Package "chromium-browser"
| Name: |
chromium-browser
|
Description: |
Chromium web browser, open-source version of Chrome
|
| Latest version: |
101.0.4951.64-0ubuntu0.18.04.1 |
| Release: |
bionic (18.04) |
| Level: |
security |
| Repository: |
universe |
| Homepage: |
https://chromium.googlesource.com/chromium/src/ |
Links
Download "chromium-browser"
Other versions of "chromium-browser" in Bionic
Packages in group
Deleted packages are displayed in grey.
Changelog
|
chromium-browser (101.0.4951.64-0ubuntu0.18.04.1) bionic; urgency=medium
* Upstream release: 101.0.4951.64
- CVE-2022-1633: Use after free in Sharesheet.
- CVE-2022-1634: Use after free in Browser UI.
- CVE-2022-1635: Use after free in Permission Prompts.
- CVE-2022-1636: Use after free in Performance APIs.
- CVE-2022-1637: Inappropriate implementation in Web Contents.
- CVE-2022-1638: Heap buffer overflow in V8 Internationalization.
- CVE-2022-1639: Use after free in ANGLE.
- CVE-2022-1640: Use after free in Sharing.
- CVE-2022-1641: Use after free in Web UI Diagnostics.
-- Olivier Tilloy <email address hidden> Wed, 11 May 2022 09:49:30 +0200
|
| Source diff to previous version |
|
chromium-browser (100.0.4896.127-0ubuntu0.18.04.1) bionic; urgency=medium
* Upstream release: 100.0.4896.127
- CVE-2022-1364: Type Confusion in V8.
-- Olivier Tilloy <email address hidden> Fri, 15 Apr 2022 09:07:28 +0200
|
| Source diff to previous version |
|
chromium-browser (99.0.4844.84-0ubuntu0.18.04.1) bionic; urgency=medium
* Upstream release: 99.0.4844.84
- CVE-2022-1096: Type Confusion in V8.
-- Olivier Tilloy <email address hidden> Sat, 26 Mar 2022 14:32:42 +0100
|
| Source diff to previous version |
|
chromium-browser (99.0.4844.51-0ubuntu0.18.04.1) bionic; urgency=medium
* Upstream release: 99.0.4844.51
- CVE-2022-0789: Heap buffer overflow in ANGLE.
- CVE-2022-0790: Use after free in Cast UI.
- CVE-2022-0791: Use after free in Omnibox.
- CVE-2022-0792: Out of bounds read in ANGLE.
- CVE-2022-0793: Use after free in Views.
- CVE-2022-0794: Use after free in WebShare.
- CVE-2022-0795: Type Confusion in Blink Layout.
- CVE-2022-0796: Use after free in Media.
- CVE-2022-0797: Out of bounds memory access in Mojo.
- CVE-2022-0798: Use after free in MediaStream.
- CVE-2022-0799: Insufficient policy enforcement in Installer.
- CVE-2022-0800: Heap buffer overflow in Cast UI.
- CVE-2022-0801: Inappropriate implementation in HTML parser.
- CVE-2022-0802: Inappropriate implementation in Full screen mode.
- CVE-2022-0803: Inappropriate implementation in Permissions.
- CVE-2022-0804: Inappropriate implementation in Full screen mode.
- CVE-2022-0805: Use after free in Browser Switcher.
- CVE-2022-0806: Data leak in Canvas.
- CVE-2022-0807: Inappropriate implementation in Autofill.
- CVE-2022-0808: Use after free in Chrome OS Shell.
- CVE-2022-0809: Out of bounds memory access in WebXR.
* debian/rules: exclude unnecessary build artifacts (LP: #1961565)
* debian/patches/arm64-no-pointer-authentication.patch: added
* debian/patches/build-with-old-libva-missing-defines.patch: refreshed
* debian/patches/build-with-old-libva-no-av1.patch: refreshed
* debian/patches/configuration-directory.patch: refreshed
* debian/patches/define__libc_malloc.patch: updated
* debian/patches/gn-no-std-equal_to.patch: added
* debian/patches/libaom-armhf-build-cpudetect.patch: refreshed
* debian/patches/revert-sequence-checker-capability-name.patch: refreshed
* debian/patches/search-credit.patch: refreshed
* debian/patches/set-rpath-on-chromium-executables.patch: refreshed
* debian/patches/suppress-newer-clang-warning-flags.patch: refreshed
* debian/patches/use-clang-versioned.patch: refreshed
* debian/patches/widevine-enable-version-string.patch: refreshed
-- Olivier Tilloy <email address hidden> Tue, 01 Mar 2022 21:43:44 +0100
|
| Source diff to previous version |
| 1961565 |
Package in bionic installs unnecessary build artifacts |
|
|
chromium-browser (97.0.4692.71-0ubuntu0.18.04.1) bionic; urgency=medium
* Upstream release: 97.0.4692.71
- CVE-2022-0096: Use after free in Storage.
- CVE-2022-0097: Inappropriate implementation in DevTools.
- CVE-2022-0098: Use after free in Screen Capture.
- CVE-2022-0099: Use after free in Sign-in.
- CVE-2022-0100: Heap buffer overflow in Media streams API.
- CVE-2022-0101: Heap buffer overflow in Bookmarks.
- CVE-2022-0102: Type Confusion in V8.
- CVE-2022-0103: Use after free in SwiftShader.
- CVE-2022-0104: Heap buffer overflow in ANGLE.
- CVE-2022-0105: Use after free in PDF.
- CVE-2022-0106: Use after free in Autofill.
- CVE-2022-0107: Use after free in File Manager API.
- CVE-2022-0108: Inappropriate implementation in Navigation.
- CVE-2022-0109: Inappropriate implementation in Autofill.
- CVE-2022-0110: Incorrect security UI in Autofill.
- CVE-2022-0111: Inappropriate implementation in Navigation.
- CVE-2022-0112: Incorrect security UI in Browser UI.
- CVE-2022-0113: Inappropriate implementation in Blink.
- CVE-2022-0114: Out of bounds memory access in Web Serial.
- CVE-2022-0115: Uninitialized Use in File API.
- CVE-2022-0116: Inappropriate implementation in Compositing.
- CVE-2022-0117: Policy bypass in Service Workers.
- CVE-2022-0118: Inappropriate implementation in WebShare.
- CVE-2022-0120: Inappropriate implementation in Passwords.
* debian/patches/blink-math-constexpr.patch: added
* debian/patches/blink-math-constexpr2.patch: added
* debian/patches/build-with-old-libva-missing-defines.patch: refreshed
* debian/patches/build-with-old-libva-no-av1.patch: refreshed
* debian/patches/configuration-directory.patch: refreshed
* debian/patches/set-rpath-on-chromium-executables.patch: refreshed
* debian/patches/suppress-newer-clang-warning-flags.patch: updated
* debian/patches/use-clang-versioned.patch: updated
* debian/patches/widevine-other-locations: refreshed
-- Olivier Tilloy <email address hidden> Fri, 07 Jan 2022 21:05:03 +0100
|
About
-
Send Feedback to @ubuntu_updates
