Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

Fedora 40: High Severity Chromium Use After Free and Buffer Vulnerabilities

fedora
Calendar Grey September 9, 2024
Dist Fedora Esm H88
Important patches released for Fedora 40 addressing chromium vulnerabilities: CVE-2024-8354 and CVE-2024-7981. Ensure your system is secure!
update to 128.0.6613.119 High CVE-2024-8362: Use after free in WebAudio High CVE-2024-7970: Out of bounds write in V8

Summary

Chromium is an open-source web browser, powered by WebKit (Blink).

Update Information:

update to 128.0.6613.119 High CVE-2024-8362: Use after free in WebAudio High CVE-2024-7970: Out of bounds write in V8

Topics%20covered

Topics Covered

security advisory high severity Fedora web browser out of bounds chromium use after free

Change Log

* Thu Sep 5 2024 Than Ngo - 128.0.6613.119-1 - update to 128.0.6613.119 * High CVE-2024-8362: Use after free in WebAudio * High CVE-2024-7970: Out of bounds write in V8

References


[ 1 ] Bug #2303360 - CVE-2024-7536 chromium: Use after free in WebAudio [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2303360 [ 2 ] Bug #2303361 - CVE-2024-6994 chromium: Heap buffer overflow in Layout [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2303361 [ 3 ] Bug #2303362 - CVE-2024-6994 chromium: Heap buffer overflow in Layout [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2303362 [ 4 ] Bug #2303363 - CVE-2024-7003 chromium: Inappropriate implementation in FedCM [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2303363 [ 5 ] Bug #2303364 - CVE-2024-7000 chromium: Use after free in CSS [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2303364 [ 6 ] Bug #2303365 - CVE-2024-7003 chromium: Inappropriate implementation in FedCM [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2303365 [ 7 ] Bug #2303366 - CVE-2024-6999 chromium: Inappropriate implementation in Fed...

Read the Full Advisory

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-ee42af5a22' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Name: chromium
Product: Fedora 40
Version: 128.0.6613.119
Release: 1.fc40
URL: http://www.chromium.org/Home
Summary: A WebKit (Blink) powered web browser that Google doesn't want you to use

Topics%20covered

Topics Covered

security advisory high severity Fedora web browser out of bounds chromium use after free

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here