2025-12-19 14:32:41 +01:00
4 changed files with 12 additions and 5 deletions
--- a/chromium-143.0.7499.109-linux.tar.xz
+++ b/chromium-143.0.7499.109-linux.tar.xz
--- a/chromium-143.0.7499.146-linux.tar.xz
+++ b/chromium-143.0.7499.146-linux.tar.xz
--- a/chromium.changes
+++ b/chromium.changes
@@ -1,10 +1,17 @@
+-------------------------------------------------------------------
+Wed Dec 17 17:26:48 CET 2025 - Ruediger Oertel <ro@suse.de>
+
+- Chromium 143.0.7499.146 (boo#1255115):
+  * CVE-2025-14765: Use after free in WebGPU
+  * CVE-2025-14766: Out of bounds read and write in V8 
+
 -------------------------------------------------------------------
 Wed Dec 10 20:52:29 UTC 2025 - Andreas Stieger <andreas.stieger@gmx.de>

 - Chromium 143.0.7499.109 (boo#1254776):
  * CVE-2025-14372: Use after free in Password Manager
  * CVE-2025-14373: Inappropriate implementation in Toolbar
-  * third issue with an exploit is known to exist in the wild
+  * CVE-2025-14174: Out of bounds memory access in ANGLE
 - added patch gtk-414-2.patch
  (also revert upstream cdc2a57272589f9522689500838e889b88b3f9d4
   for older gtk versions)
--- a/chromium.spec
+++ b/chromium.spec
@@ -118,7 +118,7 @@
 %global official_build 1

 Name:           chromium%{n_suffix}
-Version:        143.0.7499.109
+Version:        143.0.7499.146
 Release:        0
 Summary:        Google's open source browser project
 License:        BSD-3-Clause AND LGPL-2.1-or-later