Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

Fedora 41: Chromium Security Advisory FEDORA-2025-81d05a9171 CVE-2025-8576

fedora
Calendar Grey August 12, 2025
Dist Fedora Esm H88
Fedora 41's recent security advisory from the Chromium team highlights critical vulnerabilities linked to use-after-free issues, urging users to update their installations to mitigate risks
Updated to 139.0.7258.66 * CVE-2025-8576: Use after free in Extensions * CVE-2025-8578: Use after free in Cast * CVE-2025-8579: Inappropriate implementation in Gemini Live in Ch...

Summary

Chromium is an open-source web browser, powered by WebKit (Blink).

Update Information:

Updated to 139.0.7258.66 * CVE-2025-8576: Use after free in Extensions * CVE-2025-8578: Use after free in Cast * CVE-2025-8579: Inappropriate implementation in Gemini Live in Chrome * CVE-2025-8580: Inappropriate implementation in Filesystems * CVE-2025-8581: Inappropriate implementation in Extensions * CVE-2025-8582: Insufficient validation of untrusted input in DOM * CVE-2025-8583: Inappropriate implementation in Permissions

Topics%20covered

Topics Covered

security advisory fedora update browser use-after-free inappropriate implementation

Change Log

* Tue Aug 5 2025 Than Ngo - 139.0.7258.66-1 - Updated to 139.0.7258.66 * CVE-2025-8576: Use after free in Extensions * CVE-2025-8578: Use after free in Cast * CVE-2025-8579: Inappropriate implementation in Gemini Live in Chrome * CVE-2025-8580: Inappropriate implementation in Filesystems * CVE-2025-8581: Inappropriate implementation in Extensions * CVE-2025-8582: Insufficient validation of untrusted input in DOM * CVE-2025-8583: Inappropriate implementation in Permissions * Mon Aug 4 2025 Tom Stellard - 138.0.7204.183-2 - Backport fix for build failure with clang-21

References


[ 1 ] Bug #2386895 - Update chromium to 139.0.7258.66 https://bugzilla.redhat.com/show_bug.cgi?id=2386895 [ 2 ] Bug #2387025 - CVE-2025-8583 chromium: Inappropriate implementation in Permissions in Google Chrome [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2387025 [ 3 ] Bug #2387026 - CVE-2025-8583 chromium: Inappropriate implementation in Permissions in Google Chrome [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2387026 [ 4 ] Bug #2387027 - CVE-2025-8580 chromium: Inappropriate implementation in Filesystems in Google Chrome [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2387027 [ 5 ] Bug #2387028 - CVE-2025-8580 chromium: Inappropriate implementation in Filesystems in Google Chrome [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2387028 [ 6 ] Bug #2387029 - CVE-2025-8582 chromium: Insufficient validation of untrusted input in Core in Google Chrome [fedora-all] https://bugzi...

Read the Full Advisory

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-81d05a9171' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
important
Lowest
Low
Medium
High
Critical

Name: chromium
Product: Fedora 41
Version: 139.0.7258.66
Release: 1.fc41
URL: http://www.chromium.org/Home
Summary: A WebKit (Blink) powered web browser that Google doesn't want you to use

Topics%20covered

Topics Covered

security advisory fedora update browser use-after-free inappropriate implementation

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here