[EPEL-devel] Fedora EPEL 7 updates-testing report

[updates]

The following Fedora EPEL 7 Security updates need testing:
 Age  URL
   2  https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-3f1f3dcef0   
wordpress-5.1.18-1.el7
   2  https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-afdec12596   
libebml-1.3.9-2.el7


The following builds have been pushed to Fedora EPEL 7 updates-testing

    chromium-121.0.6167.139-2.el7

Details about builds:


================================================================================
 chromium-121.0.6167.139-2.el7 (FEDORA-EPEL-2024-25f8bac8aa)
 A WebKit (Blink) powered web browser that Google doesn't want you to use
--------------------------------------------------------------------------------
Update Information:

update to 121.0.6167.139  High CVE-2024-1060: Use after free in Canvas High
CVE-2024-1059: Use after free in WebRTC High CVE-2024-1077: Use after free in
Network
--------------------------------------------------------------------------------
ChangeLog:

* Thu Feb  1 2024 Than Ngo <t...@redhat.com> - 121.0.6167.139-2
- Support for 64K pages on Linux/AArch64
* Wed Jan 31 2024 Than Ngo <t...@redhat.com> - 121.0.6167.139-1
- update to 121.0.6167.139
  * High CVE-2024-1060: Use after free in Canvas
  * High CVE-2024-1059: Use after free in WebRTC
  * High CVE-2024-1077: Use after free in Network
* Wed Jan 24 2024 Than Ngo <t...@redhat.com> - 121.0.6167.85-1
- update to 121.0.6167.85
  * High CVE-2024-0807: Use after free in WebAudio
  * High CVE-2024-0812: Inappropriate implementation in Accessibility
  * High CVE-2024-0808: Integer underflow in WebUI
  * Medium CVE-2024-0810: Insufficient policy enforcement in DevTools
  * Medium CVE-2024-0814: Incorrect security UI in Payments
  * Medium CVE-2024-0813: Use after free in Reading Mode
  * Medium CVE-2024-0806: Use after free in Passwords
  * Medium CVE-2024-0805: Inappropriate implementation in Downloads
  * Medium CVE-2024-0804: Insufficient policy enforcement in iOS Security UI
  * Low CVE-2024-0811: Inappropriate implementation in Extensions API
  * Low CVE-2024-0809: Inappropriate implementation in Autofill
* Tue Jan 23 2024 Than Ngo <t...@redhat.com> - 121.0.6167.71-1
- update to 121.0.6167.71
* Tue Jan 23 2024 Fedora Release Engineering <rel...@fedoraproject.org> - 
120.0.6099.224-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
--------------------------------------------------------------------------------

--
_______________________________________________
epel-devel mailing list -- epel-devel@lists.fedoraproject.org
To unsubscribe send an email to epel-devel-le...@lists.fedoraproject.org
Fedora Code of Conduct: 
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: 
https://lists.fedoraproject.org/archives/list/epel-devel@lists.fedoraproject.org
Do not reply to spam, report it: 
https://pagure.io/fedora-infrastructure/new_issue