Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

Fedora 42: Advisory on Critical Buffer Overflow in Chromium CVE-2025-8879

fedora
Calendar Grey August 16, 2025
Dist Fedora Esm H88
Fedora 42 receives Chromium patch addressing various vulnerabilities, such as memory corruption and timing issues. Keep your system safe!
Updated to 139.0.7258.127 * CVE-2025-8879: Heap buffer overflow in libaom * CVE-2025-8880: Race in V8 * CVE-2025-8901: Out of bounds write in ANGLE * CVE-2025-8881: Inappropria...

Summary

Chromium is an open-source web browser, powered by WebKit (Blink).

Update Information:

Updated to 139.0.7258.127 * CVE-2025-8879: Heap buffer overflow in libaom * CVE-2025-8880: Race in V8 * CVE-2025-8901: Out of bounds write in ANGLE * CVE-2025-8881: Inappropriate implementation in File Picker * CVE-2025-8882: Use after free in Aura * Fix FTBFS with rust-1.89.0

Topics%20covered

Topics Covered

security advisory fedora buffer overflow important web browser heap

Change Log

* Wed Aug 13 2025 Than Ngo - 139.0.7258.127-1 - Updated to 139.0.7258.127 * CVE-2025-8879: Heap buffer overflow in libaom * CVE-2025-8880: Race in V8 * CVE-2025-8901: Out of bounds write in ANGLE * CVE-2025-8881: Inappropriate implementation in File Picker * CVE-2025-8882: Use after free in Aura

References


[ 1 ] Bug #2387036 - CVE-2025-8581 chromium: Inappropriate implementation in Extensions in Google Chrome [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2387036 [ 2 ] Bug #2387037 - CVE-2025-8581 chromium: Inappropriate implementation in Extensions in Google Chrome [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2387037 [ 3 ] Bug #2387038 - CVE-2025-8578 chromium: Use after free in Cast in Google Chrome [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2387038 [ 4 ] Bug #2387039 - CVE-2025-8578 chromium: Use after free in Cast in Google Chrome [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2387039 [ 5 ] Bug #2387040 - CVE-2025-8579 chromium: Inappropriate implementation in Picture In Picture in Google Chrome [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2387040 [ 6 ] Bug #2387041 - CVE-2025-8579 chromium: Inappropriate implementation in Picture In Picture in Google Chrome [epel-al...

Read the Full Advisory

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-502faa722e' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
critical
Lowest
Low
Medium
High
Critical

Name: chromium
Product: Fedora 42
Version: 139.0.7258.127
Release: 1.fc42
URL: http://www.chromium.org/Home
Summary: A WebKit (Blink) powered web browser that Google doesn't want you to use

Topics%20covered

Topics Covered

security advisory fedora buffer overflow important web browser heap

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here