- update to 128.0.6613.137

* High CVE-2024-8636: Heap buffer overflow in Skia
  * High CVE-2024-8637: Use after free in Media Router
  * High CVE-2024-8638: Type Confusion in V8
  * High CVE-2024-8639: Use after free in Autofill

chromium.spec

@@ -296,7 +296,7 @@
 %endif
 
 Name:	chromium%{chromium_channel}
-Version: 128.0.6613.119
+Version: 128.0.6613.137
 Release: 1%{?dist}
 Summary: A WebKit (Blink) powered web browser that Google doesn't want you to use
 Url: http://www.chromium.org/Home
@@ -1965,6 +1965,13 @@ getent group chrome-remote-desktop >/dev/null || groupadd -r chrome-remote-deskt
 %endif
 
 %changelog
+* Wed Sep 11 2024 Than Ngo <than@redhat.com> - 128.0.6613.137-1
+- update to 128.0.6613.137
+  * High CVE-2024-8636: Heap buffer overflow in Skia
+  * High CVE-2024-8637: Use after free in Media Router
+  * High CVE-2024-8638: Type Confusion in V8
+  * High CVE-2024-8639: Use after free in Autofill
+
 * Thu Sep 05 2024 Than Ngo <than@redhat.com> - 128.0.6613.119-1
 - update to 128.0.6613.119
   * High CVE-2024-8362: Use after free in WebAudio

sources

@@ -2,4 +2,4 @@ SHA512 (node-v20.6.1-linux-arm64.tar.xz) = adfcaf2c22614797fd69fb46d94c1cbf64dea
 SHA512 (node-v20.6.1-linux-x64.tar.xz) = 7e15c05041a9a50f0046266aadb2e092a5aefbec19be1c7c809471add520cb57c7df3c47d88b1888b29bf2979dca3c92adddfd965370fa2a9da4ea02186464fd
 SHA512 (linux-arm64-0.19.2.tgz) = 8a0d8fec6786fffcd6954d00820037a55d61e60762c74300df0801f8db27057562c221a063bedfb8df56af9ba80abb366336987e881782c5996e6f871abd3dc6
 SHA512 (linux-x64-0.19.2.tgz) = a31cc74c4bfa54f9b75d735a1cfc944d3b5efb7c06bfba9542da9a642ae0b2d235ea00ae84d3ad0572c406405110fe7b61377af0fd15803806ef78d20fc6f05d
-SHA512 (chromium-128.0.6613.119-clean.tar.xz) = d7aeba7d9aa34ce85dae9bea52da40d4534c11343332a4bfde4af6bc58c07911bb6f9147bc8931f9e3dac6efce2b8b56a91d624367bf0cfb572af0b09d141db9
+SHA512 (chromium-128.0.6613.137-clean.tar.xz) = 9a625dd4dc214fbfa0d003381c87e9ce1ff6ffd6c9b9390256523930d7a54c2a65da485584fcc887f830217de964ea2e7cfd898ac48b3b6d7be49b0e3711a9d3