removed support for Windows XP, Windows Vista, Windows Server 2003 and Windows Server 2008. See https://chrome.googleblog.com/2015/11/updates-to-chrome-platform-support.html
• Starting in June 2019 Google will block logins from CEF based browsers to Google Services, this includes Gmail, Drive, Docs, see https://security.googleblog.com/2019/04/better-protection-against-man-in-middle.html?m=1 for further discussion see https://groups.google.com/a/chromium.org/d/msg/embedder-dev/STyM5ZNTHMM/POj1v_cqBgAJ
• Due to licensing issues default builds do not support proprietary codecs like H264/AAC, sites like Netflix/Twitter/Instagram/Facebook won't play video/audio. See #1479 for more info. MP3 audio is supported, MP4 video is not.
• Anyone new to CefSharp should read the General Usage Guide
• This project uses GitLink for better debugging, you can step directly into much of the project source directly from Visual Studio see #1680 for details on how to enable GitLink

⚠️ Known Issues

• WPF the browser stops redrawing when running on Intel Iris Xe Integrated GPU(11th Gen). The issue has been reported to the WPF team see dotnet/wpf#3817
• WinForms when running on Windows 10 Anniversary pressing certain key combinations freezes the browser see #1822 The issue has been reported upstream, there are workarounds listed in #1822
• Save as PDF is not working when viewing PDF with Print Preview enabled see https://bitbucket.org/chromiumembedded/cef/issues/2867/save-as-pdf-is-not-working-in-pdf-viewer
• WPF touch scroll aborted if browser navigates within document https://bitbucket.org/chromiumembedded/cef/issues/2936/osr-touch-scrolling-initiated-by-touch
• Fonts incorrectly loaded on Win7 see https://bitbucket.org/chromiumembedded/cef/issues/2858/fonts-not-loading-look-wrong-on-windows-7
• window.focus() does not bring popup window to front see https://bitbucket.org/chromiumembedded/cef/issues/2931/windowfocus-does-not-bring-the-window-to
• OnProtocolExecution Page goes blank after link click see https://bitbucket.org/chromiumembedded/cef/issues/2715/onprotocolexecution-page-goes-blank-after
• Crash on Win10 when computer wakes from sleep see https://bitbucket.org/chromiumembedded/cef/issues/2924/crash-on-libcef-when-windows-10-wakes-from

... (truncated)

Commits

• 9ff6b35 Net Core - Regenerate CefSharp.Core.RefAssembly
• 4ffa8bf Update cefclient example application links
• c63b120 Core - Add BrowserSubprocess.SelfHost.Main
• 6991d0e Core - Add IResponse.SetHeaderByName/GetHeaderByName
• 80753eb Core - MethodRunnerQueue use TaskCreationOptions.HideScheduler to
• 40fc9f8 Upgrade build version to 86.0.240
• 01cfa69 Upgrade to CEF 86.0.24+g85e79d4+chromium-86.0.4240.198 / Chromium 86.0.4240.198
• 3c023fe Upgrade to CEF 86.0.23+ga2c2edf+chromium-86.0.4240.193 / Chromium 86.0.4240.193
• 23d30a9 DevTools Client - Update csproj file
• 9a06282 DevTools Client - Update to M86
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/luoyunchong/dotnetcore-examples/network/alerts).

[dependabot[bot]]

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.