Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

Fedora 42: FEDORA-2025-282f181e6f important: cef type confusion

fedora
Calendar Grey July 13, 2025
Dist Fedora Esm H88
The recent update to CEF in Fedora 42 resolves significant vulnerabilities within Chromium, providing detailed advisory notes.
Update to chromium 138.0.7204.92

Summary

CEF is an embeddable build of Chromium, powered by WebKit (Blink).

Update Information:

Update to chromium 138.0.7204.92

Topics%20covered

Topics Covered

security advisory fedora important type confusion cef embeddable framework

Change Log

* Sun Jul 6 2025 Asahi Lina - 138.0.15^chromium138.0.7204.92-3 - Do not strip debug info from libraries * Fri Jul 4 2025 Asahi Lina - 138.0.15^chromium138.0.7204.92-2 - Enable building debuginfo package * Fri Jul 4 2025 Than Ngo - 138.0.15^chromium138.0.7204.92-1 - Update to 138.0.7204.92 - * High CVE-2025-6554: Type Confusion in V8 * Fri Jul 4 2025 Asahi Lina - 138.0.15^chromium138.0.7204.49-4 - Disable some Chromium features not appropriate for CEF * Fri Jul 4 2025 Asahi Lina - 138.0.15^chromium138.0.7204.49-1 - Update to cef-138.0.15+gd0f1f64 - Than Ngo : Update to 138.0.7204.49 - * CVE-2025-6555: Use after free in Animation - * CVE-2025-6556: Insufficient policy enforcement in Loader - * CVE-2025-6557: Insufficient data validation in DevTools * Wed Jul 2 2025 Than Ngo - 137.0.17^chromium137.0.7151.119-1 - Update to 137.0.7151.119 - * CVE-2025-6191: Integer overflow in V8 - * CVE-2025-6192: Use after free in Profiler

References


[ 1 ] Bug #2374537 - cef-138.0.17 is available https://bugzilla.redhat.com/show_bug.cgi?id=2374537

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-282f181e6f' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
important
Lowest
Low
Medium
High
Critical

Name: cef
Product: Fedora 42
Version: 138.0.15^chromium138.0.7204.92
Release: 3.fc42
URL: https://bitbucket.org/chromiumembedded/cef
Summary: Chromium Embedded Framework

Topics%20covered

Topics Covered

security advisory fedora important type confusion cef embeddable framework

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here