stable

chromium-99.0.4844.51-1.fc35

FEDORA-2022-d1a15f9cdb created by spot 11 months ago for Fedora 35

Update Chromium to 99.0.4844.51. Fixes, well, a LOT of security bugs. Sorry about that.

CVE-2021-22570 CVE-2022-0096 CVE-2022-0097 CVE-2022-0098 CVE-2022-0099 CVE-2022-0100 CVE-2022-0101 CVE-2022-0102 CVE-2022-0103 CVE-2022-0104 CVE-2022-0105 CVE-2022-0106 CVE-2022-0107 CVE-2022-0108 CVE-2022-0109 CVE-2022-0110 CVE-2022-0111 CVE-2022-0112 CVE-2022-0113 CVE-2022-0114 CVE-2022-0115 CVE-2022-0116 CVE-2022-0117 CVE-2022-0118 CVE-2022-0120 CVE-2022-0789 CVE-2022-0790 CVE-2022-0791 CVE-2022-0792 CVE-2022-0793 CVE-2022-0794 CVE-2022-0795 CVE-2022-0796 CVE-2022-0797 CVE-2022-0798 CVE-2022-0799 CVE-2022-0800 CVE-2022-0801 CVE-2022-0802 CVE-2022-0803 CVE-2022-0804 CVE-2022-0805 CVE-2022-0806 CVE-2022-0807 CVE-2022-0808 CVE-2022-0809

How to install

sudo dnf upgrade --refresh --advisory=FEDORA-2022-d1a15f9cdb

This update has been submitted for testing by spot.

11 months ago

This update's test gating status has been changed to 'ignored'.

11 months ago

This update has been pushed to testing.

11 months ago
User Icon js provided feedback 11 months ago
karma
User Icon ttrinks commented & provided feedback 11 months ago
karma

Thanks for keeping the Fedora Chromium builds going, Tom!

This update can be pushed to stable now if the maintainer wishes

11 months ago
User Icon boycottsystemd1 commented & provided feedback 11 months ago
karma

can't run chromium $ chromium-browser /usr/bin/chromium-browser: symbol lookup error: /usr/bin/chromium-browser: undefined symbol: wl_proxy_marshal_flags

Bodhi is disabling automatic push to stable due to negative karma. The maintainer may push manually if they determine that the issue is not severe.

11 months ago
User Icon boycottsystemd1 commented & provided feedback 11 months ago
karma

can run chromium after reboot but can't login to this site

User Icon boycottsystemd1 commented & provided feedback 11 months ago

still can't start chromium on wayland without DRI_PRIME=1 environment variable

$ chromium-browser ATTENTION: default value of option allow_rgb10_configs overridden by environment. [10959:10959:0308/080613.429619:ERROR:gpu_init.cc(440)] Passthrough is not supported, GL is egl, ANGLE is [10959:10959:0308/080613.433532:ERROR:sandbox_linux.cc(377)] InitializeSandbox() called with multiple threads in process gpu-process. [10915:10915:0308/080613.541389:ERROR:cursor_loader.cc(116)] Failed to load a platform cursor of type kNull ATTENTION: default value of option allow_rgb10_configs overridden by environment. [10959:10959:0308/080613.793398:ERROR:gl_surface_egl.cc(808)] EGL Driver message (Error) eglCreateImageKHR: dri2_create_image_khr_texture [10959:10959:0308/080613.793677:ERROR:gl_image_egl.cc(42)] Error creating EGLImage: EGL_BAD_MATCH [10959:10959:0308/080613.794084:ERROR:gpu_memory_buffer_factory_native_pixmap.cc(202)] Failed to create GLImage 4x4, RGBA_8888, usage SCANOUT [10959:10959:0308/080613.794345:ERROR:gl_surface_egl.cc(808)] EGL Driver message (Error) eglCreateImageKHR: dri2_create_image_khr_texture [10959:10959:0308/080613.794483:ERROR:gl_image_egl.cc(42)] Error creating EGLImage: EGL_BAD_MATCH [10959:10959:0308/080613.794635:ERROR:gpu_memory_buffer_factory_native_pixmap.cc(202)] Failed to create GLImage 4x4, RGBA_8888, usage GPU_READ [10959:10959:0308/080613.794729:ERROR:shared_image_backing_factory_gl_image.cc(359)] CreateSharedImage: Failed to create bindable image [10959:10959:0308/080613.794815:ERROR:shared_image_factory.cc(599)] CreateSharedImage: could not create backing. [10959:10959:0308/080613.795045:ERROR:gl_surface_egl.cc(808)] EGL Driver message (Error) eglCreateImageKHR: dri2_create_image_khr_texture [10959:10959:0308/080613.795174:ERROR:gl_image_egl.cc(42)] Error creating EGLImage: EGL_BAD_MATCH [10959:10959:0308/080613.795338:ERROR:gpu_memory_buffer_factory_native_pixmap.cc(202)] Failed to create GLImage 1536x1024, RGBA_8888, usage SCANOUT [10959:10959:0308/080613.795555:ERROR:gl_surface_egl.cc(808)] EGL Driver message (Error) eglCreateImageKHR: dri2_create_image_khr_texture [10959:10959:0308/080613.795666:ERROR:gl_image_egl.cc(42)] Error creating EGLImage: EGL_BAD_MATCH [10959:10959:0308/080613.795817:ERROR:gpu_memory_buffer_factory_native_pixmap.cc(202)] Failed to create GLImage 1536x1024, RGBA_8888, usage GPU_READ [10959:10959:0308/080613.795890:ERROR:shared_image_backing_factory_gl_image.cc(359)] CreateSharedImage: Failed to create bindable image [10959:10959:0308/080613.795994:ERROR:shared_image_factory.cc(599)] CreateSharedImage: could not create backing. [10959:10959:0308/080613.796246:ERROR:skia_output_surface_impl_on_gpu.cc(1722)] Failed to make current. [10959:10959:0308/080613.796982:ERROR:skia_output_surface_impl_on_gpu.cc(1722)] Failed to make current. [10915:10990:0308/080613.813320:ERROR:wayland_event_watcher.cc(301)] Fatal Wayland communication error Relais brisé (pipe). [10959:10959:0308/080613.813970:ERROR:skia_output_surface_impl_on_gpu.cc(1722)] Failed to make current. [10959:10959:0308/080613.814195:ERROR:skia_output_surface_impl_on_gpu.cc(1722)] Failed to make current. [10959:10959:0308/080613.818858:ERROR:raster_decoder.cc(1254)] RasterDecoderImpl: Context lost during MakeCurrent. [10959:10959:0308/080613.819031:ERROR:shared_image_stub.cc(519)] SharedImageStub: context already lost [10959:10959:0308/080613.820577:ERROR:shared_image_stub.cc(519)] SharedImageStub: context already lost [10915:10915:0308/080613.823759:ERROR:command_buffer_proxy_impl.cc(328)] GPU state invalid after WaitForGetOffsetInRange.

User Icon spot commented & provided feedback 11 months ago

I believe this is the same unresolved issue from the previous chromium build with your specific configuration (which affects Google Chrome as well). If you comment out this line in /usr/bin/chromium-browser:

CHROMIUM_DISTRO_FLAGS="--ozone-platform=wayland $CHROMIUM_DISTRO_FLAGS"

Does the issue go away?

karma
User Icon boycottsystemd1 commented & provided feedback 11 months ago

@spot yes the issue go away (but still can't login to this site)

User Icon boycottsystemd1 commented & provided feedback 11 months ago

not sure whether it's relevant but can't play https://www.youtube.com/watch?v=V9KZGs1MtP4


While Firefox, Palemoon, chrome, mpv can play this video

User Icon js commented & provided feedback 11 months ago
karma

Given how many security issues this fixes and the positive karma, can this be pushed to stable please?

This update has been submitted for stable by spot.

11 months ago

This update has been pushed to stable.

11 months ago
User Icon martinpitt commented & provided feedback 11 months ago
karma

I get the same, can't start chromium any more:

❱❱❱ chromium-browser 
/usr/bin/chromium-browser: symbol lookup error: /usr/bin/chromium-browser: undefined symbol: wl_proxy_marshal_flags
User Icon spot commented & provided feedback 11 months ago

You need to update libwayland-client ... because it was in the buildroot for Chromium, it picked up the new symbols from the 1.20.0 update.

User Icon martinpitt commented & provided feedback 11 months ago
karma

Thanks @spot! Works great now.


Please login to add feedback.

Metadata
Type
security
Severity
high
Karma
5
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
disabled
Stable by Time
disabled
Dates
submitted
11 months ago
in testing
11 months ago
in stable
11 months ago
BZ#2037457 CVE-2022-0096 chromium-browser: Use after free in Storage
0
0
BZ#2037458 CVE-2022-0097 chromium-browser: Inappropriate implementation in DevTools
0
0
BZ#2037459 CVE-2022-0098 chromium-browser: Use after free in Screen Capture
0
0
BZ#2037460 CVE-2022-0099 chromium-browser: Use after free in Sign-in
0
0
BZ#2037461 CVE-2022-0100 chromium-browser: Heap buffer overflow in Media streams API
0
0
BZ#2037462 CVE-2022-0101 chromium-browser: Heap buffer overflow in Bookmarks
0
0
BZ#2037463 CVE-2022-0102 chromium-browser: Type Confusion in V8
0
0
BZ#2037464 CVE-2022-0103 chromium-browser: Use after free in SwiftShader
0
0
BZ#2037465 CVE-2022-0104 chromium-browser: Heap buffer overflow in ANGLE
0
0
BZ#2037466 CVE-2022-0105 chromium-browser: Use after free in PDF
0
0
BZ#2037467 CVE-2022-0106 chromium-browser: Use after free in Autofill
0
0
BZ#2037468 CVE-2022-0107 chromium-browser: Use after free in File Manager API
0
0
BZ#2037469 CVE-2022-0108 chromium-browser: Inappropriate implementation in Navigation
0
0
BZ#2037470 CVE-2022-0109 chromium-browser: Inappropriate implementation in Autofill
0
0
BZ#2037471 CVE-2022-0110 chromium-browser: Incorrect security UI in Autofill
0
0
BZ#2037472 CVE-2022-0111 chromium-browser: Inappropriate implementation in Navigation
0
0
BZ#2037473 CVE-2022-0112 chromium-browser: Incorrect security UI in Browser UI
0
0
BZ#2037474 CVE-2022-0113 chromium-browser: Inappropriate implementation in Blink
0
0
BZ#2037475 CVE-2022-0114 chromium-browser: Out of bounds memory access in Web Serial
0
0
BZ#2037476 CVE-2022-0115 chromium-browser: Uninitialized Use in File API
0
0
BZ#2037477 CVE-2022-0116 chromium-browser: Inappropriate implementation in Compositing
0
0
BZ#2037478 CVE-2022-0117 chromium-browser: Policy bypass in Service Workers
0
0
BZ#2037479 CVE-2022-0118 chromium-browser: Inappropriate implementation in WebShare
0
0
BZ#2037480 CVE-2022-0120 chromium-browser: Inappropriate implementation in Passwords
0
0
BZ#2037481 CVE-2022-0096 CVE-2022-0097 CVE-2022-0098 CVE-2022-0099 CVE-2022-0100 CVE-2022-0101 CVE-2022-0102 CVE-2022-0103 CVE-2022-0104 CVE-2022-0105 CVE-2022-0106 CVE-2022-0107 CVE-2022-0108 CVE-2022-0109 CVE-2022-0110 ... chromium: various flaws [fedora-all]
0
0
BZ#2049429 CVE-2021-22570 protobuf: Incorrect parsing of nullchar in the proto symbol leads to Nullptr dereference
0
0
BZ#2055644 CVE-2021-22570 chromium: protobuf: Incorrect parsing of nullchar in the proto symbol leads to Nullptr dereference [fedora-all]
0
0
BZ#2059898 CVE-2022-0789 chromium-browser: Heap buffer overflow in ANGLE
0
0
BZ#2059900 CVE-2022-0791 chromium-browser: Use after free in Omnibox
0
0
BZ#2059901 CVE-2022-0792 chromium-browser: Out of bounds read in ANGLE
0
0
BZ#2059902 CVE-2022-0793 chromium-browser: Use after free in Views
0
0
BZ#2059905 CVE-2022-0796 chromium-browser: Use after free in Media
0
0
BZ#2059910 CVE-2022-0801 chromium-browser: Inappropriate implementation in HTML parser
0
0
BZ#2059911 CVE-2022-0802 chromium-browser: Inappropriate implementation in Full screen mode
0
0
BZ#2059912 CVE-2022-0803 chromium-browser: Inappropriate implementation in Permissions
0
0
BZ#2059913 CVE-2022-0804 chromium-browser: Inappropriate implementation in Full screen mode
0
0
BZ#2059914 CVE-2022-0805 chromium-browser: Use after free in Browser Switcher
0
0
BZ#2059915 CVE-2022-0806 chromium-browser: Data leak in Canvas
0
0
BZ#2059916 CVE-2022-0807 chromium-browser: Inappropriate implementation in Autofill
0
0
BZ#2059919 CVE-2022-0789 CVE-2022-0790 CVE-2022-0791 CVE-2022-0792 CVE-2022-0793 CVE-2022-0794 CVE-2022-0795 CVE-2022-0796 CVE-2022-0797 CVE-2022-0798 CVE-2022-0799 CVE-2022-0800 CVE-2022-0801 CVE-2022-0802 CVE-2022-0803 ... chromium: various flaws [fedora-all]
0
0

Automated Test Results

ignored