The following Fedora EPEL 7 Security updates need testing:
Age URL
2
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-3f1f3dcef0
wordpress-5.1.18-1.el7
2
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-afdec12596
libebml-1.3.9-2.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
chromium-121.0.6167.139-2.el7
Details about builds:
================================================================================
chromium-121.0.6167.139-2.el7 (FEDORA-EPEL-2024-25f8bac8aa)
A WebKit (Blink) powered web browser that Google doesn't want you to use
--------------------------------------------------------------------------------
Update Information:
update to 121.0.6167.139 High CVE-2024-1060: Use after free in Canvas High
CVE-2024-1059: Use after free in WebRTC High CVE-2024-1077: Use after free in
Network
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 1 2024 Than Ngo <than(a)redhat.com> - 121.0.6167.139-2
- Support for 64K pages on Linux/AArch64
* Wed Jan 31 2024 Than Ngo <than(a)redhat.com> - 121.0.6167.139-1
- update to 121.0.6167.139
* High CVE-2024-1060: Use after free in Canvas
* High CVE-2024-1059: Use after free in WebRTC
* High CVE-2024-1077: Use after free in Network
* Wed Jan 24 2024 Than Ngo <than(a)redhat.com> - 121.0.6167.85-1
- update to 121.0.6167.85
* High CVE-2024-0807: Use after free in WebAudio
* High CVE-2024-0812: Inappropriate implementation in Accessibility
* High CVE-2024-0808: Integer underflow in WebUI
* Medium CVE-2024-0810: Insufficient policy enforcement in DevTools
* Medium CVE-2024-0814: Incorrect security UI in Payments
* Medium CVE-2024-0813: Use after free in Reading Mode
* Medium CVE-2024-0806: Use after free in Passwords
* Medium CVE-2024-0805: Inappropriate implementation in Downloads
* Medium CVE-2024-0804: Insufficient policy enforcement in iOS Security UI
* Low CVE-2024-0811: Inappropriate implementation in Extensions API
* Low CVE-2024-0809: Inappropriate implementation in Autofill
* Tue Jan 23 2024 Than Ngo <than(a)redhat.com> - 121.0.6167.71-1
- update to 121.0.6167.71
* Tue Jan 23 2024 Fedora Release Engineering <releng(a)fedoraproject.org> -
120.0.6099.224-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
--------------------------------------------------------------------------------