Fedora Linux 40 has recently released significant security updates, particularly for the Chromium web browser and the OpenJDK Java runtime environment.
Chromium Update
- The Chromium version has been updated to 136.0.7103.59-1.fc40. This update addresses several critical vulnerabilities:
- CVE-2025-4096: Heap buffer overflow in HTML.
- CVE-2025-4050: Out of bounds memory access in DevTools.
- CVE-2025-4051: Insufficient data validation in DevTools.
- CVE-2025-4052: Inappropriate implementation in DevTools.
- Users can install this update using the command:
OpenJDK Update
- The OpenJDK has been updated to java-17-openjdk-17.0.15.0.6-1.fc40, which is part of the April 2025 critical patch update (CPU).
- Users can update this package using the command:
Both updates are crucial for maintaining system security and performance. The installation of these updates ensures users benefit from the latest improvements and fixes. All packages are verified with the Fedora Project GPG key, ensuring their integrity and authenticity.
Extended Information
In addition to these updates, it is advisable for Fedora users to regularly check for updates not just for Chromium and OpenJDK, but for all system packages to mitigate potential security risks. Maintaining an updated system helps safeguard against vulnerabilities that may be exploited by malicious actors. Users should also familiarize themselves with the DNF documentation for effective package management and troubleshooting on Fedora systems
Chromium Update
- The Chromium version has been updated to 136.0.7103.59-1.fc40. This update addresses several critical vulnerabilities:
- CVE-2025-4096: Heap buffer overflow in HTML.
- CVE-2025-4050: Out of bounds memory access in DevTools.
- CVE-2025-4051: Insufficient data validation in DevTools.
- CVE-2025-4052: Inappropriate implementation in DevTools.
- Users can install this update using the command:
bashsu -c 'dnf upgrade --advisory FEDORA-2025-b1804b97fc'
OpenJDK Update
- The OpenJDK has been updated to java-17-openjdk-17.0.15.0.6-1.fc40, which is part of the April 2025 critical patch update (CPU).
- Users can update this package using the command:
bashsu -c 'dnf upgrade --advisory FEDORA-2025-858cec7479'
Both updates are crucial for maintaining system security and performance. The installation of these updates ensures users benefit from the latest improvements and fixes. All packages are verified with the Fedora Project GPG key, ensuring their integrity and authenticity.
Extended Information
In addition to these updates, it is advisable for Fedora users to regularly check for updates not just for Chromium and OpenJDK, but for all system packages to mitigate potential security risks. Maintaining an updated system helps safeguard against vulnerabilities that may be exploited by malicious actors. Users should also familiarize themselves with the DNF documentation for effective package management and troubleshooting on Fedora systems
Chromium and OpenJDK updates for Fedora 40
Fedora Linux 40 has been updated with important security enhancements, featuring Chromium and Java-17-OpenJDK:
Fedora 40 Update: chromium-136.0.7103.59-1.fc40
Fedora 40 Update: java-17-openjdk-17.0.15.0.6-1.fc40Chromium and OpenJDK updates for Fedora 40 @ Linux Compatible
