Chromium in the image should be upgraded

[victorshengchen]

Short overview
Chromium 128.0.6613.84 should be upgraded

Use case
There are many known critical vulnerabilities in Chromium 128.0.6613.84. Suggest to upgrade to new version of browser

Detailed feature description
Some examples of vulnerabilities:
Insufficient validation of untrusted input in ANGLE and GPU in Google Chrome prior to 138.0.7204.157 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
Type confusion in V8 in Google Chrome prior to 138.0.7204.96 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. (Chromium security severity: High)
Use after free in Media Router in Google Chrome on Android prior to 128.0.6613.137 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

Additional content

Please provide any (mandatory) additional data for your desired feature

[sni]

pull requests are welcome. Maybe we can switch to use the default OS shipped chromium here as well.

[victorshengchen]

Thanks @sni
Not sure how to use the default chromium shipped with OS. I was using the image consol/debian-xfce-vnc:v2.0.4 from Docker Hub.

When I scan this image with Trivy, there are >100 vulnerabilities identified. Most of them are about the old versions of OS, libraries and browser. Do you have plan to have a new build with newer version of OS or browser?

[sni]

i was talking about #211, basically this applies to chromium as well.