From 8d635cb4c462aa487394ee490f525a59fa7eca71 Mon Sep 17 00:00:00 2001 From: Than Ngo Date: Wed, 17 Jul 2024 10:49:21 +0200 Subject: [PATCH] - update to 126.0.6478.182 * High CVE-2024-6772: Inappropriate implementation in V8 * High CVE-2024-6773: Type Confusion in V8 * High CVE-2024-6774: Use after free in Screen Capture * High CVE-2024-6775: Use after free in Media Stream * High CVE-2024-6776: Use after free in Audio * High CVE-2024-6777: Use after free in Navigation * High CVE-2024-6778: Race in DevTools * High CVE-2024-6779: Out of bounds memory access in V8 --- chromium.spec | 15 +++++++++++++-- sources | 2 +- 2 files changed, 14 insertions(+), 3 deletions(-) diff --git a/chromium.spec b/chromium.spec index fd3c0310..931b9c04 100644 --- a/chromium.spec +++ b/chromium.spec @@ -310,8 +310,8 @@ %endif Name: chromium%{chromium_channel} -Version: 126.0.6478.126 -Release: 2%{?dist} +Version: 126.0.6478.182 +Release: 1%{?dist} Summary: A WebKit (Blink) powered web browser that Google doesn't want you to use Url: http://www.chromium.org/Home License: BSD-3-Clause AND LGPL-2.1-or-later AND Apache-2.0 AND IJG AND MIT AND GPL-2.0-or-later AND ISC AND OpenSSL AND (MPL-1.1 OR GPL-2.0-only OR LGPL-2.0-only) @@ -2149,6 +2149,17 @@ getent group chrome-remote-desktop >/dev/null || groupadd -r chrome-remote-deskt %endif %changelog +* Tue Jul 16 2024 Than Ngo - 126.0.6478.182-1 +- update to 126.0.6478.182 + * High CVE-2024-6772: Inappropriate implementation in V8 + * High CVE-2024-6773: Type Confusion in V8 + * High CVE-2024-6774: Use after free in Screen Capture + * High CVE-2024-6775: Use after free in Media Stream + * High CVE-2024-6776: Use after free in Audio + * High CVE-2024-6777: Use after free in Navigation + * High CVE-2024-6778: Race in DevTools + * High CVE-2024-6779: Out of bounds memory access in V8 + * Sun Jul 07 2024 Than Ngo - 126.0.6478.126-2 - fixed rhbz#2293202, chromium Wayland UI regression diff --git a/sources b/sources index 15e82efc..6efdb7ee 100644 --- a/sources +++ b/sources @@ -2,4 +2,4 @@ SHA512 (node-v20.6.1-linux-arm64.tar.xz) = adfcaf2c22614797fd69fb46d94c1cbf64dea SHA512 (node-v20.6.1-linux-x64.tar.xz) = 7e15c05041a9a50f0046266aadb2e092a5aefbec19be1c7c809471add520cb57c7df3c47d88b1888b29bf2979dca3c92adddfd965370fa2a9da4ea02186464fd SHA512 (linux-arm64-0.19.2.tgz) = 8a0d8fec6786fffcd6954d00820037a55d61e60762c74300df0801f8db27057562c221a063bedfb8df56af9ba80abb366336987e881782c5996e6f871abd3dc6 SHA512 (linux-x64-0.19.2.tgz) = a31cc74c4bfa54f9b75d735a1cfc944d3b5efb7c06bfba9542da9a642ae0b2d235ea00ae84d3ad0572c406405110fe7b61377af0fd15803806ef78d20fc6f05d -SHA512 (chromium-126.0.6478.126-clean.tar.xz) = 38a3df461cd883828e179d2e566a639030a600c08341a54d05062e30beab05fc2a49da8953d139c51090204551c3e2f7c204b3905c88db056c863b0ff8f444d8 +SHA512 (chromium-126.0.6478.182-clean.tar.xz) = f442fe2b8e79f9b48e29e7e122815142e6cff7d767cc21ce390e367ae8ee374c4bf6334477fe3fb2a5514d5b2d8a5d724542de7cf3adeafb6efda75e9ee157f7