Package chromium: Information
Default inline alert: Version in the repository: 84.0.4147.105-alt1.1.p9
Source package: chromium
Version: 61.0.3163.100-alt1
Build time: Sep 26, 2017, 07:58 PM in the task #188800
Category: Networking/WWW
Report package bugHome page: http://www.chromium.org
License: BSD-3-Clause and LGPL-2.1+
Summary: An open source web browser developed by Google
Description:
Chromium is an open-source browser project that aims to build a safer, faster, and more stable way for all Internet users to experience the web.
List of rpms provided by this srpm:
chromium (x86_64, i586)
chromium-debuginfo (x86_64, i586)
chromium-gnome (x86_64, i586)
chromium-kde (x86_64, i586)
chromium (x86_64, i586)
chromium-debuginfo (x86_64, i586)
chromium-gnome (x86_64, i586)
chromium-kde (x86_64, i586)
Maintainer: Alexey Gladkov
Last changed
Sept. 26, 2017 Alexey Gladkov 61.0.3163.100-alt1
- Security fixes: - CVE-2017-5121: Out-of-bounds access in V8. Reported by Jordan Rabet, Microsoft Offensive Security Research and Microsoft ChakraCore team on 2017-09-14 - CVE-2017-5122: Out-of-bounds access in V8. Reported by Choongwoo Han of Naver Corporation on 2017-08-04
Sept. 12, 2017 Alexey Gladkov 61.0.3163.79-alt1
- New version (61.0.3163.79). - Security fixes: - CVE-2017-5111: Use after free in PDFium. Reported by Luat Nguyen (@l4wio) of KeenLab, Tencent on 2017-06-27 - CVE-2017-5112: Heap buffer overflow in WebGL. Reported by Tobias Klein (www.trapkit.de) on 2017-07-10 - CVE-2017-5113: Heap buffer overflow in Skia. Reported by Anonymous on 2017-07-20 - CVE-2017-5114: Memory lifecycle issue in PDFium. Reported by Ke Liu of Tencent's Xuanwu LAB on 2017-08-07 - CVE-2017-5115: Type confusion in V8. Reported by Marco Giovannini on 2017-07-17 - CVE-2017-5116: Type confusion in V8. Reported Guang Gong of Alpha Team, Qihoo 360 on 2017-08-28 - CVE-2017-5117: Use of uninitialized value in Skia. Reported by Tobias Klein (www.trapkit.de) on 2017-07-04 - CVE-2017-5118: Bypass of Content Security Policy in Blink. Reported by WenXu Wu of Tencent's Xuanwu Lab on 2017-07-24 - CVE-2017-5119: Use of uninitialized value in Skia. Reported by Anonymous on 2017-05-22 - CVE-2017-5120: Potential HTTPS downgrade during redirect navigation. Reported by Xiaoyin Liu (@general_nfs) on 2017-05-05
Aug. 15, 2017 Alexey Gladkov 60.0.3112.90-alt2
- Add missing libraries (ALT#33750).