The following builds have been pushed to Fedora EPEL 7 updates-testing
chromium-112.0.5615.121-1.el7
fedora-license-data-1.19-1.el7
Details about builds:
================================================================================
chromium-112.0.5615.121-1.el7 (FEDORA-EPEL-2023-c126e4af73)
A WebKit (Blink) powered web browser that Google doesn't want you to use
--------------------------------------------------------------------------------
Update Information:
update to 112.0.5615.121. Fixes the following security issues: CVE-2023-2004
CVE-2023-2133 CVE-2023-2134 CVE-2023-2135 CVE-2023-2136 CVE-2023-2137
CVE-2023-2033
--------------------------------------------------------------------------------
ChangeLog:
* Sat Apr 15 2023 Than Ngo <than(a)redhat.com> - 112.0.5615.121-1
- update to 112.0.5615.121
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2186431 - CVE-2023-2004 chromium: freetype: integer overflowin in
tt_hvadvance_adjust() in src/truetype/ttgxvar.c [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2186431
[ 2 ] Bug #2186878 - CVE-2023-2033 chromium: chromium-browser: Type Confusion in V8
[fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2186878
[ 3 ] Bug #2186879 - CVE-2023-2033 chromium: chromium-browser: Type Confusion in V8
[epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2186879
[ 4 ] Bug #2186982 - [chromium] GPU process crashes on AMD
https://bugzilla.redhat.com/show_bug.cgi?id=2186982
[ 5 ] Bug #2187064 - Crash in chromium
https://bugzilla.redhat.com/show_bug.cgi?id=2187064
[ 6 ] Bug #2187346 - Lost ability to apply visual effects
https://bugzilla.redhat.com/show_bug.cgi?id=2187346
[ 7 ] Bug #2187772 - Hardware acceleration for chromium is not available, even when
forcing it
https://bugzilla.redhat.com/show_bug.cgi?id=2187772
[ 8 ] Bug #2187900 - CVE-2023-2133 CVE-2023-2134 CVE-2023-2135 CVE-2023-2136
CVE-2023-2137 chromium: various flaws [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2187900
[ 9 ] Bug #2187901 - CVE-2023-2133 CVE-2023-2134 CVE-2023-2135 CVE-2023-2136
CVE-2023-2137 chromium: various flaws [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2187901
--------------------------------------------------------------------------------
================================================================================
fedora-license-data-1.19-1.el7 (FEDORA-EPEL-2023-b9971da112)
Fedora Linux license data
--------------------------------------------------------------------------------
Update Information:
- add BNF grammar - Add BSD-4.3TAHOE - Add Latex2e-translated-notice - Update
UnixCrypt.toml since we don't use legacy Fedora URLs for SPDX (license list)
identifiers - Add new file: UnixCrypt - Add new file: LicenseRef-Schematron-
schema - After the MIT-Festival license was accepted by SPDX, add it to the data
- add field to template to warn about automatic conversion - Add
jisksp16-1990-fonts to public-domain-text.txt - Add groff public domain notice -
Add public-domain texts for libinstpatch - Update to correct SPDX id: eCos-
exception-2.0 - Update QPL-1.0-INRIA-2004 WITH QPL-1.0-INRIA-2004-exception.toml
- Add new file: QPL-1.0-INRIA-2004 WITH QPL-1.0-INRIA-2004-exception - Add new
file: Xdebug-1.03 - Add new file: NIST-Software
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 20 2023 Miroslav Such�� <msuchy(a)redhat.com> 1.19-1
- fix el7 build failure
* Thu Apr 20 2023 Miroslav Such�� <msuchy(a)redhat.com> 1.18-1
- add BNF grammar
- Add BSD-4.3TAHOE
- Add Latex2e-translated-notice
- Update UnixCrypt.toml since we don't use legacy Fedora URLs for SPDX (license
list) identifiers
- Add new file: UnixCrypt
- Add new file: LicenseRef-Schematron-schema
- After the MIT-Festival license was accepted by SPDX, add it to the data
- add field to template to warn about automatic conversion
- Add jisksp16-1990-fonts to public-domain-text.txt
- Add groff public domain notice
- Add public-domain texts for libinstpatch
- Update to correct SPDX id: eCos-exception-2.0
- Update QPL-1.0-INRIA-2004 WITH QPL-1.0-INRIA-2004-exception.toml
- Add new file: QPL-1.0-INRIA-2004 WITH QPL-1.0-INRIA-2004-exception
- Add new file: Xdebug-1.03
- Add new file: NIST-Software
--------------------------------------------------------------------------------