[ol10_u1_developer_EPEL] chromium-headless-139.0.7258.138-1.el10_1.aarch64

Name:	chromium-headless
Version:	139.0.7258.138
Release:	1.el10_1
Architecture:	aarch64
Group:	Unspecified
Size:	154003934
License:	BSD-3-Clause AND LGPL-2.1-or-later AND Apache-2.0 AND IJG AND MIT AND GPL-2.0-or-later AND ISC AND OpenSSL AND (MPL-1.1 OR GPL-2.0-only OR LGPL-2.0-only)
RPM:	chromium-headless-139.0.7258.138-1.el10_1.aarch64.rpm
Source RPM:	chromium-139.0.7258.138-1.el10_1.src.rpm
Build Date:	Wed Sep 24 2025
Build Host:	build-ol10-aarch64.oracle.com
Vendor:	Oracle America
URL:	http://www.chromium.org/Home
Summary:	A minimal headless shell built from Chromium
Description:	A minimal headless client built from Chromium. headless_shell is built without support for alsa, cups, dbus, gconf, gio, kerberos, pulseaudio, or udev.

Changelog (Show File list) (Show related packages)

Fri Aug 22 2025 Than Ngo <than@redhat.com> - 139.0.7258.138-1

- Updated to 139.0.7258.138
  * CVE-2025-9132: Out of bounds write in V8

Wed Aug 20 2025 Dominik Mierzejewski <dominik@greysector.net> - 139.0.7258.127-2

- Drop unused yasm build dependency
  see https://fedoraproject.org/wiki/Changes/DeprecateYASM

Wed Aug 13 2025 Than Ngo <than@redhat.com> - 139.0.7258.127-1

- Updated to 139.0.7258.127
  * CVE-2025-8879: Heap buffer overflow in libaom
  * CVE-2025-8880: Race in V8
  * CVE-2025-8901: Out of bounds write in ANGLE
  * CVE-2025-8881: Inappropriate implementation in File Picker
  * CVE-2025-8882: Use after free in Aura

Tue Aug 05 2025 Than Ngo <than@redhat.com> - 139.0.7258.66-1

- Updated to 139.0.7258.66
  * CVE-2025-8576: Use after free in Extensions
  * CVE-2025-8578: Use after free in Cast
  * CVE-2025-8579: Inappropriate implementation in Gemini Live in Chrome
  * CVE-2025-8580: Inappropriate implementation in Filesystems
  * CVE-2025-8581: Inappropriate implementation in Extensions
  * CVE-2025-8582: Insufficient validation of untrusted input in DOM
  * CVE-2025-8583: Inappropriate implementation in Permissions

Mon Aug 04 2025 Tom Stellard <tstellar@redhat.com> - 138.0.7204.183-2
```
- Backport fix for build failure with clang-21
```

Wed Jul 30 2025 Than Ngo <than@redhat.com> - 138.0.7204.183-1

- Update to 138.0.7204.183
  * CVE-2025-8292: Use after free in Media Stream

Wed Jul 23 2025 Fedora Release Engineering <releng@fedoraproject.org> - 138.0.7204.168-2
```
- Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild
```

Wed Jul 23 2025 Than Ngo <than@redhat.com> - 138.0.7204.168-1

- Update to 138.0.7204.168
  * CVE-2025-8010: Type Confusion in V8
  * CVE-2025-8011: Type Confusion in V8

Wed Jul 16 2025 Than Ngo <than@redhat.com> - 138.0.7204.157-1

- Update to 138.0.7204.157
  * CVE-2025-7656: Integer overflow in V8
  * CVE-2025-7657: Use after free in WebRTC
  * CVE-2025-6558: Incorrect validation of untrusted input in ANGLE and GPU

Fri Jul 11 2025 Tom Stellard <tstellar@redhat.com> -138.0.7204.100-2
```
- Update rust-clanglib patch for clang 21
```