chromium: update COMMIT_MSG

To: pkgsrc-wip-changes%NetBSD.org@localhost
Subject: chromium: update COMMIT_MSG
From: kikadf (via pkgsrc-wip) <commit-notify%pkgsrc.org@localhost>
Date: Mon, 11 Aug 2025 16:34:32 +0000

Module Name:	pkgsrc-wip
Committed By:	kikadf <kikadf.01%gmail.com@localhost>
Pushed By:	kikadf
Date:		Mon Aug 11 18:34:14 2025 +0200
Changeset:	de92585fdf15fae42c7e9d0209c872aa009f1c80

Modified Files:
	chromium/COMMIT_MSG

Log Message:
chromium: update COMMIT_MSG

To see a diff of this commit:
https://wip.pkgsrc.org/cgi-bin/gitweb.cgi?p=pkgsrc-wip.git;a=commitdiff;h=de92585fdf15fae42c7e9d0209c872aa009f1c80

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

diffstat:
 chromium/COMMIT_MSG | 28 +++++++++++++++++++++-------
 1 file changed, 21 insertions(+), 7 deletions(-)

diffs:
diff --git a/chromium/COMMIT_MSG b/chromium/COMMIT_MSG
index 4961b0bd1b..4e95ca4acd 100644
--- a/chromium/COMMIT_MSG
+++ b/chromium/COMMIT_MSG
@@ -1,8 +1,22 @@
-www/chromium: update to 138.0.7204.168
+www/chromium: update to 139.0.7258.66
 
-* 138.0.7204.183
-This update includes 4 security fixes. Below, we highlight
-fixes that were contributed by external researchers. Please
-see the Chrome Security Page for more information.
-[$8000][426054987] High CVE-2025-8292: Use after free in
-Media Stream. Reported by Anonymous on 2025-06-19
+* 139.0.7258.66
+This update includes 12 security fixes. Below, we highlight fixes
+that were contributed by external researchers. Please see the
+Chrome Security Page for more information.
+[$2000][414760982] Medium CVE-2025-8576: Use after free in Extensions.
+Reported by asnine on 2025-04-30
+[$1000][384050903] Medium CVE-2025-8577: Inappropriate implementation
+in Picture In Picture. Reported by Umar Farooq on 2024-12-14
+[TBD][423387026] Medium CVE-2025-8578: Use after free in Cast.
+Reported by Fayez on 2025-06-09
+[$10000][407791462] Low CVE-2025-8579: Inappropriate implementation in
+Gemini Live in Chrome. Reported by Alesandro Ortiz on 2025-04-02
+[$2000][411544197] Low CVE-2025-8580: Inappropriate implementation in
+Filesystems. Reported by Huuuuu on 2025-04-18
+[$2000][416942878] Low CVE-2025-8581: Inappropriate implementation in
+Extensions. Reported by Vincent Dragnea on 2025-05-11
+[$1000][40089450] Low CVE-2025-8582: Insufficient validation of
+untrusted input in DOM. Reported by Anonymous on 2017-10-31
+[$500][373794472] Low CVE-2025-8583: Inappropriate implementation in
+Permissions. Reported by Shaheen Fazim on 2024-10-16

Prev by Date: KeePass: remove, pushed to pkgsrc
Next by Date: Remove molsketch: this was not an intended commit
Previous by Thread: KeePass: remove, pushed to pkgsrc
Next by Thread: Remove molsketch: this was not an intended commit
Indexes:

Home | Main Index | Thread Index | Old Index