The Stable channel has been updated to 135.0.7049.95 for Linux. This update includes 2 security fixes. [TBD][409619251] Critical CVE-2025-3619: Heap buffer overflow in Codecs. Reported by Elias Hohl on 2025-04-09 [TBD][405292639] High CVE-2025-3620: Use after free in USB. Reported by @retsew0x01 on 2025-03-21
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=d8da15bf664a4edf204b159fdbd7b4278b953df9 commit d8da15bf664a4edf204b159fdbd7b4278b953df9 Author: Matt Jolly <kangie@gentoo.org> AuthorDate: 2025-04-16 00:46:53 +0000 Commit: Matt Jolly <kangie@gentoo.org> CommitDate: 2025-04-16 00:55:30 +0000 www-client/google-chrome: automated update (135.0.7049.95) Bug: https://bugs.gentoo.org/953897 Signed-off-by: Matt Jolly <kangie@gentoo.org> www-client/google-chrome/Manifest | 2 +- ...e-chrome-135.0.7049.84.ebuild => google-chrome-135.0.7049.95.ebuild} | 0 2 files changed, 1 insertion(+), 1 deletion(-) https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=679345bd1bea9edff0deb710cb57accad3e123a3 commit 679345bd1bea9edff0deb710cb57accad3e123a3 Author: Matt Jolly <kangie@gentoo.org> AuthorDate: 2025-04-16 00:42:42 +0000 Commit: Matt Jolly <kangie@gentoo.org> CommitDate: 2025-04-16 00:55:30 +0000 www-client/chromium: add 135.0.7049.95 Bug: https://bugs.gentoo.org/953897 Signed-off-by: Matt Jolly <kangie@gentoo.org> www-client/chromium/Manifest | 3 + www-client/chromium/chromium-135.0.7049.95.ebuild | 1536 +++++++++++++++++++++ 2 files changed, 1539 insertions(+)
