|
|
Log in / Subscribe / Register

Fedora alert FEDORA-2026-b17799ac62 (chromium)



From:
              updates--- via package-announce <package-announce@lists.fedoraproject.org>


To:
              package-announce@lists.fedoraproject.org


Subject:
              [SECURITY] Fedora 43 Update: chromium-148.0.7778.178-1.fc43


Date:
              Wed, 27 May 2026 01:27:35 +0000


Message-ID:
              <20260527012735.8655680CE2@bastion01.rdu3.fedoraproject.org>


Archive-link:
              Article


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2026-b17799ac62
2026-05-27 01:26:15.594803+00:00
--------------------------------------------------------------------------------

Name        : chromium
Product     : Fedora 43
Version     : 148.0.7778.178
Release     : 1.fc43
URL         : http://www.chromium.org/Home
Summary     : A WebKit (Blink) powered web browser that Google doesn't want you to use
Description :
Chromium is an open-source web browser, powered by WebKit (Blink).

--------------------------------------------------------------------------------
Update Information:

Update to 148.0.7778.178
CVE-2026-9111: Use after free in WebRTC
CVE-2026-9110: Inappropriate implementation in UI
CVE-2026-9112: Use after free in GPU
CVE-2026-9113: Out of bounds read in GPU
CVE-2026-9114: Use after free in QUIC
CVE-2026-9115: Insufficient policy enforcement in Service Worker
CVE-2026-9116: Insufficient policy enforcement in ServiceWorker
CVE-2026-9117: Type Confusion in GFX
CVE-2026-9118: Use after free in XR
CVE-2026-9119: Heap buffer overflow in WebRTC
CVE-2026-9120: Use after free in WebRTC
CVE-2026-9126: Use after free in DOM
CVE-2026-9121: Out of bounds read in GPU
CVE-2026-9122: Out of bounds read in GPU
CVE-2026-9123: Heap buffer overflow in Chromecast
CVE-2026-9124: Insufficient validation of untrusted input in Input
Update to 148.0.7778.167
CVE-2026-8509: Heap buffer overflow in WebML
CVE-2026-8510: Integer overflow in Skia
CVE-2026-8511: Use after free in UI
CVE-2026-8512: Use after free in FileSystem
CVE-2026-8513: Use after free in Input
CVE-2026-8514: Use after free in Aura
CVE-2026-8515: Use after free in HID
CVE-2026-8516: Insufficient validation of untrusted input in DataTransfer
CVE-2026-8517: Object lifecycle issue in WebShare
CVE-2026-8518: Use after free in Blink
CVE-2026-8519: Integer overflow in ANGLE
CVE-2026-8520: Race in Payments
CVE-2026-8521: Use after free in Tab Groups
CVE-2026-8522: Use after free in Downloads
CVE-2026-8523: Use after free in Mojo
CVE-2026-8558: Out of bounds write in Fonts
CVE-2026-8524: Out of bounds write in WebAudio
CVE-2026-8525: Heap buffer overflow in ANGLE
CVE-2026-8526: Out of bounds write in WebRTC
CVE-2026-8527: Insufficient validation of untrusted input in Downloads
CVE-2026-8528: Insufficient validation of untrusted input in SiteIsolation
CVE-2026-8529: Heap buffer overflow in Codecs
CVE-2026-8530: Use after free in Network
CVE-2026-8531: Heap buffer overflow in WebML
CVE-2026-8532: Integer overflow in XML
CVE-2026-8533: Use after free in Accessibility
CVE-2026-8534: Integer overflow in GPU
CVE-2026-8535: Out of bounds read in Media
CVE-2026-8536: Insufficient validation of untrusted input in ReadingMode
CVE-2026-8537: Insufficient policy enforcement in ViewTransitions
CVE-2026-8538: Insufficient validation of untrusted input in GPU
CVE-2026-8539: Script injection in SanitizerAPI
CVE-2026-8540: Type Confusion in V8
CVE-2026-8541: Out of bounds read in UI
CVE-2026-8542: Use after free in Core
CVE-2026-8543: Out of bounds read in FileSystem
CVE-2026-8544: Use after free in Media
CVE-2026-8545: Object corruption in Compositing
CVE-2026-8546: Out of bounds read in GPU
CVE-2026-8547: Insufficient policy enforcement in Passwords
CVE-2026-8548: Out of bounds write in Media
CVE-2026-8549: Use after free in Media
CVE-2026-8550: Use after free in Google Lens
CVE-2026-8551: Use after free in Downloads
CVE-2026-8552: Heap buffer overflow in GPU
CVE-2026-8553: Use after free in GPU
CVE-2026-8554: Type Confusion in ANGLE
CVE-2026-8555: Use after free in GTK
CVE-2026-8556: Inappropriate implementation in ANGLE
CVE-2026-8557: Use after free in Accessibility
CVE-2026-8559: Integer overflow in Internationalization
CVE-2026-8560: Heap buffer overflow in SwiftShader
CVE-2026-8561: Incorrect security UI in Fullscreen
CVE-2026-8562: Side-channel information leakage in Navigation
CVE-2026-8563: Insufficient policy enforcement in IFrame Sandbox
CVE-2026-8564: Incorrect security UI in Downloads
CVE-2026-8565: Inappropriate implementation in Downloads
CVE-2026-8566: Insufficient policy enforcement in Payments
CVE-2026-8567: Integer overflow in ANGLE
CVE-2026-8568: Insufficient policy enforcement in AI
CVE-2026-8569: Out of bounds write in Codecs
CVE-2026-8570: Type Confusion in V8
CVE-2026-8571: Insufficient policy enforcement in GPU
CVE-2026-8572: Insufficient policy enforcement in Network
CVE-2026-8573: Integer overflow in Codecs
CVE-2026-8574: Use after free in Core
CVE-2026-8575: Use after free in UI
CVE-2026-8576: Inappropriate implementation in CORS
CVE-2026-8577: Integer overflow in Fonts
CVE-2026-8578: Out of bounds read in GPU
CVE-2026-8579: Insufficient validation of untrusted input in Skia
CVE-2026-8580: Use after free in Mojo
CVE-2026-8581: Use after free in GPU
CVE-2026-8582: Object lifecycle issue in Dawn
CVE-2026-8583: Insufficient policy enforcement in WebXR
CVE-2026-8584: Inappropriate implementation in Views
CVE-2026-8585: Inappropriate implementation in Media
CVE-2026-8586: Inappropriate implementation in Chromoting
CVE-2026-8587: Use after free in Extensions
--------------------------------------------------------------------------------
ChangeLog:

* Wed May 20 2026 Than Ngo <than@redhat.com> - 148.0.7778.178-1
- Update to 148.0.7778.178
  * CVE-2026-9111: Use after free in WebRTC
  * CVE-2026-9110: Inappropriate implementation in UI
  * CVE-2026-9112: Use after free in GPU
  * CVE-2026-9113: Out of bounds read in GPU
  * CVE-2026-9114: Use after free in QUIC
  * CVE-2026-9115: Insufficient policy enforcement in Service Worker
  * CVE-2026-9116: Insufficient policy enforcement in ServiceWorker
  * CVE-2026-9117: Type Confusion in GFX
  * CVE-2026-9118: Use after free in XR
  * CVE-2026-9119: Heap buffer overflow in WebRTC
  * CVE-2026-9120: Use after free in WebRTC
  * CVE-2026-9126: Use after free in DOM
  * CVE-2026-9121: Out of bounds read in GPU
  * CVE-2026-9122: Out of bounds read in GPU
  * CVE-2026-9123: Heap buffer overflow in Chromecast
  * CVE-2026-9124: Insufficient validation of untrusted input in Input
- Backport upstream patches to improve auto dark image inversion logic
- Update default chromium browser config
* Fri May 15 2026 Than Ngo <than@redhat.com> - 148.0.7778.167-1
- Update to 148.0.7778.167
   * CVE-2026-8509: Heap buffer overflow in WebML
   * CVE-2026-8510: Integer overflow in Skia
   * CVE-2026-8511: Use after free in UI
   * CVE-2026-8512: Use after free in FileSystem
   * CVE-2026-8513: Use after free in Input
   * CVE-2026-8514: Use after free in Aura
   * CVE-2026-8515: Use after free in HID
   * CVE-2026-8516: Insufficient validation of untrusted input in DataTransfer
   * CVE-2026-8517: Object lifecycle issue in WebShare
   * CVE-2026-8518: Use after free in Blink
   * CVE-2026-8519: Integer overflow in ANGLE
   * CVE-2026-8520: Race in Payments
   * CVE-2026-8521: Use after free in Tab Groups
   * CVE-2026-8522: Use after free in Downloads
   * CVE-2026-8523: Use after free in Mojo
   * CVE-2026-8558: Out of bounds write in Fonts
   * CVE-2026-8524: Out of bounds write in WebAudio
   * CVE-2026-8525: Heap buffer overflow in ANGLE
   * CVE-2026-8526: Out of bounds write in WebRTC
   * CVE-2026-8527: Insufficient validation of untrusted input in Downloads
   * CVE-2026-8528: Insufficient validation of untrusted input in SiteIsolation
   * CVE-2026-8529: Heap buffer overflow in Codecs
   * CVE-2026-8530: Use after free in Network
   * CVE-2026-8531: Heap buffer overflow in WebML
   * CVE-2026-8532: Integer overflow in XML
   * CVE-2026-8533: Use after free in Accessibility
   * CVE-2026-8534: Integer overflow in GPU
   * CVE-2026-8535: Out of bounds read in Media
   * CVE-2026-8536: Insufficient validation of untrusted input in ReadingMode
   * CVE-2026-8537: Insufficient policy enforcement in ViewTransitions
   * CVE-2026-8538: Insufficient validation of untrusted input in GPU
   * CVE-2026-8539: Script injection in SanitizerAPI
   * CVE-2026-8540: Type Confusion in V8
   * CVE-2026-8541: Out of bounds read in UI
   * CVE-2026-8542: Use after free in Core
   * CVE-2026-8543: Out of bounds read in FileSystem
   * CVE-2026-8544: Use after free in Media
   * CVE-2026-8545: Object corruption in Compositing
   * CVE-2026-8546: Out of bounds read in GPU
   * CVE-2026-8547: Insufficient policy enforcement in Passwords
   * CVE-2026-8548: Out of bounds write in Media
   * CVE-2026-8549: Use after free in Media
   * CVE-2026-8550: Use after free in Google Lens
   * CVE-2026-8551: Use after free in Downloads
   * CVE-2026-8552: Heap buffer overflow in GPU
   * CVE-2026-8553: Use after free in GPU
   * CVE-2026-8554: Type Confusion in ANGLE
   * CVE-2026-8555: Use after free in GTK
   * CVE-2026-8556: Inappropriate implementation in ANGLE
   * CVE-2026-8557: Use after free in Accessibility
   * CVE-2026-8559: Integer overflow in Internationalization
   * CVE-2026-8560: Heap buffer overflow in SwiftShader
   * CVE-2026-8561: Incorrect security UI in Fullscreen
   * CVE-2026-8562: Side-channel information leakage in Navigation
   * CVE-2026-8563: Insufficient policy enforcement in IFrame Sandbox
   * CVE-2026-8564: Incorrect security UI in Downloads
   * CVE-2026-8565: Inappropriate implementation in Downloads
   * CVE-2026-8566: Insufficient policy enforcement in Payments
   * CVE-2026-8567: Integer overflow in ANGLE
   * CVE-2026-8568: Insufficient policy enforcement in AI
   * CVE-2026-8569: Out of bounds write in Codecs
   * CVE-2026-8570: Type Confusion in V8
   * CVE-2026-8571: Insufficient policy enforcement in GPU
   * CVE-2026-8572: Insufficient policy enforcement in Network
   * CVE-2026-8573: Integer overflow in Codecs
   * CVE-2026-8574: Use after free in Core
   * CVE-2026-8575: Use after free in UI
   * CVE-2026-8576: Inappropriate implementation in CORS
   * CVE-2026-8577: Integer overflow in Fonts
   * CVE-2026-8578: Out of bounds read in GPU
   * CVE-2026-8579: Insufficient validation of untrusted input in Skia
   * CVE-2026-8580: Use after free in Mojo
   * CVE-2026-8581: Use after free in GPU
   * CVE-2026-8582: Object lifecycle issue in Dawn
   * CVE-2026-8583: Insufficient policy enforcement in WebXR
   * CVE-2026-8584: Inappropriate implementation in Views
   * CVE-2026-8585: Inappropriate implementation in Media
   * CVE-2026-8586: Inappropriate implementation in Chromoting
   * CVE-2026-8587: Use after free in Extensions
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #2468370 - CVE-2026-7896 CVE-2026-7897 CVE-2026-7898 CVE-2026-7899 CVE-2026-7900
CVE-2026-7901 CVE-2026-7902 CVE-2026-7903 CVE-2026-7904 CVE-2026-7905 CVE-2026-7906 CVE-2026-7907
CVE-2026-7908 CVE-2026-7909 CVE-2026-7910 ... chromium: various flaws [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=2468370
  [ 2 ] Bug #2477796 - CVE-2026-8509 CVE-2026-8510 CVE-2026-8511 CVE-2026-8512 CVE-2026-8513
CVE-2026-8514 CVE-2026-8515 CVE-2026-8516 CVE-2026-8517 CVE-2026-8518 CVE-2026-8519 CVE-2026-8520
CVE-2026-8521 CVE-2026-8522 CVE-2026-8523 ... chromium: various flaws [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=2477796
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2026-b17799ac62' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgr...

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

-- 
_______________________________________________
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-cond...
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedoraproject.org/archives/list/package-ann...
Do not reply to spam, report it: https://forge.fedoraproject.org/infra/tickets/issues/new
to post comments


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds