[ol9_developer_EPEL] chromium-headless-138.0.7204.49-1.el9.aarch64

Name:	chromium-headless
Version:	138.0.7204.49
Release:	1.el9
Architecture:	aarch64
Group:	Unspecified
Size:	164772352
License:	BSD-3-Clause AND LGPL-2.1-or-later AND Apache-2.0 AND IJG AND MIT AND GPL-2.0-or-later AND ISC AND OpenSSL AND (MPL-1.1 OR GPL-2.0-only OR LGPL-2.0-only)
RPM:	chromium-headless-138.0.7204.49-1.el9.aarch64.rpm
Source RPM:	chromium-138.0.7204.49-1.el9.src.rpm
Build Date:	Sun Jun 29 2025
Build Host:	build-ol9-aarch64.oracle.com
Vendor:	Oracle America
URL:	http://www.chromium.org/Home
Summary:	A minimal headless shell built from Chromium
Description:	A minimal headless client built from Chromium. headless_shell is built without support for alsa, cups, dbus, gconf, gio, kerberos, pulseaudio, or udev.

Changelog (Show File list) (Show related packages)

Tue Jun 24 2025 Than Ngo <than@redhat.com> - 138.0.7204.49-1

- Update to 138.0.7204.49
  * CVE-2025-6555: Use after free in Animation
  * CVE-2025-6556: Insufficient policy enforcement in Loader
  * CVE-2025-6557: Insufficient data validation in DevTools

Wed Jun 18 2025 Than Ngo <than@redhat.com> - 137.0.7151.119-1

- Update to 137.0.7151.119
  * CVE-2025-6191: Integer overflow in V8
  * CVE-2025-6192: Use after free in Profiler

Wed Jun 11 2025 Than Ngo <than@redhat.com> - 137.0.7151.103-1

- Update to 137.0.7151.103
  * CVE-2025-5958: Use after free in Media
  * CVE-2025-5959: Type Confusion in V8
- Provide correct version for bundle librarires
- Fix rhbz#2368923, Chromium crash

Tue Jun 03 2025 Than Ngo <than@redhat.com> - 137.0.7151.68-1

- Update to 137.0.7151.68
  * CVE-2025-5419: Out of bounds read and write in V8
  * CVE-2025-5068: Use after free in Blink

Tue May 27 2025 Than Ngo <than@redhat.com> - 137.0.7151.55-1

- Update to 137.0.7151.55
  * CVE-2025-5063: Use after free in Compositing
  * CVE-2025-5280: Out of bounds write in V8
  * CVE-2025-5064: Inappropriate implementation in Background Fetch API
  * CVE-2025-5065: Inappropriate implementation in FileSystemAccess API
  * CVE-2025-5066: Inappropriate implementation in Messages
  * CVE-2025-5281: Inappropriate implementation in BFCache
  * CVE-2025-5283: Use after free in libvpx
  * CVE-2025-5067: Inappropriate implementation in Tab Strip
- Fix FTBFS caused by simdutf and pdfium-png_decoder
- Remove chromium-135-gperf.patch and chromium-135-add-cfi-suppressions-for-pipewire-functions.patch, merged by upstream
- Refresh ppc64le patches
- Enable system simdutf for F43

Tue May 27 2025 Jitka Plesnikova <jplesnik@redhat.com> - 136.0.7103.113-2
```
- Rebuilt for flac 1.5.0
```

Wed May 14 2025 Than Ngo <than@redhat.com> - 136.0.7103.113-1

- Update to 136.0.7103.113
  * CVE-2025-4664: Insufficient policy enforcement in Loader
  * CVE-2025-4609: Incorrect handle provided in unspecified circumstances in Mojo

Wed May 07 2025 Than Ngo <than@redhat.com> - 136.0.7103.92-1

- Update to 136.0.7103.92
  * CVE-2025-4372: Use after free in WebAudio

Tue Apr 29 2025 Than Ngo <than@redhat.com> - 136.0.7103.59-1

- Update to 136.0.7103.59
  * CVE-2025-4096: Heap buffer overflow in HTML
  * CVE-2025-4050: Out of bounds memory access in DevTools
  * CVE-2025-4051: Insufficient data validation in DevTools
  * CVE-2025-4052: Inappropriate implementation in DevTools

Thu Apr 24 2025 Than Ngo <than@redhat.com> - 136.0.7103.48-1
```
- Update to 136.0.7103.48
```