Fedora 39: 2024-ff743391c3 Critical: Chromium Uninitialized Use Attack
fedora
August 3, 2024
update to 127.0.6533.88 Critical CVE-2024-6990: Uninitialized Use in Dawn High CVE-2024-7255: Out of bounds read in WebTransport High CVE-2024-7256: Insufficient data validation in...
Summary
Chromium is an open-source web browser, powered by WebKit (Blink).
Update Information:
update to 127.0.6533.88 Critical CVE-2024-6990: Uninitialized Use in Dawn High CVE-2024-7255: Out of bounds read in WebTransport High CVE-2024-7256: Insufficient data validation in Dawn
Change Log
* Thu Aug 1 2024 Than Ngo
References
[ 1 ] Bug #2299576 - 127.0.6533.72 released, fixing many CVEs
https://bugzilla.redhat.com/show_bug.cgi?id=2299576
[ 2 ] Bug #2300183 - 127.0.6533.72 koji build crashes occasionally and consistently when usernamespaces are disabled
https://bugzilla.redhat.com/show_bug.cgi?id=2300183
[ 3 ] Bug #2301846 - 127.0.6533.88 released, fixing one Critical and two High CVEs
https://bugzilla.redhat.com/show_bug.cgi?id=2301846
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-ff743391c3' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Name: chromium
Product: Fedora 39
Version: 127.0.6533.88
Release: 2.fc39
Summary: A WebKit (Blink) powered web browser that Google doesn't want you to use
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!