|
|
Subscribe / Log in / New account

SUSE alert openSUSE-SU-2025:0378-1 (chromium)

From:  opensuse-security@opensuse.org
To:  security-announce@lists.opensuse.org
Subject:  openSUSE-SU-2025:0378-1: important: Security update for chromium
Date:  Mon, 29 Sep 2025 21:04:47 +0200
Message-ID:  <20250929190447.85D3CFBA1@maintenance.suse.de>
Archive-link:  Article

openSUSE Security Update: Security update for chromium ______________________________________________________________________________ Announcement ID: openSUSE-SU-2025:0378-1 Rating: important References: #1250472 Cross-References: CVE-2025-10890 CVE-2025-10891 CVE-2025-10892 Affected Products: openSUSE Backports SLE-15-SP6 ______________________________________________________________________________ An update that fixes three vulnerabilities is now available. Description: This update for chromium fixes the following issues: Chromium 140.0.7339.207 (boo#1250472) * CVE-2025-10890: Side-channel information leakage in V8 * CVE-2025-10891: Integer overflow in V8 * CVE-2025-10892: Integer overflow in V8 Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Backports SLE-15-SP6: zypper in -t patch openSUSE-2025-378=1 Package List: - openSUSE Backports SLE-15-SP6 (aarch64 x86_64): chromedriver-140.0.7339.207-bp156.2.173.1 chromium-140.0.7339.207-bp156.2.173.1 References: https://www.suse.com/security/cve/CVE-2025-10890.html https://www.suse.com/security/cve/CVE-2025-10891.html https://www.suse.com/security/cve/CVE-2025-10892.html https://bugzilla.suse.com/1250472


to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds