FEDORA-EPEL-2022-3a6675bd1a — security update for chromium

stable

chromium-102.0.5005.115-1.el8

FEDORA-EPEL-2022-3a6675bd1a created by spot a year ago for Fedora EPEL 8

Update to Chromium 102.0.5005.115 (yes, I know there is a newer one, but we need to get something out now).

This also adds the first build of Chromium for EPEL9, many thanks to all the folks who got the many dependencies built.

Fixes: CVE-2022-1232 CVE-2022-1364 CVE-2022-1633 CVE-2022-1634 CVE-2022-1635 CVE-2022-1636 CVE-2022-1637 CVE-2022-1638 CVE-2022-1639 CVE-2022-1640 CVE-2022-1641 CVE-2022-1853 CVE-2022-1854 CVE-2022-1855 CVE-2022-1856 CVE-2022-1857 CVE-2022-1858 CVE-2022-1859 CVE-2022-1860 CVE-2022-1861 CVE-2022-1862 CVE-2022-1863 CVE-2022-1864 CVE-2022-1865 CVE-2022-1866 CVE-2022-1867 CVE-2022-1868 CVE-2022-1869 CVE-2022-1870 CVE-2022-1871 CVE-2022-1872 CVE-2022-1873 CVE-2022-1874 CVE-2022-1875 CVE-2022-1876

This update has been submitted for testing by spot.

a year ago

This update's test gating status has been changed to 'ignored'.

a year ago

This update has been pushed to testing.

a year ago

This update has been submitted for stable by bodhi.

a year ago

This update has been pushed to stable.

a year ago

Please login to add feedback.

Metadata

Type

security

Severity

high

Karma

Signed

Content Type

RPM

Test Gating

ignored

Builds

chromium-102.0.5005.115-1.el8

Settings

Unstable by Karma

-3

Stable by Karma

Stable by Time

7 days

Dates

submitted

a year ago

in testing

a year ago

in stable

a year ago

BZ#2035520 Please branch and build chromium for EPEL 9

BZ#2071876 CVE-2022-1232 chromium-browser: Type Confusion in V8

BZ#2071878 CVE-2022-1232 chromium: chromium-browser: Type Confusion in V8 [epel-all]

BZ#2076274 CVE-2022-1364 Chromium-browser: Type Confusion in V8.

BZ#2076451 CVE-2022-1364 chromium: Chromium-browser: Type Confusion in V8. [epel-all]

BZ#2084016 CVE-2022-1633 chromium-browser: Use after free in Sharesheet

BZ#2084017 CVE-2022-1634 chromium-browser: Use after free in Browser UI

BZ#2084018 CVE-2022-1635 chromium-browser: Use after free in Permission Prompts

BZ#2084019 CVE-2022-1636 chromium-browser: Use after free in Performance APIs

BZ#2084020 CVE-2022-1637 chromium-browser: Inappropriate implementation in Web Contents

BZ#2084021 CVE-2022-1638 chromium-browser: Heap buffer overflow in V8 Internationalization

BZ#2084022 CVE-2022-1639 chromium-browser: Use after free in ANGLE

BZ#2084023 CVE-2022-1640 chromium-browser: Use after free in Sharing

BZ#2084024 CVE-2022-1641 chromium-browser: Use after free in Web UI Diagnostics

BZ#2084026 CVE-2022-1633 CVE-2022-1634 CVE-2022-1635 CVE-2022-1636 CVE-2022-1637 CVE-2022-1638 CVE-2022-1639 CVE-2022-1640 CVE-2022-1641 chromium: various flaws [epel-all]

BZ#2090284 CVE-2022-1853 chromium-browser: Use after free in Indexed DB

BZ#2090285 CVE-2022-1854 chromium-browser: Use after free in ANGLE

BZ#2090286 CVE-2022-1855 chromium-browser: Use after free in Messaging

BZ#2090287 CVE-2022-1856 chromium-browser: Use after free in User Education

BZ#2090288 CVE-2022-1857 chromium-browser: Insufficient policy enforcement in File System API

BZ#2090289 CVE-2022-1858 chromium-browser: Out of bounds read in DevTools

BZ#2090290 CVE-2022-1859 chromium-browser: Use after free in Performance Manager

BZ#2090291 CVE-2022-1860 chromium-browser: Use after free in UI Foundations

BZ#2090292 CVE-2022-1861 chromium-browser: Use after free in Sharing

BZ#2090293 CVE-2022-1862 chromium-browser: Inappropriate implementation in Extensions

BZ#2090294 CVE-2022-1863 chromium-browser: Use after free in Tab Groups

BZ#2090295 CVE-2022-1864 chromium-browser: Use after free in WebApp Installs

BZ#2090296 CVE-2022-1865 chromium-browser: Use after free in Bookmarks

BZ#2090297 CVE-2022-1866 chromium-browser: Use after free in Tablet Mode

BZ#2090298 CVE-2022-1867 chromium-browser: Insufficient validation of untrusted input in Data Transfer

BZ#2090299 CVE-2022-1868 chromium-browser: Inappropriate implementation in Extensions API

BZ#2090300 CVE-2022-1869 chromium-browser: Type Confusion in V8

BZ#2090303 CVE-2022-1870 chromium-browser: Use after free in App Service

BZ#2090304 CVE-2022-1871 chromium-browser: Insufficient policy enforcement in File System API

BZ#2090305 CVE-2022-1872 chromium-browser: Insufficient policy enforcement in Extensions API

BZ#2090306 CVE-2022-1873 chromium-browser: Insufficient policy enforcement in COOP

BZ#2090307 CVE-2022-1874 chromium-browser: Insufficient policy enforcement in Safe Browsing

BZ#2090308 CVE-2022-1875 chromium-browser: Inappropriate implementation in PDF

BZ#2090309 CVE-2022-1876 chromium-browser: Heap buffer overflow in DevTools

BZ#2090313 CVE-2022-1853 CVE-2022-1854 CVE-2022-1855 CVE-2022-1856 CVE-2022-1857 CVE-2022-1858 CVE-2022-1859 CVE-2022-1860 CVE-2022-1861 CVE-2022-1862 CVE-2022-1863 CVE-2022-1864 CVE-2022-1865 CVE-2022-1866 CVE-2022-1867 ... chromium: various flaws [epel-all]

chromium-102.0.5005.115-1.el8

Automated Test Results

ignored