The following Fedora EPEL 7 Security updates need testing: Age URL 2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-3f1f3dcef0 wordpress-5.1.18-1.el7 2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-afdec12596 libebml-1.3.9-2.el7 The following builds have been pushed to Fedora EPEL 7 updates-testing chromium-121.0.6167.139-2.el7 Details about builds: ================================================================================ chromium-121.0.6167.139-2.el7 (FEDORA-EPEL-2024-25f8bac8aa) A WebKit (Blink) powered web browser that Google doesn't want you to use -------------------------------------------------------------------------------- Update Information: update to 121.0.6167.139 High CVE-2024-1060: Use after free in Canvas High CVE-2024-1059: Use after free in WebRTC High CVE-2024-1077: Use after free in Network -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 1 2024 Than Ngo <than@xxxxxxxxxx> - 121.0.6167.139-2 - Support for 64K pages on Linux/AArch64 * Wed Jan 31 2024 Than Ngo <than@xxxxxxxxxx> - 121.0.6167.139-1 - update to 121.0.6167.139 * High CVE-2024-1060: Use after free in Canvas * High CVE-2024-1059: Use after free in WebRTC * High CVE-2024-1077: Use after free in Network * Wed Jan 24 2024 Than Ngo <than@xxxxxxxxxx> - 121.0.6167.85-1 - update to 121.0.6167.85 * High CVE-2024-0807: Use after free in WebAudio * High CVE-2024-0812: Inappropriate implementation in Accessibility * High CVE-2024-0808: Integer underflow in WebUI * Medium CVE-2024-0810: Insufficient policy enforcement in DevTools * Medium CVE-2024-0814: Incorrect security UI in Payments * Medium CVE-2024-0813: Use after free in Reading Mode * Medium CVE-2024-0806: Use after free in Passwords * Medium CVE-2024-0805: Inappropriate implementation in Downloads * Medium CVE-2024-0804: Insufficient policy enforcement in iOS Security UI * Low CVE-2024-0811: Inappropriate implementation in Extensions API * Low CVE-2024-0809: Inappropriate implementation in Autofill * Tue Jan 23 2024 Than Ngo <than@xxxxxxxxxx> - 121.0.6167.71-1 - update to 121.0.6167.71 * Tue Jan 23 2024 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 120.0.6099.224-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild -------------------------------------------------------------------------------- -- _______________________________________________ epel-devel mailing list -- epel-devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to epel-devel-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/epel-devel@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
