Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package chromium for openSUSE:Factory checked in at 2026-05-29 18:05:18 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/chromium (Old) and /work/SRC/openSUSE:Factory/.chromium.new.1937 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "chromium" Fri May 29 18:05:18 2026 rev:521 rq:1355729 version:148.0.7778.215 Changes: -------- --- /work/SRC/openSUSE:Factory/chromium/chromium.changes 2026-05-21 18:28:07.000477309 +0200 +++ /work/SRC/openSUSE:Factory/.chromium.new.1937/chromium.changes 2026-05-29 18:07:22.219021528 +0200 @@ -1,0 +2,156 @@ +Wed May 27 19:12:21 UTC 2026 - Andreas Stieger <[email protected]> + +- Chromium 148.0.7778.215 (boo#1266471): + * CVE-2026-9872: Out of bounds write in GPU + * CVE-2026-9873: Use after free in Network + * CVE-2026-9874: Use after free in Dawn + * CVE-2026-9875: Out of bounds read in WebGL + * CVE-2026-9876: Use after free in WebGL + * CVE-2026-9877: Use after free in ANGLE + * CVE-2026-9878: Use after free in ANGLE + * CVE-2026-9879: Out of bounds write in ANGLE + * CVE-2026-9880: Insufficient validation of untrusted input in WebGL + * CVE-2026-9881: Use after free in Bluetooth + * CVE-2026-9882: Integer overflow in ANGLE + * CVE-2026-9883: Use after free in Base + * CVE-2026-9884: Use after free in Browser + * CVE-2026-9885: Insufficient validation of untrusted input in UI + * CVE-2026-9886: Use after free in Base + * CVE-2026-9887: Use after free in Proxy + * CVE-2026-9888: Use after free in WebView + * CVE-2026-9889: Out of bounds read and write in Dawn + * CVE-2026-9890: Use after free in XR + * CVE-2026-9891: Use after free in Extensions + * CVE-2026-9892: Inappropriate implementation in Skia + * CVE-2026-9893: Use after free in Skia + * CVE-2026-9894: Use after free in GPU + * CVE-2026-9895: Out of bounds read in GPU + * CVE-2026-9896: Out of bounds write in V8 + * CVE-2026-9897: Use after free in DOM + * CVE-2026-9898: Insufficient validation of untrusted input in GPU + * CVE-2026-9899: Use after free in ANGLE + * CVE-2026-9900: Out of bounds write in ANGLE + * CVE-2026-9901: Use after free in ANGLE + * CVE-2026-9902: Use after free in Accessibility + * CVE-2026-9903: Insufficient validation of untrusted input in Site Isolation + * CVE-2026-9904: Use after free in ANGLE + * CVE-2026-9905: Use after free in Accessibility + * CVE-2026-9906: Out of bounds write in GPU + * CVE-2026-9907: Out of bounds read in Dawn + * CVE-2026-9908: Out of bounds read in ANGLE + * CVE-2026-9909: Integer overflow in Skia + * CVE-2026-9910: Out of bounds memory access in ANGLE + * CVE-2026-9911: Integer overflow in ANGLE + * CVE-2026-9912: Inappropriate implementation in GPU + * CVE-2026-9913: Inappropriate implementation in ANGLE + * CVE-2026-9914: Insufficient validation of untrusted input in ANGLE + * CVE-2026-9915: Heap buffer overflow in ANGLE + * CVE-2026-9916: Out of bounds write in ANGLE + * CVE-2026-9917: Uninitialized Use in WebGL + * CVE-2026-9918: Inappropriate implementation in Tint + * CVE-2026-9919: Out of bounds read in WebGL + * CVE-2026-9920: Uninitialized Use in GPU + * CVE-2026-9921: Uninitialized Use in WebGL + * CVE-2026-9922: Use after free in GPU + * CVE-2026-9923: Use after free in Skia + * CVE-2026-9924: Heap buffer overflow in ANGLE + * CVE-2026-9925: Use after free in ANGLE + * CVE-2026-9926: Heap buffer overflow in ANGLE + * CVE-2026-9927: Use after free in ANGLE + * CVE-2026-9928: Out of bounds read in ANGLE + * CVE-2026-9929: Inappropriate implementation in WebGL + * CVE-2026-9930: Out of bounds write in Dawn + * CVE-2026-9931: Use after free in GPU + * CVE-2026-9932: Use after free in ANGLE + * CVE-2026-9933: Use after free in Input + * CVE-2026-9934: Use after free in Aura + * CVE-2026-9935: Uninitialized Use in ANGLE + * CVE-2026-9936: Use after free in GFX + * CVE-2026-9937: Use after free in UI + * CVE-2026-9938: Inappropriate implementation in V8 + * CVE-2026-9939: Heap buffer overflow in WebCodecs + * CVE-2026-9940: Heap buffer overflow in ANGLE + * CVE-2026-9941: Use after free in ANGLE + * CVE-2026-9942: Uninitialized Use in ANGLE + * CVE-2026-9943: Out of bounds read in WebGL + * CVE-2026-9944: Uninitialized Use in ANGLE + * CVE-2026-9945: Use after free in Media + * CVE-2026-9946: Use after free in ANGLE + * CVE-2026-9947: Use after free in XML + * CVE-2026-9948: Use after free in Views + * CVE-2026-9949: Use after free in Core + * CVE-2026-9950: Insufficient validation of untrusted input in iOS + * CVE-2026-9951: Use after free in UI + * CVE-2026-9952: Use after free in WebAudio + * CVE-2026-9953: Out of bounds read in ANGLE + * CVE-2026-9954: Use after free in TabStrip + * CVE-2026-9955: Inappropriate implementation in iOS + * CVE-2026-9956: Use after free in iOS + * CVE-2026-9957: Use after free in PDF + * CVE-2026-9958: Use after free in PDFium + * CVE-2026-9959: Race in WebRTC + * CVE-2026-9960: Integer overflow in PDFium + * CVE-2026-9961: Use after free in SurfaceCapture + * CVE-2026-9962: Use after free in WebRTC + * CVE-2026-9963: Uninitialized Use in iOS + * CVE-2026-9964: Use after free in Bluetooth + * CVE-2026-9965: Out of bounds write in ANGLE + * CVE-2026-9966: Integer overflow in XML + * CVE-2026-9967: Out of bounds write in GPU + * CVE-2026-9968: Integer overflow in V8 + * CVE-2026-9969: Insufficient validation of untrusted input in ANGLE + * CVE-2026-9970: Use after free in WebGL + * CVE-2026-9971: Inappropriate implementation in iOS + * CVE-2026-9972: Uninitialized Use in Gamepad + * CVE-2026-9973: Out of bounds write in V8 + * CVE-2026-9974: Out of bounds write in GPU + * CVE-2026-9975: Out of bounds read and write in ANGLE + * CVE-2026-9976: Inappropriate implementation in USB + * CVE-2026-9977: Insufficient validation of untrusted input in WebShare + * CVE-2026-9978: Use after free in Glic + * CVE-2026-9979: Insufficient validation of untrusted input in Input + * CVE-2026-9980: Insufficient validation of untrusted input in Printing + * CVE-2026-9981: Inappropriate implementation in Skia + * CVE-2026-9982: Insufficient validation of untrusted input in ANGLE + * CVE-2026-9983: Type Confusion in Skia + * CVE-2026-9984: Use after free in UI + * CVE-2026-9985: Insufficient validation of untrusted input in Media + * CVE-2026-9986: Insufficient validation of untrusted input in OptimizationGuide + * CVE-2026-9987: Insufficient validation of untrusted input in WebAppInstalls + * CVE-2026-9988: Use after free in WebRTC + * CVE-2026-9989: Inappropriate implementation in Media + * CVE-2026-9990: Use after free in WebAppInstalls + * CVE-2026-9991: Inappropriate implementation in Media + * CVE-2026-9992: Use after free in Network + * CVE-2026-9993: Use after free in Views + * CVE-2026-9994: Use after free in Core + * CVE-2026-9995: Use after free in WebXR + * CVE-2026-9996: Out of bounds read in WebRTC + * CVE-2026-9997: Use after free in Input + * CVE-2026-9998: Integer overflow in Skia + * CVE-2026-9999: Inappropriate implementation in ANGLE + * CVE-2026-10000: Use after free in Passwords + * CVE-2026-10001: Use after free in PerformanceManager + * CVE-2026-10002: Use after free in PDFium + * CVE-2026-10003: Use after free in Views + * CVE-2026-10004: Insufficient validation of untrusted input in Passwords + * CVE-2026-10005: Use after free in WebAppInstalls + * CVE-2026-10006: Race in WebAudio + * CVE-2026-10007: Use after free in SVG + * CVE-2026-10008: Uninitialized Use in GPU + * CVE-2026-10009: Integer overflow in Skia + * CVE-2026-10010: Inappropriate implementation in Input + * CVE-2026-10011: Inappropriate implementation in Skia + * CVE-2026-10012: Use after free in Skia + * CVE-2026-10013: Use after free in WebCodecs + * CVE-2026-10014: Use after free in WebMIDI + * CVE-2026-10015: Integer overflow in WTF + * CVE-2026-10016: Use after free in DOM + * CVE-2026-10017: Out of bounds read in Headless + * CVE-2026-10018: Integer overflow in ANGLE + * CVE-2026-10019: Integer overflow in ANGLE + * CVE-2026-10020: Insufficient validation of untrusted input in Skia + * CVE-2026-10021: Insufficient validation of untrusted input in USB + * CVE-2026-10022: Type Confusion in V8 + +------------------------------------------------------------------- Old: ---- chromium-148.0.7778.178-linux.tar.xz New: ---- chromium-148.0.7778.215-linux.tar.xz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ chromium.spec ++++++ --- /var/tmp/diff_new_pack.qgpWl5/_old 2026-05-29 18:07:29.831338774 +0200 +++ /var/tmp/diff_new_pack.qgpWl5/_new 2026-05-29 18:07:29.835338941 +0200 @@ -132,7 +132,7 @@ %global official_build 1 Name: chromium%{n_suffix} -Version: 148.0.7778.178 +Version: 148.0.7778.215 Release: 0 Summary: Google's open source browser project License: BSD-3-Clause AND LGPL-2.1-or-later ++++++ _scmsync.obsinfo ++++++ --- /var/tmp/diff_new_pack.qgpWl5/_old 2026-05-29 18:07:30.027346943 +0200 +++ /var/tmp/diff_new_pack.qgpWl5/_new 2026-05-29 18:07:30.031347110 +0200 @@ -1,6 +1,6 @@ -mtime: 1779307304 -commit: dee293c04b66cb8129693190f95f338cc83d7cfdb8b47dbb4fbdc50dc9842724 +mtime: 1780030809 +commit: 2b8a35ca0adf85d5ab66cc5c807279ddd54841570ca61c099c5ffd14fce61507 url: https://src.opensuse.org/chromium/chromium -revision: dee293c04b66cb8129693190f95f338cc83d7cfdb8b47dbb4fbdc50dc9842724 +revision: 2b8a35ca0adf85d5ab66cc5c807279ddd54841570ca61c099c5ffd14fce61507 projectscmsync: https://src.opensuse.org/chromium/_ObsPrj.git ++++++ build.specials.obscpio ++++++ ++++++ build.specials.obscpio ++++++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/.gitignore new/.gitignore --- old/.gitignore 1970-01-01 01:00:00.000000000 +0100 +++ new/.gitignore 2026-05-29 07:00:09.000000000 +0200 @@ -0,0 +1,4 @@ +.osc +*.patch~ +*-build/ +.*.swp ++++++ chromium-148.0.7778.178-linux.tar.xz -> chromium-148.0.7778.215-linux.tar.xz ++++++ /work/SRC/openSUSE:Factory/chromium/chromium-148.0.7778.178-linux.tar.xz /work/SRC/openSUSE:Factory/.chromium.new.1937/chromium-148.0.7778.215-linux.tar.xz differ: char 15, line 1
