Alerts This Week
Warning Icon 1 640
Alerts This Week
Warning Icon 1 640

Fedora 42: FEDORA-2025-41bc291ca0 critical: chromium media issues

fedora
Calendar Grey June 13, 2025
Dist Fedora Esm H88
Significant announcement for Fedora 42 tackling major concerns within Chromium's Media and V8 modules.
Update to 137.0.7151.103 CVE-2025-5958: Use after free in Media CVE-2025-5959: Type Confusion in V8

Summary

Chromium is an open-source web browser, powered by WebKit (Blink).

Update Information:

Update to 137.0.7151.103 CVE-2025-5958: Use after free in Media CVE-2025-5959: Type Confusion in V8

Change Log

* Wed Jun 11 2025 Than Ngo - 137.0.7151.103-1 - Update to 137.0.7151.103 * CVE-2025-5958: Use after free in Media * CVE-2025-5959: Type Confusion in V8 - Provide correct version for bundle librarires - Fix rhbz#2368923, Chromium crash

References


[ 1 ] Bug #2368923 - Chromium crashes with "SIGILL" when using the "ENTITIES HTML MathML Set" doctype in an XSLT stylesheet https://bugzilla.redhat.com/show_bug.cgi?id=2368923 [ 2 ] Bug #2371648 - CVE-2025-5958 chromium: Chrome Media Use-After-Free Vulnerability [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2371648 [ 3 ] Bug #2371653 - CVE-2025-5959 chromium: Chrome Type Confusion Vulnerability [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2371653

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-41bc291ca0' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
critical
Lowest
Low
Medium
High
Critical

Name: chromium
Product: Fedora 42
Version: 137.0.7151.103
Release: 1.fc42
Summary: A WebKit (Blink) powered web browser that Google doesn't want you to use

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here