Package chromium: Information

Source package: chromium
Version: 76.0.3809.87-alt1
Build time:  Aug 8, 2019, 05:10 AM in the task #235554
Category: Networking/WWW
Report package bug
Gear: https://git.altlinux.org/gears/c/chromium.git?a=tree;hb=3a7eb09a…
Home page: http://www.chromium.org
License: BSD-3-Clause and LGPL-2.1+
Summary: An open source web browser developed by Google
Description: 
Chromium is an open-source browser project that aims to build a safer,
faster, and more stable way for all Internet users to experience the web.
List of rpms provided by this srpm:
chromium (x86_64, i586, aarch64)
chromium-debuginfo (x86_64, i586, aarch64)
chromium-gnome (x86_64, i586, aarch64)
chromium-kde (x86_64, i586, aarch64)
Maintainer: Alexey Gladkov
List of contributors:
Alexey Gladkov
Andrey Cherepanov
Konstantin Lepikhov
Dmitriy Kulik
    1. libcups-devel
    2. perl-Switch
    3. libstdc++-devel
    4. libstdc++-devel-static
    5. lld-devel
    6. pkg-config
    7. llvm7.0-devel
    8. pkgconfig(alsa)
    9. pkgconfig(atk)
    10. pkgconfig(atk-bridge-2.0)
    11. pkgconfig(atspi-2)
    12. pkgconfig(cairo) >= 1.6
    13. pkgconfig(dbus-1)
    14. pkgconfig(dbus-glib-1)
    15. pkgconfig(expat)
    16. pkgconfig(fontconfig)
    17. pkgconfig(freetype2)
    18. pkgconfig(gconf-2.0)
    19. pkgconfig(glib-2.0)
    20. /proc
    21. pkgconfig(gnome-keyring-1)
    22. pkgconfig(gtk+-2.0)
    23. pkgconfig(gtk+-3.0)
    24. pkgconfig(krb5-gssapi)
    25. pkgconfig(libavcodec)
    26. pkgconfig(libavfilter)
    27. pkgconfig(libavformat)
    28. pkgconfig(libavresample)
    29. pkgconfig(libavutil)
    30. pkgconfig(libffi)
    31. pkgconfig(libpci)
    32. pkgconfig(libpulse)
    33. bison
    34. pkgconfig(libva)
    35. pkgconfig(nspr)
    36. pkgconfig(nss)
    37. pkgconfig(opus)
    38. pkgconfig(x11)
    39. pkgconfig(xcomposite)
    40. pkgconfig(xcursor)
    41. pkgconfig(xdamage)
    42. pkgconfig(xext)
    43. pkgconfig(xfixes)
    44. pkgconfig(xi)
    45. pkgconfig(xkbcommon)
    46. pkgconfig(xrandr)
    47. pkgconfig(xrender)
    48. pkgconfig(xscrnsaver)
    49. pkgconfig(xt)
    50. pkgconfig(xtst)
    51. ninja-build
    52. node
    53. bzlib-devel
    54. chrpath
    55. clang7.0
    56. clang7.0-devel
    57. usbids
    58. python
    59. glibc-kernheaders
    60. python-modules-distutils
    61. xdg-utils
    62. python-modules-json
    63. gperf
    64. flex
    65. gcc-c++

Last changed

Aug. 2, 2019 Alexey Gladkov 76.0.3809.87-alt1
- New version (76.0.3809.87).
- Security fixes:
  - CVE-2019-5850: Use-after-free in offline page fetcher.
  - CVE-2019-5851: Use-after-poison in offline audio context.
  - CVE-2019-5852: Object leak of utility functions.
  - CVE-2019-5853: Memory corruption in regexp length check.
  - CVE-2019-5854: Integer overflow in PDFium text rendering.
  - CVE-2019-5855: Integer overflow in PDFium.
  - CVE-2019-5856: Insufficient checks on filesystem: URI permissions.
  - CVE-2019-5857: Comparison of -0 and null yields crash.
  - CVE-2019-5858: Insufficient filtering of Open URL service parameters.
  - CVE-2019-5859: res: URIs can load alternative browsers.
  - CVE-2019-5860: Use-after-free in PDFium.
  - CVE-2019-5861: Click location incorrectly checked.
  - CVE-2019-5862: AppCache not robust to compromised renderers.
  - CVE-2019-5863: Use-after-free in WebUSB on Windows.
  - CVE-2019-5864: Insufficient port filtering in CORS for extensions.
  - CVE-2019-5865: Site isolation bypass from compromised renderer.
May 3, 2019 Alexey Gladkov 74.0.3729.131-alt1
- New version (74.0.3729.131).
- Security fixes:
  - CVE-2019-5805: Use after free in PDFium.
  - CVE-2019-5806: Integer overflow in Angle.
  - CVE-2019-5807: Memory corruption in V8.
  - CVE-2019-5808: Use after free in Blink.
  - CVE-2019-5809: Use after free in Blink.
  - CVE-2019-5810: User information disclosure in Autofill.
  - CVE-2019-5811: CORS bypass in Blink.
  - CVE-2019-5812: URL spoof in Omnibox on iOS.
  - CVE-2019-5813: Out of bounds read in V8.
  - CVE-2019-5814: CORS bypass in Blink.
  - CVE-2019-5815: Heap buffer overflow in Blink.
  - CVE-2019-5816: Exploit persistence extension on Android.
  - CVE-2019-5817: Heap buffer overflow in Angle on Windows.
  - CVE-2019-5818: Uninitialized value in media reader.
  - CVE-2019-5819: Incorrect escaping in developer tools.
  - CVE-2019-5820: Integer overflow in PDFium.
  - CVE-2019-5821: Integer overflow in PDFium.
  - CVE-2019-5822: CORS bypass in download manager.
  - CVE-2019-5823: Forced navigation from service worker.
  - CVE-2019-5824: Parameter passing error in media player.
  - CVE-2019-5825: Out-of-bounds write in V8
  - CVE-2019-5826: Use-after-free in IndexedDB
  - CVE-2019-5827: Out-of-bounds access in SQLite.
March 18, 2019 Alexey Gladkov 73.0.3683.75-alt1
- New version (73.0.3683.75).
- Security fixes:
  - CVE-2019-5787: Use after free in Canvas.
  - CVE-2019-5788: Use after free in FileAPI.
  - CVE-2019-5789: Use after free in WebMIDI.
  - CVE-2019-5790: Heap buffer overflow in V8.
  - CVE-2019-5791: Type confusion in V8.
  - CVE-2019-5792: Integer overflow in PDFium.
  - CVE-2019-5793: Excessive permissions for private API in Extensions.
  - CVE-2019-5794: Security UI spoofing.
  - CVE-2019-5795: Integer overflow in PDFium.
  - CVE-2019-5796: Race condition in Extensions.
  - CVE-2019-5797: Race condition in DOMStorage.
  - CVE-2019-5798: Out of bounds read in Skia.
  - CVE-2019-5799: CSP bypass with blob URL.
  - CVE-2019-5800: CSP bypass with blob URL.
  - CVE-2019-5801: Incorrect Omnibox display on iOS.
  - CVE-2019-5802: Security UI spoofing.
  - CVE-2019-5803: CSP bypass with Javascript URLs'.
  - CVE-2019-5804: Command line command injection on Windows.
VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
Version: v24.5.1
Back to top