Chrome 136.0.7103.59 has been promoted to stable. [$5000][409911705] High CVE-2025-4096: Heap buffer overflow in HTML. Reported by Anonymous on 2025-04-11 [$2000][409342999] Medium CVE-2025-4050: Out of bounds memory access in DevTools. Reported by Anonymous on 2025-04-09 [$2000][404000989] Medium CVE-2025-4051: Insufficient data validation in DevTools. Reported by Daniel Fröjdendahl on 2025-03-16 [$1000][401927528] Low CVE-2025-4052: Inappropriate implementation in DevTools. Reported by vanillawebdev on 2025-03-10 [414433561]Various fixes from internal audits, fuzzing and other initiatives
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=696f3924d568b8a803b6d662287dab969c16af83 commit 696f3924d568b8a803b6d662287dab969c16af83 Author: Matt Jolly <kangie@gentoo.org> AuthorDate: 2025-04-30 09:33:44 +0000 Commit: Matt Jolly <kangie@gentoo.org> CommitDate: 2025-04-30 09:42:36 +0000 www-client/google-chrome: automated update (136.0.7103.59) Bug: https://bugs.gentoo.org/955099 Signed-off-by: Matt Jolly <kangie@gentoo.org> www-client/google-chrome/Manifest | 2 +- ...-chrome-135.0.7049.114.ebuild => google-chrome-136.0.7103.59.ebuild} | 0 2 files changed, 1 insertion(+), 1 deletion(-) https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=38169b27824c344ccaab016f55b1a8aade26d906 commit 38169b27824c344ccaab016f55b1a8aade26d906 Author: Matt Jolly <kangie@gentoo.org> AuthorDate: 2025-04-30 00:39:47 +0000 Commit: Matt Jolly <kangie@gentoo.org> CommitDate: 2025-04-30 09:42:36 +0000 www-client/chromium: add 136.0.7103.59 Bug: https://bugs.gentoo.org/955099 Signed-off-by: Matt Jolly <kangie@gentoo.org> www-client/chromium/Manifest | 2 + www-client/chromium/chromium-136.0.7103.59.ebuild | 1551 +++++++++++++++++++++ 2 files changed, 1553 insertions(+)
