Bug 2397768 - CVE-2025-10890, CVE-2025-10891, CVE-2025-10892 - chromium: Side-channel information leakage and Ingter overflow in V8 [epel-9/10l]
Summary: CVE-2025-10890, CVE-2025-10891, CVE-2025-10892 - chromium: Side-channel infor...
Keywords:
Status: CLOSED ERRATA
Alias: None
Product: Fedora EPEL
Classification: Fedora
Component: chromium
Version: epel9
Hardware: Unspecified
OS: Unspecified
unspecified
high
Target Milestone: ---
Assignee: Than Ngo
QA Contact: Fedora Extras Quality Assurance
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2025-09-24 09:33 UTC by Than Ngo
Modified: 2025-09-30 00:46 UTC (History)
5 users (show)

Fixed In Version: chromium-140.0.7339.207-1.el10_2 chromium-140.0.7339.207-1.el9
Clone Of:
Environment:
Last Closed: 2025-09-30 00:24:02 UTC
Type: Bug
Embargoed:
than: mirror+

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Issue Tracker FC-2387 0 None None None 2025-09-26 09:47:30 UTC

Description Than Ngo 2025-09-24 09:33:16 UTC 
Following security issues affected chromium in Fedora Epel 9/10
  * CVE-2025-10890: Side-channel information leakage in V8
  * CVE-2025-10891: Integer overflow in V8
  * CVE-2025-10892: Integer overflow in V8
Comment 1 Fedora Update System 2025-09-27 07:44:19 UTC 
FEDORA-EPEL-2025-3ea2eb10f3 (chromium-140.0.7339.207-1.el9) has been submitted as an update to Fedora EPEL 9.
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-3ea2eb10f3
Comment 2 Fedora Update System 2025-09-27 07:44:20 UTC 
FEDORA-EPEL-2025-e5b8017942 (chromium-140.0.7339.207-1.el10_2) has been submitted as an update to Fedora EPEL 10.2.
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-e5b8017942
Comment 3 Fedora Update System 2025-09-28 00:19:56 UTC 
FEDORA-EPEL-2025-3ea2eb10f3 has been pushed to the Fedora EPEL 9 testing repository.

You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-3ea2eb10f3

See also https://fedoraproject.org/wiki/QA:Updates_Testing for more information on how to test updates.
Comment 4 Fedora Update System 2025-09-28 00:26:09 UTC 
FEDORA-EPEL-2025-e5b8017942 has been pushed to the Fedora EPEL 10.2 testing repository.

You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-e5b8017942

See also https://fedoraproject.org/wiki/QA:Updates_Testing for more information on how to test updates.
Comment 5 Fedora Update System 2025-09-30 00:24:02 UTC 
FEDORA-EPEL-2025-e5b8017942 (chromium-140.0.7339.207-1.el10_2) has been pushed to the Fedora EPEL 10.2 stable repository.
If problem still persists, please make note of it in this bug report.
Comment 6 Fedora Update System 2025-09-30 00:46:41 UTC 
FEDORA-EPEL-2025-3ea2eb10f3 (chromium-140.0.7339.207-1.el9) has been pushed to the Fedora EPEL 9 stable repository.
If problem still persists, please make note of it in this bug report.
Note You need to log in before you can comment on or make changes to this bug.