-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-bb52629e6c 2024-06-02 01:21:00.959178 --------------------------------------------------------------------------------
Name : chromium Product : Fedora 40 Version : 125.0.6422.141 Release : 1.fc40 URL : http://www.chromium.org/Home Summary : A WebKit (Blink) powered web browser that Google doesn't want you to use Description : Chromium is an open-source web browser, powered by WebKit (Blink).
-------------------------------------------------------------------------------- Update Information:
update to 125.0.6422.141 High CVE-2024-5493: Heap buffer overflow in WebRTC High CVE-2024-5494: Use after free in Dawn High CVE-2024-5495: Use after free in Dawn High CVE-2024-5496: Use after free in Media Session High CVE-2024-5497: Out of bounds memory access in Keyboard Inputs High CVE-2024-5498: Use after free in Presentation API High CVE-2024-5499: Out of bounds write in Streams API -------------------------------------------------------------------------------- ChangeLog:
* Fri May 31 2024 Than Ngo than@redhat.com - 125.0.6422.141-1 - update to 125.0.6422.141 * High CVE-2024-5493: Heap buffer overflow in WebRTC * High CVE-2024-5494: Use after free in Dawn * High CVE-2024-5495: Use after free in Dawn * High CVE-2024-5496: Use after free in Media Session * High CVE-2024-5497: Out of bounds memory access in Keyboard Inputs * High CVE-2024-5498: Use after free in Presentation API * High CVE-2024-5499: Out of bounds write in Streams API - fixed rhbz#2264332 - Chromium is unable to send/receive video on MS Teams - cleanup chromium.conf * Wed May 29 2024 Than Ngo than@redhat.com - 125.0.6422.112-3 - build against noopenh264 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2264332 - Chromium is unable to send/receive video on MS Teams https://bugzilla.redhat.com/show_bug.cgi?id=2264332 --------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-bb52629e6c' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------