Package chromium: Information

Source package: chromium
Version: 65.0.3325.146-alt1
Build time:  Mar 15, 2018, 10:06 AM in the task #201755
Category: Networking/WWW
Report package bug
Gear: https://git.altlinux.org/gears/c/chromium.git?a=tree;hb=68c28f24…
Home page: http://www.chromium.org
License: BSD-3-Clause and LGPL-2.1+
Summary: An open source web browser developed by Google
Description: 
Chromium is an open-source browser project that aims to build a safer,
faster, and more stable way for all Internet users to experience the web.
List of rpms provided by this srpm:
chromium (x86_64, i586)
chromium-debuginfo (x86_64, i586)
chromium-gnome (x86_64, i586)
chromium-kde (x86_64, i586)
Maintainer: Alexey Gladkov
List of contributors:
Alexey Gladkov
Andrey Cherepanov
Konstantin Lepikhov
Dmitriy Kulik
    1. libcups-devel
    2. perl-Switch
    3. alternatives >= 0.2.0
    4. pkg-config
    5. /proc
    6. pkgconfig(alsa)
    7. pkgconfig(atk)
    8. pkgconfig(atk-bridge-2.0)
    9. pkgconfig(cairo) >= 1.6
    10. bison
    11. pkgconfig(dbus-1)
    12. pkgconfig(dbus-glib-1)
    13. pkgconfig(expat)
    14. pkgconfig(fontconfig)
    15. pkgconfig(freetype2)
    16. pkgconfig(gconf-2.0)
    17. pkgconfig(glib-2.0)
    18. pkgconfig(gnome-keyring-1)
    19. pkgconfig(gtk+-2.0)
    20. pkgconfig(gtk+-3.0)
    21. pkgconfig(krb5-gssapi)
    22. pkgconfig(libavcodec)
    23. pkgconfig(libavfilter)
    24. pkgconfig(libavformat)
    25. pkgconfig(libavresample)
    26. pkgconfig(libavutil)
    27. lld-devel
    28. pkgconfig(libffi)
    29. pkgconfig(libpci)
    30. llvm6.0-devel
    31. pkgconfig(libpulse)
    32. bzlib-devel
    33. pkgconfig(libva)
    34. pkgconfig(nspr)
    35. pkgconfig(nss)
    36. pkgconfig(opus)
    37. pkgconfig(x11)
    38. pkgconfig(xcomposite)
    39. pkgconfig(xcursor)
    40. pkgconfig(xdamage)
    41. chrpath
    42. pkgconfig(xext)
    43. pkgconfig(xfixes)
    44. pkgconfig(xi)
    45. pkgconfig(xkbcommon)
    46. pkgconfig(xrandr)
    47. pkgconfig(xrender)
    48. pkgconfig(xscrnsaver)
    49. pkgconfig(xt)
    50. pkgconfig(xtst)
    51. clang6.0
    52. clang6.0-devel
    53. usbids
    54. glibc-kernheaders
    55. python
    56. xdg-utils
    57. flex
    58. gperf
    59. node
    60. python-modules-json
    61. gcc-c++

Last changed

March 7, 2018 Alexey Gladkov 65.0.3325.146-alt1
- New version (65.0.3325.146).
- Use clang.
- Security fixes:
  - CVE-2018-6058: Use after free in Flash.
  - CVE-2018-6059: Use after free in Flash.
  - CVE-2018-6060: Use after free in Blink.
  - CVE-2018-6061: Race condition in V8.
  - CVE-2018-6062: Heap buffer overflow in Skia.
  - CVE-2018-6057: Incorrect permissions on shared memory.
  - CVE-2018-6063: Incorrect permissions on shared memory.
  - CVE-2018-6064: Type confusion in V8.
  - CVE-2018-6065: Integer overflow in V8.
  - CVE-2018-6066: Same Origin Bypass via canvas.
  - CVE-2018-6067: Buffer overflow in Skia.
  - CVE-2018-6068: Object lifecycle issues in Chrome Custom Tab.
  - CVE-2018-6069: Stack buffer overflow in Skia.
  - CVE-2018-6070: CSP bypass through extensions.
  - CVE-2018-6071: Heap bufffer overflow in Skia.
  - CVE-2018-6072: Integer overflow in PDFium.
  - CVE-2018-6073: Heap bufffer overflow in WebGL.
  - CVE-2018-6074: Mark-of-the-Web bypass.
  - CVE-2018-6075: Overly permissive cross origin downloads.
  - CVE-2018-6076: Incorrect handling of URL fragment identifiers in Blink.
  - CVE-2018-6077: Timing attack using SVG filters.
  - CVE-2018-6078: URL Spoof in OmniBox.
  - CVE-2018-6079: Information disclosure via texture data in WebGL.
  - CVE-2018-6080: Information disclosure in IPC call.
  - CVE-2018-6081: XSS in interstitials.
  - CVE-2018-6082: Circumvention of port blocking.
  - CVE-2018-6083: Incorrect processing of AppManifests.
Jan. 25, 2018 Alexey Gladkov 64.0.3282.119-alt1
- New version (64.0.3282.119).
- Security fixes:
  - CVE-2018-6031: Use after free in PDFium.
  - CVE-2018-6032: Same origin bypass in Shared Worker.
  - CVE-2018-6033: Race when opening downloaded files.
  - CVE-2018-6034: Integer overflow in Blink.
  - CVE-2018-6035: Insufficient isolation of devtools from extensions.
  - CVE-2018-6036: Integer underflow in WebAssembly.
  - CVE-2018-6037: Insufficient user gesture requirements in autofill.
  - CVE-2018-6038: Heap buffer overflow in WebGL.
  - CVE-2018-6039: XSS in DevTools.
  - CVE-2018-6040: Content security policy bypass.
  - CVE-2018-6041: URL spoof in Navigation.
  - CVE-2018-6042: URL spoof in OmniBox.
  - CVE-2018-6043: Insufficient escaping with external URL handlers.
  - CVE-2018-6045: Insufficient isolation of devtools from extensions.
  - CVE-2018-6046: Insufficient isolation of devtools from extensions.
  - CVE-2018-6047: Cross origin URL leak in WebGL.
  - CVE-2018-6048: Referrer policy bypass in Blink.
  - CVE-2017-15420: URL spoofing in Omnibox.
  - CVE-2018-6049: UI spoof in Permissions.
  - CVE-2018-6050: URL spoof in OmniBox.
  - CVE-2018-6051: Referrer leak in XSS Auditor.
  - CVE-2018-6052: Incomplete no-referrer policy implementation.
  - CVE-2018-6053: Leak of page thumbnails in New Tab Page.
  - CVE-2018-6054: Use after free in WebUI.
Jan. 5, 2018 Alexey Gladkov 63.0.3239.132-alt1
- New version (63.0.3239.132).
- Build contains a number of bug fixes and security updates.
VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
Version: v24.5.1
Back to top