From 3a02fde8cc2eac470ae6f2b05ff92eabb7a8bf6a Mon Sep 17 00:00:00 2001 From: MSVSphere Packaging Team Date: Sun, 3 Nov 2024 01:51:08 +0300 Subject: [PATCH] import chromium-130.0.6723.91-1.el8 --- .chromium.metadata | 2 +- .gitignore | 2 +- SPECS/chromium.spec | 9 +++++++-- 3 files changed, 9 insertions(+), 4 deletions(-) diff --git a/.chromium.metadata b/.chromium.metadata index 0594eeea..49d744ba 100644 --- a/.chromium.metadata +++ b/.chromium.metadata @@ -1,4 +1,4 @@ -fbd9134a02078b67332cf8788d59e20d8c63b21a SOURCES/chromium-130.0.6723.69-clean.tar.xz +70546b31d97bfc860ac0cce544dbfd79b831ed8f SOURCES/chromium-130.0.6723.91-clean.tar.xz 7e5d2c7864c5c83ec789b59c77cd9c20d2594916 SOURCES/linux-arm64-0.19.2.tgz dea187019741602d57aaf189a80abba261fbd2aa SOURCES/linux-x64-0.19.2.tgz 3e94bb4f999c636293bc745b02d98e7925da5616 SOURCES/node-v20.6.1-linux-arm64.tar.xz diff --git a/.gitignore b/.gitignore index 737d2636..51f55ca3 100644 --- a/.gitignore +++ b/.gitignore @@ -1,4 +1,4 @@ -SOURCES/chromium-130.0.6723.69-clean.tar.xz +SOURCES/chromium-130.0.6723.91-clean.tar.xz SOURCES/linux-arm64-0.19.2.tgz SOURCES/linux-x64-0.19.2.tgz SOURCES/node-v20.6.1-linux-arm64.tar.xz diff --git a/SPECS/chromium.spec b/SPECS/chromium.spec index ed4ec6dc..dd48cc74 100644 --- a/SPECS/chromium.spec +++ b/SPECS/chromium.spec @@ -273,7 +273,7 @@ %endif Name: chromium%{chromium_channel} -Version: 130.0.6723.69 +Version: 130.0.6723.91 Release: 1%{?dist} Summary: A WebKit (Blink) powered web browser that Google doesn't want you to use Url: http://www.chromium.org/Home @@ -1917,8 +1917,13 @@ getent group chrome-remote-desktop >/dev/null || groupadd -r chrome-remote-deskt %endif %changelog +* Wed Oct 30 2024 Than Ngo - 130.0.6723.91-1 +- Update to 130.0.6723.91 + * Critical CVE-2024-10487: Out of bounds write in Dawn + * High CVE-2024-10488: Use after free in WebRTC + * Sat Oct 26 2024 Than Ngo - 130.0.6723.69-1 -- update to 130.0.6723.69 +- Update to 130.0.6723.69 * High CVE-2024-10229: Inappropriate implementation in Extensions * High CVE-2024-10230: Type Confusion in V8 * High CVE-2024-10231: Type Confusion in V8