Advisories » MGASA-2025-0104

Updated chromium-browser-stable packages fix security vulnerabilities

Publication date: 19 Mar 2025
Modification date: 19 Mar 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-1920 , CVE-2025-2135 , CVE-2025-2136 , CVE-2025-2137

Description

High CVE-2025-1920: Type Confusion in V8.
High CVE-2025-2135: Type Confusion in V8.
High CVE-2025-24201: Out of bounds write in GPU on Mac.
Medium CVE-2025-2136: Use after free in Inspector.
Medium CVE-2025-2137: Out of bounds read in V8.
                

References

• https://bugs.mageia.org/show_bug.cgi?id=34099
• https://chromereleases.googleblog.com/2025/03/stable-channel-update-for-desktop_10.html
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-1920
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-2135
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-2136
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-2137

SRPMS

9/tainted

• chromium-browser-stable-134.0.6998.88-1.mga9.tainted