[rpms/chromium] epel10.2: - Update to 149.0.7827.155

[Than Ngo <than@redhat.com>]

          A new commit has been pushed.

          Repo   : rpms/chromium
          Branch : epel10.2
          Commit : b323fcee0b335aa71249746b0e0e3d87b06a3472
          Author : Than Ngo <than@redhat.com>
          Date   : 2026-06-17T09:29:05+02:00
          Stats  : +38/-2 in 2 file(s)
          URL    : https://src.fedoraproject.org/rpms/chromium/c/b323fcee0b335aa71249746b0e0e3d87b06a3472?branch=epel10.2

          Log:
          - Update to 149.0.7827.155

* CVE-2026-12437: Use after free in WebShare
* CVE-2026-12438: Inappropriate implementation in WebView
* CVE-2026-12439: Use after free in Digital Credentials
* CVE-2026-12440: Use after free in DigitalCredentials
* CVE-2026-12441: Use after free in File Input
* CVE-2026-12442: Use after free in Passwords
* CVE-2026-12443: Use after free in Web Authentication
* CVE-2026-12444: Out of bounds read in Chromoting
* CVE-2026-12445: Use after free in Extensions
* CVE-2026-12446: Insufficient data validation in Passwords
* CVE-2026-12447: Heap buffer overflow in WebRTC
* CVE-2026-12448: Inappropriate implementation in WebView
* CVE-2026-12449: Use after free in Chromoting
* CVE-2026-12450: Inappropriate implementation in Media
* CVE-2026-12451: Use after free in DigitalCredentials
* CVE-2026-12452: Use after free in Downloads
* CVE-2026-12453: Insufficient validation of untrusted input in Input
* CVE-2026-12454: Race in Safe Browsing
* CVE-2026-12455: Use after free in Tab Strip
* CVE-2026-12456: Insufficient validation of untrusted input in Extensions
* CVE-2026-12457: Insufficient data validation in Extensions
* CVE-2026-12458: Incorrect security UI in Passwords
* CVE-2026-12459: Inappropriate implementation in Serial
* CVE-2026-12460: Insufficient policy enforcement in File System Access
* CVE-2026-12461: Out of bounds read in WebRTC
* CVE-2026-12462: Use after free in Media
* CVE-2026-12463: Inappropriate implementation in Views
* CVE-2026-12464: Use after free in Browser
* CVE-2026-12465: Insufficient validation of untrusted input in Metrics
* CVE-2026-12466: Heap buffer overflow in WebRTC
* CVE-2026-12467: Use after free in Extensions
* CVE-2026-12468: Inappropriate implementation in Updater
* CVE-2026-12469: Uninitialized Use in GPU

---
diff --git a/chromium.spec b/chromium.spec
index e68faf3..bdef66d 100644
--- a/chromium.spec
+++ b/chromium.spec
@@ -268,7 +268,7 @@
 %endif
 
 Name:	chromium
-Version: 149.0.7827.114
+Version: 149.0.7827.155
 Release: 1%{?dist}
 Summary: A WebKit (Blink) powered web browser that Google doesn't want you to use
 Url: http://www.chromium.org/Home
@@ -1912,6 +1912,42 @@ fi
 %endif
 
 %changelog
+* Wed Jun 17 2026 Than Ngo <than@redhat.com> - 149.0.7827.155-1
+- Update to 149.0.7827.155
+  * CVE-2026-12437: Use after free in WebShare
+  * CVE-2026-12438: Inappropriate implementation in WebView
+  * CVE-2026-12439: Use after free in Digital Credentials
+  * CVE-2026-12440: Use after free in DigitalCredentials
+  * CVE-2026-12441: Use after free in File Input
+  * CVE-2026-12442: Use after free in Passwords
+  * CVE-2026-12443: Use after free in Web Authentication
+  * CVE-2026-12444: Out of bounds read in Chromoting
+  * CVE-2026-12445: Use after free in Extensions
+  * CVE-2026-12446: Insufficient data validation in Passwords
+  * CVE-2026-12447: Heap buffer overflow in WebRTC
+  * CVE-2026-12448: Inappropriate implementation in WebView
+  * CVE-2026-12449: Use after free in Chromoting
+  * CVE-2026-12450: Inappropriate implementation in Media
+  * CVE-2026-12451: Use after free in DigitalCredentials
+  * CVE-2026-12452: Use after free in Downloads
+  * CVE-2026-12453: Insufficient validation of untrusted input in Input
+  * CVE-2026-12454: Race in Safe Browsing
+  * CVE-2026-12455: Use after free in Tab Strip
+  * CVE-2026-12456: Insufficient validation of untrusted input in Extensions
+  * CVE-2026-12457: Insufficient data validation in Extensions
+  * CVE-2026-12458: Incorrect security UI in Passwords
+  * CVE-2026-12459: Inappropriate implementation in Serial
+  * CVE-2026-12460: Insufficient policy enforcement in File System Access
+  * CVE-2026-12461: Out of bounds read in WebRTC
+  * CVE-2026-12462: Use after free in Media
+  * CVE-2026-12463: Inappropriate implementation in Views
+  * CVE-2026-12464: Use after free in Browser
+  * CVE-2026-12465: Insufficient validation of untrusted input in Metrics
+  * CVE-2026-12466: Heap buffer overflow in WebRTC
+  * CVE-2026-12467: Use after free in Extensions
+  * CVE-2026-12468: Inappropriate implementation in Updater
+  * CVE-2026-12469: Uninitialized Use in GPU
+
 * Fri Jun 12 2026 Than Ngo <than@redhat.com> - 149.0.7827.114-1
 - Update to 149.0.7827.114
   * CVE-2026-12007: Use after free  Core

diff --git a/sources b/sources
index 8323441..9feb666 100644
--- a/sources
+++ b/sources
@@ -1,2 +1,2 @@
 SHA512 (node-v22.22.0-stripped.tar.gz) = f32a8a73063b3c78cbacf941e11dd529ebcf2618b3ba661966312e49ee9870c43a3acf256e8d331a4b0b621b16a501810c02a3ad763c75884cc250addca8e106
-SHA512 (chromium-149.0.7827.114-clean.tar.xz) = f5f92c321ae5a33557d00d23c1a84a5ab688df2429523a1bc8dacd7c8275dee7bb1e5b082bdbaf5807e1b9419c32f092e655190f99a5a8ca7ad8090f24220d92
+SHA512 (chromium-149.0.7827.155-clean.tar.xz) = c49879d17304af351a43c936a8a903ce5b4a3764aa8a79596b336b7a9dec054e1e8765743b5fe4b1aaf0b3c5fc760b05d9ea89cd5542463f87f87a061bd9e809