From 9ce758264834dec408dfd0e5ae0b9b9257daaade8d1338cd09f3d0a3d01ab55d Mon Sep 17 00:00:00 2001
From: Andreas Stieger <Andreas.Stieger@gmx.de>
Date: Sat, 13 Dec 2025 10:17:53 +0100
Subject: [PATCH 1/2] add CVE-2025-14174 to 143.0.7499.109 for boo#1254776

---
 chromium.changes | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/chromium.changes b/chromium.changes
index b570334..35a3ed1 100644
--- a/chromium.changes
+++ b/chromium.changes
@@ -4,7 +4,7 @@ Wed Dec 10 20:52:29 UTC 2025 - Andreas Stieger <andreas.stieger@gmx.de>
 - Chromium 143.0.7499.109 (boo#1254776):
   * CVE-2025-14372: Use after free in Password Manager
   * CVE-2025-14373: Inappropriate implementation in Toolbar
-  * third issue with an exploit is known to exist in the wild
+  * CVE-2025-14174: Out of bounds memory access in ANGLE
 - added patch gtk-414-2.patch
   (also revert upstream cdc2a57272589f9522689500838e889b88b3f9d4
    for older gtk versions)
-- 
2.51.1


From 96724d1d02f9b023bbfbebb40566cbb281b00a39ebaa856f66b0040a081d8a14 Mon Sep 17 00:00:00 2001
From: Ruediger Oertel <ro@suse.de>
Date: Wed, 17 Dec 2025 17:38:57 +0100
Subject: [PATCH 2/2] update to 143.0.7499.146

---
 chromium-143.0.7499.109-linux.tar.xz | 3 ---
 chromium-143.0.7499.146-linux.tar.xz | 3 +++
 chromium.changes                     | 7 +++++++
 chromium.spec                        | 2 +-
 4 files changed, 11 insertions(+), 4 deletions(-)
 delete mode 100644 chromium-143.0.7499.109-linux.tar.xz
 create mode 100644 chromium-143.0.7499.146-linux.tar.xz

diff --git a/chromium-143.0.7499.109-linux.tar.xz b/chromium-143.0.7499.109-linux.tar.xz
deleted file mode 100644
index 0b40e7e..0000000
--- a/chromium-143.0.7499.109-linux.tar.xz
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:d3a3f3acbae7c9edc75fcea8c7725f90c6e5b57a21c8e37d3e629f2224184b51
-size 1140751164
diff --git a/chromium-143.0.7499.146-linux.tar.xz b/chromium-143.0.7499.146-linux.tar.xz
new file mode 100644
index 0000000..e2a5fef
--- /dev/null
+++ b/chromium-143.0.7499.146-linux.tar.xz
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:d79916348f34ecb154201ba2908a0c1ffaf8ae9670215c575b76cf95b10fb076
+size 1140736788
diff --git a/chromium.changes b/chromium.changes
index 35a3ed1..1b1297e 100644
--- a/chromium.changes
+++ b/chromium.changes
@@ -1,3 +1,10 @@
+-------------------------------------------------------------------
+Wed Dec 17 17:26:48 CET 2025 - Ruediger Oertel <ro@suse.de>
+
+- Chromium 143.0.7499.146 (boo#1255115):
+  * CVE-2025-14765: Use after free in WebGPU
+  * CVE-2025-14766: Out of bounds read and write in V8 
+
 -------------------------------------------------------------------
 Wed Dec 10 20:52:29 UTC 2025 - Andreas Stieger <andreas.stieger@gmx.de>
 
diff --git a/chromium.spec b/chromium.spec
index e64a485..7c7345b 100644
--- a/chromium.spec
+++ b/chromium.spec
@@ -118,7 +118,7 @@
 %global official_build 1
 
 Name:           chromium%{n_suffix}
-Version:        143.0.7499.109
+Version:        143.0.7499.146
 Release:        0
 Summary:        Google's open source browser project
 License:        BSD-3-Clause AND LGPL-2.1-or-later
-- 
2.51.1