From 6bcefe467a0ad3418839a573196314e74395c04f Mon Sep 17 00:00:00 2001
From: Than Ngo <than@redhat.com>
Date: Sun, 10 Nov 2024 13:53:19 +0100
Subject: [PATCH] - Update to 130.0.6723.91   * Critical CVE-2024-10487: Out of
 bounds write in Dawn   * High CVE-2024-10488: Use after free in WebRTC

---
 chromium.conf | 2 +-
 chromium.spec | 7 ++++++-
 sources       | 2 +-
 3 files changed, 8 insertions(+), 3 deletions(-)

diff --git a/chromium.conf b/chromium.conf
index 62cecce8..d89ba3cc 100644
--- a/chromium.conf
+++ b/chromium.conf
@@ -34,7 +34,7 @@ case "$GRAPHIC_DRIVER" in
       # The NVIDIA VaAPI drivers are known to not support Chromium
       # see https://crbug.com/1492880. This feature switch is
       # provided for developers to test VaAPI drivers on NVIDIA GPUs
-      CHROMIUM_FLAGS+=" --use-gl=angle --use-angle=gl"
+      CHROMIUM_FLAGS+=" --use-gl=angle --use-angle=gl --disable-gpu-compositing"
       FEATURES+="VaapiVideoDecodeLinuxGL,VaapiVideoEncoder,VaapiOnNvidiaGPUs"
       ;;
    intel)
diff --git a/chromium.spec b/chromium.spec
index 1fabc047..16e1b028 100644
--- a/chromium.spec
+++ b/chromium.spec
@@ -273,7 +273,7 @@
 %endif
 
 Name:	chromium%{chromium_channel}
-Version: 130.0.6723.91
+Version: 130.0.6723.116
 Release: 1%{?dist}
 Summary: A WebKit (Blink) powered web browser that Google doesn't want you to use
 Url: http://www.chromium.org/Home
@@ -1917,6 +1917,11 @@ getent group chrome-remote-desktop >/dev/null || groupadd -r chrome-remote-deskt
 %endif
 
 %changelog
+* Sun Nov 10 2024 Than Ngo <than@redhat.com> - 130.0.6723.116-1
+- Update to 130.0.6723.116
+  * High CVE-2024-10826: Use after free in Family Experience
+  * High CVE-2024-10827: Use after free in Serial
+
 * Wed Oct 30 2024 Than Ngo <than@redhat.com> - 130.0.6723.91-1
 - Update to 130.0.6723.91
   * Critical CVE-2024-10487: Out of bounds write in Dawn
diff --git a/sources b/sources
index b1d086ec..2bcb7120 100644
--- a/sources
+++ b/sources
@@ -2,4 +2,4 @@ SHA512 (node-v20.6.1-linux-arm64.tar.xz) = adfcaf2c22614797fd69fb46d94c1cbf64dea
 SHA512 (node-v20.6.1-linux-x64.tar.xz) = 7e15c05041a9a50f0046266aadb2e092a5aefbec19be1c7c809471add520cb57c7df3c47d88b1888b29bf2979dca3c92adddfd965370fa2a9da4ea02186464fd
 SHA512 (linux-arm64-0.19.2.tgz) = 8a0d8fec6786fffcd6954d00820037a55d61e60762c74300df0801f8db27057562c221a063bedfb8df56af9ba80abb366336987e881782c5996e6f871abd3dc6
 SHA512 (linux-x64-0.19.2.tgz) = a31cc74c4bfa54f9b75d735a1cfc944d3b5efb7c06bfba9542da9a642ae0b2d235ea00ae84d3ad0572c406405110fe7b61377af0fd15803806ef78d20fc6f05d
-SHA512 (chromium-130.0.6723.91-clean.tar.xz) = fd09b713f83a4da85b20d8fbd55732c6b6837b194dab6bbc151c9ca60d96811e2fbe24f2c235e3e644418b93b8f8153fdff2c4d46fc44af04c9815c9c76715b0
+SHA512 (chromium-130.0.6723.116-clean.tar.xz) = ea9a84da6dbf90364e52cef81016683a2a6ac06de75df26c0522090dc0ccb8725b40364cf3d8330ca5d5f6d99ded99f2bf0858ac8d581b974f007c5cc887e62a