Release Notes for v14.2.0

Features

• Began passing securityOrigin in details for permission request handlers for media requests in addition to permission check handlers. #31436 (Also in 13, 15, 16)

Fixes

• Fixed a JavaScript exception from webContents if render frame was disposed in WebFrameMain, resets the value of render_frame_disposed_ after updating render frame host. #31425 (Also in 15, 16)
• Fixed a potential crash when setting nativeTheme.themeSource on macOS. #31428 (Also in 15, 16)
• Fixed an potential crash in WebContents::MessageTo when a render frame has been destroyed. #31333 (Also in 13, 15, 16)
• Fixed crash when changing zoom level for webview. #31374 (Also in 15, 16)
• Fixed possible 'Object has been destroyed' error when calling window.open with a frame name and using setWindowOpenHandler. #31467 (Also in 15, 16)
• Generate valid config.gypi file in Node.js headers. #31443 (Also in 15, 16)
• Removes several Chromium private enterprise APIs from Mac Apple Store builds. #31487 (Also in 15, 16)

Other Changes

• Changed Web Serial to use ses.setDevicePermissionHandler to allow developers more control over Web Serial permissioning. #31440 (Also in 15, 16)
• Security: backported fix for CVE-2021-37976. #31230
• Security: backported fix for CVE-2021-37978. #31362
• Security: backported fix for CVE-2021-37979. #31358
• Security: backported fix for CVE-2021-37980. #31364