Update to Chromium 75.0.3770.100. The usual pile of bugs and CVE fixes. vaapi support disabled, just too broken. :(
Fixes CVE-2019-5805 CVE-2019-5806 CVE-2019-5807 CVE-2019-5808 CVE-2019-5809 CVE-2019-5810 CVE-2019-5811 CVE-2019-5813 CVE-2019-5814 CVE-2019-5815 CVE-2019-5818 CVE-2019-5819 CVE-2019-5820 CVE-2019-5821 CVE-2019-5822 CVE-2019-5824 CVE-2019-5825 CVE-2019-5826 CVE-2019-5827 CVE-2019-5828 CVE-2019-5829 CVE-2019-5830 CVE-2019-5831 CVE-2019-5832 CVE-2019-5833 CVE-2019-5834 CVE-2019-5835 CVE-2019-5836 CVE-2019-5837 CVE-2019-5838 CVE-2019-5839 CVE-2019-5840 CVE-2019-5842
Please login to add feedback.
| submitted | 2 months ago |
| in testing | 2 months ago |
| modified | 2 months ago |
| 0 | 0 | #1702895 CVE-2019-5805 chromium-browser: Use after free in PDFium |
| 0 | 0 | #1702896 CVE-2019-5806 chromium-browser: Integer overflow in Angle |
| 0 | 0 | #1702897 CVE-2019-5807 chromium-browser: Memory corruption in V8 |
| 0 | 0 | #1702898 CVE-2019-5808 chromium-browser: Use after free in Blink |
| 0 | 0 | #1702899 CVE-2019-5809 chromium-browser: Use after free in Blink |
| 0 | 0 | #1702900 CVE-2019-5810 chromium-browser: User information disclosure in Autofill |
| 0 | 0 | #1702901 CVE-2019-5811 chromium-browser: CORS bypass in Blink |
| 0 | 0 | #1702902 CVE-2019-5812 chromium-browser: URL spoof in Omnibox on iOS |
| 0 | 0 | #1702903 CVE-2019-5813 chromium-browser: Out of bounds read in V8 |
| 0 | 0 | #1702904 CVE-2019-5814 chromium-browser: CORS bypass in Blink |
| 0 | 0 | #1702905 CVE-2019-5815 chromium-browser: Heap buffer overflow in Blink |
| 0 | 0 | #1702906 CVE-2019-5816 chromium-browser: Exploit persistence extension on Android |
| 0 | 0 | #1702907 CVE-2019-5817 chromium-browser: Heap buffer overflow in Angle on Windows |
| 0 | 0 | #1702908 CVE-2019-5818 chromium-browser: Uninitialized value in media reader |
| 0 | 0 | #1702909 CVE-2019-5819 chromium-browser: Incorrect escaping in developer tools |
| 0 | 0 | #1702910 CVE-2019-5820 chromium-browser: Integer overflow in PDFium |
| 0 | 0 | #1702911 CVE-2019-5821 chromium-browser: Integer overflow in PDFium |
| 0 | 0 | #1702912 CVE-2019-5822 chromium-browser: CORS bypass in download manager |
| 0 | 0 | #1702913 CVE-2019-5823 chromium-browser: Forced navigation from service worker |
| 0 | 0 | #1702915 CVE-2019-5805 CVE-2019-5806 CVE-2019-5807 CVE-2019-5808 CVE-2019-5809 CVE-2019-5810 CVE-2019-5811 CVE-2019-5813 CVE-2019-5814 CVE-2019-5815 CVE-2019-5818 CVE-2019-5819 CVE-2019-5820 CVE-2019-5821 CVE-2019-5822 ... chromium: various flaws [fedora-all] |
| 0 | 0 | #1706805 CVE-2019-5827 chromium-browser: out-of-bounds access in SQLite |
| 0 | 0 | #1706812 CVE-2019-5824 chromium-browser: parameter passing error in media player leading to unauthorized access |
| 0 | 0 | #1707247 CVE-2019-5825 chromium-browser: Out-of-bounds write in V8 |
| 0 | 0 | #1707248 CVE-2019-5826 chromium-browser: Use-after-free in IndexedDB |
| 0 | 0 | #1718256 CVE-2019-5828 chromium-browser: Use after free in ServiceWorker |
| 0 | 0 | #1718257 CVE-2019-5829 chromium-browser: Use after free in Download Manager |
| 0 | 0 | #1718258 CVE-2019-5830 chromium-browser: Incorrectly credentialed requests in CORS |
| 0 | 0 | #1718259 CVE-2019-5831 chromium-browser: Incorrect map processing in V8 |
| 0 | 0 | #1718260 CVE-2019-5832 chromium-browser: Incorrect CORS handling in XHR |
| 0 | 0 | #1718261 CVE-2019-5833 chromium-browser: Inconsistent security UI placement |
| 0 | 0 | #1718262 CVE-2019-5834 chromium-browser: URL spoof in Omnibox on iOS |
| 0 | 0 | #1718263 CVE-2019-5835 chromium-browser: Out of bounds read in Swiftshader |
| 0 | 0 | #1718264 CVE-2019-5836 chromium-browser: Heap buffer overflow in Angle |
| 0 | 0 | #1718266 CVE-2019-5837 chromium-browser: Cross-origin resources size disclosure in Appcache |
| 0 | 0 | #1718267 CVE-2019-5838 chromium-browser: Overly permissive tab access in Extensions |
| 0 | 0 | #1718268 CVE-2019-5839 chromium-browser: Incorrect handling of certain code points in Blink |
| 0 | 0 | #1718269 CVE-2019-5840 chromium-browser: Popup blocker bypass |
| 0 | 0 | #1720544 CVE-2019-5842 chromium-browser: Use-after-free in Blink |
spot
This update has been submitted for testing by spot.
This update test gating status has been changed to 'waiting'.
This update test gating status has been changed to 'ignored'.
spot edited this update.
This update has been pushed to testing.
This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes
Fix installation with 3rd part counterpart.
It would fix installation with 3rd part counterpart. but unfortunately, I've experienced a crash. Tried with a clean profile, same...
Bodhi is disabling automatic push to stable due to negative karma. The maintainer may push manually if they determine that the issue is not severe.
Sorry for the lack of proper report, here a minimal crash log https://paste.fedoraproject.org/paste/xTVct0SJQ4~S~qtYaNec3g
This is crashing for me as well.
Crashing upon start up here as well.
This update has been obsoleted by chromium-75.0.3770.100-3.fc29.