- update to 126.0.6478.114

* High CVE-2024-6100: Type Confusion in V8 * High CVE-2024-6101: Inappropriate implementation in WebAssembly * High CVE-2024-6102: Out of bounds memory access in Dawn * High CVE-2024-6103: Use after free in Dawn
5 months ago · 74ee830c4f
parent 825d2859e6
commit 74ee830c4f
4 changed files with 11 additions and 4 deletions
--- a/.chromium.metadata
+++ b/.chromium.metadata
@ -1,4 +1,4 @@
-63c2b3584cf18d6c8cc17429a17b9179e884a445  SOURCES/chromium-126.0.6478.61.tar.xz
+9ffcfb6e518203893b5ba51d08e5f8c2479aa443  SOURCES/chromium-126.0.6478.114.tar.xz
 dea187019741602d57aaf189a80abba261fbd2aa  SOURCES/linux-x64-0.19.2.tgz
 7e5d2c7864c5c83ec789b59c77cd9c20d2594916  SOURCES/linux-arm64-0.19.2.tgz
 769196d081c6a0ad37f1c63dec56febfff3370de  SOURCES/node-v20.6.1-linux-x64.tar.xz
--- a/.gitignore
+++ b/.gitignore
@ -1,4 +1,4 @@
-SOURCES/chromium-126.0.6478.61.tar.xz
+SOURCES/chromium-126.0.6478.114.tar.xz
 SOURCES/linux-x64-0.19.2.tgz
 SOURCES/linux-arm64-0.19.2.tgz
 SOURCES/node-v20.6.1-linux-x64.tar.xz
--- a/SOURCES/chromium.conf
+++ b/SOURCES/chromium.conf
@ -17,7 +17,7 @@ FEATURES=""

 case "$GRAPHIC_DRIVER" in
   amd)
-      # Need new mesa with AMD multi planes support, is not yet supported in fedora
+      # Need new mesa with AMD multi planes support, is supported in fedora >= 40 (mesa-24.1.1 or newer)
      # see https://gitlab.freedesktop.org/mesa/mesa/-/merge_requests/26165
      CHROMIUM_FLAGS+=" --use-gl=angle --use-angle=vulkan --enable-accelerated-video-decode"
      FEATURES+="Vulkan,VulkanFromANGLE,DefaultANGLEVulkan,VaapiIgnoreDriverChecks,VaapiVideoDecoder,UseMultiPlaneFormatForHardwareVideo"
--- a/SPECS/chromium.spec
+++ b/SPECS/chromium.spec
@ -350,7 +350,7 @@
 %endif

 Name:	chromium%{chromium_channel}
-Version: 126.0.6478.61
+Version: 126.0.6478.114
 Release: 1%{?dist}.inferit
 Summary: A WebKit (Blink) powered web browser that Google doesn't want you to use
 Url: http://www.chromium.org/Home
@ -2291,6 +2291,13 @@ getent group chrome-remote-desktop >/dev/null || groupadd -r chrome-remote-deskt
 %endif

 %changelog
+* Wed Jun 19 2024 Arkady L. Shane <tigro@msvsphere-os.ru> - 126.0.6478.114-1.inferit
+- update to 126.0.6478.114
+  * High CVE-2024-6100: Type Confusion in V8
+  * High CVE-2024-6101: Inappropriate implementation in WebAssembly
+  * High CVE-2024-6102: Out of bounds memory access in Dawn
+  * High CVE-2024-6103: Use after free in Dawn
+
 * Mon Jun 17 2024 Arkady L. Shane <tigro@msvsphere-os.ru> - 126.0.6478.61-1.inferit
 - update to 126.0.6478.61