Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

Fedora 40: FEDORA-2024-292aa2c246 high: chromium implementation issues

fedora
Calendar Grey November 26, 2024
Dist Fedora Esm H88
Stay informed about the recent developments regarding Fedora 40's Chromium security vulnerabilities, highlighting important bug resolutions and CVE report discrepancies.
Update to 131.0.6778.85 * High CVE-2024-11395: Type Confusion in V8 * High CVE-2024-11110: Inappropriate implementation in Blink * Medium CVE-2024-11111: Inappropriate implement...

Summary

Chromium is an open-source web browser, powered by WebKit (Blink).

Update Information:

Update to 131.0.6778.85 * High CVE-2024-11395: Type Confusion in V8 * High CVE-2024-11110: Inappropriate implementation in Blink * Medium CVE-2024-11111: Inappropriate implementation in Autofill * Medium CVE-2024-11112: Use after free in Media * Medium CVE-2024-11113: Use after free in Accessibility * Medium CVE-2024-11114: Inappropriate implementation in Views * Medium CVE-2024-11115: Insufficient policy enforcement in Navigation * Medium CVE-2024-11116: Inappropriate implementation in Paint * Low CVE-2024-11117: Inappropriate implementation in FileSystem

Topics%20covered

Topics Covered

security advisory high severity Fedora medium severity implementation issue chromium Type Confusion

Change Log

* Sat Nov 23 2024 Than Ngo - 131.0.6778.85-2 - Enable qt-ui - Workaround for random crash * Wed Nov 20 2024 Than Ngo - 131.0.6778.85-1 - Update to 131.0.6778.85 * High CVE-2024-11395: Type Confusion in V8 * Tue Nov 12 2024 Than Ngo - 131.0.6778.69-1 - Update to 131.0.6778.69 * High CVE-2024-11110: Inappropriate implementation in Blink * Medium CVE-2024-11111: Inappropriate implementation in Autofill * Medium CVE-2024-11112: Use after free in Media * Medium CVE-2024-11113: Use after free in Accessibility * Medium CVE-2024-11114: Inappropriate implementation in Views * Medium CVE-2024-11115: Insufficient policy enforcement in Navigation * Medium CVE-2024-11116: Inappropriate implementation in Paint * Low CVE-2024-11117: Inappropriate implementation in FileSystem

References


[ 1 ] Bug #2325761 - CVE-2024-11110 chromium: Inappropriate implementation in Extensions [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2325761 [ 2 ] Bug #2325762 - CVE-2024-11110 chromium: Inappropriate implementation in Extensions [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2325762 [ 3 ] Bug #2325763 - CVE-2024-11111 chromium: Inappropriate implementation in Autofill [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2325763 [ 4 ] Bug #2325764 - CVE-2024-11111 chromium: Inappropriate implementation in Autofill [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2325764 [ 5 ] Bug #2325765 - CVE-2024-11113 chromium: Use after free in Accessibility [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2325765 [ 6 ] Bug #2325766 - CVE-2024-11113 chromium: Use after free in Accessibility [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2325766 [ 7 ] Bug #2325767 - CVE-2024-1...

Read the Full Advisory

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-292aa2c246' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Name: chromium
Product: Fedora 40
Version: 131.0.6778.85
Release: 2.fc40
URL: http://www.chromium.org/Home
Summary: A WebKit (Blink) powered web browser that Google doesn't want you to use

Topics%20covered

Topics Covered

security advisory high severity Fedora medium severity implementation issue chromium Type Confusion

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here