[ol9_developer_EPEL] chromium-headless-146.0.7680.80-1.el9.aarch64

Name:	chromium-headless
Version:	146.0.7680.80
Release:	1.el9
Architecture:	aarch64
Group:	Unspecified
Size:	204405919
License:	BSD-3-Clause AND LGPL-2.1-or-later AND Apache-2.0 AND IJG AND MIT AND GPL-2.0-or-later AND ISC AND OpenSSL AND (MPL-1.1 OR GPL-2.0-only OR LGPL-2.0-only)
RPM:	chromium-headless-146.0.7680.80-1.el9.aarch64.rpm
Source RPM:	chromium-146.0.7680.80-1.el9.src.rpm
Build Date:	Fri Mar 20 2026
Build Host:	build-ol9-aarch64.oracle.com
Vendor:	Oracle America
URL:	http://www.chromium.org/Home
Summary:	A minimal headless shell built from Chromium
Description:	A minimal headless client built from Chromium. headless_shell is built without support for alsa, cups, dbus, gconf, gio, kerberos, pulseaudio, or udev.

Changelog (Show File list) (Show related packages)

Sat Mar 14 2026 Than Ngo <than@redhat.com> - 146.0.7680.80-1

- Update to 146.0.7680.80
  * CVE-2026-3909: Out of bounds write in Skia

Fri Mar 13 2026 Than Ngo <than@redhat.com> - 146.0.7680.75-1

- Update to 146.0.7680.75
  * CVE-2026-3910: Inappropriate implementation in V8

Thu Mar 12 2026 Than Ngo <than@redhat.com> - 146.0.7680.71-1

- Update to 146.0.7680.71
  * CVE-2026-3913: Heap buffer overflow in WebML
  * CVE-2026-3914: Integer overflow in WebML
  * CVE-2026-3915: Heap buffer overflow in WebML
  * CVE-2026-3916: Out of bounds read in Web Speech
  * CVE-2026-3917: Use after free in Agents
  * CVE-2026-3918: Use after free in WebMCP
  * CVE-2026-3919: Use after free in Extensions
  * CVE-2026-3920: Out of bounds memory access in WebML
  * CVE-2026-3921: Use after free in TextEncoding
  * CVE-2026-3922: Use after free in MediaStream
  * CVE-2026-3923: Use after free in WebMIDI
  * CVE-2026-3924: Use after free in WindowDialog
  * CVE-2026-3925: Incorrect security UI in LookalikeChecks
  * CVE-2026-3926: Out of bounds read in V8
  * CVE-2026-3927: Incorrect security UI in PictureInPicture
  * CVE-2026-3928: Insufficient policy enforcement in Extensions
  * CVE-2026-3929: Side-channel information leakage in ResourceTiming
  * CVE-2026-3930: Unsafe navigation in Navigation
  * CVE-2026-3931: Heap buffer overflow in Skia
  * CVE-2026-3932: Insufficient policy enforcement in PDF
  * CVE-2026-3934: Insufficient policy enforcement in ChromeDriver
  * CVE-2026-3935: Incorrect security UI in WebAppInstalls
  * CVE-2026-3936: Use after free in WebView
  * CVE-2026-3937: Incorrect security UI in Downloads
  * CVE-2026-3938: Insufficient policy enforcement in Clipboard
  * CVE-2026-3939: Insufficient policy enforcement in PDF
  * CVE-2026-3940: Insufficient policy enforcement in DevTools
  * CVE-2026-3941: Insufficient policy enforcement in DevTools
  * CVE-2026-3942: Incorrect security UI in PictureInPicture

Fri Mar 06 2026 Than Ngo <than@redhat.com> - 145.0.7632.159-1

- Update to 145.0.7632.159
  * CVE-2026-3536: Integer overflow in ANGLE
  * CVE-2026-3537: Object lifecycle issue in PowerVR
  * CVE-2026-3538: Integer overflow in Skia
  * CVE-2026-3539: Object lifecycle issue in DevTools
  * CVE-2026-3540: Inappropriate implementation in WebAudio
  * CVE-2026-3541: Inappropriate implementation in CSS
  * CVE-2026-3542: Inappropriate implementation in WebAssembly
  * CVE-2026-3543: Inappropriate implementation in V8
  * CVE-2026-3544: Heap buffer overflow in WebCodecs
  * CVE-2026-3545: Insufficient data validation in Navigation

Tue Feb 24 2026 Than Ngo <than@redhat.com> - 145.0.7632.116-1

- Update to 145.0.7632.116
  * CVE-2026-3061: Out of bounds read in Media
  * CVE-2026-3062: Out of bounds read and write in Tint
  * CVE-2026-3063: Inappropriate implementation in DevTools

Mon Feb 23 2026 Than Ngo <than@redhat.com> - 145.0.7632.109-1

- Update to 145.0.7632.109
  * CVE-2026-2648: Heap buffer overflow in PDFium
  * CVE-2026-2649: Integer overflow in V8
  * CVE-2026-2650: Heap buffer overflow in Media

Sat Feb 14 2026 Than Ngo <than@redhat.com> - 145.0.7632.75-1

- Update to 145.0.7632.75
   * CVE-2026-2441: Use after free in CSS

Thu Feb 12 2026 Than Ngo <than@redhat.com> - 145.0.7632.45-1

- Update to 145.0.7632.45
  * CVE-2026-2313: Use after free in CSS
  * CVE-2026-2314: Heap buffer overflow in Codecs
  * CVE-2026-2315: Inappropriate implementation in WebGPU
  * CVE-2026-2316: Insufficient policy enforcement in Frames
  * CVE-2026-2317: Inappropriate implementation in Animation
  * CVE-2026-2318: Inappropriate implementation in PictureInPicture
  * CVE-2026-2319: Race in DevTools
  * CVE-2026-2320: Inappropriate implementation in File input
  * CVE-2026-2321: Use after free in Ozone
  * CVE-2026-2322: Inappropriate implementation in File input
  * CVE-2026-2323: Inappropriate implementation in Downloads

Thu Feb 05 2026 Than Ngo <than@redhat.com> - 144.0.7559.132-1

- Update to 144.0.7559.132
  * CVE-2026-1861: Heap buffer overflow in libvpx
  * CVE-2026-1862: Type Confusion in V8
- Add BR on esbuild
- Disable devtool bundle
- Update scripts for downloading the source

Wed Jan 28 2026 Than Ngo <than@redhat.com> - 144.0.7559.109-1

- Update to 144.0.7559.109
  * CVE-2026-1504: Inappropriate implementation in Background Fetch API