import chromium-130.0.6723.91-1.el9

.chromium.metadata

@@ -1,3 +1,3 @@
-fbd9134a02078b67332cf8788d59e20d8c63b21a  SOURCES/chromium-130.0.6723.69-clean.tar.xz
+70546b31d97bfc860ac0cce544dbfd79b831ed8f  SOURCES/chromium-130.0.6723.91-clean.tar.xz
 7e5d2c7864c5c83ec789b59c77cd9c20d2594916  SOURCES/linux-arm64-0.19.2.tgz
 dea187019741602d57aaf189a80abba261fbd2aa  SOURCES/linux-x64-0.19.2.tgz

.gitignore

@@ -1,3 +1,3 @@
-SOURCES/chromium-130.0.6723.69-clean.tar.xz
+SOURCES/chromium-130.0.6723.91-clean.tar.xz
 SOURCES/linux-arm64-0.19.2.tgz
 SOURCES/linux-x64-0.19.2.tgz

SPECS/chromium.spec

@@ -273,7 +273,7 @@
 %endif
 
 Name:	chromium%{chromium_channel}
-Version: 130.0.6723.69
+Version: 130.0.6723.91
 Release: 1%{?dist}
 Summary: A WebKit (Blink) powered web browser that Google doesn't want you to use
 Url: http://www.chromium.org/Home
@@ -1917,8 +1917,13 @@ getent group chrome-remote-desktop >/dev/null || groupadd -r chrome-remote-deskt
 %endif
 
 %changelog
+* Wed Oct 30 2024 Than Ngo <than@redhat.com> - 130.0.6723.91-1
+- Update to 130.0.6723.91
+  * Critical CVE-2024-10487: Out of bounds write in Dawn
+  * High CVE-2024-10488: Use after free in WebRTC
+
 * Sat Oct 26 2024 Than Ngo <than@redhat.com> - 130.0.6723.69-1
-- update to 130.0.6723.69
+- Update to 130.0.6723.69
   * High CVE-2024-10229: Inappropriate implementation in Extensions
   * High CVE-2024-10230: Type Confusion in V8
   * High CVE-2024-10231: Type Confusion in V8