From ba85b2fdfffd123e34e6a28cadffbc291a84c655 Mon Sep 17 00:00:00 2001 From: Than Ngo Date: Wed, 7 Aug 2024 10:21:18 +0200 Subject: [PATCH] - update to 127.0.6533.99 * Critical CVE-2024-7532: Out of bounds memory access in ANGLE * High CVE-2024-7533: Use after free in Sharing * High CVE-2024-7550: Type Confusion in V8 * High CVE-2024-7534: Heap buffer overflow in Layout * High CVE-2024-7535: Inappropriate implementation in V8 * High CVE-2024-7536: Use after free in WebAudio --- chromium.spec | 13 +++++++++++-- sources | 2 +- 2 files changed, 12 insertions(+), 3 deletions(-) diff --git a/chromium.spec b/chromium.spec index 68e74f8d..5c1c8483 100644 --- a/chromium.spec +++ b/chromium.spec @@ -296,8 +296,8 @@ %endif Name: chromium%{chromium_channel} -Version: 127.0.6533.88 -Release: 3%{?dist} +Version: 127.0.6533.99 +Release: 1%{?dist} Summary: A WebKit (Blink) powered web browser that Google doesn't want you to use Url: http://www.chromium.org/Home License: BSD-3-Clause AND LGPL-2.1-or-later AND Apache-2.0 AND IJG AND MIT AND GPL-2.0-or-later AND ISC AND OpenSSL AND (MPL-1.1 OR GPL-2.0-only OR LGPL-2.0-only) @@ -2033,6 +2033,15 @@ getent group chrome-remote-desktop >/dev/null || groupadd -r chrome-remote-deskt %endif %changelog +* Wed Aug 07 2024 Than Ngo - 127.0.6533.99-1 +- update to 127.0.6533.99 + * Critical CVE-2024-7532: Out of bounds memory access in ANGLE + * High CVE-2024-7533: Use after free in Sharing + * High CVE-2024-7550: Type Confusion in V8 + * High CVE-2024-7534: Heap buffer overflow in Layout + * High CVE-2024-7535: Inappropriate implementation in V8 + * High CVE-2024-7536: Use after free in WebAudio + * Tue Aug 06 2024 Than Ngo - 127.0.6533.88-3 - fix rhbz#2294773 - Allow enabling vulkan on ozone wayland for AMD vaapi - add ppc64le patch to fix runtime assertion trap on ppc64el systems diff --git a/sources b/sources index 7e696d91..c24224c4 100644 --- a/sources +++ b/sources @@ -4,4 +4,4 @@ SHA512 (linux-arm64-0.19.2.tgz) = 8a0d8fec6786fffcd6954d00820037a55d61e60762c743 SHA512 (linux-x64-0.19.2.tgz) = a31cc74c4bfa54f9b75d735a1cfc944d3b5efb7c06bfba9542da9a642ae0b2d235ea00ae84d3ad0572c406405110fe7b61377af0fd15803806ef78d20fc6f05d SHA512 (bindgen-cli-aarch64.tar.xz) = 1a5ae4e8fdd31d80e8111c4d5f2115336684763ecd3a442ffecdbc2a37bab146f88bdee0bb1ea7a98e1049f81b12e64bd0ce5510529b30a74ce3306488ac129b SHA512 (bindgen-cli-x86_64.tar.xz) = 7ccc9b43b32d3a064a75cfc150e060711356da8fe98e83d855bae017108ef8e9e172fbdd6e2579433c19cfb56ababa5b77a8db6fa57a5e657a3878778ca10a37 -SHA512 (chromium-127.0.6533.88-clean.tar.xz) = 212160a15e14348d416d2c3df0dd24f7b05da3c0f6fff3bccac1314f697be753bf831ea06039adec7d02f4e34d3a84787d12233bf927fa76727397ac0fde300f +SHA512 (chromium-127.0.6533.99-clean.tar.xz) = 353658ea97df8f1428e6b8b7b4eb2a18d9f2b21196af0e5bfe37928859ba494a43c2e1a93fdc3fd35a884d92cf75864b6acfa0d7c90c62c6d5fe25c1daeffa10