chromium/126.0.6478.182 package update #24107

octo-sts · 2024-07-17T00:14:58Z

Signed-off-by: wolfi-bot <[email protected]>

octo-sts · 2024-07-17T00:24:25Z

Open AI suggestions to solve the build error:

The error message is: "fatal: detected dubious ownership in repository at '/github/home'
To add an exception for this directory, call:

git config --global --add safe.directory /github/home"

To fix this error, follow these steps:
1. Open your terminal.
2. Run: `git config --global --add safe.directory /github/home`
3. Verify by running: `git config --global --get-all safe.directory`

github-actions · 2024-07-17T06:43:18Z

Package chromium-docker-selenium-compat: Click to expand/collapse

Package chromium-docker-selenium-compat:
Modified: /opt/selenium/browser_version

Package chromium: Click to expand/collapse

Package chromium:
Modified: /usr/lib/chromium/chrome
Modified: /usr/lib/chromium/chrome_100_percent.pak
Modified: /usr/lib/chromium/chrome_200_percent.pak
Modified: /usr/lib/chromium/chrome_crashpad_handler
Modified: /usr/lib/chromium/chrome_sandbox
Modified: /usr/lib/chromium/chromedriver
Modified: /usr/lib/chromium/headless_lib_data.pak
Modified: /usr/lib/chromium/libEGL.so
Modified: /usr/lib/chromium/libGLESv2.so
Modified: /usr/lib/chromium/libVkICD_mock_icd.so
Modified: /usr/lib/chromium/libVkLayer_khronos_validation.so
Modified: /usr/lib/chromium/libvk_swiftshader.so
Modified: /usr/lib/chromium/libvulkan.so.1
Modified: /usr/lib/chromium/locales
Modified: /usr/lib/chromium/resources.pak
Modified: /usr/lib/chromium/snapshot_blob.bin
Modified: /usr/lib/chromium/v8_context_snapshot.bin

Package chromium-qt: Click to expand/collapse

Package chromium-qt:
Modified: /usr/lib/chromium/libqt5_shim.so

Package chromium-lang: Click to expand/collapse

Package chromium-lang:
Modified: /usr/lib/chromium/locales/am.pak
Modified: /usr/lib/chromium/locales/bn.pak
Modified: /usr/lib/chromium/locales/ca.pak
Modified: /usr/lib/chromium/locales/cs.pak
Modified: /usr/lib/chromium/locales/de.pak
Modified: /usr/lib/chromium/locales/el.pak
Modified: /usr/lib/chromium/locales/en-GB.pak
Modified: /usr/lib/chromium/locales/es-419.pak
Modified: /usr/lib/chromium/locales/es.pak
Modified: /usr/lib/chromium/locales/fa.pak
Modified: /usr/lib/chromium/locales/fr.pak
Modified: /usr/lib/chromium/locales/he.pak
Modified: /usr/lib/chromium/locales/hi.pak
Modified: /usr/lib/chromium/locales/hr.pak
Modified: /usr/lib/chromium/locales/id.pak
Modified: /usr/lib/chromium/locales/it.pak
Modified: /usr/lib/chromium/locales/ja.pak
Modified: /usr/lib/chromium/locales/kn.pak
Modified: /usr/lib/chromium/locales/ko.pak
Modified: /usr/lib/chromium/locales/ms.pak
Modified: /usr/lib/chromium/locales/nb.pak
Modified: /usr/lib/chromium/locales/pl.pak
Modified: /usr/lib/chromium/locales/pt-BR.pak
Modified: /usr/lib/chromium/locales/ro.pak
Modified: /usr/lib/chromium/locales/ru.pak
Modified: /usr/lib/chromium/locales/sr.pak
Modified: /usr/lib/chromium/locales/sv.pak
Modified: /usr/lib/chromium/locales/tr.pak
Modified: /usr/lib/chromium/locales/uk.pak
Modified: /usr/lib/chromium/locales/vi.pak
Modified: /usr/lib/chromium/locales/zh-CN.pak

bincapz found differences: Click to expand/collapse

Changed: /tmp/wolfictl-apk-4262595402/chromium/usr/lib/chromium/chrome

Moved: chromium-qt/var/lib/db/sbom/chromium-qt-126.0.6478.126-r0.spdx.json -> /tmp/wolfictl-apk-4262595402/chromium-lang/var/lib/db/sbom/chromium-lang-126.0.6478.182-r0.spdx.json (similarity: 0.92)

Changed: /tmp/wolfictl-apk-4262595402/chromium/var/lib/db/sbom/chromium-126.0.6478.182-r0.spdx.json

Moved: chromium-lang/var/lib/db/sbom/chromium-lang-126.0.6478.126-r0.spdx.json -> /tmp/wolfictl-apk-4262595402/chromium-qt/var/lib/db/sbom/chromium-qt-126.0.6478.182-r0.spdx.json (similarity: 0.92)

Changed: /tmp/wolfictl-apk-4262595402/chromium-docker-selenium-compat/var/lib/db/sbom/chromium-docker-selenium-compat-126.0.6478.182-r0.spdx.json

octo-sts · 2024-07-17T06:46:51Z

bincapz detected files with a risk score equal or higher than 'CRITICAL': Click to expand/collapse

/tmp/bincapz2507943857/packages/x86_64/chromium-126.0.6478.182-r0.apk/usr/lib/chromium/chrome [🚨 CRITICAL]

RISK	KEY	DESCRIPTION	EVIDENCE
CRITICAL	combo/stealer/browser	Makes references to multiple browser credentials	.config Cookies Firefox Google Chrome User Data formhistory.sqlite places.sqlite

egibs · 2024-07-17T16:45:55Z

@hectorj2f -- looks like the build failed due to the file system running out of space:

2024/07/17 04:15:10 ERRO failed to clone https://chromium.googlesource.com/chromium/src.git ref 126.0.6478.182: write /tmp/wolfictl1653378409/.git/objects/pack/tmp_pack_2829125991: no space left on device

Once that's fixed I can grab the artifact for inspection.

Edit:

I grabbed the file in question from the latest Chromium image.

chromium/126.0.6478.182 package update

b807c59

Signed-off-by: wolfi-bot <[email protected]>

octo-sts bot added request-version-update request for a newer version of a package automated pr P1 This label indicates our scanning found High, Medium or Low CVEs for these packages. labels Jul 17, 2024

Update chromium.yaml

da6e5f7

ajayk enabled auto-merge July 17, 2024 05:10

octo-sts bot added the service:bincapz/blocking label Jul 17, 2024

egibs mentioned this pull request Jul 17, 2024

Address false positives for Chromium, KOTS, and Nuclei chainguard-dev/malcontent#368

Merged

egibs approved these changes Jul 17, 2024

View reviewed changes

hectorj2f approved these changes Jul 17, 2024

View reviewed changes

ajayk merged commit a19fd4e into main Jul 17, 2024
7 of 8 checks passed

ajayk deleted the wolfictl-9f0e9469-4d48-4aa4-955a-4552a6734e1c branch July 17, 2024 18:56

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chromium/126.0.6478.182 package update #24107

chromium/126.0.6478.182 package update #24107

octo-sts bot commented Jul 17, 2024

octo-sts bot commented Jul 17, 2024

github-actions bot commented Jul 17, 2024

Changed: /tmp/wolfictl-apk-4262595402/chromium/usr/lib/chromium/chrome

Moved: chromium-qt/var/lib/db/sbom/chromium-qt-126.0.6478.126-r0.spdx.json -> /tmp/wolfictl-apk-4262595402/chromium-lang/var/lib/db/sbom/chromium-lang-126.0.6478.182-r0.spdx.json (similarity: 0.92)

Changed: /tmp/wolfictl-apk-4262595402/chromium/var/lib/db/sbom/chromium-126.0.6478.182-r0.spdx.json

Moved: chromium-lang/var/lib/db/sbom/chromium-lang-126.0.6478.126-r0.spdx.json -> /tmp/wolfictl-apk-4262595402/chromium-qt/var/lib/db/sbom/chromium-qt-126.0.6478.182-r0.spdx.json (similarity: 0.92)

Changed: /tmp/wolfictl-apk-4262595402/chromium-docker-selenium-compat/var/lib/db/sbom/chromium-docker-selenium-compat-126.0.6478.182-r0.spdx.json

octo-sts bot commented Jul 17, 2024

/tmp/bincapz2507943857/packages/x86_64/chromium-126.0.6478.182-r0.apk/usr/lib/chromium/chrome [🚨 CRITICAL]

egibs commented Jul 17, 2024 •

edited

Loading

chromium/126.0.6478.182 package update #24107

chromium/126.0.6478.182 package update #24107

Conversation

octo-sts bot commented Jul 17, 2024

octo-sts bot commented Jul 17, 2024

github-actions bot commented Jul 17, 2024

Changed: /tmp/wolfictl-apk-4262595402/chromium/usr/lib/chromium/chrome

Moved: chromium-qt/var/lib/db/sbom/chromium-qt-126.0.6478.126-r0.spdx.json -> /tmp/wolfictl-apk-4262595402/chromium-lang/var/lib/db/sbom/chromium-lang-126.0.6478.182-r0.spdx.json (similarity: 0.92)

Changed: /tmp/wolfictl-apk-4262595402/chromium/var/lib/db/sbom/chromium-126.0.6478.182-r0.spdx.json

Moved: chromium-lang/var/lib/db/sbom/chromium-lang-126.0.6478.126-r0.spdx.json -> /tmp/wolfictl-apk-4262595402/chromium-qt/var/lib/db/sbom/chromium-qt-126.0.6478.182-r0.spdx.json (similarity: 0.92)

Changed: /tmp/wolfictl-apk-4262595402/chromium-docker-selenium-compat/var/lib/db/sbom/chromium-docker-selenium-compat-126.0.6478.182-r0.spdx.json

octo-sts bot commented Jul 17, 2024

/tmp/bincapz2507943857/packages/x86_64/chromium-126.0.6478.182-r0.apk/usr/lib/chromium/chrome [🚨 CRITICAL]

egibs commented Jul 17, 2024 • edited Loading

egibs commented Jul 17, 2024 •

edited

Loading