-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Thu, 16 May 2024 18:55:41 -0400 Source: chromium Binary: chromium chromium-common chromium-common-dbgsym chromium-dbgsym chromium-driver chromium-sandbox chromium-sandbox-dbgsym chromium-shell chromium-shell-dbgsym Architecture: arm64 Version: 125.0.6422.60-1~deb12u1 Distribution: bookworm-security Urgency: high Maintainer: arm Build Daemon (arm-ubc-03) Changed-By: Andres Salomon Description: chromium - web browser chromium-common - web browser - common resources used by the chromium packages chromium-driver - web browser - WebDriver support chromium-sandbox - web browser - setuid security sandbox for chromium chromium-shell - web browser - minimal shell Changes: chromium (125.0.6422.60-1~deb12u1) bookworm-security; urgency=high . * New upstream stable release. - CVE-2024-4947: Type Confusion in V8. Reported by Vasily Berdnikov (@vaber_b) and Boris Larin (@oct0xor) of Kaspersky. - CVE-2024-4948: Use after free in Dawn. Reported by wgslfuzz. - CVE-2024-4949: Use after free in V8. Reported by Ganjiang Zhou(@refrain_areu) of ChaMd5-H1 team. - CVE-2024-4950: Inappropriate implementation in Downloads. Reported by Shaheen Fazim. * d/copyright: fix instrumented_libs deletion; upstream renamed it. * d/scripts/unbundle: bundle new requirement absl_crc (which is unavailable in bookworm). * d/patches: - upstream/uint-includes.patch: drop,merged upstream. - upstream/fps-optional.patch: drop, merged upstream. - upstream/span-optional.patch: drop, merged upstream. - upstream/extractor-bitset.patch: drop, merged upstream. - upstream/atomic.patch: drop, merged upstream. - upstream/webgpu-optional.patch: drop, merged upstream. - disable/catapult.patch: refresh. - i386/angle-lockfree.patch: drop, I _think_ it's no longer needed. - upstream/ruy-include.patch: add header build fix. - upstream/vulkan-include.patch: add header build fix. - upstream/mojo-bindings-include.patch: add header build fix. - upstream/appservice-include.patch: add header build fix. - upstream/no-vector-consts.patch: add build fix; gnu libstdc++ doesn't allow const types inside vectors. - upstream/lens-include.patch: add header build fix. - bookworm/nvt2.patch: drop (replace with a better non-revert patch). - bookworm/v8-wrappable.patch: add nvt2.patch build fix replacement that just defines a single struct member. - upstream/ninja.patch: add build fix for failure triggered by ninja-1.12. - fixes/bad-font-gc00000.patch: add formatting patch revert to make other patches easier to apply. - fixes/bad-font-gc2.patch: add a build failure fix & refresh. - fixes/bad-font-gc11.patch: add a build failure fix & refresh. - bookworm/bubble-contents.patch: refresh. - bookworm/omnibox-constexpr.patch: add constexpr -> const build fix. - upstream/tabstrip-include.patch: add header build fix. . [ Timothy Pearson ] * d/patches/ppc64le: - third_party/0001-Add-PPC64-support-for-boringssl.patch: Modify for upstream changes - third_party/0002-Add-PPC64-generated-files-for-boringssl.patch: Add pregenerated configuration for ppc64el support in BoringSSL - third_party/0002-third-party-boringssl-add-generated-files.patch: Rename to third_party/0002-Add-PPC64-generated-files-for-boringssl.patch - workarounds/HACK-debian-clang-disable-skia-musttail.patch: Refresh for upstream changes - third_party/skia-vsx-instructions.patch: Refresh for upstream changes - ffmpeg/0001-Add-support-for-ppc64.patch: Refresh for upstream changes Checksums-Sha1: fbe6b40a06c518a068eaad1b338f0f44647b3a49 1291536 chromium-common-dbgsym_125.0.6422.60-1~deb12u1_arm64.deb 96c7c08729ef99962076ca72993efb0e1263497c 4867924 chromium-common_125.0.6422.60-1~deb12u1_arm64.deb 7efc23ab5d2d8669ba4e71cb6ba31cfa88aac426 36577912 chromium-dbgsym_125.0.6422.60-1~deb12u1_arm64.deb 70fea85f44bc788f7e7f892f81053e0931eb81ad 5619940 chromium-driver_125.0.6422.60-1~deb12u1_arm64.deb c2fc6b2784810cdc6a48d4f9270e1da1c2aa7244 14460 chromium-sandbox-dbgsym_125.0.6422.60-1~deb12u1_arm64.deb 6ad532926d53b94f4f80de447013f32920f86aab 90060 chromium-sandbox_125.0.6422.60-1~deb12u1_arm64.deb dfcb77d00ba66df9aefc2e2da5fdc5289ab76a42 31079688 chromium-shell-dbgsym_125.0.6422.60-1~deb12u1_arm64.deb 1126aa99f7d77073085d53beaa92cc7f9962dfd6 46693296 chromium-shell_125.0.6422.60-1~deb12u1_arm64.deb 03f17a86e466374c4b5b9876d20384377f8932a3 24701 chromium_125.0.6422.60-1~deb12u1_arm64-buildd.buildinfo a2017dcf75251ef652db3714e8042739c55db9a0 66838764 chromium_125.0.6422.60-1~deb12u1_arm64.deb Checksums-Sha256: 27ee4dc6f8bd50de607cb716783d15680177d0838f0989a4b41a3b0d7b3d729a 1291536 chromium-common-dbgsym_125.0.6422.60-1~deb12u1_arm64.deb e897b425290a718b27b05634056ca4cdb7f2e0023188c9a19ad21baa96be888d 4867924 chromium-common_125.0.6422.60-1~deb12u1_arm64.deb 6ff5b8ad57391cf93252f8b847796d3a2c3f911362aba820fa481fff1666af83 36577912 chromium-dbgsym_125.0.6422.60-1~deb12u1_arm64.deb 89c775c42579926d62895cd8813a8527155b9e0f4615d560c263cbee839c0a6b 5619940 chromium-driver_125.0.6422.60-1~deb12u1_arm64.deb d003ff7dbb43c110c96f7eaedac64d533c58d26eaa5111ed81c9253bdaed241a 14460 chromium-sandbox-dbgsym_125.0.6422.60-1~deb12u1_arm64.deb 329b5a5483d2a577941e3ba41fde85913623b8ab43ea7634729be8c7f5593392 90060 chromium-sandbox_125.0.6422.60-1~deb12u1_arm64.deb f19233a13180ce14a4b635d6894898806771abc850d756178b53807c5639d02b 31079688 chromium-shell-dbgsym_125.0.6422.60-1~deb12u1_arm64.deb 9c96df827fdddf7e14a763b25fbe5576a848f90c52cd91d4cb49efc94b4d2e65 46693296 chromium-shell_125.0.6422.60-1~deb12u1_arm64.deb 32d90694e50d64c3d90e2f71bac72f9632661e98462439223d762e67c08f1db8 24701 chromium_125.0.6422.60-1~deb12u1_arm64-buildd.buildinfo 3783d396d84a9df25f45303a7592877e54e644b7468c4b16ef6c89ecbaf5f04c 66838764 chromium_125.0.6422.60-1~deb12u1_arm64.deb Files: 513984c0383135ae10b85f6a062d3881 1291536 debug optional chromium-common-dbgsym_125.0.6422.60-1~deb12u1_arm64.deb b241ecd29ad40402204ae442a4bf11fd 4867924 web optional chromium-common_125.0.6422.60-1~deb12u1_arm64.deb 2ea5f183137529c2601da8d08de5356d 36577912 debug optional chromium-dbgsym_125.0.6422.60-1~deb12u1_arm64.deb 37cfe9a3eb6ea1c1784a96000822e07d 5619940 web optional chromium-driver_125.0.6422.60-1~deb12u1_arm64.deb 9167cbf2dde252ce6f1e968baa84fb67 14460 debug optional chromium-sandbox-dbgsym_125.0.6422.60-1~deb12u1_arm64.deb 3aa42044398445df125ef30fe6bc9c45 90060 web optional chromium-sandbox_125.0.6422.60-1~deb12u1_arm64.deb fd9014214210118175103f2656ce4118 31079688 debug optional chromium-shell-dbgsym_125.0.6422.60-1~deb12u1_arm64.deb 00eb49edaf1c2bbcafc743ef179b318c 46693296 web optional chromium-shell_125.0.6422.60-1~deb12u1_arm64.deb 818477b92e3780fc01fe3e1257f2d721 24701 web optional chromium_125.0.6422.60-1~deb12u1_arm64-buildd.buildinfo a78e3173cb707f8fb826959fb3330610 66838764 web optional chromium_125.0.6422.60-1~deb12u1_arm64.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEE0+FegZ3qs8CHnZkx+XaKpT5fkBIFAmZJxvEACgkQ+XaKpT5f kBKfIg//del0LYgO5lzUAZypU+tmQ40EDx5sTBZrWJqfA9LW4E8TQQHd4WPwPY0t ZvVvLCedWRPDBPfzZZSRyJygqZOOfenMHqqH0/WwHxEonNPYRyiBXFKvBzmmUsk/ 1a00iCUcDzJARFzQIokPJEVzoUN3NrZX6Tj1xDV5BCpaG/EyL6EiOUfgxkmDMKbs BrNazZg39w0vXrD5ISKJJH17tRE3DbuEudjXfqLvi7PO7Ejr38Dxd/W8/v7azL/a g/AthBGl5y7bSilifIwYCozoB3x0mpD/FyInjpKyy+cA5ZEqrq8v3G7eUsn3kxd7 v0NE8F75dGSTTtxS7ErK+0GDei/X+hWaATIK6gJkvCoIE+R/z0h6+XKfeUtypSL1 03cLeD+sG94EqUZIFNeLYogVVeKYcZgrYTJWSnn5eb+6g2SRRmtQHq6JTk/6ivUr Jh8gaxWJmXeLjyX4c9VllQXLIsl8Raxio9W31OFsuWed3Iifj3trJo/mPzlExQuu Dn3sZJkenB9u8UJtbXjeuFAVQPRlNZVfYYJgEnjLfdqKLmKol4eJTLOj3AK5C6tc QORoqDsvmaGQdh5obLBO9EwfOb8XTbQZ/D3FJlmJk7ouO/ObR1uallZES6aDuWJu dUVDuJLU98kC6WQW27pzrssIxc+orOonTzM4M5BNFctL2hfoOCc= =L+cQ -----END PGP SIGNATURE-----