- update to 130.0.6723.91

* Critical CVE-2024-10487: Out of bounds write in Dawn
  * High CVE-2024-10488: Use after free in WebRTC

.chromium.metadata

@@ -1,4 +1,4 @@
-7b7d772454e7341c5f8e74587b25ce27025f84a8  SOURCES/chromium-130.0.6723.69.tar.xz
+7e8cb77c981b633d158326c6b170ca6e6b93075b  SOURCES/chromium-130.0.6723.91.tar.xz
 ccd15016324e640c40f6fc01ab076dc52196ea54  SOURCES/msspi-e91bd46306cc7044b2903cd07b788c13c36481e3.tar.xz
 6445256b9e87e59aeec1f486174a27a15f6caa2c  SOURCES/Chromium-Gost-7706f212673c41cdc1df94f95710358598c119f3.tar.xz
 dea187019741602d57aaf189a80abba261fbd2aa  SOURCES/linux-x64-0.19.2.tgz

.gitignore

@@ -1,4 +1,4 @@
-SOURCES/chromium-130.0.6723.69.tar.xz
+SOURCES/chromium-130.0.6723.91.tar.xz
 SOURCES/linux-x64-0.19.2.tgz
 SOURCES/linux-arm64-0.19.2.tgz
 SOURCES/node-v20.6.1-linux-x64.tar.xz

SPECS/chromium.spec

@@ -313,7 +313,7 @@
 %endif
 
 Name:	chromium%{chromium_channel}
-Version: 130.0.6723.69
+Version: 130.0.6723.91
 Release: 1%{?dist}.inferit
 Summary: A WebKit (Blink) powered web browser that Google doesn't want you to use
 Url: http://www.chromium.org/Home
@@ -2107,6 +2107,11 @@ getent group chrome-remote-desktop >/dev/null || groupadd -r chrome-remote-deskt
 %endif
 
 %changelog
+* Thu Oct 31 2024 Arkady L. Shane <tigro@msvsphere-os.ru> - 130.0.6723.91-1.inferit
+- update to 130.0.6723.91
+  * Critical CVE-2024-10487: Out of bounds write in Dawn
+  * High CVE-2024-10488: Use after free in WebRTC
+
 * Wed Oct 23 2024 Arkady L. Shane <tigro@msvsphere-os.ru> - 130.0.6723.69-1.inferit
 - update to 130.0.6723.69
   * High CVE-2024-10229: Inappropriate implementation in Extensions