BSD-3-Clause AND LGPL-2.1-or-later AND Apache-2.0 AND IJG AND MIT AND GPL-2.0-or-later AND ISC AND OpenSSL AND (MPL-1.1 OR GPL-2.0-only OR LGPL-2.0-only)
Build Time
2026-01-09 13:55:49
Build Host
builder-iso-x86-01.inferitos.ru
Summary
The web browser from Chromium Gost project
Repositories
Extras
Description
Chromium Gost is an open-source browser based on Chromium code and supports Russian Gost encryption algorithms.
* Thu Jan 08 2026 Arkady L. Shane <tigro@msvsphere-os.ru> - 143.0.7499.192-1.inferit
- Update tp 143.0.7499.192
* High CVE-2026-0628: Insufficient policy enforcement in WebView tag
- Fix rhbz#2425338, Enable control flow integrity support for x86_64/aarch64
* Mon Dec 22 2025 Arkady L. Shane <tigro@msvsphere-os.ru> - 143.0.7499.169-1.inferit
- Update to 143.0.7499.169
* Thu Dec 18 2025 Arkady L. Sname <tigro@msvsphere-os.ru> - 143.0.7499.146-1
- Update to 143.0.7499.146
* High CVE-2025-14765: Use after free in WebGPU
* High CVE-2025-14766: Out of bounds read and write in V8
- Force dark mode when auto dark mode web content is on
- Remove omnibox-next-Improve-cutout-mouse-handling-for-Wayla patch, as it's merged
* Sat Dec 13 2025 Arkady L. Shane <tigro@msvsphere-os.ru> - 143.0.7499.109-1
- Update to 143.0.7499.109
* High: Under coordination
* Medium CVE-2025-14372: Use after free in Password Manager
* Medium CVE-2025-14373: Inappropriate implementation in Toolbar
- Workaround problem of auto dark mode inverting images and making them unreadable
- Backport Wayland Omnibox bug fix from upstream
- Enable gtk4 by default (EL10)
* Sat Dec 06 2025 Arkady L. Shane <tigro@msvsphere-os.ru> - 143.0.7499.40-1
- Update to 143.0.7499.40
* High CVE-2025-13630: Type Confusion in V8
* High CVE-2025-13631: Inappropriate implementation in Google Updater
* High CVE-2025-13632: Inappropriate implementation in DevTools
* High CVE-2025-13633: Use after free in Digital Credentials
* Medium CVE-2025-13634: Inappropriate implementation in Downloads
* Medium CVE-2025-13720: Bad cast in Loader
* Medium CVE-2025-13721: Race in v8
* Low CVE-2025-13635: Inappropriate implementation in Downloads
* Low CVE-2025-13636: Inappropriate implementation in Split View
* Low CVE-2025-13637: Inappropriate implementation in Downloads
* Low CVE-2025-13638: Use after free in Media Stream
* Low CVE-2025-13639: Inappropriate implementation in WebRTC
* Low CVE-2025-13640: Inappropriate implementation in Passwords
- Set gtk version to 3 by default
- Backport Wayland DnD bug fix from upstream
* Sat Nov 22 2025 Arkady L. Shane <tigro@msvsphere-os.ru> - 142.0.7444.175-1.inferit
- Update to 142.0.7444.175
* High CVE-2025-13223: Type Confusion in V8
* High CVE-2025-13224: Type Confusion in V8
* Mon Nov 17 2025 Arkady L. Shane <tigro@msvsphere-os.ru> - 142.0.7444.162-1.inferit
- Update to 142.0.7444.162
* High CVE-2025-13042: Inappropriate implementation in V8
* Fri Nov 07 2025 Arkady L. Shane <tigro@msvsphere-os.ru> - 142.0.7444.134-1.inferit
- Update to 142.0.7444.134
* High CVE-2025-12725: Out of bounds write in WebGPU
* High CVE-2025-12726: Inappropriate implementation in Views
* High CVE-2025-12727: Inappropriate implementation in V8
* Medium CVE-2025-12728: Inappropriate implementation in Omnibox
* Mon Nov 03 2025 Arkady L. Shane <tigro@msvsphere-os.ru> - 142.0.7444.59-1.inferit
- Update to 142.0.7444.59
* Refreshed ppc64le patches
* Refreshed system-brotli patch
* Refreshed clang++-unknown-argument patch
* Refreshed split-threshold-for-reg-with-hint patch
* Fixed some FTBFS caused by missing header files
* Fixed FTBFS caused by old rust compiler
* Fixed FTBFS caused by new glibc-2.42 in Rawhide
* Fixed FTBFS caused by old python-3.9.x in EL8/9
* Dropped obsoleted chromium-141-el9-ffmpeg-5.x-duration.patch for old ffmpeg on EL9
* Wed Oct 22 2025 Arkady L. Shane <tigro@msvsphere-os.ru> - 141.0.7390.122-1.inferit
- Update to 141.0.7390.122
* High CVE-2025-12036 chromium: Inappropriate implementation in V8
