Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

Fedora 42: Chromium Important Use After Free Vuln FEDORA-2025-04158e05ef

fedora
Calendar Grey August 9, 2025
Dist Fedora Esm H88
CVE-2025-8577 reveals a security flaw in Ubuntu 21's firefox browser, necessitating immediate patches to ensure user protection.
Updated to 139.0.7258.66 * CVE-2025-8576: Use after free in Extensions * CVE-2025-8578: Use after free in Cast * CVE-2025-8579: Inappropriate implementation in Gemini Live in Ch...

Summary

Chromium is an open-source web browser, powered by WebKit (Blink).

Update Information:

Updated to 139.0.7258.66 * CVE-2025-8576: Use after free in Extensions * CVE-2025-8578: Use after free in Cast * CVE-2025-8579: Inappropriate implementation in Gemini Live in Chrome * CVE-2025-8580: Inappropriate implementation in Filesystems * CVE-2025-8581: Inappropriate implementation in Extensions * CVE-2025-8582: Insufficient validation of untrusted input in DOM * CVE-2025-8583: Inappropriate implementation in Permissions

Topics%20covered

Topics Covered

security advisory fedora important browser use-after-free Chromium

Change Log

* Tue Aug 5 2025 Than Ngo - 139.0.7258.66-1 - Updated to 139.0.7258.66 * CVE-2025-8576: Use after free in Extensions * CVE-2025-8578: Use after free in Cast * CVE-2025-8579: Inappropriate implementation in Gemini Live in Chrome * CVE-2025-8580: Inappropriate implementation in Filesystems * CVE-2025-8581: Inappropriate implementation in Extensions * CVE-2025-8582: Insufficient validation of untrusted input in DOM * CVE-2025-8583: Inappropriate implementation in Permissions * Mon Aug 4 2025 Tom Stellard - 138.0.7204.183-2 - Backport fix for build failure with clang-21

References


[ 1 ] Bug #2386895 - Update chromium to 139.0.7258.66 https://bugzilla.redhat.com/show_bug.cgi?id=2386895 [ 2 ] Bug #2387025 - CVE-2025-8583 chromium: Inappropriate implementation in Permissions in Google Chrome [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2387025 [ 3 ] Bug #2387026 - CVE-2025-8583 chromium: Inappropriate implementation in Permissions in Google Chrome [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2387026 [ 4 ] Bug #2387027 - CVE-2025-8580 chromium: Inappropriate implementation in Filesystems in Google Chrome [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2387027 [ 5 ] Bug #2387028 - CVE-2025-8580 chromium: Inappropriate implementation in Filesystems in Google Chrome [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2387028 [ 6 ] Bug #2387029 - CVE-2025-8582 chromium: Insufficient validation of untrusted input in Core in Google Chrome [fedora-all] https://bugzi...

Read the Full Advisory

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-04158e05ef' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
important
Lowest
Low
Medium
High
Critical

Name: chromium
Product: Fedora 42
Version: 139.0.7258.66
Release: 1.fc42
URL: http://www.chromium.org/Home
Summary: A WebKit (Blink) powered web browser that Google doesn't want you to use

Topics%20covered

Topics Covered

security advisory fedora important browser use-after-free Chromium

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here