Security News

Cybersecurity news aggregator

🐧
MEDIUM Updates Web Discovery

Chromium and FVWM3 updates for Fedora

linuxfedorachromiumcve-2025-13042cve-2025-12725
  • What: Fedora 42 received updates for Chromium and FVWM3 packages to address security vulnerabilities.
  • Impact: Chromium update fixes CVE-2025-13042 related to inappropriate implementation in V8, while FVWM3 fixes a path issue.
Read Full Article →

Fedora 42 has received updates for two packages, chromium-142.0.7444.162-1.fc42 and fvwm3-1.1.4-1.fc42. The Chromium update addresses security vulnerabilities, including CVE-2025-13042: Inappropriate implementation in V8, while the FVWM3 update fixes a vulnerability where unexpected paths were returned from LookPath in os/exec. Fedora 42 Update: chromium-142.0.7444.162-1.fc42 Fedora 42 Update: fvwm3-1.1.4-1.fc42 Fedora 41 Update: fvwm3-1.1.4-1.fc41 [SECURITY] Fedora 42 Update: chromium-142.0.7444.162-1.fc42 -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-c92c2e0d79 2025-11-18 01:18:18.999249+00:00 -------------------------------------------------------------------------------- Name : chromium Product : Fedora 42 Version : 142.0.7444.162 Release : 1.fc42 URL : http://www.chromium.org/Home Summary : A WebKit (Blink) powered web browser that Google doesn't want you to use Description : Chromium is an open-source web browser, powered by WebKit (Blink). -------------------------------------------------------------------------------- Update Information: Update to 142.0.7444.162 * High CVE-2025-13042: Inappropriate implementation in V8 -------------------------------------------------------------------------------- ChangeLog: * Wed Nov 12 2025 Than Ngo [than@redhat.com] - 142.0.7444.162-1 - Update to 142.0.7444.162 * High CVE-2025-13042: Inappropriate implementation in V8 * Tue Nov 11 2025 Dominik Mierzejewski [dominik@greysector.net] - 142.0.7444.134-2 - Rebuilt for FFmpeg 8 * Thu Nov 6 2025 Than Ngo [than@redhat.com] - 142.0.7444.134-1 - Update to 142.0.7444.134 * High CVE-2025-12725: Out of bounds write in WebGPU * High CVE-2025-12726: Inappropriate implementation in Views * High CVE-2025-12727: Inappropriate implementation in V8 * Medium CVE-2025-12728: Inappropriate implementation in Omnibox * Medium CVE-2025-12729: Inappropriate implementation in Omnibox * Wed Nov 5 2025 Dominik Mierzejewski [dominik@greysector.net] - 142.0.7444.59-2 - Rebuilt for FFmpeg 8 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2414356 - CVE-2025-12906 chromium: Inappropriate implementation in Permissions [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2414356 [ 2 ] Bug #2414357 - CVE-2025-12906 chromium: Inappropriate implementation in Permissions [epel-8] https://bugzilla.redhat.com/show_bug.cgi?id=2414357 [ 3 ] Bug #2414359 - CVE-2025-12906 chromium: Inappropriate implementation in Permissions [epel-9] https://bugzilla.redhat.com/show_bug.cgi?id=2414359 [ 4 ] Bug #2414362 - CVE-2025-12906 chromium: Inappropriate implementation in Permissions [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2414362 [ 5 ] Bug #2414364 - CVE-2025-12906 chromium: Inappropriate implementation in Permissions [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2414364 [ 6 ] Bug #2414366 - CVE-2025-12906 chromium: Inappropriate implementation in Permissions [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2414366 [ 7 ] Bug #2414368 - CVE-2025-12910 chromium: Inappropriate implementation in Passkeys [epel-10] https://bugzilla.redhat.com/show_bug.cgi?id=2414368 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-c92c2e0d79' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- [SECURITY] Fedora 42 Update: fvwm3-1.1.4-1.fc42 -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-f7d7958683 2025-11-18 01:18:18.999211+00:00 -------------------------------------------------------------------------------- Name : fvwm3 Product : Fedora 42 Version : 1.1.4 Release : 1.fc42 URL : https://www.fvwm.org/ Summary : Highly configurable multiple virtual desktop window manager Description : Fvwm is a window manager for X11. It is designed to minimize memory consumption, provide a 3D look to window frames, and implement a virtual desktop. -------------------------------------------------------------------------------- Update Information: FVWM3 ver. 1.1.4 -------------------------------------------------------------------------------- ChangeLog: * Sun Nov 9 2025 Peter Lemenkov [lemenkov@gmail.com] - 1.1.4-1 - FVWM3 ver. 1.1.4 * Fri Oct 10 2025 Maxwell G [maxwell@gtmx.me] - 1.1.3-6 - Rebuild for golang 1.25.2 * Fri Aug 15 2025 Maxwell G [maxwell@gtmx.me] - 1.1.3-5 - Rebuild for golang-1.25.0 * Fri Aug 15 2025 Maxwell G [maxwell@gtmx.me] - 1.1.3-4 - Revert "Rebuild for golang-1.25.0" *

Related Articles

MEDIUM [UPDATE] [mittel] Django: Schwachstelle ermöglicht Denial of Service BSI Germany MEDIUM [UPDATE] [mittel] Xen: Mehrere Schwachstellen BSI Germany LOW Fedora warns security updates for version 38 of its Linux distro will soon end Web Discovery LOW Python, pgAdmin, Wireshark updates for Fedora Web Discovery
Read Full Article → ← Back to News

Share this article

Twitter Facebook LinkedIn