BSD-3-Clause AND LGPL-2.1-or-later AND Apache-2.0 AND IJG AND MIT AND GPL-2.0-or-later AND ISC AND OpenSSL AND (MPL-1.1 OR GPL-2.0-only OR LGPL-2.0-only)
Build Time
2025-11-07 23:34:10
Build Host
builder-iso-x86-01.inferitos.ru
Summary
The web browser from Chromium Gost project
Repositories
Extras
Description
Chromium Gost is an open-source browser based on Chromium code and supports Russian Gost encryption algorithms.
* Fri Nov 07 2025 Arkady L. Shane <tigro@msvsphere-os.ru> - 142.0.7444.134-1.inferit
- Update to 142.0.7444.134
* High CVE-2025-12725: Out of bounds write in WebGPU
* High CVE-2025-12726: Inappropriate implementation in Views
* High CVE-2025-12727: Inappropriate implementation in V8
* Medium CVE-2025-12728: Inappropriate implementation in Omnibox
* Mon Nov 03 2025 Arkady L. Shane <tigro@msvsphere-os.ru> - 142.0.7444.59-1.inferit
- Update to 142.0.7444.59
* Refreshed ppc64le patches
* Refreshed system-brotli patch
* Refreshed clang++-unknown-argument patch
* Refreshed split-threshold-for-reg-with-hint patch
* Fixed some FTBFS caused by missing header files
* Fixed FTBFS caused by old rust compiler
* Fixed FTBFS caused by new glibc-2.42 in Rawhide
* Fixed FTBFS caused by old python-3.9.x in EL8/9
* Dropped obsoleted chromium-141-el9-ffmpeg-5.x-duration.patch for old ffmpeg on EL9
* Wed Oct 22 2025 Arkady L. Shane <tigro@msvsphere-os.ru> - 141.0.7390.122-1.inferit
- Update to 141.0.7390.122
* High CVE-2025-12036 chromium: Inappropriate implementation in V8
* Mon Oct 20 2025 Arkady L. Shane <tigro@msvsphere-os.ru> - 141.0.7390.107-1
- Update 141.0.7390.107
* High CVE-2025-11756: Use after free in Safe Browsing
- remove enable-native-gpu-memory-buffers by default as it causes glitches
* Sun Oct 05 2025 Arkady L. Shane <tigro@msvsphere-os.ru> - 141.0.7390.54-1
- Update to 141.0.7390.54
* High CVE-2025-11205: Heap buffer overflow in WebGPU
* High CVE-2025-11206: Heap buffer overflow in Video
* Medium CVE-2025-11207: Side-channel information leakage in Storage
* Medium CVE-2025-11208: Inappropriate implementation in Media
* Medium CVE-2025-11209: Inappropriate implementation in Omnibox
* Medium CVE-2025-11210: Side-channel information leakage in Tab
* Medium CVE-2025-11211: Out of bounds read in Media
* Medium CVE-2025-11212: Inappropriate implementation in Media
* Medium CVE-2025-11213: Inappropriate implementation in Omnibox
* Medium CVE-2025-11215: Off by one error in V8
* Low CVE-2025-11216: Inappropriate implementation in Storage
* Low CVE-2025-11219: Use after free in V8
* Fri Sep 26 2025 Arkady L. Shane <tigro@msvsphere-os.ru> - 140.0.7339.207-1.inferit
- Update to 140.0.7339.207
* CVE-2025-10890: Side-channel information leakage in V8
* CVE-2025-10891: Integer overflow in V8
* CVE-2025-10892: Integer overflow in V8
* Fri Sep 19 2025 Arkady L. Shane <tigro@msvsphere-os.ru> - 140.0.7339.185-1.inferit
- Update to 140.0.7339.185
* CVE-2025-10585: Type Confusion in V8
* CVE-2025-10500: Use after free in Dawn
* CVE-2025-10501: Use after free in WebRTC
* CVE-2025-10502: Heap buffer overflow in ANGLE
- Update to 140.0.7339.127
* CVE-2025-10200: Use after free in Serviceworker
* CVE-2025-10201: Inappropriate implementation in Mojo
* Thu Sep 04 2025 Arkady L. Shane <tigro@msvsphere-os.ru> - 140.0.7339.80-1.inferit
- Update to 140.0.7339.80
* CVE-2025-9864: Use after free in V8
* CVE-2025-9865: Inappropriate implementation in Toolbar
* CVE-2025-9866: Inappropriate implementation in Extensions
CVE-2025-9867: Inappropriate implementation in Download
* Fri Aug 29 2025 Arkady L. Shane <tigro@msvsphere-os.ru> - 139.0.7258.154-1.inferit
- Update to 139.0.7258.154
* CVE-2025-9478: Use after free in ANGLE
* Sat Aug 23 2025 Arkady L. Shane <tigro@msvsphere-os.ru> - 139.0.7258.138-1.inferit
- Updated to 139.0.7258.138
* CVE-2025-9132: Out of bounds write in V8
- Drop unused yasm build dependency
https://fedoraproject.org/wiki/Changes/DeprecateYASM
