products/PackageHub
SHA256
31
1
Fork 14
Code Issues Pull Requests 26 Actions Activity

Pull request for security update for chromium #446

Open
rfrohl wants to merge 5 commits from rfrohl/PackageHub:maintenance-update-1771169089 into leap-16.0
pull from: rfrohl/PackageHub:maintenance-update-1771169089
merge into: products:leap-16.0
Conversation 27 Commits 5 Files Changed 1 +48
1 changed files with 48 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

48
patchinfo.20260215152452177191.255638743075857/_patchinfo Normal file
View File

@@ -0,0 +1,48 @@
<patchinfo>
<issue tracker="cve" id="2026-2319"/>
<issue tracker="cve" id="2026-2322"/>
<issue tracker="cve" id="2026-2313"/>
<issue tracker="cve" id="2026-2318"/>
<issue tracker="cve" id="2026-2441"/>
<issue tracker="cve" id="2026-2316"/>
<issue tracker="bnc" id="1258185">VUL-0: CVE-2026-2441: chromium: Use after free in CSS (fixed in 145.0.7632.75)</issue>
<issue tracker="cve" id="2026-2323"/>
<issue tracker="cve" id="2026-2321"/>
<issue tracker="cve" id="2026-2317"/>
<issue tracker="bnc" id="1258116">VUL-0: chromium: release 145.0.7632.45</issue>
<issue tracker="cve" id="2026-2315"/>
<issue tracker="cve" id="2026-2320"/>
<issue tracker="cve" id="2026-2314"/>
<issue tracker="bnc" id="1258199">chromium desktop icon shows @@MENUNAME</issue>
<packager>AndreasStieger</packager>
<rating>important</rating>
<category>security</category>
<summary>Security update for chromium</summary>
<description>This update for chromium fixes the following issues:
Changes in chromium:
- fix INSTALL.sh again to replace the tags in desktop file, appdata and manpage (boo#1258199)
- Chromium 145.0.7632.75:
* CVE-2026-2441: Use after free in CSS (boo#1258185)
- Chromium 145.0.7632.67:
* Revert a change in url_fixer that may have caused crashes
- Chromium 145.0.7632.45 (boo#1258116)
* jpeg-xl support has been readded
* CVE-2026-2313: Use after free in CSS
* CVE-2026-2314: Heap buffer overflow in Codecs
* CVE-2026-2315: Inappropriate implementation in WebGPU
* CVE-2026-2316: Insufficient policy enforcement in Frames
* CVE-2026-2317: Inappropriate implementation in Animation
* CVE-2026-2318: Inappropriate implementation in PictureInPicture
* CVE-2026-2319: Race in DevTools
* CVE-2026-2320: Inappropriate implementation in File input
* CVE-2026-2321: Use after free in Ozone
* CVE-2026-2322: Inappropriate implementation in File input
* CVE-2026-2323: Inappropriate implementation in Downloads
</description>
<package>chromium</package>
</patchinfo>