Alerts This Week
Warning Icon 1 1,220
Alerts This Week
Warning Icon 1 1,220

Fedora 40 Chromium Update: FEDORA-2024-4808dce926 High Memory Access Issues

fedora
Calendar Grey December 22, 2024
Dist Fedora Esm H88
Urgent patches released for Chromium in Fedora 40 tackle serious vulnerabilities and resolve memory-related concerns.
Update to 131.0.6778.204 High CVE-2024-12692: Type Confusion in V8 High CVE-2024-12693: Out of bounds memory access in V8 High CVE-2024-12694: Use after free in Compositing High CV...

Summary

Chromium is an open-source web browser, powered by WebKit (Blink).

Update Information:

Update to 131.0.6778.204 High CVE-2024-12692: Type Confusion in V8 High CVE-2024-12693: Out of bounds memory access in V8 High CVE-2024-12694: Use after free in Compositing High CVE-2024-12695: Out of bounds write in V8

Topics%20covered

Topics Covered

security advisory Fedora memory access browser update chromium type confusion

Change Log

* Thu Dec 19 2024 Than Ngo - 131.0.6778.204-1 - Update to 131.0.6778.204 * High CVE-2024-12692: Type Confusion in V8 * High CVE-2024-12693: Out of bounds memory access in V8 * High CVE-2024-12694: Use after free in Compositing * High CVE-2024-12695: Out of bounds write in V8

References


[ 1 ] Bug #2333152 - CVE-2024-12692 chromium: Type Confusion in V8 [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2333152 [ 2 ] Bug #2333153 - CVE-2024-12692 chromium: Type Confusion in V8 [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2333153 [ 3 ] Bug #2333154 - CVE-2024-12693 chromium: Out of bounds memory access in V8 [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2333154 [ 4 ] Bug #2333155 - CVE-2024-12693 chromium: Out of bounds memory access in V8 [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2333155 [ 5 ] Bug #2333156 - CVE-2024-12694 chromium: Use after free in Compositing [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2333156 [ 6 ] Bug #2333157 - CVE-2024-12694 chromium: Use after free in Compositing [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2333157 [ 7 ] Bug #2333159 - CVE-2024-12695 chromium: Out of bounds write in V8 [epel-all] h...

Read the Full Advisory

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-4808dce926' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Name: chromium
Product: Fedora 40
Version: 131.0.6778.204
Release: 1.fc40
URL: http://www.chromium.org/Home
Summary: A WebKit (Blink) powered web browser that Google doesn't want you to use

Topics%20covered

Topics Covered

security advisory Fedora memory access browser update chromium type confusion

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here