Project chromium-gost-137.0.7151.68-1.el9.inferit content_copy

Name	chromium-gost
Epoch	0
Version	137.0.7151.68
Release	1.el9.inferit
Website/URL	http://www.chromium.org/Home
License	BSD-3-Clause AND LGPL-2.1-or-later AND Apache-2.0 AND IJG AND MIT AND GPL-2.0-or-later AND ISC AND OpenSSL AND (MPL-1.1 OR GPL-2.0-only OR LGPL-2.0-only)
Build Time	2025-06-05 02:14:28
Build Host	builder-iso-x86-01.inferitos.ru
Summary	The web browser from Chromium Gost project
Repositories	Extras
Description	Chromium Gost is an open-source browser based on Chromium code and supports Russian Gost encryption algorithms.
Errata	—

‹

›

×

* Wed Jun 04 2025 Arkady L. Shane <tigro@msvsphere-os.ru> - 137.0.7151.68-1.inferit
- Update to 137.0.7151.68
  * CVE-2025-5419: Out of bounds read and write in V8
  * CVE-2025-5068: Use after free in Blink

* Thu May 29 2025 Arkady L. Shane <tigro@msvsphere-os.ru> - 137.0.7151.55-1.inferit
- Update to 137.0.7151.55
 * CVE-2025-5063: Use after free in Compositing
 * CVE-2025-5280: Out of bounds write in V8
 * CVE-2025-5064: Inappropriate implementation in Background Fetch API
 * CVE-2025-5065: Inappropriate implementation in FileSystemAccess API
 * CVE-2025-5066: Inappropriate implementation in Messages
 * CVE-2025-5281: Inappropriate implementation in BFCache
 * CVE-2025-5283: Use after free in libvpx
 * CVE-2025-5067: Inappropriate implementation in Tab Strip
- Fix FTBFS caused by simdutf and pdfium-png_decoder
- Remove chromium-135-gperf.patch and chromium-135-add-cfi-suppressions-for-pipewire-functions.patch, merged by upstream
- Refresh ppc64le patches
- Enable system simdutf for F43

* Fri May 16 2025 Arkady L. Shane <tigro@msvsphere-os.ru> - 136.0.7103.113-1.inferit
- Update to 136.0.7103.113
  * CVE-2025-4664: Insufficient policy enforcement in Loader
  * CVE-2025-4609: Incorrect handle provided in unspecified circumstances in Mojo

* Thu May 08 2025 Arkady L. Shane <tigro@msvsphere-os.ru> - 136.0.7103.92-1.inferit
- Update to 136.0.7103.92
  * CVE-2025-4372: Use after free in WebAudio

* Thu Apr 24 2025 Arkady L. Shane <tigro@msvsphere-os.ru> - 135.0.7049.114-1.inferit
- Update to 135.0.7049.114

* Mon Apr 21 2025 Arkady L. Shane <tigro@msvsphere-os.ru> - 135.0.7049.95-1.inferit
- Update to 135.0.7049.95
  * CVE-2025-3619: Heap buffer overflow in Codecs
  * CVE-2025-3620: Use after free in USB

* Thu Apr 10 2025 Arkady L. Shane <tigro@msvsphere-os.ru> - 135.0.7049.84-1.inferit
- Update to 135.0.7049.84
  * CVE-2025-3066: Use after free in Site Isolation

* Sat Apr 05 2025 Arkady L. Shane <tigro@msvsphere-os.ru> - 135.0.7049.52-2.inferit
- Update to 135.0.7049.52
- Add CFI suppressions for inline PipeWire functions

* Tue Mar 25 2025 Arkady L. Shane <tigro@msvsphere-os.ru> - 134.0.6998.165-1.inferit
- Update to 134.0.6998.165

* Fri Mar 21 2025 Arkady L. Shane <tigro@msvsphere-os.ru> -  134.0.6998.117-1.inferit
- Update to 134.0.6998.117
  * Critical CVE-2025-2476: Use after free in Lens