Update available for Chromium 112 to address zero-day exploit

Chromium, regular and un-googled.

Two days ago on friday, Google released an out-of-cycle stable update. This 112.0.5615.121 update addresses and fixes a zero-day exploit (CVE-2023-2033) which is already actively abused. Since it is a bug in the JavaScript engine, a hacker can craft a HTML page in such a way that your browser will run malicious code on your computer just by loading that web page.

The updated Slackware 15.0 and -current packages both for chromium and chromium-ungoogled are available in my repository and its mirrors (like my own US server and in a short while, the UK mirror). Be sure to upgrade at your earliest convenience.

I still get the occasional question “what is this un-googled chromium“? I wrote two articles about it on the blog a while ago: “How to un-google your Chromium browser experience” and “Sync and share your (Chromium and more) browser data among all your computers“. Check those out!

Cheers, Eric

15 thoughts on “Update available for Chromium 112 to address zero-day exploit

  1. Thanks Eric
    Posting from chromium-ungoogled-112.0.5615.121-x86_64-1alien and everything is working for me.
    Thanks also for the chromium-ungoogled links — it’s always nice to review things ‘I think I know and understand’ 🙂
    — kjh

  2. (Update available for Chromium 112 to address zero-day exploit)

    Alien Bob way below March 4, 2021 is an excellent read at the below link referencing the Chromium browser. Very important edits. Learn them…

    — Note from alienBOB: Lots of text removed that was copied from an older blog article—-

    Dear ‘Shutdown CNN’, you already pasted a complete ”slackpkgplus.conf’ file into a blog comment, and now you copy large parts of one of my own historical blog articles. While I respect your contributions, I do *not* approve of that sort of pollution of my blog’s comment section. Use a pastebin to share large texts and point to blog URLs if you want to make a point.
    You get a warning now, not to repeat this annoying pasting behavior.

    1. Indeed, another 0-day exploit.
      For other readers: in the meantime you can find the updated packages for chromium as well as chromium-ungoogled (32bit and 64bit) in my repository or its mirrors. Please upgrade ASAP.

  3. Woo Hoo !

    You’ve had a busy week, Eric

    Thank you for openjdk-8u372_b07-x86_64-1alien, chromium-ungoogled-113.0.5672.63-x86_64-1alien, chromium-113.0.5672.63-x86_64-1alien and libreoffice-7.5.3-x86_64-1alien

    All are running fine here on my Slackware64 15.0 Laptop with MultiLib.

    — kjh

    1. Yeah there was no time to write a proper post, but Chromium 113 is again a highly recommended upgrade wrt security holes being plugged.
      The updated gcc 13.1.0_multilib ‘testing’ packages (now including the m2 compiler package) are on their way.

    1. Yes, thanks Eric.
      Posting from chromium-ungoogled-113.0.5672.92-x86_64-1alien on Slackware64 15.0 +MultiLib and everything looks great.
      — kjh

  4. Thanks again for the swift Chromium 113.0.5672.126 update!
    Critical vulnerability fixed, although still without a known exploit.
    Patiently waiting for the ungoogled version!

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.