| Index | index by Group | index by Distribution | index by Vendor | index by creation date | index by Name | Mirrors | Help | Search |
| Name: chromium-common-debuginfo | Distribution: Fedora Project |
| Version: 149.0.7827.53 | Vendor: Fedora Project |
| Release: 1.el10_2 | Build date: Sat Jun 6 09:56:22 2026 |
| Group: Development/Debug | Build host: buildhw-a64-06.rdu3.fedoraproject.org |
| Size: 13226251 | Source RPM: chromium-149.0.7827.53-1.el10_2.src.rpm |
| Packager: Fedora Project | |
| Url: http://www.chromium.org/Home | |
| Summary: Debug information for package chromium-common | |
This package provides debug information for package chromium-common. Debug information is useful when developing applications that use this package or when debugging this package.
BSD-3-Clause AND LGPL-2.1-or-later AND Apache-2.0 AND IJG AND MIT AND GPL-2.0-or-later AND ISC AND OpenSSL AND (MPL-1.1 OR GPL-2.0-only OR LGPL-2.0-only)
* Fri Jun 05 2026 Than Ngo <than@redhat.com> - 149.0.7827.53-1
- Update to 149.0.7827.53
* CVE-2026-10881: Out of bounds read and write in ANGLE
* CVE-2026-10882: Use after free in Network
* CVE-2026-10883: Out of bounds write in ANGLE
* CVE-2026-10884: Use after free in Chromecast
* CVE-2026-10885: Use after free in Chrome for iOS
* CVE-2026-10886: Use after free in FileSystem
* CVE-2026-10887: Use after free in Chromoting
* CVE-2026-10888: Use after free in Cast Streaming
* CVE-2026-10889: Out of bounds read in ANGLE
* CVE-2026-10890: Use after free in Cast
* CVE-2026-10891: Use after free in GFX
* CVE-2026-10892: Out of bounds write in GPU
* CVE-2026-10893: Use after free in Chromoting
* CVE-2026-10894: Use after free in Printing
* CVE-2026-10895: Use after free in Ozone
* CVE-2026-10896: Use after free in Chrome for iOS
* CVE-2026-10897: Out of bounds write in GPU
* CVE-2026-10898: Stack buffer overflow in GPU
* CVE-2026-10899: Use after free in Ozone
* CVE-2026-10900: Use after free in Passwords
* CVE-2026-10901: Use after free in Passwords
* CVE-2026-10902: Use after free in Ozone
* CVE-2026-10903: Use after free in WebRTC
* CVE-2026-10904: Inappropriate implementation in V8
* CVE-2026-10905: Use after free in Network
* CVE-2026-10906: Use after free in WebAuthentication
* CVE-2026-10907: Out of bounds write in ANGLE
* CVE-2026-10908: Use after free in FullScreen
* CVE-2026-10909: Use after free in Dawn
* CVE-2026-10910: Type Confusion in V8
* CVE-2026-10911: Insufficient validation of untrusted input in Media
* CVE-2026-10912: Insufficient validation of untrusted input in Extensions
* CVE-2026-10913: Use after free in ANGLE
* CVE-2026-10914: Use after free in ANGLE
* CVE-2026-10915: Use after free in Core
* CVE-2026-10916: Insufficient validation of untrusted input in DevTools
* CVE-2026-10917: Insufficient validation of untrusted input in Media
* CVE-2026-10918: Use after free in Viz
* CVE-2026-10919: Use after free in ANGLE
* CVE-2026-10920: Insufficient validation of untrusted input in WebShare
* CVE-2026-10921: Integer overflow in Dawn
* CVE-2026-10922: Insufficient validation of untrusted input in DevTools
* CVE-2026-10923: Use after free in WebAppInstalls
* CVE-2026-10924: Integer overflow in Chromecast
* CVE-2026-10925: Out of bounds write in Skia
* CVE-2026-10926: Use after free in Cast
* CVE-2026-10927: Out of bounds read in Dawn
* CVE-2026-10928: Script injection in Headless
* CVE-2026-10929: Heap buffer overflow in ANGLE
* CVE-2026-10930: Out of bounds read in ANGLE
* CVE-2026-10931: Use after free in FileSystem
* CVE-2026-10932: Use after free in UI
* CVE-2026-10933: Use after free in Audio
* CVE-2026-10934: Use after free in Autofill
* CVE-2026-10935: Inappropriate implementation in V8
* CVE-2026-10936: Type Confusion in V8
* CVE-2026-10937: Inappropriate implementation in Passwords
* CVE-2026-10938: Insufficient validation of untrusted input in Input
* CVE-2026-10939: Use after free in WebRTC
* CVE-2026-10940: Race in Codecs
* CVE-2026-10941: Out of bounds memory access in Skia
* CVE-2026-10942: Insufficient validation of untrusted input in UI
* CVE-2026-10943: Use after free in WebRTC
* CVE-2026-10944: Insufficient policy enforcement in Autofill
* CVE-2026-10945: Use after free in PDF
* CVE-2026-10946: Heap buffer overflow in Media
* CVE-2026-10947: Use after free in WebRTC
* CVE-2026-10948: Use after free in WebRTC
* CVE-2026-10949: Heap buffer overflow in Video
* CVE-2026-10950: Insufficient policy enforcement in Autofill
* CVE-2026-10951: Use after free in Autofill
* CVE-2026-10952: Use after free in Chrome for iOS
* CVE-2026-10953: Use after free in Core
* CVE-2026-10954: Use after free in Actor
* CVE-2026-10955: Type Confusion in ANGLE
* CVE-2026-10956: Use after free in MimeHandlerView
* CVE-2026-10957: Use after free in Glic
* CVE-2026-10958: Use after free in Chrome for iOS
* CVE-2026-10959: Use after free in Input
* CVE-2026-10960: Uninitialized Use in Codecs
* CVE-2026-10961: Use after free in Chrome for iOS
* CVE-2026-10962: Type Confusion in Media
* CVE-2026-10963: Integer overflow in V8
* CVE-2026-10964: Integer overflow in V8
* CVE-2026-10965: Integer overflow in DevTools
* CVE-2026-10966: Insufficient validation of untrusted input in Codecs
* CVE-2026-10967: Use after free in SurfaceCapture
* CVE-2026-10968: Insufficient validation of untrusted input in Dawn
* CVE-2026-10969: Insufficient validation of untrusted input in Extensions
* CVE-2026-10970: Insufficient validation of untrusted input in InterestGroups
* CVE-2026-10971: Insufficient validation of untrusted input in Printing
* CVE-2026-10972: Use after free in Ozone
* CVE-2026-10973: Uninitialized Use in Dawn
* CVE-2026-10974: Insufficient validation of untrusted input in ANGLE
* CVE-2026-10975: Use after free in WebRTC
* CVE-2026-10976: Uninitialized Use in Dawn
* CVE-2026-10977: Uninitialized Use in Skia
* CVE-2026-10978: Use after free in Chromoting
* CVE-2026-10979: Out of bounds read in ANGLE
* CVE-2026-10980: Insufficient validation of untrusted input in DevTools
* CVE-2026-10981: Insufficient validation of untrusted input in Codecs
* CVE-2026-10982: Use after free in WebXR
* CVE-2026-10983: Insufficient validation of untrusted input in Dawn
* CVE-2026-10984: Inappropriate implementation in Accessibility
* CVE-2026-10985: Out of bounds read in Skia
* CVE-2026-10986: Integer overflow in Media
* CVE-2026-10987: Integer overflow in V8
* CVE-2026-10988: Use after free in Views
* CVE-2026-10989: Inappropriate implementation in V8
* CVE-2026-10990: Use after free in Glic
* CVE-2026-10991: Use after free in V8
* CVE-2026-10992: Insufficient data validation in Animation
* CVE-2026-10993: Heap buffer overflow in Skia
* CVE-2026-10994: Uninitialized Use in ANGLE
* CVE-2026-10995: Heap buffer overflow in TabStrip
* CVE-2026-10996: Inappropriate implementation in Workers
* CVE-2026-10997: Insufficient policy enforcement in Extensions
* CVE-2026-10998: Out of bounds read in Media
* CVE-2026-10999: Out of bounds memory access in ANGLE
* CVE-2026-11000: Use after free in Fonts
* CVE-2026-11001: Incorrect security UI in Payments
* CVE-2026-11002: Use after free in Autofill
* CVE-2026-11003: Use after free in WebRTC
* CVE-2026-11004: Out of bounds read in ANGLE
* CVE-2026-11005: Out of bounds read in ANGLE
* CVE-2026-11006: Out of bounds read in Dawn
* CVE-2026-11007: Insufficient validation of untrusted input in WebView
* CVE-2026-11008: Insufficient validation of untrusted input in WebAppInstalls
* CVE-2026-11009: Use after free in USB
* CVE-2026-11010: Use after free in WebShare
* CVE-2026-11011: Insufficient policy enforcement in Password Manager
* CVE-2026-11012: Use after free in Serial
* CVE-2026-11013: Insufficient validation of untrusted input in Network
* CVE-2026-11014: Insufficient policy enforcement in Extensions
* CVE-2026-11015: Out of bounds read in WebGPU
* CVE-2026-11016: Insufficient validation of untrusted input in Network
* CVE-2026-11017: Inappropriate implementation in Link Preview
* CVE-2026-11018: Insufficient policy enforcement in Actor
* CVE-2026-11019: Inappropriate implementation in Payments
* CVE-2026-11020: Inappropriate implementation in Extensions
* CVE-2026-11021: Insufficient validation of untrusted input in GPU
* CVE-2026-11022: Insufficient validation of untrusted input in DevTools
* CVE-2026-11023: Insufficient validation of untrusted input in WebAppInstalls
* CVE-2026-11024: Stack buffer overflow in Skia
* CVE-2026-11025: Insufficient policy enforcement in Navigation
* CVE-2026-11026: Insufficient policy enforcement in Extensions
* CVE-2026-11027: Insufficient validation of untrusted input in Glic
* CVE-2026-11028: Use after free in Media
* CVE-2026-11029: Insufficient validation of untrusted input in Drag and Drop
* CVE-2026-11030: Use after free in Network
* CVE-2026-11031: Insufficient validation of untrusted input in Password Manager
* CVE-2026-11032: Insufficient data validation in Password Manager
* CVE-2026-11033: Uninitialized Use in WebML
* CVE-2026-11034: Insufficient validation of untrusted input in Tab Group Sync
* CVE-2026-11035: Insufficient validation of untrusted input in Custom Tabs
* CVE-2026-11036: Inappropriate implementation in DOM
* CVE-2026-11037: Out of bounds write in Codecs
* CVE-2026-11038: Insufficient validation of untrusted input in Subresource Integrity
* CVE-2026-11039: Uninitialized Use in Skia
* CVE-2026-11040: Use after free in ANGLE
* CVE-2026-11041: Insufficient validation of untrusted input in Media
* CVE-2026-11042: Use after free in Views
* CVE-2026-11043: Out of bounds write in ANGLE
* CVE-2026-11044: Integer overflow in ANGLE
* CVE-2026-11045: Insufficient validation of untrusted input in GPU
* CVE-2026-11046: Insufficient validation of untrusted input in Media
* CVE-2026-11047: Insufficient validation of untrusted input in Base
* CVE-2026-11048: Inappropriate implementation in Extensions
* CVE-2026-11049: Use after free in Password Manager
* CVE-2026-11050: Use after free in V8
* CVE-2026-11051: Out of bounds read in ANGLE
* CVE-2026-11052: Type Confusion in GPU
* CVE-2026-11053: VULNERABILITY in WebRTC
* CVE-2026-11054: Use after free in WebRTC
* CVE-2026-11055: Use after free in ANGLE
* CVE-2026-11056: Insufficient validation of untrusted input in SiteIsolation
* CVE-2026-11057: Uninitialized Use in Skia
* CVE-2026-11058: Integer overflow in CredentialProvider
* CVE-2026-11059: Use after free in Blink
* CVE-2026-11060: Use after free in Media
* CVE-2026-11061: Out of bounds read in ANGLE
* CVE-2026-11062: Insufficient policy enforcement in Extensions
* CVE-2026-11063: Insufficient validation of untrusted input in WebNN
* CVE-2026-11064: Uninitialized Use in GPU
* CVE-2026-11065: Use after free in ANGLE
* CVE-2026-11066: Insufficient validation of untrusted input in ANGLE
* CVE-2026-11067: Uninitialized Use in Dawn
* CVE-2026-11068: Use after free in WebSockets
* CVE-2026-11069: Insufficient validation of untrusted input in Cast
* CVE-2026-11070: Insufficient validation of untrusted input in Chromoting
* CVE-2026-11071: Use after free in Base
* CVE-2026-11072: Use after free in WebView
* CVE-2026-11073: Use after free in WebGL
* CVE-2026-11074: Use after free in WebRTC
* CVE-2026-11075: Out of bounds read in V8
* CVE-2026-11076: Type Confusion in CSS
* CVE-2026-11077: Out of bounds read in Dawn
* CVE-2026-11078: Insufficient validation of untrusted input in FileSystem
* CVE-2026-11079: Insufficient validation of untrusted input in Codecs
* CVE-2026-11080: Use after free in WebView
* CVE-2026-11081: Policy bypass in Canvas
* CVE-2026-11082: Use after free in GPU
* CVE-2026-11083: Inappropriate implementation in Password Manager
* CVE-2026-11084: Inappropriate implementation in Password Manager
* CVE-2026-11085: Integer overflow in GPU
* CVE-2026-11086: Insufficient validation of untrusted input in Dawn
* CVE-2026-11087: Uninitialized Use in ANGLE
* CVE-2026-11088: Integer overflow in ANGLE
* CVE-2026-11089: Uninitialized Use in Media
* CVE-2026-11090: Uninitialized Use in ANGLE
* CVE-2026-11091: Inappropriate implementation in Dawn
* CVE-2026-11092: Insufficient policy enforcement in DevTools
* CVE-2026-11093: Insufficient validation of untrusted input in Printing
* CVE-2026-11094: Use after free in Codecs
* CVE-2026-11095: Insufficient validation of untrusted input in Codecs
* CVE-2026-11096: Out of bounds read in WebRTC
* CVE-2026-11097: Inappropriate implementation in WebView
* CVE-2026-11098: Insufficient validation of untrusted input in GPU
* CVE-2026-11099: Vulnerability in Skia
* CVE-2026-11100: Use after free in File Input
* CVE-2026-11101: Uninitialized Use in Dawn
* CVE-2026-11102: Inappropriate implementation in Isolated Web Apps
* CVE-2026-11103: Inappropriate implementation in Installer
* CVE-2026-11104: Uninitialized Use in ANGLE
* CVE-2026-11105: Insufficient validation of untrusted input in WebUI
* CVE-2026-11106: Inappropriate implementation in Media
* CVE-2026-11107: Inappropriate implementation in Downloads
* CVE-2026-11108: Inappropriate implementation in NFC
* CVE-2026-11109: Uninitialized Use in ANGLE
* CVE-2026-11110: Uninitialized Use in ANGLE
* CVE-2026-11111: Out of bounds read in ANGLE
* CVE-2026-11112: Insufficient validation of untrusted input in Chromoting
* CVE-2026-11113: Insufficient validation of untrusted input in ANGLE
* CVE-2026-11114: Use after free in Device Trust
* CVE-2026-11115: Use after free in Updater
* CVE-2026-11116: Use after free in Chromoting
* CVE-2026-11117: Use after free in Views
* CVE-2026-11118: Use after free in WebRTC
* CVE-2026-11119: Insufficient validation of untrusted input in GPU
* CVE-2026-11120: Insufficient validation of untrusted input in Enterprise Reporting
* CVE-2026-11121: Insufficient validation of untrusted input in Skia
* CVE-2026-11122: Inappropriate implementation in Keyboard
* CVE-2026-11123: Uninitialized Use in ANGLE
* CVE-2026-11124: Heap buffer overflow in Skia
* CVE-2026-11125: Use after free in Compositing
* CVE-2026-11126: Insufficient validation of untrusted input in DevTools
* CVE-2026-11127: Inappropriate implementation in WebAPKs
* CVE-2026-11128: Insufficient validation of untrusted input in Web Share
* CVE-2026-11129: Inappropriate implementation in Extensions
* CVE-2026-11130: Use after free in Media
* CVE-2026-11131: Use after free in Autofill
* CVE-2026-11132: Policy bypass in Paint
* CVE-2026-11133: Insufficient policy enforcement in Paint
* CVE-2026-11134: Insufficient data validation in Media
* CVE-2026-11135: Insufficient policy enforcement in Autofill
* CVE-2026-11136: Use after free in Canvas
* CVE-2026-11137: Uninitialized Use in ANGLE
* CVE-2026-11138: Uninitialized Use in ANGLE
* CVE-2026-11139: Policy bypass in Paint
* CVE-2026-11140: Insufficient validation of untrusted input in Chromecast
* CVE-2026-11141: Uninitialized Use in Audio
* CVE-2026-11142: Policy bypass in Paint
* CVE-2026-11143: Heap buffer overflow in Extensions
* CVE-2026-11144: Use after free in Media
* CVE-2026-11145: Race in Geolocation
* CVE-2026-11146: Insufficient validation of untrusted input in Chromoting
* CVE-2026-11147: Use after free in WebML
* CVE-2026-11148: Inappropriate implementation in Payments
* CVE-2026-11149: Insufficient validation of untrusted input in Extensions
* CVE-2026-11150: Inappropriate implementation in XML
* CVE-2026-11151: Insufficient validation of untrusted input in Password Manager
* CVE-2026-11152: Object lifecycle issue in Dawn
* CVE-2026-11153: Side-channel information leakage in Forms
* CVE-2026-11154: Use after free in Dawn
* CVE-2026-11155: Insufficient policy enforcement in CSS
* CVE-2026-11156: Inappropriate implementation in CSS
* CVE-2026-11157: Script injection in Accessibility
* CVE-2026-11158: Insufficient validation of untrusted input in Downloads
* CVE-2026-11159: Uninitialized Use in Skia
* CVE-2026-11160: Out of bounds read in Input
* CVE-2026-11161: Insufficient data validation in DataTransfer
* CVE-2026-11162: Insufficient policy enforcement in CSS
* CVE-2026-11163: Use after free in Messages
* CVE-2026-11164: Use after free in Blink
* CVE-2026-11165: Use after free in WebMIDI
* CVE-2026-11166: Inappropriate implementation in SVG
* CVE-2026-11167: Inappropriate implementation in WebView
* CVE-2026-11168: Insufficient policy enforcement in Extensions
* CVE-2026-11169: Inappropriate implementation in XML
* CVE-2026-11170: Inappropriate implementation in Chromoting
* CVE-2026-11171: Integer overflow in Blink
* CVE-2026-11172: Incorrect security UI in Contact Picker
* CVE-2026-11173: Out of bounds write in V8
* CVE-2026-11174: Insufficient policy enforcement in Site Isolation
* CVE-2026-11175: Incorrect security UI in Messages
* CVE-2026-11176: Inappropriate implementation in Media
* CVE-2026-11177: Use after free in Omnibox
* CVE-2026-11178: Policy bypass in WebView
* CVE-2026-11179: Inappropriate implementation in ORB
* CVE-2026-11180: Policy bypass in SVG
* CVE-2026-11181: Inappropriate implementation in Media Session
* CVE-2026-11182: Inappropriate implementation in SVG
* CVE-2026-11183: Out of bounds read in GWP-ASan
* CVE-2026-11184: Insufficient policy enforcement in Actor
* CVE-2026-11185: Use after free in V8
* CVE-2026-11186: Inappropriate implementation in CSS
* CVE-2026-11187: Insufficient policy enforcement in Glic
* CVE-2026-11188: Use after free in USB
* CVE-2026-11189: Insufficient validation of untrusted input in DevTools
* CVE-2026-11190: Insufficient policy enforcement in Extensions
* CVE-2026-11191: Out of bounds memory access in ANGLE
* CVE-2026-11192: Insufficient validation of untrusted input in Password Manager
* CVE-2026-11193: Insufficient policy enforcement in Password Manager
* CVE-2026-11194: Inappropriate implementation in Network
* CVE-2026-11195: Inappropriate implementation in MHTML
* CVE-2026-11196: Type Confusion in XML
* CVE-2026-11197: Insufficient policy enforcement in Workers
* CVE-2026-11198: Insufficient validation of untrusted input in Codecs
* CVE-2026-11199: Insufficient validation of untrusted input in WebRTC
* CVE-2026-11200: Inappropriate implementation in WebRTC
* CVE-2026-11201: Use after free in ServiceWorker
* CVE-2026-11202: Insufficient validation of untrusted input in Chrome for iOS
* CVE-2026-11203: Policy bypass in GPU
* CVE-2026-11204: Inappropriate implementation in Signin
* CVE-2026-11205: Insufficient validation of untrusted input in Chrome for iOS
* CVE-2026-11206: Policy bypass in ServiceWorker
* CVE-2026-11207: Insufficient validation of untrusted input in Autofill
* CVE-2026-11208: Use after free in Codecs
* CVE-2026-11209: Insufficient policy enforcement in Passwords
* CVE-2026-11210: Insufficient policy enforcement in Safe Browsing
* CVE-2026-11211: Integer overflow in V8
* CVE-2026-11212: Insufficient policy enforcement in DevTools
* CVE-2026-11213: Insufficient validation of untrusted input in Reading Mode
* CVE-2026-11214: Inappropriate implementation in Chrome for iOS
* CVE-2026-11215: Inappropriate implementation in Cronet
* CVE-2026-11216: Incorrect security UI in File Input
* CVE-2026-11217: Insufficient policy enforcement in Fenced Frames
* CVE-2026-11218: Inappropriate implementation in PlatformIntegration
* CVE-2026-11219: Insufficient data validation in Navigation
* CVE-2026-11220: Insufficient validation of untrusted input in Navigation
* CVE-2026-11221: Insufficient validation of untrusted input in PointerLock
* CVE-2026-11222: Incorrect security UI in Tab Strip
* CVE-2026-11223: Insufficient validation of untrusted input in Network
* CVE-2026-11224: Use after free in Chromoting
* CVE-2026-11225: Incorrect security UI in WebUI
* CVE-2026-11226: Insufficient policy enforcement in PreviewTab
* CVE-2026-11227: Incorrect security UI in Tab Hover Cards
* CVE-2026-11228: Incorrect security UI in File Input
* CVE-2026-11229: Insufficient policy enforcement in Enterprise
* CVE-2026-11230: Use after free in Extensions
* CVE-2026-11231: Inappropriate implementation in Safe Browsing
* CVE-2026-11232: Inappropriate implementation in TabGroups
* CVE-2026-11233: Insufficient validation of untrusted input in FoldableAPIs
* CVE-2026-11234: Insufficient policy enforcement in FoldableAPIs
* CVE-2026-11235: Insufficient validation of untrusted input in Compositing
* CVE-2026-11236: Insufficient policy enforcement in Web Bluetooth
* CVE-2026-11237: Insufficient validation of untrusted input in Media
* CVE-2026-11238: Inappropriate implementation in DevTools
* CVE-2026-11239: Insufficient validation of untrusted input in Extensions
* CVE-2026-11240: Insufficient validation of untrusted input in Loader
* CVE-2026-11241: Insufficient validation of untrusted input in Cast
* CVE-2026-11242: Insufficient validation of untrusted input in Plugins
* CVE-2026-11243: Incorrect security UI in Downloads
* CVE-2026-11244: Insufficient validation of untrusted input in WebAuthentication
* CVE-2026-11245: Inappropriate implementation in Payments
* CVE-2026-11246: Insufficient validation of untrusted input in IndexedDB
* CVE-2026-11247: Insufficient policy enforcement in CustomTabs
* CVE-2026-11248: Policy bypass in Google Lens
* CVE-2026-11249: Use after free in Network
* CVE-2026-11250: Inappropriate implementation in DevTools
* CVE-2026-11251: Insufficient validation of untrusted input in Password Manager
* CVE-2026-11252: Policy bypass in Content Settings
* CVE-2026-11253: Race in Permissions
* CVE-2026-11254: Inappropriate implementation in Permissions
* CVE-2026-11255: Insufficient validation of untrusted input in Storage Access API
* CVE-2026-11256: Out of bounds read in GPU
* CVE-2026-11257: Inappropriate implementation in Browser
* CVE-2026-11258: Inappropriate implementation in File System Access
* CVE-2026-11259: Insufficient validation of untrusted input in Cast
* CVE-2026-11260: Policy bypass in Permissions
* CVE-2026-11261: Insufficient validation of untrusted input in PDF
* CVE-2026-11262: Use after free in TabStrip
* CVE-2026-11263: Insufficient policy enforcement in WebAuthentication
* CVE-2026-11264: Policy bypass in Content Security Policy
* CVE-2026-11265: Insufficient data validation in Autofill
* CVE-2026-11266: Policy bypass in SafeBrowsing
* CVE-2026-11267: Insufficient policy enforcement in Extensions
* CVE-2026-11268: Uninitialized Use in ANGLE
* CVE-2026-11269: Inappropriate implementation in Extensions
* CVE-2026-11270: Inappropriate implementation in UI
* CVE-2026-11271: Incorrect security UI in Passwords
* CVE-2026-11272: Insufficient validation of untrusted input in Reading List
* CVE-2026-11273: Insufficient validation of untrusted input in Omnibox
* CVE-2026-11274: Inappropriate implementation in DOM Distiller
* CVE-2026-11275: Insufficient policy enforcement in Page Info
* CVE-2026-11276: Inappropriate implementation in Cast
* CVE-2026-11277: Insufficient policy enforcement in Chrome for iOS
* CVE-2026-11278: Inappropriate implementation in CustomTabs
* CVE-2026-11279: Out of bounds read in DevTools
* CVE-2026-11280: Insufficient validation of untrusted input in Signin
* CVE-2026-11281: Integer overflow in Chromoting
* CVE-2026-11282: Policy bypass in Sandbox
* CVE-2026-11283: Policy bypass in Shortcuts
* CVE-2026-11284: Side-channel information leakage in PerformanceAPIs
* CVE-2026-11285: Insufficient policy enforcement in Chrome for iOS
* CVE-2026-11286: Insufficient validation of untrusted input in Wallet
* CVE-2026-11287: Insufficient validation of untrusted input in Navigation
* CVE-2026-11288: Policy bypass in CSS
* CVE-2026-11289: Side-channel information leakage in Paint
* CVE-2026-11290: Integer overflow in WebView
* CVE-2026-11291: Policy bypass in Android Autofill
* CVE-2026-11292: Policy bypass in Blink
* CVE-2026-11293: Use after free in Input
* CVE-2026-11294: Inappropriate implementation in Passwords
* CVE-2026-11295: Inappropriate implementation in WebView
* CVE-2026-11296: Inappropriate implementation in ImageCapture
* CVE-2026-11297: Insufficient validation of untrusted input in Reader Mode
* CVE-2026-11298: Insufficient policy enforcement in Chrome for iOS
* CVE-2026-11299: Out of bounds read in Fonts
* CVE-2026-11300: Inappropriate implementation in Permissions
* CVE-2026-11301: Out of bounds read in LiveCaption
* CVE-2026-11302: Insufficient policy enforcement in Chrome for iOS
* CVE-2026-11303: Use after free in PDFium
* CVE-2026-11304: Use after free in PDFium
* CVE-2026-11305: Use after free in PDFium
* CVE-2026-11306: Use after free in PDFium
* CVE-2026-11307: Use after free in PDFium
* CVE-2026-11308: Inappropriate implementation in Extensions
* CVE-2026-11309: Insufficient policy enforcement in History
* Fri May 29 2026 Than Ngo <than@redhat.com> - 148.0.7778.215-1
- Update to 148.0.7778.215
* CVE-2026-9872: Out of bounds write in GPU
* CVE-2026-9873: Use after free in Network
* CVE-2026-9874: Use after free in Dawn
* CVE-2026-9875: Out of bounds read in WebGL
* CVE-2026-9876: Use after free in WebGL
* CVE-2026-9877: Use after free in ANGLE
* CVE-2026-9878: Use after free in ANGLE
* CVE-2026-9879: Out of bounds write in ANGLE
* CVE-2026-9880: Insufficient validation of untrusted input in WebGL
* CVE-2026-9881: Use after free in Bluetooth
* CVE-2026-9882: Integer overflow in ANGLE
* CVE-2026-9883: Use after free in Base
* CVE-2026-9884: Use after free in Browser
* CVE-2026-9885: Insufficient validation of untrusted input in UI
* CVE-2026-9886: Use after free in Base
* CVE-2026-9887: Use after free in Proxy
* CVE-2026-9888: Use after free in WebView
* CVE-2026-9889: Out of bounds read and write in Dawn
* CVE-2026-9890: Use after free in XR
* CVE-2026-9891: Use after free in Extensions
* CVE-2026-9892: Inappropriate implementation in Skia
* CVE-2026-9893: Use after free in Skia
* CVE-2026-9894: Use after free in GPU
* CVE-2026-9895: Out of bounds read in GPU
* CVE-2026-9896: Out of bounds write in V8
* CVE-2026-9897: Use after free in DOM
* CVE-2026-9898: Insufficient validation of untrusted input in GPU
* CVE-2026-9899: Use after free in ANGLE
* CVE-2026-9900: Out of bounds write in ANGLE
* CVE-2026-9901: Use after free in ANGLE
* CVE-2026-9902: Use after free in Accessibility
* CVE-2026-9903: Insufficient validation of untrusted input in Site Isolation
* CVE-2026-9904: Use after free in ANGLE
* CVE-2026-9905: Use after free in Accessibility
* CVE-2026-9906: Out of bounds write in GPU
* CVE-2026-9907: Out of bounds read in Dawn
* CVE-2026-9908: Out of bounds read in ANGLE
* CVE-2026-9909: Integer overflow in Skia
* CVE-2026-9910: Out of bounds memory access in ANGLE
* CVE-2026-9911: Integer overflow in ANGLE
* CVE-2026-9912: Inappropriate implementation in GPU
* CVE-2026-9913: Inappropriate implementation in ANGLE
* CVE-2026-9914: Insufficient validation of untrusted input in ANGLE
* CVE-2026-9915: Heap buffer overflow in ANGLE
* CVE-2026-9916: Out of bounds write in ANGLE
* CVE-2026-9917: Uninitialized Use in WebGL
* CVE-2026-9918: Inappropriate implementation in Tint
* CVE-2026-9919: Out of bounds read in WebGL
* CVE-2026-9920: Uninitialized Use in GPU
* CVE-2026-9921: Uninitialized Use in WebGL
* CVE-2026-9922: Use after free in GPU
* CVE-2026-9923: Use after free in Skia
* CVE-2026-9924: Heap buffer overflow in ANGLE
* CVE-2026-9925: Use after free in ANGLE
* CVE-2026-9926: Heap buffer overflow in ANGLE
* CVE-2026-9927: Use after free in ANGLE
* CVE-2026-9928: Out of bounds read in ANGLE
* CVE-2026-9929: Inappropriate implementation in WebGL
* CVE-2026-9930: Out of bounds write in Dawn
* CVE-2026-9931: Use after free in GPU
* CVE-2026-9932: Use after free in ANGLE
* CVE-2026-9933: Use after free in Input
* CVE-2026-9934: Use after free in Aura
* CVE-2026-9935: Uninitialized Use in ANGLE
* CVE-2026-9936: Use after free in GFX
* CVE-2026-9937: Use after free in UI
* CVE-2026-9938: Inappropriate implementation in V8
* CVE-2026-9939: Heap buffer overflow in WebCodecs
* CVE-2026-9940: Heap buffer overflow in ANGLE
* CVE-2026-9941: Use after free in ANGLE
* CVE-2026-9942: Uninitialized Use in ANGLE
* CVE-2026-9943: Out of bounds read in WebGL
* CVE-2026-9944: Uninitialized Use in ANGLE
* CVE-2026-9945: Use after free in Media
* CVE-2026-9946: Use after free in ANGLE
* CVE-2026-9947: Use after free in XML
* CVE-2026-9948: Use after free in Views
* CVE-2026-9949: Use after free in Core
* CVE-2026-9950: Insufficient validation of untrusted input in iOS
* CVE-2026-9951: Use after free in UI
* CVE-2026-9952: Use after free in WebAudio
* CVE-2026-9953: Out of bounds read in ANGLE
* CVE-2026-9954: Use after free in TabStrip
* CVE-2026-9955: Inappropriate implementation in iOS
* CVE-2026-9956: Use after free in iOS
* CVE-2026-9957: Use after free in PDF
* CVE-2026-9958: Use after free in PDFium
* CVE-2026-9959: Race in WebRTC
* CVE-2026-9960: Integer overflow in PDFium
* CVE-2026-9961: Use after free in SurfaceCapture
* CVE-2026-9962: Use after free in WebRTC
* CVE-2026-9963: Uninitialized Use in iOS
* CVE-2026-9964: Use after free in Bluetooth
* CVE-2026-9965: Out of bounds write in ANGLE
* CVE-2026-9966: Integer overflow in XML
* CVE-2026-9967: Out of bounds write in GPU
* CVE-2026-9968: Integer overflow in V8
* CVE-2026-9969: Insufficient validation of untrusted input in ANGLE
* CVE-2026-9970: Use after free in WebGL
* CVE-2026-9971: Inappropriate implementation in iOS
* CVE-2026-9972: Uninitialized Use in Gamepad
* CVE-2026-9973: Out of bounds write in V8
* CVE-2026-9974: Out of bounds write in GPU
* CVE-2026-9975: Out of bounds read and write in ANGLE
* CVE-2026-9976: Inappropriate implementation in USB
* CVE-2026-9977: Insufficient validation of untrusted input in WebShare
* CVE-2026-9978: Use after free in Glic
* CVE-2026-9979: Insufficient validation of untrusted input in Input
* CVE-2026-9980: Insufficient validation of untrusted input in Printing
* CVE-2026-9981: Inappropriate implementation in Skia
* CVE-2026-9982: Insufficient validation of untrusted input in ANGLE
* CVE-2026-9983: Type Confusion in Skia
* CVE-2026-9984: Use after free in UI
* CVE-2026-9985: Insufficient validation of untrusted input in Media
* CVE-2026-9986: Insufficient validation of untrusted input in OptimizationGuide
* CVE-2026-9987: Insufficient validation of untrusted input in WebAppInstalls
* CVE-2026-9988: Use after free in WebRTC
* CVE-2026-9989: Inappropriate implementation in Media
* CVE-2026-9990: Use after free in WebAppInstalls
* CVE-2026-9991: Inappropriate implementation in Media
* CVE-2026-9992: Use after free in Network
* CVE-2026-9993: Use after free in Views
* CVE-2026-9994: Use after free in Core
* CVE-2026-9995: Use after free in WebXR
* CVE-2026-9996: Out of bounds read in WebRTC
* CVE-2026-9997: Use after free in Input
* CVE-2026-9998: Integer overflow in Skia
* CVE-2026-9999: Inappropriate implementation in ANGLE
* CVE-2026-10000: Use after free in Passwords
* CVE-2026-10001: Use after free in PerformanceManager
* CVE-2026-10002: Use after free in PDFium
* CVE-2026-10003: Use after free in Views
* CVE-2026-10004: Insufficient validation of untrusted input in Passwords
* CVE-2026-10005: Use after free in WebAppInstalls
* CVE-2026-10006: Race in WebAudio
* CVE-2026-10007: Use after free in SVG
* CVE-2026-10008: Uninitialized Use in GPU
* CVE-2026-10009: Integer overflow in Skia
* CVE-2026-10010: Inappropriate implementation in Input
* CVE-2026-10011: Inappropriate implementation in Skia
* CVE-2026-10012: Use after free in Skia
* CVE-2026-10013: Use after free in WebCodecs
* CVE-2026-10014: Use after free in WebMIDI
* CVE-2026-10015: Integer overflow in WTF
* CVE-2026-10016: Use after free in DOM
* CVE-2026-10017: Out of bounds read in Headless
* CVE-2026-10018: Integer overflow in ANGLE
* CVE-2026-10019: Integer overflow in ANGLE
* CVE-2026-10020: Insufficient validation of untrusted input in Skia
* CVE-2026-10021: Insufficient validation of untrusted input in USB
* CVE-2026-10022: Type Confusion in V8
* Wed May 20 2026 Than Ngo <than@redhat.com> - 148.0.7778.178-1
- Update to 148.0.7778.178
* CVE-2026-9111: Use after free in WebRTC
* CVE-2026-9110: Inappropriate implementation in UI
* CVE-2026-9112: Use after free in GPU
* CVE-2026-9113: Out of bounds read in GPU
* CVE-2026-9114: Use after free in QUIC
* CVE-2026-9115: Insufficient policy enforcement in Service Worker
* CVE-2026-9116: Insufficient policy enforcement in ServiceWorker
* CVE-2026-9117: Type Confusion in GFX
* CVE-2026-9118: Use after free in XR
* CVE-2026-9119: Heap buffer overflow in WebRTC
* CVE-2026-9120: Use after free in WebRTC
* CVE-2026-9126: Use after free in DOM
* CVE-2026-9121: Out of bounds read in GPU
* CVE-2026-9122: Out of bounds read in GPU
* CVE-2026-9123: Heap buffer overflow in Chromecast
* CVE-2026-9124: Insufficient validation of untrusted input in Input
- Backport upstream patches to improve auto dark image inversion logic
- Update default chromium browser config
* Fri May 15 2026 Than Ngo <than@redhat.com> - 148.0.7778.167-1
- Update to 148.0.7778.167
* CVE-2026-8509: Heap buffer overflow in WebML
* CVE-2026-8510: Integer overflow in Skia
* CVE-2026-8511: Use after free in UI
* CVE-2026-8512: Use after free in FileSystem
* CVE-2026-8513: Use after free in Input
* CVE-2026-8514: Use after free in Aura
* CVE-2026-8515: Use after free in HID
* CVE-2026-8516: Insufficient validation of untrusted input in DataTransfer
* CVE-2026-8517: Object lifecycle issue in WebShare
* CVE-2026-8518: Use after free in Blink
* CVE-2026-8519: Integer overflow in ANGLE
* CVE-2026-8520: Race in Payments
* CVE-2026-8521: Use after free in Tab Groups
* CVE-2026-8522: Use after free in Downloads
* CVE-2026-8523: Use after free in Mojo
* CVE-2026-8558: Out of bounds write in Fonts
* CVE-2026-8524: Out of bounds write in WebAudio
* CVE-2026-8525: Heap buffer overflow in ANGLE
* CVE-2026-8526: Out of bounds write in WebRTC
* CVE-2026-8527: Insufficient validation of untrusted input in Downloads
* CVE-2026-8528: Insufficient validation of untrusted input in SiteIsolation
* CVE-2026-8529: Heap buffer overflow in Codecs
* CVE-2026-8530: Use after free in Network
* CVE-2026-8531: Heap buffer overflow in WebML
* CVE-2026-8532: Integer overflow in XML
* CVE-2026-8533: Use after free in Accessibility
* CVE-2026-8534: Integer overflow in GPU
* CVE-2026-8535: Out of bounds read in Media
* CVE-2026-8536: Insufficient validation of untrusted input in ReadingMode
* CVE-2026-8537: Insufficient policy enforcement in ViewTransitions
* CVE-2026-8538: Insufficient validation of untrusted input in GPU
* CVE-2026-8539: Script injection in SanitizerAPI
* CVE-2026-8540: Type Confusion in V8
* CVE-2026-8541: Out of bounds read in UI
* CVE-2026-8542: Use after free in Core
* CVE-2026-8543: Out of bounds read in FileSystem
* CVE-2026-8544: Use after free in Media
* CVE-2026-8545: Object corruption in Compositing
* CVE-2026-8546: Out of bounds read in GPU
* CVE-2026-8547: Insufficient policy enforcement in Passwords
* CVE-2026-8548: Out of bounds write in Media
* CVE-2026-8549: Use after free in Media
* CVE-2026-8550: Use after free in Google Lens
* CVE-2026-8551: Use after free in Downloads
* CVE-2026-8552: Heap buffer overflow in GPU
* CVE-2026-8553: Use after free in GPU
* CVE-2026-8554: Type Confusion in ANGLE
* CVE-2026-8555: Use after free in GTK
* CVE-2026-8556: Inappropriate implementation in ANGLE
* CVE-2026-8557: Use after free in Accessibility
* CVE-2026-8559: Integer overflow in Internationalization
* CVE-2026-8560: Heap buffer overflow in SwiftShader
* CVE-2026-8561: Incorrect security UI in Fullscreen
* CVE-2026-8562: Side-channel information leakage in Navigation
* CVE-2026-8563: Insufficient policy enforcement in IFrame Sandbox
* CVE-2026-8564: Incorrect security UI in Downloads
* CVE-2026-8565: Inappropriate implementation in Downloads
* CVE-2026-8566: Insufficient policy enforcement in Payments
* CVE-2026-8567: Integer overflow in ANGLE
* CVE-2026-8568: Insufficient policy enforcement in AI
* CVE-2026-8569: Out of bounds write in Codecs
* CVE-2026-8570: Type Confusion in V8
* CVE-2026-8571: Insufficient policy enforcement in GPU
* CVE-2026-8572: Insufficient policy enforcement in Network
* CVE-2026-8573: Integer overflow in Codecs
* CVE-2026-8574: Use after free in Core
* CVE-2026-8575: Use after free in UI
* CVE-2026-8576: Inappropriate implementation in CORS
* CVE-2026-8577: Integer overflow in Fonts
* CVE-2026-8578: Out of bounds read in GPU
* CVE-2026-8579: Insufficient validation of untrusted input in Skia
* CVE-2026-8580: Use after free in Mojo
* CVE-2026-8581: Use after free in GPU
* CVE-2026-8582: Object lifecycle issue in Dawn
* CVE-2026-8583: Insufficient policy enforcement in WebXR
* CVE-2026-8584: Inappropriate implementation in Views
* CVE-2026-8585: Inappropriate implementation in Media
* CVE-2026-8586: Inappropriate implementation in Chromoting
* CVE-2026-8587: Use after free in Extensions
* Wed May 06 2026 Than Ngo <than@redhat.com> - 148.0.7778.96-1
- Update to 148.0.7778.96
* CVE-2026-7896: Integer overflow in Blink
* CVE-2026-7897: Use after free in Mobile
* CVE-2026-7898: Use after free in Chromoting
* CVE-2026-7899: Out of bounds read and write in V8
* CVE-2026-7900: Heap buffer overflow in ANGLE
* CVE-2026-7901: Use after free in ANGLE
* CVE-2026-7902: Out of bounds memory access in V8
* CVE-2026-7903: Integer overflow in ANGLE
* CVE-2026-7904: Out of bounds read in Fonts
* CVE-2026-7905: Insufficient validation of untrusted input in Media
* CVE-2026-7906: Use after free in SVG
* CVE-2026-7907: Use after free in DOM
* CVE-2026-7908: Use after free in Fullscreen
* CVE-2026-7909: Inappropriate implementation in ServiceWorker
* CVE-2026-7910: Use after free in Views
* CVE-2026-7911: Use after free in Aura
* CVE-2026-7912: Integer overflow in GPU
* CVE-2026-7913: Insufficient policy enforcement in DevTools
* CVE-2026-7914: Type Confusion in Accessibility
* CVE-2026-7915: Insufficient data validation in DevTools
* CVE-2026-7916: Insufficient data validation in InterestGroups
* CVE-2026-7917: Use after free in Fullscreen
* CVE-2026-7918: Use after free in GPU
* CVE-2026-7919: Use after free in Aura
* CVE-2026-7920: Use after free in Skia
* CVE-2026-7921: Use after free in Passwords
* CVE-2026-7922: Use after free in ServiceWorker
* CVE-2026-7923: Out of bounds write in Skia
* CVE-2026-7924: Uninitialized Use in Dawn
* CVE-2026-7925: Use after free in Chromoting
* CVE-2026-7926: Use after free in PresentationAPI
* CVE-2026-7927: Type Confusion in Runtime
* CVE-2026-7928: Use after free in WebRTC
* CVE-2026-7929: Use after free in MediaRecording
* CVE-2026-7930: Insufficient validation of untrusted input in Cookies
* CVE-2026-7931: Insufficient validation of untrusted input in iOS
* CVE-2026-7932: Insufficient policy enforcement in Downloads
* CVE-2026-7933: Out of bounds read in WebCodecs
* CVE-2026-7934: Insufficient validation of untrusted input in Popup Blocker
* CVE-2026-7935: Inappropriate implementation in Speech
* CVE-2026-7936: Object lifecycle issue in V8
* CVE-2026-7937: Insufficient policy enforcement in DevTools
* CVE-2026-7938: Use after free in CSS
* CVE-2026-7939: Inappropriate implementation in SanitizerAPI
* CVE-2026-7940: Use after free in V8
* CVE-2026-7941: Insufficient validation of untrusted input in Mobile
* CVE-2026-7942: Integer overflow in ANGLE
* CVE-2026-7943: Insufficient validation of untrusted input in ANGLE
* CVE-2026-7944: Insufficient validation of untrusted input in Persistent Cache
* CVE-2026-7945: Insufficient validation of untrusted input in COOP
* CVE-2026-7946: Insufficient policy enforcement in WebUI
* CVE-2026-7947: Insufficient validation of untrusted input in Network
* CVE-2026-7948: Race in Chromoting
* CVE-2026-7949: Out of bounds read in Skia
* CVE-2026-7950: Out of bounds read and write in GFX
* CVE-2026-7951: Out of bounds write in WebRTC
* CVE-2026-7952: Insufficient policy enforcement in Extensions
* CVE-2026-7953: Insufficient validation of untrusted input in Omnibox
* CVE-2026-7954: Race in Shared Storage
* CVE-2026-7955: Uninitialized Use in GPU
* CVE-2026-7956: Use after free in Navigation
* CVE-2026-7957: Out of bounds write in Media
* CVE-2026-7958: Inappropriate implementation in ServiceWorker
* CVE-2026-7959: Inappropriate implementation in Navigation
* CVE-2026-7960: Race in Speech
* CVE-2026-7961: Insufficient validation of untrusted input in Permissions
* CVE-2026-7962: Insufficient policy enforcement in DirectSockets
* CVE-2026-7963: Inappropriate implementation in ServiceWorker
* CVE-2026-7964: Insufficient validation of untrusted input in FileSystem
* CVE-2026-7965: Insufficient validation of untrusted input in DevTools
* CVE-2026-7966: Insufficient validation of untrusted input in SiteIsolation
* CVE-2026-7967: Insufficient validation of untrusted input in Navigation
* CVE-2026-7968: Insufficient validation of untrusted input in CORS
* CVE-2026-7969: Integer overflow in Network
* CVE-2026-7970: Use after free in TopChrome
* CVE-2026-7971: Inappropriate implementation in ORB
* CVE-2026-7972: Uninitialized Use in GPU
* CVE-2026-7973: Integer overflow in Dawn
* CVE-2026-7974: Use after free in Blink
* CVE-2026-7975: Use after free in DevTools
* CVE-2026-7976: Use after free in Views
* CVE-2026-7977: Inappropriate implementation in Canvas
* CVE-2026-7978: Inappropriate implementation in Companion
* CVE-2026-7979: Inappropriate implementation in Media
* CVE-2026-7980: Use after free in WebAudio
* CVE-2026-7981: Out of bounds read in Codecs
* CVE-2026-7982: Uninitialized Use in WebCodecs
* CVE-2026-7983: Out of bounds read in Dawn
* CVE-2026-7984: Use after free in ReadingMode
* CVE-2026-7985: Use after free in GPU
* CVE-2026-7986: Insufficient policy enforcement in Autofill
* CVE-2026-7987: Use after free in WebRTC
* CVE-2026-7988: Type Confusion in WebRTC
* CVE-2026-7989: Insufficient data validation in DataTransfer
* CVE-2026-7990: Insufficient validation of untrusted input in Updater
* CVE-2026-7991: Use after free in UI
* CVE-2026-7992: Insufficient validation of untrusted input in UI
* CVE-2026-7993: Insufficient validation of untrusted input in Payments
* CVE-2026-7994: Inappropriate implementation in Chromoting
* CVE-2026-7995: Out of bounds read in AdFilter
* CVE-2026-7996: Insufficient validation of untrusted input in SSL
* CVE-2026-7997: Insufficient validation of untrusted input in Updater
* CVE-2026-7998: Insufficient validation of untrusted input in Dialog
* CVE-2026-7999: Inappropriate implementation in V8
* CVE-2026-8000: Insufficient validation of untrusted input in ChromeDriver
* CVE-2026-8001: Use after free in Printing
* CVE-2026-8002: Use after free in Audio
* CVE-2026-8003: Insufficient validation of untrusted input in TabGroups
* CVE-2026-8004: Insufficient policy enforcement in DevTools
* CVE-2026-8005: Insufficient validation of untrusted input in Cast
* CVE-2026-8006: Insufficient policy enforcement in DevTools
* CVE-2026-8007: Insufficient validation of untrusted input in Cast
* CVE-2026-8008: Inappropriate implementation in DevTools
* CVE-2026-8009: Inappropriate implementation in Cast
* CVE-2026-8010: Insufficient validation of untrusted input in SiteIsolation
* CVE-2026-8011: Insufficient policy enforcement in Search
* CVE-2026-8012: Inappropriate implementation in MHTML
* CVE-2026-8013: Insufficient validation of untrusted input in FedCM
* CVE-2026-8014: Inappropriate implementation in Preload
* CVE-2026-8015: Inappropriate implementation in Media
* CVE-2026-8016: Use after free in WebRTC
* CVE-2026-8017: Side-channel information leakage in Media
* CVE-2026-8018: Insufficient policy enforcement in DevTools
* CVE-2026-8019: Insufficient policy enforcement in WebApp
* CVE-2026-8020: Uninitialized Use in GPU
* CVE-2026-8021: Script injection in UI
* CVE-2026-8022: Inappropriate implementation in MHTML
- Remove old remoting-no-tests patch
- Remove fix_GL_native_pixmap_import_support_reset_in_GpuInit patch
- Fix build error causing by sanitizer defines in GN
- Refresh rust-enable-unstable_feature patch
- Fix build error with system rust compiler
- Fix build error causing by new clang++ options which are not supported yet
- Fix build error causing by harfbuzz library rename
* Wed Apr 29 2026 Than Ngo <than@redhat.com> - 147.0.7727.137-1
- Update to 147.0.7727.137
* Critical CVE-2026-7363: Use after free in Canvas
* Critical CVE-2026-7361: Use after free in iOS
* Critical CVE-2026-7344: Use after free in Accessibility
* Critical CVE-2026-7343: Use after free in Views
* High CVE-2026-7333: Use after free in GPU
* High CVE-2026-7360: Insufficient validation of untrusted input in Compositing
* High CVE-2026-7359: Use after free in ANGLE
* High CVE-2026-7358: Use after free in Animation
* High CVE-2026-7334: Use after free in Views
* High CVE-2026-7357: Use after free in GPU
* High CVE-2026-7356: Use after free in Navigation
* High CVE-2026-7354: Out of bounds read and write in Angle
* High CVE-2026-7353: Heap buffer overflow in Skia
* High CVE-2026-7352: Use after free in Media
* High CVE-2026-7351: Race in MHTML
* High CVE-2026-7350: Use after free in WebMIDI
* High CVE-2026-7349: Use after free in Cast
* High CVE-2026-7348: Use after free in Codecs
* High CVE-2026-7335: Use after free in media
* High CVE-2026-7336: Use after free in WebRTC
* High CVE-2026-7337: Type Confusion in V8
* High CVE-2026-7347: Use after free in Chromoting
* High CVE-2026-7346: Inappropriate implementation in Tint
* High CVE-2026-7345: Insufficient validation of untrusted input in Feedback
* High CVE-2026-7338: Use after free in Cast
* High CVE-2026-7342: Use after free in WebView
* High CVE-2026-7341: Use after free in WebRTC
* Medium CVE-2026-7339: Heap buffer overflow in WebRTC
* Medium CVE-2026-7340: Integer overflow in ANGLE
* Medium CVE-2026-7355: Use after free in Media
* Sun Apr 26 2026 Than Ngo <than@redhat.com> - 147.0.7727.116-2
- Fix FTBFS with rust 1.95
- Backport the upstream fix GL native pixmap import support reset in GpuInit
* Thu Apr 23 2026 Than Ngo <than@redhat.com> - 147.0.7727.116-1
- Update to 147.0.7727.116
* High CVE-2026-6919: Use after free in DevTools
* High CVE-2026-6920: Out of bounds read in GPU
* Medium CVE-2026-6921: Race in GPU
- Fix rhbz#2458171, unexpanded macros in manpage
* Wed Apr 15 2026 Than Ngo <than@redhat.com> - 147.0.7727.101-1
- Update to 147.0.7727.101
* Critical CVE-2026-6296: Heap buffer overflow in ANGLE
* Critical CVE-2026-6297: Use after free in Proxy
* Critical CVE-2026-6298: Heap buffer overflow in Skia
* Critical CVE-2026-6299: Use after free in Prerender
* Critical CVE-2026-6358: Use after free in XR
* High CVE-2026-6359: Use after free in Video
* High CVE-2026-6300: Use after free in CSS
* High CVE-2026-6301: Type Confusion in Turbofan
* High CVE-2026-6302: Use after free in Video
* High CVE-2026-6303: Use after free in Codecs
* High CVE-2026-6304: Use after free in Graphite
* High CVE-2026-6305: Heap buffer overflow in PDFium
* High CVE-2026-6306: Heap buffer overflow in PDFium
* High CVE-2026-6307: Type Confusion in Turbofan
* High CVE-2026-6308: Out of bounds read in Media
* High CVE-2026-6309: Use after free in Viz
* High CVE-2026-6360: Use after free in FileSystem
* High CVE-2026-6310: Use after free in Dawn
* High CVE-2026-6311: Uninitialized Use in Accessibility
* High CVE-2026-6312: Insufficient policy enforcement in Passwords
* High CVE-2026-6313: Insufficient policy enforcement in CORS
* High CVE-2026-6314: Out of bounds write in GPU
* High CVE-2026-6315: Use after free in Permissions
* High CVE-2026-6316: Use after free in Forms
* High CVE-2026-6361: Heap buffer overflow in PDFium
* High CVE-2026-6362: Use after free in Codecs
* High CVE-2026-6317: Use after free in Cast
* Medium CVE-2026-6363: Type Confusion in V8
* Medium CVE-2026-6318: Use after free in Codecs
* Medium CVE-2026-6319: Use after free in Payments
* Medium CVE-2026-6364: Out of bounds read in Skia
* Thu Apr 09 2026 Than Ngo <than@redhat.com> - 147.0.7727.55-1
- Update to 147.0.7727.55
* Critical CVE-2026-5858: Heap buffer overflow in WebML
* Critical CVE-2026-5859: Integer overflow in WebML
* High CVE-2026-5860: Use after free in WebRTC
* High CVE-2026-5861: Use after free in V8
* High CVE-2026-5862: Inappropriate implementation in V8
* High CVE-2026-5863: Inappropriate implementation in V8
* High CVE-2026-5864: Heap buffer overflow in WebAudio
* High CVE-2026-5865: Type Confusion in V8
* High CVE-2026-5866: Use after free in Media
* High CVE-2026-5867: Heap buffer overflow in WebML
* High CVE-2026-5868: Heap buffer overflow in ANGLE
* High CVE-2026-5869: Heap buffer overflow in WebML
* High CVE-2026-5870: Integer overflow in Skia
* High CVE-2026-5871: Type Confusion in V8
* High CVE-2026-5872: Use after free in Blink
* High CVE-2026-5873: Out of bounds read and write in V8
* Medium CVE-2026-5874: Use after free in PrivateAI
* Medium CVE-2026-5875: Policy bypass in Blink
* Medium CVE-2026-5876: Side-channel information leakage in Navigation
* Medium CVE-2026-5877: Use after free in Navigation
* Medium CVE-2026-5878: Incorrect security UI in Blink
* Medium CVE-2026-5879: Insufficient validation of untrusted input in ANGLE
* Medium CVE-2026-5880: Incorrect security UI in browser UI
* Medium CVE-2026-5881: Policy bypass in LocalNetworkAccess
* Medium CVE-2026-5882: Incorrect security UI in Fullscreen
* Medium CVE-2026-5883: Use after free in Media
* Medium CVE-2026-5884: Insufficient validation of untrusted input in Media
* Medium CVE-2026-5885: Insufficient validation of untrusted input in WebML
* Medium CVE-2026-5886: Out of bounds read in WebAudio
* Medium CVE-2026-5887: Insufficient validation of untrusted input in Downloads
* Medium CVE-2026-5888: Uninitialized Use in WebCodecs
* Medium CVE-2026-5889: Cryptographic Flaw in PDFium
* Medium CVE-2026-5890: Race in WebCodecs
* Medium CVE-2026-5891: Insufficient policy enforcement in browser UI
* Medium CVE-2026-5892: Insufficient policy enforcement in PWAs
* Medium CVE-2026-5893: Race in V8
* Low CVE-2026-5894: Inappropriate implementation in PDF
* Low CVE-2026-5895: Incorrect security UI in Omnibox
* Low CVE-2026-5896: Policy bypass in Audio
* Low CVE-2026-5897: Incorrect security UI in Downloads
* Low CVE-2026-5898: Incorrect security UI in Omnibox
* Low CVE-2026-5899: Incorrect security UI in History Navigation
* Low CVE-2026-5900: Policy bypass in Downloads
* Low CVE-2026-5901: Policy bypass in DevTools
* Low CVE-2026-5902: Race in Media
* Low CVE-2026-5903: Policy bypass in IFrameSandbox
* Low CVE-2026-5904: Use after free in V8
* Low CVE-2026-5905: Incorrect security UI in Permissions
* Low CVE-2026-5906: Incorrect security UI in Omnibox
* Low CVE-2026-5907: Insufficient data validation in Media
* Low CVE-2026-5908: Integer overflow in Media
* Low CVE-2026-5909: Integer overflow in Media
* Low CVE-2026-5910: Integer overflow in Media
* Low CVE-2026-5911: Policy bypass in ServiceWorkers
* Low CVE-2026-5912: Integer overflow in WebRTC
* Low CVE-2026-5913: Out of bounds read in Blink
* Low CVE-2026-5914: Type Confusion in CSS
* Low CVE-2026-5915: Insufficient validation of untrusted input in WebML
* Low CVE-2026-5918: Inappropriate implementation in Navigation
* Low CVE-2026-5919: Insufficient validation of untrusted input in WebSockets
* Wed Apr 01 2026 Than Ngo <than@redhat.com> - 146.0.7680.177-1
- Update to 146.0.7680.177
* High CVE-2026-5273: Use after free in CSS
* High CVE-2026-5272: Heap buffer overflow in GPU
* High CVE-2026-5274: Integer overflow in Codecs
* High CVE-2026-5275: Heap buffer overflow in ANGLE
* High CVE-2026-5276: Insufficient policy enforcement in WebUSB
* High CVE-2026-5277: Integer overflow in ANGLE
* High CVE-2026-5278: Use after free in Web MIDI
* High CVE-2026-5279: Object corruption in V8
* High CVE-2026-5280: Use after free in WebCodecs
* High CVE-2026-5281: Use after free in Dawn
* High CVE-2026-5282: Out of bounds read in WebCodecs
* High CVE-2026-5283: Inappropriate implementation in ANGLE
* High CVE-2026-5284: Use after free in Dawn
* High CVE-2026-5285: Use after free in WebGL
* High CVE-2026-5286: Use after free in Dawn
* High CVE-2026-5287: Use after free in PDF
* High CVE-2026-5288: Use after free in WebView
* High CVE-2026-5289: Use after free in Navigation
* High CVE-2026-5290: Use after free in Compositing
* Medium CVE-2026-5291: Inappropriate implementation in WebGL
* Medium CVE-2026-5292: Out of bounds read in WebCodecs
* Tue Mar 24 2026 Than Ngo <than@redhat.com> - 146.0.7680.164-1
- Update to 146.0.7680.164
* High CVE-2026-4673: Heap buffer overflow in WebAudio
* High CVE-2026-4674: Out of bounds read in CSS
* High CVE-2026-4675: Heap buffer overflow in WebGL
* High CVE-2026-4676: Use after free in Dawn
* High CVE-2026-4677: Out of bounds read in WebAudio
* High CVE-2026-4678: Use after free in WebGPU
* High CVE-2026-4679: Integer overflow in Fonts
* High CVE-2026-4680: Use after free in FedCM
* Fri Mar 20 2026 Than Ngo <than@redhat.com> - 146.0.7680.153-1
- Update to 146.0.7680.153
* CVE-2026-4439: Out of bounds memory access in WebGL
* CVE-2026-4440: Out of bounds read and write in WebGL
* CVE-2026-4441: Use after free in Base
* CVE-2026-4442: Heap buffer overflow in CSS
* CVE-2026-4443: Heap buffer overflow in WebAudio
* CVE-2026-4444: Stack buffer overflow in WebRTC
* CVE-2026-4445: Use after free in WebRTC
* CVE-2026-4446: Use after free in WebRTC
* CVE-2026-4447: Inappropriate implementation in V8
* CVE-2026-4448: Heap buffer overflow in ANGLE
* CVE-2026-4449: Use after free in Blink
* CVE-2026-4450: Out of bounds write in V8
* CVE-2026-4451: Insufficient validation of untrusted input in Navigation
* CVE-2026-4452: Integer overflow in ANGLE
* CVE-2026-4453: Integer overflow in Dawn
* CVE-2026-4454: Use after free in Network
* CVE-2026-4455: Heap buffer overflow in PDFium
* CVE-2026-4456: Use after free in Digital Credentials API
* CVE-2026-4457: Type Confusion in V8
* CVE-2026-4458: Use after free in Extensions
* CVE-2026-4459: Out of bounds read and write in WebAudio
* CVE-2026-4460: Out of bounds read in Skia
* CVE-2026-4461: Inappropriate implementation in V8
* CVE-2026-4462: Out of bounds read in Blink
* CVE-2026-4463: Heap buffer overflow in WebRTC
* CVE-2026-4464: Integer overflow in ANGLE
* Sat Mar 14 2026 Than Ngo <than@redhat.com> - 146.0.7680.80-1
- Update to 146.0.7680.80
* CVE-2026-3909: Out of bounds write in Skia
* Fri Mar 13 2026 Than Ngo <than@redhat.com> - 146.0.7680.75-1
- Update to 146.0.7680.75
* CVE-2026-3910: Inappropriate implementation in V8
* Thu Mar 12 2026 Than Ngo <than@redhat.com> - 146.0.7680.71-1
- Update to 146.0.7680.71
* CVE-2026-3913: Heap buffer overflow in WebML
* CVE-2026-3914: Integer overflow in WebML
* CVE-2026-3915: Heap buffer overflow in WebML
* CVE-2026-3916: Out of bounds read in Web Speech
* CVE-2026-3917: Use after free in Agents
* CVE-2026-3918: Use after free in WebMCP
* CVE-2026-3919: Use after free in Extensions
* CVE-2026-3920: Out of bounds memory access in WebML
* CVE-2026-3921: Use after free in TextEncoding
* CVE-2026-3922: Use after free in MediaStream
* CVE-2026-3923: Use after free in WebMIDI
* CVE-2026-3924: Use after free in WindowDialog
* CVE-2026-3925: Incorrect security UI in LookalikeChecks
* CVE-2026-3926: Out of bounds read in V8
* CVE-2026-3927: Incorrect security UI in PictureInPicture
* CVE-2026-3928: Insufficient policy enforcement in Extensions
* CVE-2026-3929: Side-channel information leakage in ResourceTiming
* CVE-2026-3930: Unsafe navigation in Navigation
* CVE-2026-3931: Heap buffer overflow in Skia
* CVE-2026-3932: Insufficient policy enforcement in PDF
* CVE-2026-3934: Insufficient policy enforcement in ChromeDriver
* CVE-2026-3935: Incorrect security UI in WebAppInstalls
* CVE-2026-3936: Use after free in WebView
* CVE-2026-3937: Incorrect security UI in Downloads
* CVE-2026-3938: Insufficient policy enforcement in Clipboard
* CVE-2026-3939: Insufficient policy enforcement in PDF
* CVE-2026-3940: Insufficient policy enforcement in DevTools
* CVE-2026-3941: Insufficient policy enforcement in DevTools
* CVE-2026-3942: Incorrect security UI in PictureInPicture
* Fri Mar 06 2026 Than Ngo <than@redhat.com> - 145.0.7632.159-1
- Update to 145.0.7632.159
* CVE-2026-3536: Integer overflow in ANGLE
* CVE-2026-3537: Object lifecycle issue in PowerVR
* CVE-2026-3538: Integer overflow in Skia
* CVE-2026-3539: Object lifecycle issue in DevTools
* CVE-2026-3540: Inappropriate implementation in WebAudio
* CVE-2026-3541: Inappropriate implementation in CSS
* CVE-2026-3542: Inappropriate implementation in WebAssembly
* CVE-2026-3543: Inappropriate implementation in V8
* CVE-2026-3544: Heap buffer overflow in WebCodecs
* CVE-2026-3545: Insufficient data validation in Navigation
* Tue Feb 24 2026 Than Ngo <than@redhat.com> - 145.0.7632.116-1
- Update to 145.0.7632.116
* CVE-2026-3061: Out of bounds read in Media
* CVE-2026-3062: Out of bounds read and write in Tint
* CVE-2026-3063: Inappropriate implementation in DevTools
* Mon Feb 23 2026 Than Ngo <than@redhat.com> - 145.0.7632.109-1
- Update to 145.0.7632.109
* CVE-2026-2648: Heap buffer overflow in PDFium
* CVE-2026-2649: Integer overflow in V8
* CVE-2026-2650: Heap buffer overflow in Media
* Sat Feb 14 2026 Than Ngo <than@redhat.com> - 145.0.7632.75-1
- Update to 145.0.7632.75
* CVE-2026-2441: Use after free in CSS
* Thu Feb 12 2026 Than Ngo <than@redhat.com> - 145.0.7632.45-1
- Update to 145.0.7632.45
* CVE-2026-2313: Use after free in CSS
* CVE-2026-2314: Heap buffer overflow in Codecs
* CVE-2026-2315: Inappropriate implementation in WebGPU
* CVE-2026-2316: Insufficient policy enforcement in Frames
* CVE-2026-2317: Inappropriate implementation in Animation
* CVE-2026-2318: Inappropriate implementation in PictureInPicture
* CVE-2026-2319: Race in DevTools
* CVE-2026-2320: Inappropriate implementation in File input
* CVE-2026-2321: Use after free in Ozone
* CVE-2026-2322: Inappropriate implementation in File input
* CVE-2026-2323: Inappropriate implementation in Downloads
* Thu Feb 05 2026 Than Ngo <than@redhat.com> - 144.0.7559.132-1
- Update to 144.0.7559.132
* CVE-2026-1861: Heap buffer overflow in libvpx
* CVE-2026-1862: Type Confusion in V8
- Add BR on esbuild
- Disable devtool bundle
- Update scripts for downloading the source
* Wed Jan 28 2026 Than Ngo <than@redhat.com> - 144.0.7559.109-1
- Update to 144.0.7559.109
* CVE-2026-1504: Inappropriate implementation in Background Fetch API
* Wed Jan 21 2026 Than Ngo <than@redhat.com> - 144.0.7559.96-1
- Update to 144.0.7559.96
* CVE-2026-1220: Race in V8
* Fri Jan 16 2026 Fedora Release Engineering <releng@fedoraproject.org> - 144.0.7559.59-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild
* Fri Jan 16 2026 Fedora Release Engineering <releng@fedoraproject.org> - 144.0.7559.59-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild
* Wed Jan 14 2026 Than Ngo <than@redhat.com> - 144.0.7559.59-1
- Update to 144.0.7559.59
* CVE-2026-0899: Out of bounds memory access in V8
* CVE-2026-0900: Inappropriate implementation in V8
* CVE-2026-0901: Inappropriate implementation in Blink
* CVE-2026-0902: Inappropriate implementation in V8
* CVE-2026-0903: Insufficient validation of untrusted input in Downloads
* CVE-2026-0904: Incorrect security UI in Digital Credentials
* CVE-2026-0905: Insufficient policy enforcement in Network
* CVE-2026-0906: Incorrect security UI
* CVE-2026-0907: Incorrect security UI in Split View
* CVE-2026-0908: Use after free in ANGLE
* Wed Jan 07 2026 Than Ngo <than@redhat.com> - 143.0.7499.192-1
- Update to 143.0.7499.192
* High CVE-2026-0628: Insufficient policy enforcement in WebView tag
- Fix rhbz#2425338, Enable control flow integrity support for x86_64/aarch64
- Enable build for epel10.1
* Sat Dec 20 2025 Than Ngo <than@redhat.com> - 143.0.7499.169-1
- Update to 143.0.7499.169
* Wed Dec 17 2025 Than Ngo <than@redhat.com> - 143.0.7499.146-1
- Update to 143.0.7499.146
* High CVE-2025-14765: Use after free in WebGPU
* High CVE-2025-14766: Out of bounds read and write in V8
- Force dark mode when auto dark mode web content is on
- Remove omnibox-next-Improve-cutout-mouse-handling-for-Wayla patch, as it's merged
* Thu Dec 11 2025 Than Ngo <than@redhat.com> - 143.0.7499.109-2
- Enable gtk4 by default
* Thu Dec 11 2025 Than Ngo <than@redhat.com> - 143.0.7499.109-1
- Update to 143.0.7499.109
* High: Under coordination
* Medium CVE-2025-14372: Use after free in Password Manager
* Medium CVE-2025-14373: Inappropriate implementation in Toolbar
- Workaround problem of auto dark mode inverting images and making them unreadable
* Tue Dec 09 2025 LuK1337 <priv.luk@gmail.com> - 143.0.7499.40-2
- Backport Wayland Omnibox bug fix from upstream
* Tue Dec 02 2025 Than Ngo <than@redhat.com> - 143.0.7499.40-1
- Update to 143.0.7499.40
* High CVE-2025-13630: Type Confusion in V8
* High CVE-2025-13631: Inappropriate implementation in Google Updater
* High CVE-2025-13632: Inappropriate implementation in DevTools
* High CVE-2025-13633: Use after free in Digital Credentials
* Medium CVE-2025-13634: Inappropriate implementation in Downloads
* Medium CVE-2025-13720: Bad cast in Loader
* Medium CVE-2025-13721: Race in v8
* Low CVE-2025-13635: Inappropriate implementation in Downloads
* Low CVE-2025-13636: Inappropriate implementation in Split View
* Low CVE-2025-13637: Inappropriate implementation in Downloads
* Low CVE-2025-13638: Use after free in Media Stream
* Low CVE-2025-13639: Inappropriate implementation in WebRTC
* Low CVE-2025-13640: Inappropriate implementation in Passwords
* Mon Dec 01 2025 LuK1337 <priv.luk@gmail.com> - 142.0.7444.175-5
- Backport one more Wayland DnD bug fix from upstream
* Mon Nov 24 2025 Than Ngo <than@redhat.com> - 142.0.7444.175-4
- Enable system libcxx
- Fix link error when building with system libcxx
- Apply memory-allocator-dcheck-assert-fix for aarch64
* Thu Nov 20 2025 LuK1337 <priv.luk@gmail.com> - 142.0.7444.175-3
- Backport Wayland DnD bug fix from upstream
* Wed Nov 19 2025 Than Ngo <than@redhat.com> - 142.0.7444.175-2
- Fix typos in chromium.conf
* Tue Nov 18 2025 Than Ngo <than@redhat.com> - 142.0.7444.175-1
- Update to 142.0.7444.175
* High CVE-2025-13223: Type Confusion in V8
* High CVE-2025-13224: Type Confusion in V8
* Sat Nov 15 2025 LuK1337 <priv.luk@gmail.com> - 142.0.7444.162-2
- Disable LensOverlay feature by default
* Thu Nov 13 2025 Mamoru TASAKA <mtasaka@fedoraproject.org> - 142.0.7444.162-2
- Rebuild for ffmpeg 8 again
* Wed Nov 12 2025 Than Ngo <than@redhat.com> - 142.0.7444.162-1
- Update to 142.0.7444.162
* High CVE-2025-13042: Inappropriate implementation in V8
* Tue Nov 11 2025 Dominik Mierzejewski <dominik@greysector.net> - 142.0.7444.134-2
- Rebuilt for FFmpeg 8
* Thu Nov 06 2025 Than Ngo <than@redhat.com> - 142.0.7444.134-1
- Update to 142.0.7444.134
* High CVE-2025-12725: Out of bounds write in WebGPU
* High CVE-2025-12726: Inappropriate implementation in Views
* High CVE-2025-12727: Inappropriate implementation in V8
* Medium CVE-2025-12728: Inappropriate implementation in Omnibox
* Medium CVE-2025-12729: Inappropriate implementation in Omnibox
* Wed Nov 05 2025 Dominik Mierzejewski <dominik@greysector.net> - 142.0.7444.59-2
- Rebuilt for FFmpeg 8
* Thu Oct 30 2025 Than Ngo <than@redhat.com> - 142.0.7444.59-1
- Update to 142.0.7444.59
* High CVE-2025-12428: Type Confusion in V8
* High CVE-2025-12429: Inappropriate implementation in V8
* High CVE-2025-12430: Object lifecycle issue in Media
* High CVE-2025-12431: Inappropriate implementation in Extensions
* High CVE-2025-12432: Race in V8
* High CVE-2025-12433: Inappropriate implementation in V8
* High CVE-2025-12036: Inappropriate implementation in V8
* Medium CVE-2025-12434: Race in Storage
* Medium CVE-2025-12435: Incorrect security UI in Omnibox
* Medium CVE-2025-12436: Policy bypass in Extensions
* Medium CVE-2025-12437: Use after free in PageInfo
* Medium CVE-2025-12438: Use after free in Ozone
* Medium CVE-2025-12439: Inappropriate implementation in App-Bound Encryption
* Low CVE-2025-12440: Inappropriate implementation in Autofill
* Medium CVE-2025-12441: Out of bounds read in V8
* Medium CVE-2025-12443: Out of bounds read in WebXR
* Low CVE-2025-12444: Incorrect security UI in Fullscreen UI
* Low CVE-2025-12445: Policy bypass in Extensions
* Low CVE-2025-12446: Incorrect security UI in SplitView
* Low CVE-2025-12447: Incorrect security UI in Omnibox
* Refreshed ppc64le patches
* Refreshed system-brotli patch
* Refreshed clang++-unknown-argument patch
* Refreshed split-threshold-for-reg-with-hint patch
* Fixed some FTBFS caused by missing header files
* Fixed FTBFS caused by old rust compiler
* Fixed FTBFS caused by new glibc-2.42 in Rawhide
* Fixed FTBFS caused by old python-3.9.x in EL8/9
* Dropped obsoleted chromium-141-el9-ffmpeg-5.x-duration.patch for old ffmpeg on EL9
* Wed Oct 22 2025 Than Ngo <than@redhat.com> - 141.0.7390.122-1
- Update to 141.0.7390.122
* High CVE-2025-12036 chromium: Inappropriate implementation in V8
* Wed Oct 15 2025 Than Ngo <than@redhat.com> - 141.0.7390.107-1
- Update 141.0.7390.107
* High CVE-2025-11756: Use after free in Safe Browsing
* Sun Oct 12 2025 Than Ngo <than@redhat.com> - 141.0.7390.76-1
- Update to 141.0.7390.76
* Wed Oct 08 2025 Than Ngo <than@redhat.com> - 141.0.7390.65-1
- Update to 141.0.7390.65
* High CVE-2025-11458: Heap buffer overflow in Sync
* High CVE-2025-11460: Use after free in Storage
* Medium CVE-2025-11211: Out of bounds read in WebCodecs
* Fri Oct 03 2025 Tom Stellard <tstellar@redhat.com> - 141.0.7390.54-2
- Fix build with clang-22
* Thu Oct 02 2025 Than Ngo <than@redhat.com> - 141.0.7390.54-1
- Update to 141.0.7390.54
* High CVE-2025-11205: Heap buffer overflow in WebGPU
* High CVE-2025-11206: Heap buffer overflow in Video
* Medium CVE-2025-11207: Side-channel information leakage in Storage
* Medium CVE-2025-11208: Inappropriate implementation in Media
* Medium CVE-2025-11209: Inappropriate implementation in Omnibox
* Medium CVE-2025-11210: Side-channel information leakage in Tab
* Medium CVE-2025-11211: Out of bounds read in Media
* Medium CVE-2025-11212: Inappropriate implementation in Media
* Medium CVE-2025-11213: Inappropriate implementation in Omnibox
* Medium CVE-2025-11215: Off by one error in V8
* Low CVE-2025-11216: Inappropriate implementation in Storage
* Low CVE-2025-11219: Use after free in V8
* Wed Sep 24 2025 Than Ngo <than@redhat.com> - 140.0.7339.207-1
- Update to 140.0.7339.207
* CVE-2025-10890: Side-channel information leakage in V8
* CVE-2025-10891: Integer overflow in V8
* CVE-2025-10892: Integer overflow in V8
* Wed Sep 17 2025 Than Ngo <than@redhat.com> - 140.0.7339.185-1
- Update to 140.0.7339.185
* CVE-2025-10585: Type Confusion in V8
* CVE-2025-10500: Use after free in Dawn
* CVE-2025-10501: Use after free in WebRTC
* CVE-2025-10502: Heap buffer overflow in ANGLE
* Thu Sep 11 2025 Than Ngo <than@redhat.com> - 140.0.7339.127-1
- Update to 140.0.7339.127
* CVE-2025-10200: Use after free in Serviceworker
* CVE-2025-10201: Inappropriate implementation in Mojo
* Wed Sep 03 2025 Than Ngo <than@redhat.com> - 140.0.7339.80-1
- Update to 140.0.7339.80
* CVE-2025-9864: Use after free in V8
* CVE-2025-9865: Inappropriate implementation in Toolbar
* CVE-2025-9866: Inappropriate implementation in Extensions
CVE-2025-9867: Inappropriate implementation in Downloads
* Thu Aug 28 2025 Than Ngo <than@redhat.com> - 139.0.7258.154-1
- Update to 139.0.7258.154
* CVE-2025-9478: Use after free in ANGLE
* Fri Aug 22 2025 Than Ngo <than@redhat.com> - 139.0.7258.138-1
- Updated to 139.0.7258.138
* CVE-2025-9132: Out of bounds write in V8
* Wed Aug 20 2025 Dominik Mierzejewski <dominik@greysector.net> - 139.0.7258.127-2
- Drop unused yasm build dependency
see https://fedoraproject.org/wiki/Changes/DeprecateYASM
* Wed Aug 13 2025 Than Ngo <than@redhat.com> - 139.0.7258.127-1
- Updated to 139.0.7258.127
* CVE-2025-8879: Heap buffer overflow in libaom
* CVE-2025-8880: Race in V8
* CVE-2025-8901: Out of bounds write in ANGLE
* CVE-2025-8881: Inappropriate implementation in File Picker
* CVE-2025-8882: Use after free in Aura
* Tue Aug 05 2025 Than Ngo <than@redhat.com> - 139.0.7258.66-1
- Updated to 139.0.7258.66
* CVE-2025-8576: Use after free in Extensions
* CVE-2025-8578: Use after free in Cast
* CVE-2025-8579: Inappropriate implementation in Gemini Live in Chrome
* CVE-2025-8580: Inappropriate implementation in Filesystems
* CVE-2025-8581: Inappropriate implementation in Extensions
* CVE-2025-8582: Insufficient validation of untrusted input in DOM
* CVE-2025-8583: Inappropriate implementation in Permissions
* Mon Aug 04 2025 Tom Stellard <tstellar@redhat.com> - 138.0.7204.183-2
- Backport fix for build failure with clang-21
* Wed Jul 30 2025 Than Ngo <than@redhat.com> - 138.0.7204.183-1
- Update to 138.0.7204.183
* CVE-2025-8292: Use after free in Media Stream
* Wed Jul 23 2025 Fedora Release Engineering <releng@fedoraproject.org> - 138.0.7204.168-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild
* Wed Jul 23 2025 Than Ngo <than@redhat.com> - 138.0.7204.168-1
- Update to 138.0.7204.168
* CVE-2025-8010: Type Confusion in V8
* CVE-2025-8011: Type Confusion in V8
* Wed Jul 16 2025 Than Ngo <than@redhat.com> - 138.0.7204.157-1
- Update to 138.0.7204.157
* CVE-2025-7656: Integer overflow in V8
* CVE-2025-7657: Use after free in WebRTC
* CVE-2025-6558: Incorrect validation of untrusted input in ANGLE and GPU
* Fri Jul 11 2025 Tom Stellard <tstellar@redhat.com> -138.0.7204.100-2
- Update rust-clanglib patch for clang 21
* Wed Jul 09 2025 Than Ngo <than@redhat.com> - 138.0.7204.100-1
- Update to 138.0.7204.100
* Tue Jul 01 2025 Than Ngo <than@redhat.com> - 138.0.7204.92-1
- Update to 138.0.7204.92
* High CVE-2025-6554: Type Confusion in V8
* Tue Jun 24 2025 Than Ngo <than@redhat.com> - 138.0.7204.49-1
- Update to 138.0.7204.49
* CVE-2025-6555: Use after free in Animation
* CVE-2025-6556: Insufficient policy enforcement in Loader
* CVE-2025-6557: Insufficient data validation in DevTools
* Wed Jun 18 2025 Than Ngo <than@redhat.com> - 137.0.7151.119-1
- Update to 137.0.7151.119
* CVE-2025-6191: Integer overflow in V8
* CVE-2025-6192: Use after free in Profiler
* Wed Jun 11 2025 Than Ngo <than@redhat.com> - 137.0.7151.103-1
- Update to 137.0.7151.103
* CVE-2025-5958: Use after free in Media
* CVE-2025-5959: Type Confusion in V8
- Provide correct version for bundle librarires
- Fix rhbz#2368923, Chromium crash
* Tue Jun 03 2025 Than Ngo <than@redhat.com> - 137.0.7151.68-1
- Update to 137.0.7151.68
* CVE-2025-5419: Out of bounds read and write in V8
* CVE-2025-5068: Use after free in Blink
* Tue May 27 2025 Than Ngo <than@redhat.com> - 137.0.7151.55-1
- Update to 137.0.7151.55
* CVE-2025-5063: Use after free in Compositing
* CVE-2025-5280: Out of bounds write in V8
* CVE-2025-5064: Inappropriate implementation in Background Fetch API
* CVE-2025-5065: Inappropriate implementation in FileSystemAccess API
* CVE-2025-5066: Inappropriate implementation in Messages
* CVE-2025-5281: Inappropriate implementation in BFCache
* CVE-2025-5283: Use after free in libvpx
* CVE-2025-5067: Inappropriate implementation in Tab Strip
- Fix FTBFS caused by simdutf and pdfium-png_decoder
- Remove chromium-135-gperf.patch and chromium-135-add-cfi-suppressions-for-pipewire-functions.patch, merged by upstream
- Refresh ppc64le patches
- Enable system simdutf for F43
* Tue May 27 2025 Jitka Plesnikova <jplesnik@redhat.com> - 136.0.7103.113-2
- Rebuilt for flac 1.5.0
* Wed May 14 2025 Than Ngo <than@redhat.com> - 136.0.7103.113-1
- Update to 136.0.7103.113
* CVE-2025-4664: Insufficient policy enforcement in Loader
* CVE-2025-4609: Incorrect handle provided in unspecified circumstances in Mojo
* Wed May 07 2025 Than Ngo <than@redhat.com> - 136.0.7103.92-1
- Update to 136.0.7103.92
* CVE-2025-4372: Use after free in WebAudio
* Tue Apr 29 2025 Than Ngo <than@redhat.com> - 136.0.7103.59-1
- Update to 136.0.7103.59
* CVE-2025-4096: Heap buffer overflow in HTML
* CVE-2025-4050: Out of bounds memory access in DevTools
* CVE-2025-4051: Insufficient data validation in DevTools
* CVE-2025-4052: Inappropriate implementation in DevTools
* Thu Apr 24 2025 Than Ngo <than@redhat.com> - 136.0.7103.48-1
- Update to 136.0.7103.48
* Wed Apr 23 2025 Than Ngo <than@redhat.com> - 135.0.7049.114-1
- Update to 135.0.7049.114
* Wed Apr 16 2025 Than Ngo <than@redhat.com> - 135.0.7049.95-1
- Update to 135.0.7049.95
* CVE-2025-3619: Heap buffer overflow in Codecs
* CVE-2025-3620: Use after free in USB
* Wed Apr 09 2025 Than Ngo <than@redhat.com> - 135.0.7049.84-1
- Update to 135.0.7049.84
* CVE-2025-3066: Use after free in Site Isolation
* Wed Apr 02 2025 Jan Grulich <jgrulich@redhat.com> - 135.0.7049.52-2
- Add CFI suppressions for inline PipeWire functions
* Tue Apr 01 2025 Than Ngo <than@redhat.com> - 135.0.7049.52-1
- Update to 135.0.7049.52
* Fri Mar 28 2025 Than Ngo <than@redhat.com> - 135.0.7049.41-1
- Update to 135.0.7049.41
* Mon Mar 24 2025 Than Ngo <than@redhat.com> - 134.0.6998.165-1
- Update to 134.0.6998.165
- Fixed rhbz#2354377 - Enable ppc64le support for el10
* Thu Mar 20 2025 Than Ngo <than@redhat.com> - 134.0.6998.117-1
- Update to 134.0.6998.117
* Critical CVE-2025-2476: Use after free in Lens
* Mon Mar 17 2025 Than Ngo <than@redhat.com> - 134.0.6998.88-4
- Fixed rhbz#2352698, rebuild for noopenh264 2.6.0
* Fri Mar 14 2025 Than Ngo <than@redhat.com> - 134.0.6998.88-3
- Fixed build errors on ppc64le
* Thu Mar 13 2025 Fabio Valentini <decathorpe@gmail.com> - 134.0.6998.88-2
- Rebuild for noopenh264 2.6.0
* Tue Mar 11 2025 Than Ngo <than@redhat.com> - 134.0.6998.88-1
- Update to 134.0.6998.88
* High CVE-2025-1920: Type Confusion in V8
* High CVE-2025-2135: Type Confusion in V8
* High CVE-TBD: Out of bounds write in GPU
* Medium CVE-2025-2136: Use after free in Inspector
* Medium CVE-2025-2137: Out of bounds read in V8
* Wed Mar 05 2025 Than Ngo <than@redhat.com> - 134.0.6998.35-1
- Update to 134.0.6998.35
* CVE-2025-1914: Out of bounds read in V8
* CVE-2025-1915: Improper Limitation of a Pathname to a Restricted Directory in DevTools
* CVE-2025-1916: Use after free in Profiles
* CVE-2025-1917: Inappropriate Implementation in Browser UI
* CVE-2025-1918: Out of bounds read in PDFium
* CVE-2025-1919: Out of bounds read in Media
* CVE-2025-1921: Inappropriate Implementation in Media Stream
* CVE-2025-1922: Inappropriate Implementation in Selection
* CVE-2025-1923: Inappropriate Implementation in Permission Prompts
* Wed Feb 26 2025 Than Ngo <than@redhat.com> - 133.0.6943.141-1
- Update to 133.0.6943.141
* Wed Feb 19 2025 Than Ngo <than@redhat.com> - 133.0.6943.126-1
- Update to 133.0.6943.126
* CVE-2025-0999: Heap buffer overflow in V8
* CVE-2025-1426: Heap buffer overflow in GPU
* CVE-2025-1006: Use after free in Network
* Thu Feb 13 2025 Than Ngo <than@redhat.com> - 133.0.6943.98-1
- Update to 133.0.6943.98
* CVE-2025-0995: Use after free in V8
* CVE-2025-0996: Inappropriate implementation in Browser UI
* CVE-2025-0997: Use after free in Navigation
* CVE-2025-0998: Out of bounds memory access in V8
* Tue Feb 04 2025 Than Ngo <than@redhat.com> - 133.0.6943.53-1
- Update to 133.0.6943.53
* CVE-2025-0444: Use after free in Skia
* CVE-2025-0445: Use after free in V8
* CVE-2025-0451: Inappropriate implementation in Extensions API
* Wed Jan 29 2025 Than Ngo <than@redhat.com> - 132.0.6834.159-1
- Updated to 132.0.6834.159
* Medium CVE-2025-0762: Use after free in DevTools
* Thu Jan 23 2025 Than Ngo <than@redhat.com> - 132.0.6834.110-1
- Update to 132.0.6834.110
* High CVE-2025-0611: Object corruption in V8
* High CVE-2025-0612: Out of bounds memory access in V8
* Thu Jan 16 2025 Fedora Release Engineering <releng@fedoraproject.org> - 132.0.6834.83-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
* Wed Jan 15 2025 Than Ngo <than@redhat.com> - 132.0.6834.83-1
- Update to 132.0.6834.83
* High CVE-2025-0434: Out of bounds memory access in V8
* High CVE-2025-0435: Inappropriate implementation in Navigation
* High CVE-2025-0436: Integer overflow in Skia
* High CVE-2025-0437: Out of bounds read in Metrics
* High CVE-2025-0438: Stack buffer overflow in Tracing
* Medium CVE-2025-0439: Race in Frames
* Medium CVE-2025-0440: Inappropriate implementation in Fullscreen
* Medium CVE-2025-0441: Inappropriate implementation in Fenced
* Medium CVE-2025-0442: Inappropriate implementation in Payments
* Medium CVE-2025-0443: Insufficient data validation in Extensions
* Low CVE-2025-0446: Inappropriate implementation in Extensions
* Low CVE-2025-0447: Inappropriate implementation in Navigation
* Low CVE-2025-0448: Inappropriate implementation in Compositing
* Wed Jan 08 2025 Than Ngo <than@redhat.com> - 131.0.6778.264-1
- Update to 131.0.6778.264
* High CVE-2025-0291: Type Confusion in V8
* Thu Dec 19 2024 Than Ngo <than@redhat.com> - 131.0.6778.204-1
- Update to 131.0.6778.204
* High CVE-2024-12692: Type Confusion in V8
* High CVE-2024-12693: Out of bounds memory access in V8
* High CVE-2024-12694: Use after free in Compositing
* High CVE-2024-12695: Out of bounds write in V8
* Wed Dec 11 2024 Than Ngo <than@redhat.com> - 131.0.6778.139-1
- Update to 131.0.6778.139
* High CVE-2024-12381: Type Confusion in V8
* High CVE-2024-12382: Use after free in Translate
* Wed Dec 04 2024 Than Ngo <than@redhat.com> - 131.0.6778.108-1
- Update to 131.0.6778.108
* High CVE-2024-12053: Type Confusion in V8
* Sat Nov 23 2024 Than Ngo <than@redhat.com> - 131.0.6778.85-2
- Enable qt-ui
- Workaround for random crash
* Wed Nov 20 2024 Than Ngo <than@redhat.com> - 131.0.6778.85-1
- Update to 131.0.6778.85
* High CVE-2024-11395: Type Confusion in V8
* Tue Nov 12 2024 Than Ngo <than@redhat.com> - 131.0.6778.69-1
- Update to 131.0.6778.69
* High CVE-2024-11110: Inappropriate implementation in Blink
* Medium CVE-2024-11111: Inappropriate implementation in Autofill
* Medium CVE-2024-11112: Use after free in Media
* Medium CVE-2024-11113: Use after free in Accessibility
* Medium CVE-2024-11114: Inappropriate implementation in Views
* Medium CVE-2024-11115: Insufficient policy enforcement in Navigation
* Medium CVE-2024-11116: Inappropriate implementation in Paint
* Low CVE-2024-11117: Inappropriate implementation in FileSystem
* Sun Nov 10 2024 Than Ngo <than@redhat.com> - 130.0.6723.116-1
- Update to 130.0.6723.116
* High CVE-2024-10826: Use after free in Family Experience
* High CVE-2024-10827: Use after free in Serial
* Wed Oct 30 2024 Than Ngo <than@redhat.com> - 130.0.6723.91-1
- Update to 130.0.6723.91
* Critical CVE-2024-10487: Out of bounds write in Dawn
* High CVE-2024-10488: Use after free in WebRTC
* Sat Oct 26 2024 Than Ngo <than@redhat.com> - 130.0.6723.69-1
- Update to 130.0.6723.69
* High CVE-2024-10229: Inappropriate implementation in Extensions
* High CVE-2024-10230: Type Confusion in V8
* High CVE-2024-10231: Type Confusion in V8
* Mon Oct 21 2024 Than Ngo <than@redhat.com> - 130.0.6723.58-2
- Add missing pthread stack size for ppc64 (openpower-patches)
* Wed Oct 16 2024 Than Ngo <than@redhat.com> - 130.0.6723.58-1
- update to 130.0.6723.58
* High CVE-2024-9954: Use after free in AI
* Medium CVE-2024-9955: Use after free in Web Authentication
* Medium CVE-2024-9956: Inappropriate implementation in Web Authentication
* Medium CVE-2024-9957: Use after free in UI
* Medium CVE-2024-9958: Inappropriate implementation in PictureInPicture
* Medium CVE-2024-9959: Use after free in DevTools
* Medium CVE-2024-9960: Use after free in Dawn
* Medium CVE-2024-9961: Use after free in Parcel Tracking
* Medium CVE-2024-9962: Inappropriate implementation in Permissions
* Medium CVE-2024-9963: Insufficient data validation in Downloads
* Low CVE-2024-9964: Inappropriate implementation in Payments
* Low CVE-2024-9965: Insufficient data validation in DevTools
* Low CVE-2024-9966: Inappropriate implementation in Navigations
* Wed Oct 09 2024 Than Ngo <than@redhat.com> - 129.0.6668.100-1
- update to 129.0.6668.100
* CVE-2024-9602: Type Confusion in V8
* CVE-2024-9603: Type Confusion in V8
* Wed Oct 02 2024 Than Ngo <than@redhat.com> - 129.0.6668.89-1
- update to 129.0.6668.89
* High CVE -2024-7025: Integer overflow in Layout
* High CVE-2024-9369: Insufficient data validation in Mojo
* High CVE-2024-9370: Inappropriate implementation in V8
* Mon Sep 30 2024 Than Ngo <than@redhat.com> - 129.0.6668.70-3
- add clang-19 support
* Fri Sep 27 2024 Dominik Mierzejewski <dominik@greysector.net> - 129.0.6668.70-2
- Rebuilt for FFmpeg 7
* Wed Sep 25 2024 Than Ngo <than@redhat.com> - 129.0.6668.70-1
- update to 129.0.6668.70
* High CVE-2024-9120: Use after free in Dawn
* High CVE-2024-9121: Inappropriate implementation in V8
* High CVE-2024-9122: Type Confusion in V8
* High CVE-2024-9123: Integer overflow in Skia
* Thu Sep 19 2024 Than Ngo <than@redhat.com> - 129.0.6668.58-2
- clean up
* Tue Sep 17 2024 Than Ngo <than@redhat.com> - 129.0.6668.58-1
- update to 129.0.6668.58
* High CVE-2024-8904: Type Confusion in V8
* Medium CVE-2024-8905: Inappropriate implementation in V8
* Medium CVE-2024-8906: Incorrect security UI in Downloads
* Medium CVE-2024-8907: Insufficient data validation in Omnibox
* Low CVE-2024-8908: Inappropriate implementation in Autofill
* Low CVE-2024-8909: Inappropriate implementation in UI
* Wed Sep 11 2024 Than Ngo <than@redhat.com> - 128.0.6613.137-1
- update to 128.0.6613.137
* High CVE-2024-8636: Heap buffer overflow in Skia
* High CVE-2024-8637: Use after free in Media Router
* High CVE-2024-8638: Type Confusion in V8
* High CVE-2024-8639: Use after free in Autofill
* Thu Sep 05 2024 Than Ngo <than@redhat.com> - 128.0.6613.119-1
- update to 128.0.6613.119
* High CVE-2024-8362: Use after free in WebAudio
* High CVE-2024-7970: Out of bounds write in V8
* Wed Aug 07 2024 Than Ngo <than@redhat.com> - 127.0.6533.99-1
- update to 127.0.6533.99
* Critical CVE-2024-7532: Out of bounds memory access in ANGLE
* High CVE-2024-7533: Use after free in Sharing
* High CVE-2024-7550: Type Confusion in V8
* High CVE-2024-7534: Heap buffer overflow in Layout
* High CVE-2024-7535: Inappropriate implementation in V8
* High CVE-2024-7536: Use after free in WebAudio
* Tue Aug 06 2024 Than Ngo <than@redhat.com> - 127.0.6533.88-3
- fix rhbz#2294773 - Allow enabling vulkan on ozone wayland for AMD vaapi
- add ppc64le patch to fix runtime assertion trap on ppc64el systems
- refresh ppc64le patch to work around broken 64k allocator code on arm64
* Thu Aug 01 2024 Than Ngo <than@redhat.com> - 127.0.6533.88-2
- remove old patch that seems to be the cause of a crash
when the user set user.max_user_namespaces to 0
* Wed Jul 31 2024 Than Ngo <than@redhat.com> - 127.0.6533.88-1
- update to 127.0.6533.88
* Wed Jul 24 2024 Than Ngo <than@redhat.com> - 127.0.6533.72-1
- update to 127.0.6533.72
* CVE-2024-6988: Use after free in Downloads
* CVE-2024-6989: Use after free in Loader
* CVE-2024-6991: Use after free in Dawn
* CVE-2024-6992: Out of bounds memory access in ANGLE
* CVE-2024-6993: Inappropriate implementation in Canvas
* CVE-2024-6994: Heap buffer overflow in Layout
* CVE-2024-6995: Inappropriate implementation in Fullscreen
* CVE-2024-6996: Race in Frames
* CVE-2024-6997: Use after free in Tabs
* CVE-2024-6998: Use after free in User Education
* CVE-2024-6999: Inappropriate implementation in FedCM
* CVE-2024-7000: Use after free in CSS. Reported by Anonymous
* CVE-2024-7001: Inappropriate implementation in HTML
* CVE-2024-7003: Inappropriate implementation in FedCM
* CVE-2024-7004: Insufficient validation of untrusted input in Safe Browsing
* CVE-2024-7005: Insufficient validation of untrusted input in Safe
* Sat Jul 20 2024 Than Ngo <than@redhat.com> - 126.0.6478.182-2
- fix condition for is_cfi/use_thin_lto on aarch64/ppc64le
- update powerpc patches
* Tue Jul 16 2024 Than Ngo <than@redhat.com> - 126.0.6478.182-1
- update to 126.0.6478.182
* High CVE-2024-6772: Inappropriate implementation in V8
* High CVE-2024-6773: Type Confusion in V8
* High CVE-2024-6774: Use after free in Screen Capture
* High CVE-2024-6775: Use after free in Media Stream
* High CVE-2024-6776: Use after free in Audio
* High CVE-2024-6777: Use after free in Navigation
* High CVE-2024-6778: Race in DevTools
* High CVE-2024-6779: Out of bounds memory access in V8
* Sun Jul 07 2024 Than Ngo <than@redhat.com> - 126.0.6478.126-2
- fixed rhbz#2293202, chromium Wayland UI regression
* Tue Jun 25 2024 Than Ngo <than@redhat.com> - 126.0.6478.126-1
- update to 126.0.6478.126
* High CVE-2024-6290: Use after free in Dawn
* High CVE-2024-6291: Use after free in Swiftshader
* High CVE-2024-6292: Use after free in Dawn
* High CVE-2024-6293: Use after free in Dawn
* Wed Jun 19 2024 Than Ngo <than@redhat.com> - 126.0.6478.114-1
- update to 126.0.6478.114
* High CVE-2024-6100: Type Confusion in V8
* High CVE-2024-6101: Inappropriate implementation in WebAssembly
* High CVE-2024-6102: Out of bounds memory access in Dawn
* High CVE-2024-6103: Use after free in Dawn
* Wed Jun 12 2024 Than Ngo <than@redhat.com> - 126.0.6478.55-1
- update to 126.0.6478.55
* High CVE-2024-5830: Type Confusion in V8
* High CVE-2024-5831: Use after free in Dawn
* High CVE-2024-5832: Use after free in Dawn
* High CVE-2024-5833: Type Confusion in V8
* High CVE-2024-5834: Inappropriate implementation in Dawn
* High CVE-2024-5835: Heap buffer overflow in Tab Groups
* High CVE-2024-5836: Inappropriate Implementation in DevTools
* High CVE-2024-5837: Type Confusion in V8
* High CVE-2024-5838: Type Confusion in V8
* Medium CVE-2024-5839: Inappropriate Implementation in Memory Allocator
* Medium CVE-2024-5840: Policy Bypass in CORS
* Medium CVE-2024-5841: Use after free in V8
* Medium CVE-2024-5842: Use after free in Browser UI
* Medium CVE-2024-5843: Inappropriate implementation in Downloads
* Medium CVE-2024-5844: Heap buffer overflow in Tab Strip
* Medium CVE-2024-5845: Use after free in Audio
* Medium CVE-2024-5846: Use after free in PDFium
* Medium CVE-2024-5847: Use after free in PDFium
/usr/lib/debug /usr/lib/debug/.build-id /usr/lib/debug/.build-id/48 /usr/lib/debug/.build-id/48/12bb36c4516ddb052153526a0d007a4e2d95f7 /usr/lib/debug/.build-id/48/12bb36c4516ddb052153526a0d007a4e2d95f7.debug /usr/lib/debug/.build-id/65 /usr/lib/debug/.build-id/65/7ce7a589d51a959b731fa2d41572f88f1fd114 /usr/lib/debug/.build-id/65/7ce7a589d51a959b731fa2d41572f88f1fd114.debug /usr/lib/debug/.build-id/9f /usr/lib/debug/.build-id/9f/89ef54cceb9bc852ae23d90d48e78f75babe26 /usr/lib/debug/.build-id/9f/89ef54cceb9bc852ae23d90d48e78f75babe26.debug /usr/lib/debug/.build-id/ce /usr/lib/debug/.build-id/ce/2afcaaee497330a8808f9427114dcac2228043 /usr/lib/debug/.build-id/ce/2afcaaee497330a8808f9427114dcac2228043.debug /usr/lib/debug/usr /usr/lib/debug/usr/lib64 /usr/lib/debug/usr/lib64/chromium-browser /usr/lib/debug/usr/lib64/chromium-browser/libEGL.so-149.0.7827.53-1.el10_2.aarch64.debug /usr/lib/debug/usr/lib64/chromium-browser/libGLESv2.so-149.0.7827.53-1.el10_2.aarch64.debug /usr/lib/debug/usr/lib64/chromium-browser/libvk_swiftshader.so-149.0.7827.53-1.el10_2.aarch64.debug /usr/lib/debug/usr/lib64/chromium-browser/libvulkan.so.1-149.0.7827.53-1.el10_2.aarch64.debug
Generated by rpm2html 1.8.1
Fabrice Bellet, Mon Jun 8 05:09:51 2026