The Stable channel has been updated to 133.0.6943.126 for Linux. This update includes 3 security fixes. [$11000][394350433] High CVE-2025-0999: Heap buffer overflow in V8. Reported by Seunghyun Lee (@0x10n) on 2025-02-04 [TBD][383465163] High CVE-2025-1426: Heap buffer overflow in GPU. Reported by un3xploitable && GF on 2024-12-11 [$4000][390590778] Medium CVE-2025-1006: Use after free in Network. Reported by Tal Keren, Sam Agranat, Eran Rom, Edouard Bochin, Adam Hatsir of Palo Alto Networks on 2025-01-18
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=877b0fdbf10b50f24f5b8d1ea8ff5493c3231e98 commit 877b0fdbf10b50f24f5b8d1ea8ff5493c3231e98 Author: Matt Jolly <kangie@gentoo.org> AuthorDate: 2025-02-19 03:07:58 +0000 Commit: Matt Jolly <kangie@gentoo.org> CommitDate: 2025-02-19 03:46:05 +0000 www-client/google-chrome: automated update (133.0.6943.126) Bug: https://bugs.gentoo.org/949956 Signed-off-by: Matt Jolly <kangie@gentoo.org> www-client/google-chrome/Manifest | 2 +- ...-chrome-133.0.6943.98.ebuild => google-chrome-133.0.6943.126.ebuild} | 0 2 files changed, 1 insertion(+), 1 deletion(-) https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=5370316dd27e29b77931f99698104921c07af7e2 commit 5370316dd27e29b77931f99698104921c07af7e2 Author: Matt Jolly <kangie@gentoo.org> AuthorDate: 2025-02-19 02:56:40 +0000 Commit: Matt Jolly <kangie@gentoo.org> CommitDate: 2025-02-19 03:46:05 +0000 www-client/chromium: add 133.0.6943.126 Bug: https://bugs.gentoo.org/949956 Signed-off-by: Matt Jolly <kangie@gentoo.org> www-client/chromium/Manifest | 2 + www-client/chromium/chromium-133.0.6943.126.ebuild | 1441 ++++++++++++++++++++ 2 files changed, 1443 insertions(+)
