Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package chromium for openSUSE:Factory checked in at 2026-06-05 15:04:01 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/chromium (Old) and /work/SRC/openSUSE:Factory/.chromium.new.2375 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "chromium" Fri Jun 5 15:04:01 2026 rev:523 rq:1357256 version:149.0.7827.53 Changes: -------- --- /work/SRC/openSUSE:Factory/chromium/chromium.changes 2026-06-02 16:03:25.744714721 +0200 +++ /work/SRC/openSUSE:Factory/.chromium.new.2375/chromium.changes 2026-06-05 15:04:35.918980233 +0200 @@ -4 +4,430 @@ -- promote Chromium 149 (149.0.7827.53) to (early) stable +- Chromium 149 (149.0.7827.53) stable (boo#1267706): + * CVE-2026-10881: Out of bounds read and write in ANGLE + * CVE-2026-10882: Use after free in Network + * CVE-2026-10883: Out of bounds write in ANGLE + * CVE-2026-10884: Use after free in Chromecast + * CVE-2026-10885: Use after free in Chrome for iOS + * CVE-2026-10886: Use after free in FileSystem + * CVE-2026-10887: Use after free in Chromoting + * CVE-2026-10888: Use after free in Cast Streaming + * CVE-2026-10889: Out of bounds read in ANGLE + * CVE-2026-10890: Use after free in Cast + * CVE-2026-10891: Use after free in GFX + * CVE-2026-10892: Out of bounds write in GPU + * CVE-2026-10893: Use after free in Chromoting + * CVE-2026-10894: Use after free in Printing + * CVE-2026-10895: Use after free in Ozone + * CVE-2026-10896: Use after free in Chrome for iOS + * CVE-2026-10897: Out of bounds write in GPU + * CVE-2026-10898: Stack buffer overflow in GPU + * CVE-2026-10899: Use after free in Ozone + * CVE-2026-10900: Use after free in Passwords + * CVE-2026-10901: Use after free in Passwords + * CVE-2026-10902: Use after free in Ozone + * CVE-2026-10903: Use after free in WebRTC + * CVE-2026-10904: Inappropriate implementation in V8 + * CVE-2026-10905: Use after free in Network + * CVE-2026-10906: Use after free in WebAuthentication + * CVE-2026-10907: Out of bounds write in ANGLE + * CVE-2026-10908: Use after free in FullScreen + * CVE-2026-10909: Use after free in Dawn + * CVE-2026-10910: Type Confusion in V8 + * CVE-2026-10911: Insufficient validation of untrusted input in Media + * CVE-2026-10912: Insufficient validation of untrusted input in Extensions + * CVE-2026-10913: Use after free in ANGLE + * CVE-2026-10914: Use after free in ANGLE + * CVE-2026-10915: Use after free in Core + * CVE-2026-10916: Insufficient validation of untrusted input in DevTools + * CVE-2026-10917: Insufficient validation of untrusted input in Media + * CVE-2026-10918: Use after free in Viz + * CVE-2026-10919: Use after free in ANGLE + * CVE-2026-10920: Insufficient validation of untrusted input in WebShare + * CVE-2026-10921: Integer overflow in Dawn + * CVE-2026-10922: Insufficient validation of untrusted input in DevTools + * CVE-2026-10923: Use after free in WebAppInstalls + * CVE-2026-10924: Integer overflow in Chromecast + * CVE-2026-10925: Out of bounds write in Skia + * CVE-2026-10926: Use after free in Cast + * CVE-2026-10927: Out of bounds read in Dawn + * CVE-2026-10928: Script injection in Headless + * CVE-2026-10929: Heap buffer overflow in ANGLE + * CVE-2026-10930: Out of bounds read in ANGLE + * CVE-2026-10931: Use after free in FileSystem + * CVE-2026-10932: Use after free in UI + * CVE-2026-10933: Use after free in Audio + * CVE-2026-10934: Use after free in Autofill + * CVE-2026-10935: Inappropriate implementation in V8 + * CVE-2026-10936: Type Confusion in V8 + * CVE-2026-10937: Inappropriate implementation in Passwords + * CVE-2026-10938: Insufficient validation of untrusted input in Input + * CVE-2026-10939: Use after free in WebRTC + * CVE-2026-10940: Race in Codecs + * CVE-2026-10941: Out of bounds memory access in Skia + * CVE-2026-10942: Insufficient validation of untrusted input in UI + * CVE-2026-10943: Use after free in WebRTC + * CVE-2026-10944: Insufficient policy enforcement in Autofill + * CVE-2026-10945: Use after free in PDF + * CVE-2026-10946: Heap buffer overflow in Media + * CVE-2026-10947: Use after free in WebRTC + * CVE-2026-10948: Use after free in WebRTC + * CVE-2026-10949: Heap buffer overflow in Video + * CVE-2026-10950: Insufficient policy enforcement in Autofill + * CVE-2026-10951: Use after free in Autofill + * CVE-2026-10952: Use after free in Chrome for iOS + * CVE-2026-10953: Use after free in Core + * CVE-2026-10954: Use after free in Actor + * CVE-2026-10955: Type Confusion in ANGLE + * CVE-2026-10956: Use after free in MimeHandlerView + * CVE-2026-10957: Use after free in Glic + * CVE-2026-10958: Use after free in Chrome for iOS + * CVE-2026-10959: Use after free in Input + * CVE-2026-10960: Uninitialized Use in Codecs + * CVE-2026-10961: Use after free in Chrome for iOS + * CVE-2026-10962: Type Confusion in Media + * CVE-2026-10963: Integer overflow in V8 + * CVE-2026-10964: Integer overflow in V8 + * CVE-2026-10965: Integer overflow in DevTools + * CVE-2026-10966: Insufficient validation of untrusted input in Codecs + * CVE-2026-10967: Use after free in SurfaceCapture + * CVE-2026-10968: Insufficient validation of untrusted input in Dawn + * CVE-2026-10969: Insufficient validation of untrusted input in Extensions + * CVE-2026-10970: Insufficient validation of untrusted input in InterestGroups + * CVE-2026-10971: Insufficient validation of untrusted input in Printing + * CVE-2026-10972: Use after free in Ozone + * CVE-2026-10973: Uninitialized Use in Dawn + * CVE-2026-10974: Insufficient validation of untrusted input in ANGLE + * CVE-2026-10975: Use after free in WebRTC + * CVE-2026-10976: Uninitialized Use in Dawn + * CVE-2026-10977: Uninitialized Use in Skia + * CVE-2026-10978: Use after free in Chromoting + * CVE-2026-10979: Out of bounds read in ANGLE + * CVE-2026-10980: Insufficient validation of untrusted input in DevTools + * CVE-2026-10981: Insufficient validation of untrusted input in Codecs + * CVE-2026-10982: Use after free in WebXR + * CVE-2026-10983: Insufficient validation of untrusted input in Dawn + * CVE-2026-10984: Inappropriate implementation in Accessibility + * CVE-2026-10985: Out of bounds read in Skia + * CVE-2026-10986: Integer overflow in Media + * CVE-2026-10987: Integer overflow in V8 + * CVE-2026-10988: Use after free in Views + * CVE-2026-10989: Inappropriate implementation in V8 + * CVE-2026-10990: Use after free in Glic + * CVE-2026-10991: Use after free in V8 + * CVE-2026-10992: Insufficient data validation in Animation + * CVE-2026-10993: Heap buffer overflow in Skia + * CVE-2026-10994: Uninitialized Use in ANGLE + * CVE-2026-10995: Heap buffer overflow in TabStrip + * CVE-2026-10996: Inappropriate implementation in Workers + * CVE-2026-10997: Insufficient policy enforcement in Extensions + * CVE-2026-10998: Out of bounds read in Media + * CVE-2026-10999: Out of bounds memory access in ANGLE + * CVE-2026-11000: Use after free in Fonts + * CVE-2026-11001: Incorrect security UI in Payments + * CVE-2026-11002: Use after free in Autofill + * CVE-2026-11003: Use after free in WebRTC + * CVE-2026-11004: Out of bounds read in ANGLE + * CVE-2026-11005: Out of bounds read in ANGLE + * CVE-2026-11006: Out of bounds read in Dawn + * CVE-2026-11007: Insufficient validation of untrusted input in WebView + * CVE-2026-11008: Insufficient validation of untrusted input in WebAppInstalls + * CVE-2026-11009: Use after free in USB + * CVE-2026-11010: Use after free in WebShare + * CVE-2026-11011: Insufficient policy enforcement in Password Manager + * CVE-2026-11012: Use after free in Serial + * CVE-2026-11013: Insufficient validation of untrusted input in Network + * CVE-2026-11014: Insufficient policy enforcement in Extensions + * CVE-2026-11015: Out of bounds read in WebGPU + * CVE-2026-11016: Insufficient validation of untrusted input in Network + * CVE-2026-11017: Inappropriate implementation in Link Preview + * CVE-2026-11018: Insufficient policy enforcement in Actor + * CVE-2026-11019: Inappropriate implementation in Payments + * CVE-2026-11020: Inappropriate implementation in Extensions + * CVE-2026-11021: Insufficient validation of untrusted input in GPU + * CVE-2026-11022: Insufficient validation of untrusted input in DevTools + * CVE-2026-11023: Insufficient validation of untrusted input in WebAppInstalls + * CVE-2026-11024: Stack buffer overflow in Skia + * CVE-2026-11025: Insufficient policy enforcement in Navigation + * CVE-2026-11026: Insufficient policy enforcement in Extensions + * CVE-2026-11027: Insufficient validation of untrusted input in Glic + * CVE-2026-11028: Use after free in Media + * CVE-2026-11029: Insufficient validation of untrusted input in Drag and Drop + * CVE-2026-11030: Use after free in Network + * CVE-2026-11031: Insufficient validation of untrusted input in Password Manager + * CVE-2026-11032: Insufficient data validation in Password Manager + * CVE-2026-11033: Uninitialized Use in WebML + * CVE-2026-11034: Insufficient validation of untrusted input in Tab Group Sync + * CVE-2026-11035: Insufficient validation of untrusted input in Custom Tabs + * CVE-2026-11036: Inappropriate implementation in DOM + * CVE-2026-11037: Out of bounds write in Codecs + * CVE-2026-11038: Insufficient validation of untrusted input in Subresource Integrity + * CVE-2026-11039: Uninitialized Use in Skia + * CVE-2026-11040: Use after free in ANGLE + * CVE-2026-11041: Insufficient validation of untrusted input in Media + * CVE-2026-11042: Use after free in Views + * CVE-2026-11043: Out of bounds write in ANGLE + * CVE-2026-11044: Integer overflow in ANGLE + * CVE-2026-11045: Insufficient validation of untrusted input in GPU + * CVE-2026-11046: Insufficient validation of untrusted input in Media + * CVE-2026-11047: Insufficient validation of untrusted input in Base + * CVE-2026-11048: Inappropriate implementation in Extensions + * CVE-2026-11049: Use after free in Password Manager + * CVE-2026-11050: Use after free in V8 + * CVE-2026-11051: Out of bounds read in ANGLE + * CVE-2026-11052: Type Confusion in GPU + * CVE-2026-11053: VULNERABILITY in WebRTC + * CVE-2026-11054: Use after free in WebRTC + * CVE-2026-11055: Use after free in ANGLE + * CVE-2026-11056: Insufficient validation of untrusted input in SiteIsolation + * CVE-2026-11057: Uninitialized Use in Skia + * CVE-2026-11058: Integer overflow in CredentialProvider + * CVE-2026-11059: Use after free in Blink + * CVE-2026-11060: Use after free in Media + * CVE-2026-11061: Out of bounds read in ANGLE + * CVE-2026-11062: Insufficient policy enforcement in Extensions + * CVE-2026-11063: Insufficient validation of untrusted input in WebNN + * CVE-2026-11064: Uninitialized Use in GPU + * CVE-2026-11065: Use after free in ANGLE + * CVE-2026-11066: Insufficient validation of untrusted input in ANGLE + * CVE-2026-11067: Uninitialized Use in Dawn + * CVE-2026-11068: Use after free in WebSockets + * CVE-2026-11069: Insufficient validation of untrusted input in Cast + * CVE-2026-11070: Insufficient validation of untrusted input in Chromoting + * CVE-2026-11071: Use after free in Base + * CVE-2026-11072: Use after free in WebView + * CVE-2026-11073: Use after free in WebGL + * CVE-2026-11074: Use after free in WebRTC + * CVE-2026-11075: Out of bounds read in V8 + * CVE-2026-11076: Type Confusion in CSS + * CVE-2026-11077: Out of bounds read in Dawn + * CVE-2026-11078: Insufficient validation of untrusted input in FileSystem + * CVE-2026-11079: Insufficient validation of untrusted input in Codecs + * CVE-2026-11080: Use after free in WebView + * CVE-2026-11081: Policy bypass in Canvas + * CVE-2026-11082: Use after free in GPU + * CVE-2026-11083: Inappropriate implementation in Password Manager + * CVE-2026-11084: Inappropriate implementation in Password Manager + * CVE-2026-11085: Integer overflow in GPU + * CVE-2026-11086: Insufficient validation of untrusted input in Dawn + * CVE-2026-11087: Uninitialized Use in ANGLE + * CVE-2026-11088: Integer overflow in ANGLE + * CVE-2026-11089: Uninitialized Use in Media + * CVE-2026-11090: Uninitialized Use in ANGLE + * CVE-2026-11091: Inappropriate implementation in Dawn + * CVE-2026-11092: Insufficient policy enforcement in DevTools + * CVE-2026-11093: Insufficient validation of untrusted input in Printing + * CVE-2026-11094: Use after free in Codecs + * CVE-2026-11095: Insufficient validation of untrusted input in Codecs + * CVE-2026-11096: Out of bounds read in WebRTC + * CVE-2026-11097: Inappropriate implementation in WebView + * CVE-2026-11098: Insufficient validation of untrusted input in GPU + * CVE-2026-11099: Vulnerability in Skia + * CVE-2026-11100: Use after free in File Input + * CVE-2026-11101: Uninitialized Use in Dawn + * CVE-2026-11102: Inappropriate implementation in Isolated Web Apps + * CVE-2026-11103: Inappropriate implementation in Installer + * CVE-2026-11104: Uninitialized Use in ANGLE + * CVE-2026-11105: Insufficient validation of untrusted input in WebUI + * CVE-2026-11106: Inappropriate implementation in Media + * CVE-2026-11107: Inappropriate implementation in Downloads + * CVE-2026-11108: Inappropriate implementation in NFC + * CVE-2026-11109: Uninitialized Use in ANGLE + * CVE-2026-11110: Uninitialized Use in ANGLE + * CVE-2026-11111: Out of bounds read in ANGLE + * CVE-2026-11112: Insufficient validation of untrusted input in Chromoting + * CVE-2026-11113: Insufficient validation of untrusted input in ANGLE + * CVE-2026-11114: Use after free in Device Trust + * CVE-2026-11115: Use after free in Updater + * CVE-2026-11116: Use after free in Chromoting + * CVE-2026-11117: Use after free in Views + * CVE-2026-11118: Use after free in WebRTC + * CVE-2026-11119: Insufficient validation of untrusted input in GPU + * CVE-2026-11120: Insufficient validation of untrusted input in Enterprise Reporting + * CVE-2026-11121: Insufficient validation of untrusted input in Skia + * CVE-2026-11122: Inappropriate implementation in Keyboard + * CVE-2026-11123: Uninitialized Use in ANGLE + * CVE-2026-11124: Heap buffer overflow in Skia + * CVE-2026-11125: Use after free in Compositing + * CVE-2026-11126: Insufficient validation of untrusted input in DevTools + * CVE-2026-11127: Inappropriate implementation in WebAPKs + * CVE-2026-11128: Insufficient validation of untrusted input in Web Share + * CVE-2026-11129: Inappropriate implementation in Extensions + * CVE-2026-11130: Use after free in Media + * CVE-2026-11131: Use after free in Autofill + * CVE-2026-11132: Policy bypass in Paint + * CVE-2026-11133: Insufficient policy enforcement in Paint + * CVE-2026-11134: Insufficient data validation in Media + * CVE-2026-11135: Insufficient policy enforcement in Autofill + * CVE-2026-11136: Use after free in Canvas + * CVE-2026-11137: Uninitialized Use in ANGLE + * CVE-2026-11138: Uninitialized Use in ANGLE + * CVE-2026-11139: Policy bypass in Paint + * CVE-2026-11140: Insufficient validation of untrusted input in Chromecast + * CVE-2026-11141: Uninitialized Use in Audio + * CVE-2026-11142: Policy bypass in Paint + * CVE-2026-11143: Heap buffer overflow in Extensions + * CVE-2026-11144: Use after free in Media + * CVE-2026-11145: Race in Geolocation + * CVE-2026-11146: Insufficient validation of untrusted input in Chromoting + * CVE-2026-11147: Use after free in WebML + * CVE-2026-11148: Inappropriate implementation in Payments + * CVE-2026-11149: Insufficient validation of untrusted input in Extensions + * CVE-2026-11150: Inappropriate implementation in XML + * CVE-2026-11151: Insufficient validation of untrusted input in Password Manager + * CVE-2026-11152: Object lifecycle issue in Dawn + * CVE-2026-11153: Side-channel information leakage in Forms + * CVE-2026-11154: Use after free in Dawn + * CVE-2026-11155: Insufficient policy enforcement in CSS + * CVE-2026-11156: Inappropriate implementation in CSS + * CVE-2026-11157: Script injection in Accessibility + * CVE-2026-11158: Insufficient validation of untrusted input in Downloads + * CVE-2026-11159: Uninitialized Use in Skia + * CVE-2026-11160: Out of bounds read in Input + * CVE-2026-11161: Insufficient data validation in DataTransfer + * CVE-2026-11162: Insufficient policy enforcement in CSS + * CVE-2026-11163: Use after free in Messages + * CVE-2026-11164: Use after free in Blink + * CVE-2026-11165: Use after free in WebMIDI + * CVE-2026-11166: Inappropriate implementation in SVG + * CVE-2026-11167: Inappropriate implementation in WebView + * CVE-2026-11168: Insufficient policy enforcement in Extensions + * CVE-2026-11169: Inappropriate implementation in XML + * CVE-2026-11170: Inappropriate implementation in Chromoting + * CVE-2026-11171: Integer overflow in Blink + * CVE-2026-11172: Incorrect security UI in Contact Picker + * CVE-2026-11173: Out of bounds write in V8 + * CVE-2026-11174: Insufficient policy enforcement in Site Isolation + * CVE-2026-11175: Incorrect security UI in Messages ++++ 134 more lines (skipped) ++++ between /work/SRC/openSUSE:Factory/chromium/chromium.changes ++++ and /work/SRC/openSUSE:Factory/.chromium.new.2375/chromium.changes ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ _scmsync.obsinfo ++++++ --- /var/tmp/diff_new_pack.UbaTkA/_old 2026-06-05 15:04:51.927642987 +0200 +++ /var/tmp/diff_new_pack.UbaTkA/_new 2026-06-05 15:04:51.931643153 +0200 @@ -1,6 +1,6 @@ -mtime: 1780337784 -commit: 14283060841a10b653d8063c6ff6cc2379ad5cb38cfec4cb3a3122d295e0841f +mtime: 1780646956 +commit: 02cd0c3e955459eea0670c17e97974c0213f78a5a919a02f61ab6c55546ed4d0 url: https://src.opensuse.org/chromium/chromium -revision: 14283060841a10b653d8063c6ff6cc2379ad5cb38cfec4cb3a3122d295e0841f +revision: 02cd0c3e955459eea0670c17e97974c0213f78a5a919a02f61ab6c55546ed4d0 projectscmsync: https://src.opensuse.org/chromium/_ObsPrj.git ++++++ build.specials.obscpio ++++++ ++++++ build.specials.obscpio ++++++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/.gitignore new/.gitignore --- old/.gitignore 1970-01-01 01:00:00.000000000 +0100 +++ new/.gitignore 2026-06-05 10:09:16.000000000 +0200 @@ -0,0 +1,4 @@ +.osc +*.patch~ +*-build/ +.*.swp
