obsolete

chromium-86.0.4240.183-1.el7

FEDORA-EPEL-2020-f16789146a created by spot 4 years ago for Fedora EPEL 7

Update to 86.0.4240.183.

Fixes the following security issues: CVE-2020-16004 CVE-2020-16005 CVE-2020-16006 CVE-2020-16008 CVE-2020-16009

Also disables the very verbose output going to stdout.


Update to Chromium 86. A few big things here:

  1. Upstream has made hardware accelerated video support (VAAPI) for Linux possible without patches. One key difference is that the patchset used previously in Fedora enabled it by default and upstream's approach disables it by default. To enable Hardware accelerated video in chromium, open this link in chromium:

chrome://flags/#enable-accelerated-video-decode

Be sure it is turned on. Note that not all GPUs are supported.

  1. All the security fixes you expect with a major release: CVE-2020-15967 CVE-2020-15968 CVE-2020-15969 CVE-2020-15970 CVE-2020-15971 CVE-2020-15972 CVE-2020-15990 CVE-2020-15991 CVE-2020-15973 CVE-2020-15974 CVE-2020-15975 CVE-2020-15976 CVE-2020-6557 CVE-2020-15977 CVE-2020-15978 CVE-2020-15979 CVE-2020-15980 CVE-2020-15981 CVE-2020-15982 CVE-2020-15983 CVE-2020-15984 CVE-2020-15985 CVE-2020-15986 CVE-2020-15987 CVE-2020-15992 CVE-2020-15988 CVE-2020-15989 CVE-2020-16000 CVE-2020-16001 CVE-2020-16002 CVE-2020-16003

  2. The EPEL-7 build no longer requires minizip, because Red Hat removed that package in RHEL 7.9.

  3. Without bats acting as pollinators, agave and cacao plants would struggle. That means that bats are responsible for tequila and chocolate.

This update has been submitted for testing by spot.

4 years ago

This update's test gating status has been changed to 'ignored'.

4 years ago

This update's test gating status has been changed to 'waiting'.

4 years ago

This update has obsoleted chromium-86.0.4240.111-1.el7, and has inherited its bugs and notes.

4 years ago

This update's test gating status has been changed to 'ignored'.

4 years ago

This update has been pushed to testing.

4 years ago

This update has been obsoleted by chromium-86.0.4240.198-1.el7.

4 years ago

Please login to add feedback.

Metadata
Type
security
Severity
high
Karma
0
Signed
Content Type
RPM
Test Gating
Autopush Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
14 days
Thresholds
Minimum Karma
+1
Minimum Testing
7 days
Dates
submitted
4 years ago
in testing
4 years ago
BZ#1885883 CVE-2020-15967 chromium-browser: Use after free in payments
0
0
BZ#1885884 CVE-2020-15968 chromium-browser: Use after free in Blink
0
0
BZ#1885885 CVE-2020-15969 chromium-browser: Use after free in WebRTC
0
0
BZ#1885886 CVE-2020-15970 chromium-browser: Use after free in NFC
0
0
BZ#1885887 CVE-2020-15971 chromium-browser: Use after free in printing
0
0
BZ#1885888 CVE-2020-15972 chromium-browser: Use after free in audio
0
0
BZ#1885889 CVE-2020-15990 chromium-browser: Use after free in autofill
0
0
BZ#1885890 CVE-2020-15991 chromium-browser: Use after free in password manager
0
0
BZ#1885891 CVE-2020-15973 chromium-browser: Insufficient policy enforcement in extensions
0
0
BZ#1885892 CVE-2020-15974 chromium-browser: Integer overflow in Blink
0
0
BZ#1885893 CVE-2020-15975 chromium-browser: Integer overflow in SwiftShader
0
0
BZ#1885894 CVE-2020-15976 chromium-browser: Use after free in WebXR
0
0
BZ#1885896 CVE-2020-6557 chromium-browser: Inappropriate implementation in networking
0
0
BZ#1885897 CVE-2020-15977 chromium-browser: Insufficient data validation in dialogs
0
0
BZ#1885899 CVE-2020-15978 chromium-browser: Insufficient data validation in navigation
0
0
BZ#1885901 CVE-2020-15979 chromium-browser: Inappropriate implementation in V8
0
0
BZ#1885902 CVE-2020-15980 chromium-browser: Insufficient policy enforcement in Intents
0
0
BZ#1885903 CVE-2020-15981 chromium-browser: Out of bounds read in audio
0
0
BZ#1885904 CVE-2020-15982 chromium-browser: Side-channel information leakage in cache
0
0
BZ#1885905 CVE-2020-15983 chromium-browser: Insufficient data validation in webUI
0
0
BZ#1885906 CVE-2020-15984 chromium-browser: Insufficient policy enforcement in Omnibox
0
0
BZ#1885907 CVE-2020-15985 chromium-browser: Inappropriate implementation in Blink
0
0
BZ#1885908 CVE-2020-15986 chromium-browser: Integer overflow in media
0
0
BZ#1885909 CVE-2020-15987 chromium-browser: Use after free in WebRTC
0
0
BZ#1885910 CVE-2020-15992 chromium-browser: Insufficient policy enforcement in networking
0
0
BZ#1885911 CVE-2020-15988 chromium-browser: Insufficient policy enforcement in downloads
0
0
BZ#1885912 CVE-2020-15989 chromium-browser: Uninitialized use in PDFium
0
0
BZ#1885917 CVE-2020-15967 CVE-2020-15968 CVE-2020-15969 CVE-2020-15970 CVE-2020-15971 CVE-2020-15972 CVE-2020-15973 CVE-2020-15974 CVE-2020-15975 CVE-2020-15976 CVE-2020-15977 CVE-2020-15978 CVE-2020-15979 CVE-2020-15980 ... chromium: various flaws [epel-all]
0
0
BZ#1889910 EPEL 7 - chromium.x86_64 0:85.0.4183.121-1.el7 missing libminizip.so and minizip(x86-64) dependencies on RHEL 7.9
0
0
BZ#1890266 CVE-2020-16000 chromium-browser: Inappropriate implementation in Blink
0
0
BZ#1890267 CVE-2020-16001 chromium-browser: Use after free in media
0
0
BZ#1890268 CVE-2020-16002 chromium-browser: Use after free in PDFium
0
0
BZ#1890269 CVE-2020-16003 chromium-browser: Use after free in printing
0
0
BZ#1890273 CVE-2020-16000 CVE-2020-16001 CVE-2020-16002 CVE-2020-16003 chromium: various flaws [epel-all]
0
0
BZ#1893427 Verbose debugging enabled by default
0
0
BZ#1894197 CVE-2020-16004 chromium-browser: Use after free in user interface
0
0
BZ#1894198 CVE-2020-16005 chromium-browser: Insufficient policy enforcement in ANGLE
0
0
BZ#1894199 CVE-2020-16006 chromium-browser: Inappropriate implementation in V8
0
0
BZ#1894201 CVE-2020-16008 chromium-browser: Stack buffer overflow in WebRTC
0
0
BZ#1894202 CVE-2020-16009 chromium-browser: Inappropriate implementation in V8
0
0
BZ#1894209 CVE-2020-16004 CVE-2020-16005 CVE-2020-16006 CVE-2020-16008 CVE-2020-16009 chromium: various flaws [epel-all]
0
0

Automated Test Results