stable

chromium-139.0.7258.127-1.fc41

FEDORA-2025-0ea30a8042 created by than 3 months ago for Fedora 41

Updated to 139.0.7258.127

  * CVE-2025-8879: Heap buffer overflow in libaom
  * CVE-2025-8880: Race in V8
  * CVE-2025-8901: Out of bounds write in ANGLE
  * CVE-2025-8881: Inappropriate implementation in File Picker
  * CVE-2025-8882: Use after free in Aura
  * Fix FTBFS with rust-1.89.0

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2025-0ea30a8042

This update has been submitted for testing by than.

3 months ago

This update's test gating status has been changed to 'ignored'.

3 months ago
User Icon wasser19641 commented & provided feedback 3 months ago
karma

Works

This update has been submitted for stable by bodhi.

3 months ago

This update has been pushed to stable.

3 months ago

Please log in to add feedback.

Metadata
Type
security
Severity
high
Karma
1
Signed
Content Type
RPM
Test Gating
Autopush Settings
Unstable by Karma
-3
Stable by Karma
1
Stable by Time
7 days
Dates
submitted
3 months ago
in stable
3 months ago
approved
3 months ago
Builds
1
chromium-139.0.7258.127-1.fc41
BZ#2387036 CVE-2025-8581 chromium: Inappropriate implementation in Extensions in Google Chrome [fedora-all]
0
0
BZ#2387037 CVE-2025-8581 chromium: Inappropriate implementation in Extensions in Google Chrome [epel-all]
0
0
BZ#2387038 CVE-2025-8578 chromium: Use after free in Cast in Google Chrome [epel-all]
0
0
BZ#2387039 CVE-2025-8578 chromium: Use after free in Cast in Google Chrome [fedora-all]
0
0
BZ#2387040 CVE-2025-8579 chromium: Inappropriate implementation in Picture In Picture in Google Chrome [fedora-all]
0
0
BZ#2387041 CVE-2025-8579 chromium: Inappropriate implementation in Picture In Picture in Google Chrome [epel-all]
0
0
BZ#2387446 chromium fails to build with rust-1.89.0
0
0
BZ#2388155 CVE-2025-8880 chromium: Chrome V8 Sandbox Code Execution Vulnerability [fedora-all]
0
0
BZ#2388156 CVE-2025-8880 chromium: Chrome V8 Sandbox Code Execution Vulnerability [epel-all]
0
0
BZ#2388157 CVE-2025-8901 chromium: ANGLE Out-of-Bounds Write Vulnerability [fedora-all]
0
0
BZ#2388159 CVE-2025-8881 chromium: Chrome File Picker Cross-Origin Data Leak [fedora-all]
0
0
BZ#2388160 CVE-2025-8881 chromium: Chrome File Picker Cross-Origin Data Leak [epel-all]
0
0
BZ#2388161 CVE-2025-8882 chromium: Chrome Aura Use-After-Free Vulnerability [fedora-all]
0
0
BZ#2388162 CVE-2025-8882 chromium: Chrome Aura Use-After-Free Vulnerability [epel-all]
0
0
BZ#2388164 CVE-2025-8879 chromium: Chrome Heap Overflow [epel-all]
0
0
chromium-139.0.7258.127-1.fc41

Automated Test Results

Copyright © 2007-2025 Red Hat, Inc. and others.

Running bodhi-server 25.5.1 on bodhi-web-10-k6vlz.

bodhi is Free Software. Please file issues if you have any problems. Read the documentation.

Composes Legal Privacy policy