Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

Fedora 39: FEDORA-2024-decb7e94a1 Critical: Chromium Type Confusion

fedora
Calendar Grey April 27, 2024
Dist Fedora Esm H88
Crucial Fedora 39 patch for Chromium addresses critical vulnerabilities, including type mismatches and boundary overflow risks.
update to 124.0.6367.78 * Critical CVE-2024-4058: Type Confusion in ANGLE * High CVE-2024-4059: Out of bounds read in V8 API * High CVE-2024-4060: Use after free in Dawn

Summary

Chromium is an open-source web browser, powered by WebKit (Blink).

Update Information:

update to 124.0.6367.78 * Critical CVE-2024-4058: Type Confusion in ANGLE * High CVE-2024-4059: Out of bounds read in V8 API * High CVE-2024-4060: Use after free in Dawn

Topics%20covered

Topics Covered

security advisory security issue fedora critical web browser out of bounds type confusion

Change Log

* Wed Apr 24 2024 Than Ngo - 124.0.6367.78-1 - update to 124.0.6367.78 * Critical CVE-2024-4058: Type Confusion in ANGLE * High CVE-2024-4059: Out of bounds read in V8 API * High CVE-2024-4060: Use after free in Dawn

References


[ 1 ] Bug #2275548 - CVE-2024-3833 CVE-2024-3834 CVE-2024-3837 CVE-2024-3839 CVE-2024-3840 CVE-2024-3841 CVE-2024-3843 CVE-2024-3844 CVE-2024-3845 CVE-2024-3846 CVE-2024-3847 chromium: various flaws [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2275548 [ 2 ] Bug #2275815 - CVE-2024-3914 chromium: chromium-browser: use after free in V8 [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2275815 [ 3 ] Bug #2276890 - CVE-2024-4058 chromium: chromium-browser: Type Confusion in ANGLE [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2276890 [ 4 ] Bug #2276891 - CVE-2024-4058 chromium: chromium-browser: Type Confusion in ANGLE [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2276891

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-decb7e94a1' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
critical
Lowest
Low
Medium
High
Critical

Name: chromium
Product: Fedora 39
Version: 124.0.6367.78
Release: 1.fc39
URL: http://www.chromium.org/Home
Summary: A WebKit (Blink) powered web browser that Google doesn't want you to use

Topics%20covered

Topics Covered

security advisory security issue fedora critical web browser out of bounds type confusion

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here