commit chromium for openSUSE:Factory

Source-Sync Thu, 11 Jun 2026 08:28:56 -0700

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package chromium for openSUSE:Factory 
checked in at 2026-06-11 17:26:42
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/chromium (Old)
 and      /work/SRC/openSUSE:Factory/.chromium.new.1981 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++


Package is "chromium"

Thu Jun 11 17:26:42 2026 rev:524 rq:1358111 version:149.0.7827.102

Changes:
--------
--- /work/SRC/openSUSE:Factory/chromium/chromium.changes        2026-06-05 
15:04:35.918980233 +0200
+++ /work/SRC/openSUSE:Factory/.chromium.new.1981/chromium.changes      
2026-06-11 17:27:52.975643341 +0200
@@ -1,0 +2,79 @@
+Tue Jun  9 05:36:27 UTC 2026 - Andreas Stieger <[email protected]>
+
+- Chromium 149.0.7827.102 (boo#1267911):
+  * CVE-2026-11628: Use after free in Ozone
+  * CVE-2026-11629: Use after free in Ozone
+  * CVE-2026-11630: Use after free in File Input
+  * CVE-2026-11631: Use after free in Aura
+  * CVE-2026-11632: Use after free in TabStrip
+  * CVE-2026-11633: Use after free in Bluetooth
+  * CVE-2026-11634: Use after free in Gamepad
+  * CVE-2026-11635: Use after free in Bluetooth
+  * CVE-2026-11636: Use after free in Autofill
+  * CVE-2026-11637: Use after free in Views
+  * CVE-2026-11638: Use after free in Printing
+  * CVE-2026-11639: Use after free in Compositing
+  * CVE-2026-11640: Integer overflow in libyuv
+  * CVE-2026-11641: Use after free in Bluetooth
+  * CVE-2026-11642: Use after free in Web Apps
+  * CVE-2026-11643: Use after free in Proxy
+  * CVE-2026-11644: Use after free in Views
+  * CVE-2026-11645: Out of bounds memory access in V8
+  * CVE-2026-11646: Use after free in ViewTransitions
+  * CVE-2026-11647: Use after free in Printing
+  * CVE-2026-11648: Use after free in FullScreen
+  * CVE-2026-11649: Use after free in V8
+  * CVE-2026-11650: Use after free in V8
+  * CVE-2026-11651: Use after free in Network
+  * CVE-2026-11652: Use after free in Extensions
+  * CVE-2026-11653: Insufficient validation of untrusted input in Extensions
+  * CVE-2026-11654: Use after free in CameraCapture
+  * CVE-2026-11655: Integer overflow in Media
+  * CVE-2026-11656: Use after free in ServiceWorker
+  * CVE-2026-11657: Use after free in Payments
+  * CVE-2026-11658: Insufficient validation of untrusted input in Extensions
+  * CVE-2026-11659: Insufficient validation of untrusted input in UI
+  * CVE-2026-11660: Insufficient validation of untrusted input in New Tab Page
+  * CVE-2026-11661: Use after free in Views
+  * CVE-2026-11662: Type Confusion in Bindings
+  * CVE-2026-11663: Use after free in Skia
+  * CVE-2026-11664: Use after free in Payments
+  * CVE-2026-11665: Out of bounds read in Dawn
+  * CVE-2026-11666: Insufficient validation of untrusted input in Input
+  * CVE-2026-11667: Out of bounds read in WebRTC
+  * CVE-2026-11668: Uninitialized Use in Codecs
+  * CVE-2026-11669: Integer overflow in Media
+  * CVE-2026-11670: Use after free in PDF
+  * CVE-2026-11671: Use after free in Navigation
+  * CVE-2026-11672: Out of bounds write in GPU
+  * CVE-2026-11673: Use after free in InterestGroups
+  * CVE-2026-11674: Use after free in Guest View
+  * CVE-2026-11675: Insufficient validation of untrusted input in Skia
+  * CVE-2026-11676: Insufficient validation of untrusted input in Dawn
+  * CVE-2026-11677: Race in Network
+  * CVE-2026-11678: Integer overflow in libyuv
+  * CVE-2026-11679: Use after free in Codecs
+  * CVE-2026-11680: Use after free in Media
+  * CVE-2026-11681: Use after free in Ozone
+  * CVE-2026-11682: Insufficient validation of untrusted input in Views
+  * CVE-2026-11683: Use after free in WebCodecs
+  * CVE-2026-11684: Insufficient policy enforcement in Network
+  * CVE-2026-11685: Insufficient data validation in MediaCapture
+  * CVE-2026-11686: Insufficient validation of untrusted input in Dawn
+  * CVE-2026-11687: Use after free in Dawn
+  * CVE-2026-11688: Object lifecycle issue in SVG
+  * CVE-2026-11689: Insufficient validation of untrusted input in Passwords
+  * CVE-2026-11690: Out of bounds read and write in Media
+  * CVE-2026-11691: Insufficient validation of untrusted input in New Tab Page
+  * CVE-2026-11692: Use after free in Read Anything
+  * CVE-2026-11693: Inappropriate implementation in Plugins
+  * CVE-2026-11694: Use after free in ServiceWorker
+  * CVE-2026-11695: Inappropriate implementation in Passwords
+  * CVE-2026-11696: Uninitialized Use in Video
+  * CVE-2026-11697: Insufficient validation of untrusted input in UI
+  * CVE-2026-11698: Use after free in Bluetooth
+  * CVE-2026-11699: Use after free in Bluetooth
+  * CVE-2026-11700: Use after free in Tracing
+  * CVE-2026-11701: Insufficient validation of untrusted input in Guest View
+
+-------------------------------------------------------------------

Old:
----
  chromium-149.0.7827.53-linux.tar.xz

New:
----
  chromium-149.0.7827.102-linux.tar.xz

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ chromium.spec ++++++
--- /var/tmp/diff_new_pack.94MLaP/_old  2026-06-11 17:28:06.704219048 +0200
+++ /var/tmp/diff_new_pack.94MLaP/_new  2026-06-11 17:28:06.708219216 +0200
@@ -132,7 +132,7 @@
 %global official_build 1
 
 Name:           chromium%{n_suffix}
-Version:        149.0.7827.53
+Version:        149.0.7827.102
 Release:        0
 Summary:        Google's open source browser project
 License:        BSD-3-Clause AND LGPL-2.1-or-later

++++++ _scmsync.obsinfo ++++++
--- /var/tmp/diff_new_pack.94MLaP/_old  2026-06-11 17:28:06.920228107 +0200
+++ /var/tmp/diff_new_pack.94MLaP/_new  2026-06-11 17:28:06.924228274 +0200
@@ -1,6 +1,6 @@
-mtime: 1780646956
-commit: 02cd0c3e955459eea0670c17e97974c0213f78a5a919a02f61ab6c55546ed4d0
+mtime: 1780984553
+commit: ed7fd8811cfdf0cd3b7cf78a560730971dcc5658f1119d3c253baf54659be028
 url: https://src.opensuse.org/chromium/chromium
-revision: 02cd0c3e955459eea0670c17e97974c0213f78a5a919a02f61ab6c55546ed4d0
+revision: ed7fd8811cfdf0cd3b7cf78a560730971dcc5658f1119d3c253baf54659be028
 projectscmsync: https://src.opensuse.org/chromium/_ObsPrj.git
 

++++++ build.specials.obscpio ++++++

++++++ build.specials.obscpio ++++++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' old/.gitignore new/.gitignore
--- old/.gitignore      1970-01-01 01:00:00.000000000 +0100
+++ new/.gitignore      2026-06-09 07:55:53.000000000 +0200
@@ -0,0 +1,4 @@
+.osc
+*.patch~
+*-build/
+.*.swp

++++++ chromium-149.0.7827.53-linux.tar.xz -> 
chromium-149.0.7827.102-linux.tar.xz ++++++
/work/SRC/openSUSE:Factory/chromium/chromium-149.0.7827.53-linux.tar.xz 
/work/SRC/openSUSE:Factory/.chromium.new.1981/chromium-149.0.7827.102-linux.tar.xz
 differ: char 15, line 1

commit chromium for openSUSE:Factory

Reply via email to