Bug 33407 - chromium-browser-stable new security issues CVE-2024-677[2-9]
Summary: chromium-browser-stable new security issues CVE-2024-677[2-9]
Status: RESOLVED FIXED
Alias: None
Product: Mageia
Classification: Unclassified
Component: Security (show other bugs)
Version: 9
Hardware: x86_64 Linux
Priority: Normal major
Target Milestone: ---
Assignee: QA Team
QA Contact: Sec team
URL:
Whiteboard: MGA9-64-OK
Keywords: advisory, validated_update
Depends on:
Blocks:
 
Reported: 2024-07-17 10:43 CEST by Nicolas Salguero
Modified: 2024-07-20 23:23 CEST (History)
4 users (show)

See Also:
Source RPM: chromium-browser-stable-126.0.6478.126-1.mga9.tainted.src.rpm
CVE: CVE-2024-6772, CVE-2024-6773, CVE-2024-6774, CVE-2024-6775, CVE-2024-6776, CVE-2024-6777, CVE-2024-6778, CVE-2024-6779
Status comment:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description Nicolas Salguero 2024-07-17 10:43:25 CEST 
Upstream has issued an advisory on July 16:
https://chromereleases.googleblog.com/2024/07/stable-channel-update-for-desktop.html
Nicolas Salguero 2024-07-17 10:44:35 CEST

Hardware: All => x86_64
Whiteboard: (none) => MGA9TOO
Source RPM: (none) => chromium-browser-stable-126.0.6478.126-1.mga9.tainted.src.rpm
Status comment: (none) => Fixed upstream in 126.0.6478.182
CVE: (none) => CVE-2024-6772, CVE-2024-6773, CVE-2024-6774, CVE-2024-6775, CVE-2024-6776, CVE-2024-6777, CVE-2024-6778, CVE-2024-6779

Nicolas Salguero 2024-07-17 10:44:44 CEST

Assignee: bugsquad => nicolas.salguero

Nicolas Salguero 2024-07-17 10:48:28 CEST

Severity: normal => major

Comment 1 Nicolas Salguero 2024-07-18 10:33:22 CEST 
Suggested advisory:
========================

The updated packages fix a security vulnerability:

Inappropriate implementation in V8. (CVE-2024-6772)

Type Confusion in V8. (CVE-2024-6773)

Use after free in Screen Capture. (CVE-2024-6774)

Use after free in Media Stream. (CVE-2024-6775)

Use after free in Audio. (CVE-2024-6776)

Use after free in Navigation. (CVE-2024-6777)

Race in DevTools. (CVE-2024-6778)

Out of bounds memory access in V8. (CVE-2024-6779)

References:
https://chromereleases.googleblog.com/2024/07/stable-channel-update-for-desktop.html
========================

Updated packages in core/updates_testing:
========================
chromium-browser-126.0.6478.182-1.mga9.tainted
chromium-browser-stable-126.0.6478.182-1.mga9.tainted

from SRPM:
chromium-browser-stable-126.0.6478.182-1.mga9.tainted.src.rpm

Status comment: Fixed upstream in 126.0.6478.182 => (none)
Assignee: nicolas.salguero => qa-bugs
Whiteboard: MGA9TOO => (none)
Version: Cauldron => 9
Status: NEW => ASSIGNED

Comment 2 Brian Rockwell 2024-07-18 22:47:32 CEST 
A6 Laptop, Update of Chromium

$ chromium-browser -version
Chromium 126.0.6478.182 Mageia.Org 9

I've used this for a few hours without any issues.  email, video, sound, etc.

CC: (none) => brtians1

katnatek 2024-07-18 23:59:22 CEST

Keywords: (none) => advisory

Comment 3 Morgan Leijström 2024-07-19 00:44:21 CEST 
mga9-64 OK here

Plasma on X11.
nvidia-current 550-100 from testing on GTX750 with 4K screen.
kernel desktop 6.6.37 on ASRock P55 Pro with Intel Core i7 870.

Also on my Thinkpad T510, with Plasma X11, nouveau

Swedish localisation.
Restored tabs opened in previous version.
Banking sites, shops, video sites.
Download file.
Open saved pdf file and print to network printer.
Printing this bug on Boomaga both using built-in and system's print dialogue.
Writing this Comment.

CC: (none) => fri

Comment 4 katnatek 2024-07-19 00:53:43 CEST 
RH mageia 9 x86_64 Plasma Wayland

LC_ALL=C urpmi --auto --auto-update
medium "QA Testing (32-bit)" is up-to-date
medium "QA Testing (64-bit)" is up-to-date
medium "Core Release (distrib1)" is up-to-date
medium "Core Updates (distrib3)" is up-to-date
medium "Nonfree Release (distrib11)" is up-to-date
medium "Nonfree Updates (distrib13)" is up-to-date
medium "Tainted Release (distrib21)" is up-to-date
medium "Tainted Updates (distrib23)" is up-to-date
medium "Core 32bit Release (distrib31)" is up-to-date
medium "Core 32bit Updates (distrib32)" is up-to-date
medium "Nonfree 32bit Release (distrib36)" is up-to-date
medium "Tainted 32bit Release (distrib41)" is up-to-date
medium "Tainted 32bit Updates (distrib42)" is up-to-date

installing chromium-browser-stable-126.0.6478.182-1.mga9.tainted.x86_64.rpm from //home/katnatek/qa-testing/x86_64
Preparing...                     ##################################################################################################
      1/1: chromium-browser-stable
                                 ##################################################################################################
      1/1: removing chromium-browser-stable-126.0.6478.126-1.mga9.tainted.x86_64
                                 ##################################################################################################

Ozone plataform set to wayland

Facebook OK
Youtube OK

Mageia sites OK, use to post this comment
Comment 5 Brian Rockwell 2024-07-19 17:18:48 CEST 
MGA9-64, Xfce, Intel celeron



email
sites work
Comment 6 katnatek 2024-07-20 03:33:35 CEST 
Tested on lxqt with ozone platform set to X11
Not issues detected
I think we have a good set of test

CC: (none) => andrewsfarm
Whiteboard: (none) => MGA9-64-OK

Comment 7 Morgan Leijström 2024-07-20 10:54:36 CEST 
I too think it is enough

Keywords: (none) => validated_update
CC: (none) => sysadmin-bugs

Comment 8 Mageia Robot 2024-07-20 23:23:21 CEST 
An update for this issue has been pushed to the Mageia Updates repository.

https://advisories.mageia.org/MGASA-2024-0273.html

Status: ASSIGNED => RESOLVED
Resolution: (none) => FIXED
Note You need to log in before you can comment on or make changes to this bug.