update to 125.0.6422.60 * High CVE-2024-4947: Type Confusion in V8 * High CVE-2024-4948: Use after free in Dawn * Medium CVE-2024-4949: Use after free in V8 * Low CVE-2024-4950: Inappropriate implementation in Downloads
new upstream update (126.0)
update to 125.0.6422.60 * High CVE-2024-4947: Type Confusion in V8 * High CVE-2024-4948: Use after free in Dawn * Medium CVE-2024-4949: Use after free in V8 * Low CVE-2024-4950: Inappropriate implementation in Downloads
Security fix for CVE-2024-3727
new upstream update (126.0)
update to 125.0.6422.60 * High CVE-2024-4947: Type Confusion in V8 * High CVE-2024-4948: Use after free in Dawn * Medium CVE-2024-4949: Use after free in V8 * Low CVE-2024-4950: Inappropriate implementation in Downloads
Update to jinja2-3.1.4, fixes CVE-2024-34064.
Security fix for CVE-2021-46310 and CVE-2021-46312.
Update glib2 to fix CVE-2024-34397.
Resolve CVE-2024-34397 (GDBus signal subscriptions for well-known names are vulnerable to unicast spoofing), and also update gnome-shell to ensure this fix does not break the screencast feature.
Resolve CVE-2024-34397 (GDBus signal subscriptions for well-known names are vulnerable to unicast spoofing), and also update gnome-shell to ensure this fix does not break the screencast feature.
update to 124.0.6367.201 * High CVE-2024-4671: Use after free in Visuals
update to 124.0.6367.201 * High CVE-2024-4671: Use after free in Visuals
update to 124.0.6367.155 High CVE-2024-4558: Use after free in ANGLE High CVE-2024-4559: Heap buffer overflow in WebAudio
Security fix for CVE-2023-45681 / CVE-2023-47212
update to 124.0.6367.155 High CVE-2024-4558: Use after free in ANGLE High CVE-2024-4559: Heap buffer overflow in WebAudio
Security fix for CVE-2023-45681 / CVE-2023-47212
Security fix for CVE-2023-5752 (in the bundled pip).
The 6.8.9 stable kernel update contains a number of important fixes across the tree.
Security fix for CVE-2023-5752 (in the bundled pip).
Update to 2.11.7 (CVE-2024-32039, CVE-2024-32040, CVE-2024-32041, CVE-2024-32458, CVE-2024-32459, CVE-2024-32460, CVE-2024-32658, CVE-2024-32659, CVE-2024-32660, CVE-2024-32661, CVE-2024-32662)
Security fix for CVE-2023-5752 (in the bundled pip).
Update to 2.11.7 (CVE-2024-32039, CVE-2024-32040, CVE-2024-32041, CVE-2024-32458, CVE-2024-32459, CVE-2024-32460, CVE-2024-32658, CVE-2024-32659, CVE-2024-32660, CVE-2024-32661, CVE-2024-32662)
Security fixes TALOS-2024-1924, CVE-2024-22391: heap overflow TALOS-2024-1935, CVE-2024-22373: out-of-bounds write TALOS-2024-1944, CVE-2024-25569: out-of-bounds read Bug fixes
This update includes httpd version 2.4.59, fixing various security issues and bugs. See https://downloads.apache.org/httpd/CHANGES_2.4.59 for complete details of the changes in this release
address issues found in Static Application Security testing Fix a service startup issue Fix file open issue when kernel lockdown is in effect
update to 124.0.6367.118 * High CVE-2024-4331: Use after free in Picture In Picture * High CVE-2024-4368: Use after free in Dawn
address issues found in Static Application Security testing Fix a service startup issue Fix file open issue when kernel lockdown is in effect
address issues found in Static Application Security testing Fix a service startup issue Fix file open issue when kernel lockdown is in effect
update to 124.0.6367.118 * High CVE-2024-4331: Use after free in Picture In Picture * High CVE-2024-4368: Use after free in Dawn update to 124.0.6367.91 update to 124.0.6367.78
60 queries. 8.75 mb Memory usage. 0.581 seconds.