Fedora 38: chromium 2024-5d8f4f86b0 Security Advisory Updates
Summary
Chromium is an open-source web browser, powered by WebKit (Blink).
Update Information:
update to 124.0.6367.60 High CVE-2024-3832: Object corruption in V8 High CVE-2024-3833: Object corruption in WebAssembly High CVE-2024-3914: Use after free in V8 High CVE-2024-3834: Use after free in Downloads Medium CVE-2024-3837: Use after free in QUIC Medium CVE-2024-3838: Inappropriate implementation in Autofill Medium CVE-2024-3839: Out of bounds read in Fonts Medium CVE-2024-3840: Insufficient policy enforcement in Site Isolation Medium CVE-2024-3841: Insufficient data validation in Browser Switcher Medium CVE-2024-3843: Insufficient data validation in Downloads Low CVE-2024-3844: Inappropriate implementation in Extensions Low CVE-2024-3845: Inappropriate implementation in Network Low CVE-2024-3846: Inappropriate implementation in Prompts Low CVE-2024-3847: Insufficient policy enforcement in WebUI
Change Log
* Tue Apr 16 2024 Than Ngo
References
[ 1 ] Bug #2275546 https://bugzilla.redhat.com/show_bug.cgi?id=2275546 [ 2 ] Bug #2275816 https://bugzilla.redhat.com/show_bug.cgi?id=2275816
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-5d8f4f86b0' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label