VuXML: chromium -- multiple security fixes

Affected packages

chromium

128.0.6613.137

ungoogled-chromium

128.0.6613.137

Details

VuXML ID	e464f777-719e-11ef-8a0f-a8a1599412c6
Discovery	2024-09-10
Entry	2024-09-13

VuXML ID

e464f777-719e-11ef-8a0f-a8a1599412c6

Discovery

2024-09-10

Entry

2024-09-13

Chrome Releases reports:

This update includes 4 security fixes:

[361461526] High CVE-2024-8636: Heap buffer overflow in Skia. Reported by Renan Rios (@hyhy_100) on 2024-08-22

[361784548] High CVE-2024-8637: Use after free in Media Router. Reported by lime(@limeSec_) from TIANGONG Team of Legendsec at QI-ANXIN Group on 2024-08-23

[362539773] High CVE-2024-8638: Type Confusion in V8. Reported by Zhenghang Xiao (@Kipreyyy) on 2024-08-28

[362658609] High CVE-2024-8639: Use after free in Autofill. Reported by lime(@limeSec_) from TIANGONG Team of Legendsec at QI-ANXIN Group on 2024-08-28

[source]

References

CVE Name	CVE-2024-8636
CVE Name	CVE-2024-8637
CVE Name	CVE-2024-8638
CVE Name	CVE-2024-8639
URL	https://chromereleases.googleblog.com/2024/09/stable-channel-update-for-desktop_10.html