A significant security update for Chromium has been released for SUSE Linux Enterprise 15 SP6, identified as openSUSE-SU-2025:0120-1. This update addresses a critical vulnerability (CVE-2025-3066) stemming from a "use after free" issue in Site Isolation, which could potentially compromise system security.
The update includes version 135.0.7049.84 of Chromium, which was officially released on April 8, 2025. This new version not only resolves the aforementioned vulnerability but also includes two additional fixes. Users of openSUSE Backports SLE-15-SP6 are encouraged to apply this update promptly to ensure their systems remain secure.
To install the update, users can utilize the recommended installation methods such as YaST online_update or the "zypper patch" command. For those specifically using openSUSE Backports SLE-15-SP6, the command to run is:
The updated packages available include:
- chromedriver-135.0.7049.84-bp156.2.107.1
- chromium-135.0.7049.84-bp156.2.107.1
- respective debug info packages for both.
For further information, users can refer to the provided links that detail the vulnerability and the related bug reports. It is crucial for users to remain vigilant about updates and patches to maintain the integrity and security of their systems.
In addition, as cybersecurity threats continue to evolve, it is advisable for users and organizations to adopt best practices. This includes regularly monitoring for updates, implementing comprehensive security measures, and training personnel on recognizing potential security risks. Keeping software up to date is a crucial step in protecting systems from vulnerabilities
The update includes version 135.0.7049.84 of Chromium, which was officially released on April 8, 2025. This new version not only resolves the aforementioned vulnerability but also includes two additional fixes. Users of openSUSE Backports SLE-15-SP6 are encouraged to apply this update promptly to ensure their systems remain secure.
To install the update, users can utilize the recommended installation methods such as YaST online_update or the "zypper patch" command. For those specifically using openSUSE Backports SLE-15-SP6, the command to run is:
bashzypper in -t patch openSUSE-2025-120=1
The updated packages available include:
- chromedriver-135.0.7049.84-bp156.2.107.1
- chromium-135.0.7049.84-bp156.2.107.1
- respective debug info packages for both.
For further information, users can refer to the provided links that detail the vulnerability and the related bug reports. It is crucial for users to remain vigilant about updates and patches to maintain the integrity and security of their systems.
In addition, as cybersecurity threats continue to evolve, it is advisable for users and organizations to adopt best practices. This includes regularly monitoring for updates, implementing comprehensive security measures, and training personnel on recognizing potential security risks. Keeping software up to date is a crucial step in protecting systems from vulnerabilities
Chromium update for SLE 15
A Chromium update has been released for SUSE Linux Enterprise 15 SP6:
openSUSE-SU-2025:0120-1: important: Security update for chromium
