Package chromium: Information
Default inline alert: Version in the repository: 119.0.6045.159-alt0.p10.1
Source package: chromium
Version: 65.0.3325.146-alt1
Build time: Mar 15, 2018, 10:06 AM in the task #201755
Category: Networking/WWW
Report package bugHome page: http://www.chromium.org
License: BSD-3-Clause and LGPL-2.1+
Summary: An open source web browser developed by Google
Description:
Chromium is an open-source browser project that aims to build a safer, faster, and more stable way for all Internet users to experience the web.
List of rpms provided by this srpm:
chromium (x86_64, i586)
chromium-debuginfo (x86_64, i586)
chromium-gnome (x86_64, i586)
chromium-kde (x86_64, i586)
chromium (x86_64, i586)
chromium-debuginfo (x86_64, i586)
chromium-gnome (x86_64, i586)
chromium-kde (x86_64, i586)
Maintainer: Alexey Gladkov
Last changed
March 7, 2018 Alexey Gladkov 65.0.3325.146-alt1
- New version (65.0.3325.146). - Use clang. - Security fixes: - CVE-2018-6058: Use after free in Flash. - CVE-2018-6059: Use after free in Flash. - CVE-2018-6060: Use after free in Blink. - CVE-2018-6061: Race condition in V8. - CVE-2018-6062: Heap buffer overflow in Skia. - CVE-2018-6057: Incorrect permissions on shared memory. - CVE-2018-6063: Incorrect permissions on shared memory. - CVE-2018-6064: Type confusion in V8. - CVE-2018-6065: Integer overflow in V8. - CVE-2018-6066: Same Origin Bypass via canvas. - CVE-2018-6067: Buffer overflow in Skia. - CVE-2018-6068: Object lifecycle issues in Chrome Custom Tab. - CVE-2018-6069: Stack buffer overflow in Skia. - CVE-2018-6070: CSP bypass through extensions. - CVE-2018-6071: Heap bufffer overflow in Skia. - CVE-2018-6072: Integer overflow in PDFium. - CVE-2018-6073: Heap bufffer overflow in WebGL. - CVE-2018-6074: Mark-of-the-Web bypass. - CVE-2018-6075: Overly permissive cross origin downloads. - CVE-2018-6076: Incorrect handling of URL fragment identifiers in Blink. - CVE-2018-6077: Timing attack using SVG filters. - CVE-2018-6078: URL Spoof in OmniBox. - CVE-2018-6079: Information disclosure via texture data in WebGL. - CVE-2018-6080: Information disclosure in IPC call. - CVE-2018-6081: XSS in interstitials. - CVE-2018-6082: Circumvention of port blocking. - CVE-2018-6083: Incorrect processing of AppManifests.
Jan. 25, 2018 Alexey Gladkov 64.0.3282.119-alt1
- New version (64.0.3282.119). - Security fixes: - CVE-2018-6031: Use after free in PDFium. - CVE-2018-6032: Same origin bypass in Shared Worker. - CVE-2018-6033: Race when opening downloaded files. - CVE-2018-6034: Integer overflow in Blink. - CVE-2018-6035: Insufficient isolation of devtools from extensions. - CVE-2018-6036: Integer underflow in WebAssembly. - CVE-2018-6037: Insufficient user gesture requirements in autofill. - CVE-2018-6038: Heap buffer overflow in WebGL. - CVE-2018-6039: XSS in DevTools. - CVE-2018-6040: Content security policy bypass. - CVE-2018-6041: URL spoof in Navigation. - CVE-2018-6042: URL spoof in OmniBox. - CVE-2018-6043: Insufficient escaping with external URL handlers. - CVE-2018-6045: Insufficient isolation of devtools from extensions. - CVE-2018-6046: Insufficient isolation of devtools from extensions. - CVE-2018-6047: Cross origin URL leak in WebGL. - CVE-2018-6048: Referrer policy bypass in Blink. - CVE-2017-15420: URL spoofing in Omnibox. - CVE-2018-6049: UI spoof in Permissions. - CVE-2018-6050: URL spoof in OmniBox. - CVE-2018-6051: Referrer leak in XSS Auditor. - CVE-2018-6052: Incomplete no-referrer policy implementation. - CVE-2018-6053: Leak of page thumbnails in New Tab Page. - CVE-2018-6054: Use after free in WebUI.
Jan. 5, 2018 Alexey Gladkov 63.0.3239.132-alt1
- New version (63.0.3239.132). - Build contains a number of bug fixes and security updates.