Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

Fedora 42 - FEDORA-2025-97351a4c2a critical: chromium security updates

fedora
Calendar Grey March 15, 2025
Dist Fedora Esm H88
Essential patches for Fedora 42 Chrome address data type anomalies, memory overrun vulnerabilities, and various other concerns. Safeguard your device today.
Update to 131.0.6778.85 High CVE-2024-11395: Type Confusion in V8 High CVE-2024-11110: Inappropriate implementation in Blink Medium CVE-2024-11111: Inappropriate implementation in ...

Summary

Chromium is an open-source web browser, powered by WebKit (Blink).

Update Information:

Update to 131.0.6778.85 High CVE-2024-11395: Type Confusion in V8 High CVE-2024-11110: Inappropriate implementation in Blink Medium CVE-2024-11111: Inappropriate implementation in Autofill Medium CVE-2024-11112: Use after free in Media Medium CVE-2024-11113: Use after free in Accessibility Medium CVE-2024-11114: Inappropriate implementation in Views Medium CVE-2024-11115: Insufficient policy enforcement in Navigation Medium CVE-2024-11116: Inappropriate implementation in Paint Low CVE-2024-11117: Inappropriate implementation in FileSystem Update to 133.0.6943.126 CVE-2025-0999: Heap buffer overflow in V8 CVE-2025-1426: Heap buffer overflow in GPU CVE-2025-1006: Use after free in Network

Topics%20covered

Topics Covered

security advisory buffer overflow Fedora chromium use after free type confusion

Change Log

* Wed Mar 5 2025 Than Ngo - 134.0.6998.35 -1 - Update to 134.0.6998.35 * CVE-2025-1914: Out of bounds read in V8 * CVE-2025-1915: Improper Limitation of a Pathname to a Restricted Directory in DevTools * CVE-2025-1916: Use after free in Profiles * CVE-2025-1917: Inappropriate Implementation in Browser UI * CVE-2025-1918: Out of bounds read in PDFium * CVE-2025-1919: Out of bounds read in Media * CVE-2025-1921: Inappropriate Implementation in Media Stream * CVE-2025-1922: Inappropriate Implementation in Selection * CVE-2025-1923: Inappropriate Implementation in Permission Prompts * Wed Feb 26 2025 Than Ngo - 133.0.6943.141-1 - Update to 133.0.6943.141 * Wed Feb 19 2025 Than Ngo - 133.0.6943.126-1 - Update to 133.0.6943.126 * CVE-2025-0999: Heap buffer overflow in V8 * CVE-2025-1426: Heap buffer overflow in GPU * CVE-2025-1006: Use after free in Network

References

Fedora Update Notification FEDORA-2025-97351a4c2a 2025-03-15 00:23:42.172857+00:00 Name : chromium Product : Fedora 42 Version : 134.0.6998.35 Release : 1.fc42 URL : http://www.chromium.org/Home Summary : A WebKit (Blink) powered web browser that Google doesn't want you to use Description : Chromium is an open-source web browser, powered by WebKit (Blink).

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-97351a4c2a' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
critical
Lowest
Low
Medium
High
Critical

Name: chromium
Product: Fedora 42
Version: 134.0.6998.35
Release: 1.fc42
URL: http://www.chromium.org/Home
Summary: A WebKit (Blink) powered web browser that Google doesn't want you to use

Topics%20covered

Topics Covered

security advisory buffer overflow Fedora chromium use after free type confusion

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here