I am just wondering how long normally between security updates to FydeOS and the built in Chromium Browser? I know normal ChromeOS has updates way more frequent than I am seeing for FydeOS.
Edit I got this answered from Discord. I will put Alpha’s response here in case anyone else has the qeustion.
security patches are rolled out on an ad-hoc basis, usually in the format of SP releases. Sometimes a few times per months, sometimes once a few months, depending on the sev level
I am also wanting to know why the security patches that are released for ChromeOS LTS 126 are not released for FydeOS. There have been multiple CVE’s released for Chromeos Some high and Critical since the release of FydeOS 19 SP1. I see at least four updates for version 126 since the rollout of Version 19 which itself is based around Chromium v126. Below are a few CVE for Chromium 126 that came out since this release.
375123371 Critical CVE-2024-10487 Out of bounds write in Dawn
372269618 High CVE-2024-10231 Type Confusion in V8
371011220 High CVE-2024-10229 Inappropriate implementation in Extensions
40076120 Medium CVE-2024-9958 Inappropriate implementation in PictureInPicture
328278718 Medium CVE-2024-9963 Insufficient data validation in Downloads
use brunch