Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

Fedora 41: Chromium Critical Update Heap Overflow CVE-2025-8879

fedora
Calendar Grey August 16, 2025
Dist Fedora Esm H88
Critical Chromium update for Fedora addressing multiple issues including heap overflow and race conditions. Install now!
Updated to 139.0.7258.127 * CVE-2025-8879: Heap buffer overflow in libaom * CVE-2025-8880: Race in V8 * CVE-2025-8901: Out of bounds write in ANGLE * CVE-2025-8881: Inappropria...

Summary

Chromium is an open-source web browser, powered by WebKit (Blink).

Update Information:

Updated to 139.0.7258.127 * CVE-2025-8879: Heap buffer overflow in libaom * CVE-2025-8880: Race in V8 * CVE-2025-8901: Out of bounds write in ANGLE * CVE-2025-8881: Inappropriate implementation in File Picker * CVE-2025-8882: Use after free in Aura * Fix FTBFS with rust-1.89.0

Topics%20covered

Topics Covered

security advisory fedora critical heap overflow race condition out-of-bounds

Change Log

* Wed Aug 13 2025 Than Ngo - 139.0.7258.127-1 - Updated to 139.0.7258.127 * CVE-2025-8879: Heap buffer overflow in libaom * CVE-2025-8880: Race in V8 * CVE-2025-8901: Out of bounds write in ANGLE * CVE-2025-8881: Inappropriate implementation in File Picker * CVE-2025-8882: Use after free in Aura

References


[ 1 ] Bug #2387036 - CVE-2025-8581 chromium: Inappropriate implementation in Extensions in Google Chrome [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2387036 [ 2 ] Bug #2387037 - CVE-2025-8581 chromium: Inappropriate implementation in Extensions in Google Chrome [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2387037 [ 3 ] Bug #2387038 - CVE-2025-8578 chromium: Use after free in Cast in Google Chrome [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2387038 [ 4 ] Bug #2387039 - CVE-2025-8578 chromium: Use after free in Cast in Google Chrome [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2387039 [ 5 ] Bug #2387040 - CVE-2025-8579 chromium: Inappropriate implementation in Picture In Picture in Google Chrome [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2387040 [ 6 ] Bug #2387041 - CVE-2025-8579 chromium: Inappropriate implementation in Picture In Picture in Google Chrome [epel-al...

Read the Full Advisory

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-0ea30a8042' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
critical
Lowest
Low
Medium
High
Critical

Name: chromium
Product: Fedora 41
Version: 139.0.7258.127
Release: 1.fc41
URL: http://www.chromium.org/Home
Summary: A WebKit (Blink) powered web browser that Google doesn't want you to use

Topics%20covered

Topics Covered

security advisory fedora critical heap overflow race condition out-of-bounds

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here