Tag: chrome (Page 1 of 14)

Multiple Chromium updates in rapid succession

March 14, 2026 / alienbob / 17 Comments

You may have noticed that after my release of the Slackware package for Chromium (and its Un-Googled sibling) version 146.0.7680.71 there was a really short interval until I released an update in the form of the 146.0.7680.75 version.

Chromium 146.0.7680.71 is the latest major version upgrade and it addressed a crazy amount of CVE’s. I am not even going to lookup and configure the URLs, here’s the list:

CVE-2026-3913 CVE-2026-3914 CVE-2026-3915 CVE-2026-3916 CVE-2026-3917 CVE-2026-3918 CVE-2026-3919 CVE-2026-3920 CVE-2026-3921 CVE-2026-3922 CVE-2026-3923 CVE-2026-3924 CVE-2026-3925 CVE-2026-3926 CVE-2026-3927 CVE-2026-3928 CVE-2026-3929 CVE-2026-3930 CVE-2026-3931 CVE-2026-3932 CVE-2026-3934 CVE-2026-3935 CVE-2026-3936 CVE-2026-3937 CVE-2026-3938 CVE-2026-3939 CVE-2026-3940 CVE-2026-3941 CVE-2026-3942

And then the next update to 146.0.7680.75 only two days later included 2 zero-day security fixes that the developers missed somehow: both for CVE-2026-3909 and CVE-2026-3910 an exploit exists in the wild.

And then already the next day, a new update emerged which I am currently compiling: Chromium 146.0.7680.80 sources were released to address yet another zero-day exploit, this time CVE-2026-3909.

Those new packages (chromium and chromium-ungoogled 64bit binaries) will become available tomorrow, Sunday if the compilation does not fail. The 32bit package for chromium-ungoogled will follow a day later. The last two attempts to build a 32bit package had to be aborted when I discovered that there was a new release. I have only one computer that is capable of compiling Chromium, and building packages in parallel is not an option.

Enjoy the weekend and be careful accessing shady web sites 🙂

Eric

July update for Chromium 126

July 18, 2024 / alienbob / 11 Comments

The latest release of the Chromium source code (version 126.0.6478.182 was made available on July 16th) addresses several vulnerabilities as usual, some of which are rated as ‘High’ but none ‘Critical’ and also no new 0-days are reported.

You can fetch my Slackware 15.0 and -current packages both for chromium and (hopefully soon, because its source has not been released yet) also chromium-ungoogled . You may prefer one of the mirror servers (like my own US server and in a short while, the UK mirror) in case my primary slackware.nl server is not responding or too slow.

I am slowly transitioning back from being a caregiver for my mother (which absorbed me completely for 10 months) to a life where I have time and energy in the evenings to hack on Slackware again. You will soon find the next installment in the Slackware Cloud Server series here on the blog – an article dedicated to building a Docker stack as cloud storage backend for the open source Ente Auth 2-factor authentication app.

Cheers, Eric

Chromium update fixes 5th zero-day exploit for 2024

May 11, 2024 / alienbob / 19 Comments

In Google’s release notes for the latest Chromium 124.0.6367.201 source code it is mentioned that this release fixes a zero-day vulnerability. Beware: this is already the 5th zero-day which was reported and fixed in Chromium in 2024.

This vulnerability is already actively exploited in the wild, and is labeled CVE-2024-4671, so please upgrade your chromium and also ungoogled-chromium packages as soon as you can.

You can fetch my Slackware 15.0 and -current packages both for chromium and chromium-ungoogled . You can also visit mirror servers (like my own US server and in a short while, the UK mirror) in case my own server is not responding or too slow.

Note that I still do not provide 32bit package updates for Chromium and Chromium-ungoogled. It is a lot of work to find out how to compile rust and llvm on 32bit Slackware ‘the Google way’ and so far the solution has eluded me.
I need these custom rust and clang compilers to compile Chromium sources on 32bit.
And please don’t tell me ‘to look at how Debian does it’ – it does not help.

Cheers, Eric

Chromium 121 for Slackware… don’t hold your breath

January 24, 2024 / alienbob / 30 Comments

Chromium 121 sources were released yesterday, and as much as I would like to tell you that the Slackware packages are ready, in fact it appears that you will have to wait for them for an unspecified amount of time.

I found out that the build of Chromium now needs Google’s custom version of the Rust compiler, next to Google’s custom version of the Clang compiler. Those Rust and Clang versions are intertwined and Google advises packagers to simply use their own pre-compiled binaries which they provide for download.

You guessed… those binaries are not available for a 32bit OS. Nothing new, and it is for that exact reason that as part of compiling Chromium for Slackware, the complete LLVM toolchain is built from Google’s sources first. For every package I release. Tweaking the LLVM/Clang compilation so that they work for 32bit Slackware took a lot of time – after all, no one at Google tests their sources for 32bit build compatibility. So I patch here and there and every time feel lucky that it still works.

Until today, when I ran into the new Rust requirement. And after the umptiest iteration of a Chromium package build using a variety of changing options, I still fail to even start compiling a Rust binary.

I am taking a break from this to consider my options. My aim is to keep supporting the 32bit Slackware package. I just need to figure out how Google messed this up again and find a way around it. In the meantime, don’t hold your breath – I only have a few hours each evening to do the troubleshooting. A new package will appear when it’s ready.

All the best, Eric

Update 2024-jan-29: I have buillt 64bit packages for Chromium (also -ungoogled) version 121.0.6167.85 and uploaded them to my repository.
Note that I can not currently compile their 32bit versions because until now I have not been successful in building Google’s custom llvm and rust from source. I had to revert to downloading and using Google’s pre-compiled binaries which they only supply for 64bit systems.

I am still determined to find a way to compile these llvm and rust compilers from Google’s own sources. But I have no ETA on that unfortunately.

Chromium 118 (also ungoogled) is a security update

October 14, 2023 / alienbob / 18 Comments

I uploaded new 64bit packages for Chromium 118.0.5993.70 (also the un-googled variant) for which the sources were released a few days ago. This first release in the 118 series addresses a critical vulnerability (CVE-2023-5218) so it’s wise to upgrade.
As mentioned in a previous blog post, future 32bit package updates will have a lower frequency: one update per month. Google has increased the frequency of its Chromium releases dramatically (one per week) and I just cannot keep up. If you need that 32bit package badly now, you can of course grab the sources and my SlackBuild and build it yourself.

Looking at this 118 major release, one thing you need to be aware of is the changed behavior of “Enhanced Safe Browsing” which you can enable in the browser’s security settings (chrome://settings/security). Probably most of you already have this enabled. This is what changed:

Google will be able to disable an installed browser extension remotely if it determines the extension is labeled as ‘malicious’ and the extension was not installed via the Chrome Web Store.
The browser’s security checks of downloaded online content have been enhanced with so-called ‘deep scanning’ meaning the browser may now ask you for a password to open a protected archive you just downloaded. Note that the scanning occurs in Google’s datacenter – when you enable ‘enhanced safe browsing’ you consent to uploading some of your data to Google for the specific purpose of scanning and analyzing it for malicious content.
Also with ‘enhanced safe browsing’ enabled, the browser will send telemetry data about installed browser extensions using the chrome.tabs API to Google’s servers for analysis. This is meant to improve the “detection of malicious and policy violating extensions”.

It is up to you to decide which way the tradeoff between enhanced security and sharing data with Google works for you. If you don’t feel comfortable with this and you value your privacy, then you need to disable (or not enable) ‘Enhanced Safe Browsing’ in the settings.

Find the updated Slackware 15.0 and -current packages both for chromium and chromium-ungoogled in my repository and its mirrors (like my own US server and in a short while, the UK mirror).

Cheers, Eric

April 2026
M	T	W	T	F	S	S
	1	2	3	4	5
6	7	8	9	10	11	12
13	14	15	16	17	18	19
20	21	22	23	24	25	26
27	28	29	30

25 updates. Including a (* Security fix *)! April 19, 2026
Sun Apr 19 00:05:42 UTC 2026a/kernel-firmware-20260417_3fc7117-noarch-1.txz: Upgraded.a/kernel-generic-6.18.23-x86_64-1.txz: Upgraded.d/kernel-headers-6.18.23-x86-1.txz: Upgraded.k/kernel-source-6.18.23-noarch-1.txz: Upgraded. Quite a few changes to the .config here - for full details run diffconfig against the previous config file. Some of the notable changes include: AGP m -> y DRM m -> y DRM_KMS_HELPER m -> y DRM_SIMPLEDRM n -> y +DRM_SYSFB_HELPER y Removal of […]
6 updates. Including a (* Security fix *)! April 17, 2026
Fri Apr 17 21:28:08 UTC 2026ap/cups-2.4.17-x86_64-1.txz: Upgraded. This update fixes security issues: The scheduler treated local user and group names as case-insensitive. The RSS notifier could write outside the scheduler's RSS directory. The scheduler did not filter control characters from option values. The scheduler did not always allocate enough memory for a job's options string. […]

SlackBuilds.org changes for Sat, 18 Apr 2026 01:04:11 GMT April 18, 2026
academic/FreeFem: Updated for version 4.16. academic/gwyddion: Updated for version 2.71. academic/xsimd: Version bump to 14.1.0 audio/ardour: Updated for version 9.2.0. audio/reaper: Updated for version 7.69 desktop/sun: Updated for version 2.5.0. development/Catch2: Updated for version 3.14.0 development/JAForth: Updated for version 20260407_82541e7 development/a68g: Updated for version 3.11.1 development/abseil-cpp: Version bump to 20260107.1 development/antigravity: Updated for version 1.22.2 […]
SlackBuilds.org changes for Sat, 11 Apr 2026 16:50:40 GMT April 11, 2026
academic/Gridcoin-Research: Updated for version 5.5.0.0 academic/WolframEngine: Updated for version 14.3.0. academic/boinc: Updated for version 8.2.9 academic/openboard: Fix build. academic/python3-scipy: Ignore newer pybind11 limits audio/dopamine-bin: Updated for version 3.0.4 audio/reaper: Updated for version 7.68 desktop/lxqt-panel: Updated for version 2.3.3. desktop/pekwm: Updated for version 0.4.4 development/JAForth: Updated for version 20260404_e52cb98 development/SQLAlchemy: Updated for version 2.0.49. development/actionlint: Updated […]

Tag: chrome (Page 1 of 14)

Multiple Chromium updates in rapid succession

July update for Chromium 126

Chromium update fixes 5th zero-day exploit for 2024

Chromium 121 for Slackware… don’t hold your breath

Chromium 118 (also ungoogled) is a security update

About me

Contribute

Search

Blog Categories

Online me

My Favourites

Slackware

Historical posts

slackware64-current

my slackbuilds

multilib

SBo

Meta

Recent posts

Recent comments