The Stable channel has been updated to 128.0.6613.137 for Linux. This update includes 5 security fixes. [361461526] High CVE-2024-8636: Heap buffer overflow in Skia. Reported by Renan Rios (@hyhy_100) on 2024-08-22 [361784548] High CVE-2024-8637: Use after free in Media Router. Reported by lime(@limeSec_) from TIANGONG Team of Legendsec at QI-ANXIN Group on 2024-08-23 [362539773] High CVE-2024-8638: Type Confusion in V8. Reported by Zhenghang Xiao (@Kipreyyy) on 2024-08-28 [362658609] High CVE-2024-8639: Use after free in Autofill. Reported by lime(@limeSec_) from TIANGONG Team of Legendsec at QI-ANXIN Group on 2024-08-28
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=2c2a73e15d077f933278ca60f6ab1438c1a57038 commit 2c2a73e15d077f933278ca60f6ab1438c1a57038 Author: Matt Jolly <kangie@gentoo.org> AuthorDate: 2024-09-11 11:13:34 +0000 Commit: Matt Jolly <kangie@gentoo.org> CommitDate: 2024-09-11 11:23:42 +0000 www-client/google-chrome: automated update (128.0.6613.137) Bug: https://bugs.gentoo.org/939451 Signed-off-by: Matt Jolly <kangie@gentoo.org> www-client/google-chrome/Manifest | 2 +- ...chrome-128.0.6613.119.ebuild => google-chrome-128.0.6613.137.ebuild} | 0 2 files changed, 1 insertion(+), 1 deletion(-) https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=3ef0fdf30c38f904c7717d5dfcb89c2660eaed99 commit 3ef0fdf30c38f904c7717d5dfcb89c2660eaed99 Author: Matt Jolly <kangie@gentoo.org> AuthorDate: 2024-09-11 11:12:48 +0000 Commit: Matt Jolly <kangie@gentoo.org> CommitDate: 2024-09-11 11:23:42 +0000 www-client/chromium: add 128.0.6613.137 Bug: https://bugs.gentoo.org/939451 Signed-off-by: Matt Jolly <kangie@gentoo.org> www-client/chromium/Manifest | 2 + www-client/chromium/chromium-128.0.6613.137.ebuild | 1452 ++++++++++++++++++++ 2 files changed, 1454 insertions(+)
