BSD-3-Clause AND LGPL-2.1-or-later AND Apache-2.0 AND IJG AND MIT AND GPL-2.0-or-later AND ISC AND OpenSSL AND (MPL-1.1 OR GPL-2.0-only OR LGPL-2.0-only)
Build Time
2025-08-18 11:39:55
Build Host
certified-builder01.msvsphere-os.ru
Summary
The web browser from Chromium project
Repositories
Updates
Description
Chromium is an open-source browser project that aims to build a safer, faster, and more stable way to experience the web.We invite you to join our effort to build a powerful platform for developing a new generation of web applications.Chromium supports Vorbis, Theora, WebM and HTML5 audio and video standards, but does not include the non-free AAC, H.264, MP3 or Adobe Flash code that is found in Chrome.
* Thu Aug 14 2025 Arkady L. Shane <tigro@msvsphere-os.ru> - 139.0.7258.127-1.inferit
- Updated to 139.0.7258.127
* CVE-2025-8879: Heap buffer overflow in libaom
* CVE-2025-8880: Race in V8
* CVE-2025-8901: Out of bounds write in ANGLE
* CVE-2025-8881: Inappropriate implementation in File Picker
* CVE-2025-8882: Use after free in Aura
* Wed Aug 06 2025 Arkady L. Shane <tigro@msvsphere-os.ru> - 139.0.7258.66-1.inferit
- Updated to 139.0.7258.66
* CVE-2025-8576: Use after free in Extensions
* CVE-2025-8578: Use after free in Cast
* CVE-2025-8579: Inappropriate implementation in Gemini Live in Chrome
* CVE-2025-8580: Inappropriate implementation in Filesystems
* CVE-2025-8581: Inappropriate implementation in Extensions
* CVE-2025-8582: Insufficient validation of untrusted input in DOM
* CVE-2025-8583: Inappropriate implementation in Permissions
* Fri Aug 01 2025 Arkady L. Shane <tigro@msvsphere-os.ru> - 138.0.7204.183-1.inferit
- Update to 138.0.7204.183
* CVE-2025-8292: Use after free in Media Stream
- Update chromium.conf - rename vaapi flags
* Thu Jul 24 2025 Arkady L. Shane <tigro@msvsphere-os.ru> - 138.0.7204.168-1.inferit
- Update to 138.0.7204.168
* CVE-2025-8010: Type Confusion in V8
* CVE-2025-8011: Type Confusion in V8
* Thu Jul 17 2025 Arkady L. Shane <tigro@msvsphere-os.ru> - 138.0.7204.157-1.inferit
- Update to 138.0.7204.157
* CVE-2025-7656: Integer overflow in V8
* CVE-2025-7657: Use after free in WebRTC
* CVE-2025-6558: Incorrect validation of untrusted input in ANGLE and GPU
* Thu Jul 10 2025 Arkady L. Shane <tigro@msvsphere-os.ru> - 138.0.7204.100-1.inferit
- Update to 138.0.7204.100
* Fri Jul 04 2025 Arkady L. Shane <tigro@msvsphere-os.ru> - 138.0.7204.92-1.inferit
- Update to 138.0.7204.92
* High CVE-2025-6554: Type Confusion in V8
* Fri Jun 27 2025 Arkady L. Shane <tigro@msvsphere-os.ru> - 138.0.7204.49-1.inferit
- Update to 138.0.7204.49
* CVE-2025-6555: Use after free in Animation
* CVE-2025-6556: Insufficient policy enforcement in Loader
* CVE-2025-6557: Insufficient data validation in DevTools
* Fri Jun 20 2025 Arkady L. Shane <tigro@msvsphere-os.ru> - 137.0.7151.119-1.inferit
- Update to 137.0.7151.119
* CVE-2025-6191: Integer overflow in V8
* CVE-2025-6192: Use after free in Profiler
* Fri Jun 13 2025 Arkady L. Shane <tigro@msvsphere-os.ru> - 137.0.7151.103-1.inferit
- Update to 137.0.7151.103
* CVE-2025-5958: Use after free in Media
* CVE-2025-5959: Type Confusion in V8
- Provide correct version for bundle librarires
- Fix rhbz#2368923, Chromium crash
