stable

chromium-99.0.4844.51-1.fc35

FEDORA-2022-d1a15f9cdb created by spot 2 years ago for Fedora 35

Update Chromium to 99.0.4844.51. Fixes, well, a LOT of security bugs. Sorry about that.

CVE-2021-22570 CVE-2022-0096 CVE-2022-0097 CVE-2022-0098 CVE-2022-0099 CVE-2022-0100 CVE-2022-0101 CVE-2022-0102 CVE-2022-0103 CVE-2022-0104 CVE-2022-0105 CVE-2022-0106 CVE-2022-0107 CVE-2022-0108 CVE-2022-0109 CVE-2022-0110 CVE-2022-0111 CVE-2022-0112 CVE-2022-0113 CVE-2022-0114 CVE-2022-0115 CVE-2022-0116 CVE-2022-0117 CVE-2022-0118 CVE-2022-0120 CVE-2022-0789 CVE-2022-0790 CVE-2022-0791 CVE-2022-0792 CVE-2022-0793 CVE-2022-0794 CVE-2022-0795 CVE-2022-0796 CVE-2022-0797 CVE-2022-0798 CVE-2022-0799 CVE-2022-0800 CVE-2022-0801 CVE-2022-0802 CVE-2022-0803 CVE-2022-0804 CVE-2022-0805 CVE-2022-0806 CVE-2022-0807 CVE-2022-0808 CVE-2022-0809

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2022-d1a15f9cdb

This update has been submitted for testing by spot.

2 years ago

This update's test gating status has been changed to 'ignored'.

2 years ago

This update has been pushed to testing.

2 years ago
User Icon js provided feedback 2 years ago
karma
User Icon ttrinks commented & provided feedback 2 years ago
karma

Thanks for keeping the Fedora Chromium builds going, Tom!

This update can be pushed to stable now if the maintainer wishes

2 years ago
User Icon boycottsystemd1 commented & provided feedback 2 years ago
karma

can't run chromium $ chromium-browser /usr/bin/chromium-browser: symbol lookup error: /usr/bin/chromium-browser: undefined symbol: wl_proxy_marshal_flags

Bodhi is disabling automatic push to stable due to negative karma. The maintainer may push manually if they determine that the issue is not severe.

2 years ago
User Icon boycottsystemd1 commented & provided feedback 2 years ago
karma

can run chromium after reboot but can't login to this site

User Icon boycottsystemd1 commented & provided feedback 2 years ago

still can't start chromium on wayland without DRI_PRIME=1 environment variable

$ chromium-browser ATTENTION: default value of option allow_rgb10_configs overridden by environment. [10959:10959:0308/080613.429619:ERROR:gpu_init.cc(440)] Passthrough is not supported, GL is egl, ANGLE is [10959:10959:0308/080613.433532:ERROR:sandbox_linux.cc(377)] InitializeSandbox() called with multiple threads in process gpu-process. [10915:10915:0308/080613.541389:ERROR:cursor_loader.cc(116)] Failed to load a platform cursor of type kNull ATTENTION: default value of option allow_rgb10_configs overridden by environment. [10959:10959:0308/080613.793398:ERROR:gl_surface_egl.cc(808)] EGL Driver message (Error) eglCreateImageKHR: dri2_create_image_khr_texture [10959:10959:0308/080613.793677:ERROR:gl_image_egl.cc(42)] Error creating EGLImage: EGL_BAD_MATCH [10959:10959:0308/080613.794084:ERROR:gpu_memory_buffer_factory_native_pixmap.cc(202)] Failed to create GLImage 4x4, RGBA_8888, usage SCANOUT [10959:10959:0308/080613.794345:ERROR:gl_surface_egl.cc(808)] EGL Driver message (Error) eglCreateImageKHR: dri2_create_image_khr_texture [10959:10959:0308/080613.794483:ERROR:gl_image_egl.cc(42)] Error creating EGLImage: EGL_BAD_MATCH [10959:10959:0308/080613.794635:ERROR:gpu_memory_buffer_factory_native_pixmap.cc(202)] Failed to create GLImage 4x4, RGBA_8888, usage GPU_READ [10959:10959:0308/080613.794729:ERROR:shared_image_backing_factory_gl_image.cc(359)] CreateSharedImage: Failed to create bindable image [10959:10959:0308/080613.794815:ERROR:shared_image_factory.cc(599)] CreateSharedImage: could not create backing. [10959:10959:0308/080613.795045:ERROR:gl_surface_egl.cc(808)] EGL Driver message (Error) eglCreateImageKHR: dri2_create_image_khr_texture [10959:10959:0308/080613.795174:ERROR:gl_image_egl.cc(42)] Error creating EGLImage: EGL_BAD_MATCH [10959:10959:0308/080613.795338:ERROR:gpu_memory_buffer_factory_native_pixmap.cc(202)] Failed to create GLImage 1536x1024, RGBA_8888, usage SCANOUT [10959:10959:0308/080613.795555:ERROR:gl_surface_egl.cc(808)] EGL Driver message (Error) eglCreateImageKHR: dri2_create_image_khr_texture [10959:10959:0308/080613.795666:ERROR:gl_image_egl.cc(42)] Error creating EGLImage: EGL_BAD_MATCH [10959:10959:0308/080613.795817:ERROR:gpu_memory_buffer_factory_native_pixmap.cc(202)] Failed to create GLImage 1536x1024, RGBA_8888, usage GPU_READ [10959:10959:0308/080613.795890:ERROR:shared_image_backing_factory_gl_image.cc(359)] CreateSharedImage: Failed to create bindable image [10959:10959:0308/080613.795994:ERROR:shared_image_factory.cc(599)] CreateSharedImage: could not create backing. [10959:10959:0308/080613.796246:ERROR:skia_output_surface_impl_on_gpu.cc(1722)] Failed to make current. [10959:10959:0308/080613.796982:ERROR:skia_output_surface_impl_on_gpu.cc(1722)] Failed to make current. [10915:10990:0308/080613.813320:ERROR:wayland_event_watcher.cc(301)] Fatal Wayland communication error Relais brisé (pipe). [10959:10959:0308/080613.813970:ERROR:skia_output_surface_impl_on_gpu.cc(1722)] Failed to make current. [10959:10959:0308/080613.814195:ERROR:skia_output_surface_impl_on_gpu.cc(1722)] Failed to make current. [10959:10959:0308/080613.818858:ERROR:raster_decoder.cc(1254)] RasterDecoderImpl: Context lost during MakeCurrent. [10959:10959:0308/080613.819031:ERROR:shared_image_stub.cc(519)] SharedImageStub: context already lost [10959:10959:0308/080613.820577:ERROR:shared_image_stub.cc(519)] SharedImageStub: context already lost [10915:10915:0308/080613.823759:ERROR:command_buffer_proxy_impl.cc(328)] GPU state invalid after WaitForGetOffsetInRange.

User Icon spot commented & provided feedback 2 years ago

I believe this is the same unresolved issue from the previous chromium build with your specific configuration (which affects Google Chrome as well). If you comment out this line in /usr/bin/chromium-browser:

CHROMIUM_DISTRO_FLAGS="--ozone-platform=wayland $CHROMIUM_DISTRO_FLAGS"

Does the issue go away?

karma
User Icon boycottsystemd1 commented & provided feedback 2 years ago

@spot yes the issue go away (but still can't login to this site)

User Icon boycottsystemd1 commented & provided feedback 2 years ago

not sure whether it's relevant but can't play https://www.youtube.com/watch?v=V9KZGs1MtP4


While Firefox, Palemoon, chrome, mpv can play this video

User Icon js commented & provided feedback 2 years ago
karma

Given how many security issues this fixes and the positive karma, can this be pushed to stable please?

This update has been submitted for stable by spot.

2 years ago

This update has been pushed to stable.

2 years ago
User Icon martinpitt commented & provided feedback 2 years ago
karma

I get the same, can't start chromium any more:

❱❱❱ chromium-browser 
/usr/bin/chromium-browser: symbol lookup error: /usr/bin/chromium-browser: undefined symbol: wl_proxy_marshal_flags
User Icon spot commented & provided feedback 2 years ago

You need to update libwayland-client ... because it was in the buildroot for Chromium, it picked up the new symbols from the 1.20.0 update.

User Icon martinpitt commented & provided feedback 2 years ago
karma

Thanks @spot! Works great now.


Please login to add feedback.

Metadata
Type
security
Severity
high
Karma
5
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
disabled
Stable by Time
disabled
Dates
submitted
2 years ago
in testing
2 years ago
in stable
2 years ago
BZ#2037457 CVE-2022-0096 chromium-browser: Use after free in Storage
0
0
BZ#2037458 CVE-2022-0097 chromium-browser: Inappropriate implementation in DevTools
0
0
BZ#2037459 CVE-2022-0098 chromium-browser: Use after free in Screen Capture
0
0
BZ#2037460 CVE-2022-0099 chromium-browser: Use after free in Sign-in
0
0
BZ#2037461 CVE-2022-0100 chromium-browser: Heap buffer overflow in Media streams API
0
0
BZ#2037462 CVE-2022-0101 chromium-browser: Heap buffer overflow in Bookmarks
0
0
BZ#2037463 CVE-2022-0102 chromium-browser: Type Confusion in V8
0
0
BZ#2037464 CVE-2022-0103 chromium-browser: Use after free in SwiftShader
0
0
BZ#2037465 CVE-2022-0104 chromium-browser: Heap buffer overflow in ANGLE
0
0
BZ#2037466 CVE-2022-0105 chromium-browser: Use after free in PDF
0
0
BZ#2037467 CVE-2022-0106 chromium-browser: Use after free in Autofill
0
0
BZ#2037468 CVE-2022-0107 chromium-browser: Use after free in File Manager API
0
0
BZ#2037469 CVE-2022-0108 chromium-browser: Inappropriate implementation in Navigation
0
0
BZ#2037470 CVE-2022-0109 chromium-browser: Inappropriate implementation in Autofill
0
0
BZ#2037471 CVE-2022-0110 chromium-browser: Incorrect security UI in Autofill
0
0
BZ#2037472 CVE-2022-0111 chromium-browser: Inappropriate implementation in Navigation
0
0
BZ#2037473 CVE-2022-0112 chromium-browser: Incorrect security UI in Browser UI
0
0
BZ#2037474 CVE-2022-0113 chromium-browser: Inappropriate implementation in Blink
0
0
BZ#2037475 CVE-2022-0114 chromium-browser: Out of bounds memory access in Web Serial
0
0
BZ#2037476 CVE-2022-0115 chromium-browser: Uninitialized Use in File API
0
0
BZ#2037477 CVE-2022-0116 chromium-browser: Inappropriate implementation in Compositing
0
0
BZ#2037478 CVE-2022-0117 chromium-browser: Policy bypass in Service Workers
0
0
BZ#2037479 CVE-2022-0118 chromium-browser: Inappropriate implementation in WebShare
0
0
BZ#2037480 CVE-2022-0120 chromium-browser: Inappropriate implementation in Passwords
0
0
BZ#2037481 CVE-2022-0096 CVE-2022-0097 CVE-2022-0098 CVE-2022-0099 CVE-2022-0100 CVE-2022-0101 CVE-2022-0102 CVE-2022-0103 CVE-2022-0104 CVE-2022-0105 CVE-2022-0106 CVE-2022-0107 CVE-2022-0108 CVE-2022-0109 CVE-2022-0110 ... chromium: various flaws [fedora-all]
0
0
BZ#2049429 CVE-2021-22570 protobuf: Incorrect parsing of nullchar in the proto symbol leads to Nullptr dereference
0
0
BZ#2055644 CVE-2021-22570 chromium: protobuf: Incorrect parsing of nullchar in the proto symbol leads to Nullptr dereference [fedora-all]
0
0
BZ#2059898 CVE-2022-0789 chromium-browser: Heap buffer overflow in ANGLE
0
0
BZ#2059900 CVE-2022-0791 chromium-browser: Use after free in Omnibox
0
0
BZ#2059901 CVE-2022-0792 chromium-browser: Out of bounds read in ANGLE
0
0
BZ#2059902 CVE-2022-0793 chromium-browser: Use after free in Views
0
0
BZ#2059905 CVE-2022-0796 chromium-browser: Use after free in Media
0
0
BZ#2059910 CVE-2022-0801 chromium-browser: Inappropriate implementation in HTML parser
0
0
BZ#2059911 CVE-2022-0802 chromium-browser: Inappropriate implementation in Full screen mode
0
0
BZ#2059912 CVE-2022-0803 chromium-browser: Inappropriate implementation in Permissions
0
0
BZ#2059913 CVE-2022-0804 chromium-browser: Inappropriate implementation in Full screen mode
0
0
BZ#2059914 CVE-2022-0805 chromium-browser: Use after free in Browser Switcher
0
0
BZ#2059915 CVE-2022-0806 chromium-browser: Data leak in Canvas
0
0
BZ#2059916 CVE-2022-0807 chromium-browser: Inappropriate implementation in Autofill
0
0
BZ#2059919 CVE-2022-0789 CVE-2022-0790 CVE-2022-0791 CVE-2022-0792 CVE-2022-0793 CVE-2022-0794 CVE-2022-0795 CVE-2022-0796 CVE-2022-0797 CVE-2022-0798 CVE-2022-0799 CVE-2022-0800 CVE-2022-0801 CVE-2022-0802 CVE-2022-0803 ... chromium: various flaws [fedora-all]
0
0

Automated Test Results