-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 08 Dec 2023 11:40:41 -0500
Source: chromium
Binary: chromium chromium-common chromium-common-dbgsym chromium-dbgsym chromium-driver chromium-sandbox chromium-sandbox-dbgsym chromium-shell chromium-shell-dbgsym
Architecture: amd64
Version: 120.0.6099.71-1~deb12u1
Distribution: bookworm-security
Urgency: high
Maintainer: amd64 / i386 Build Daemon (x86-csail-01) <buildd_amd64-x86-csail-01@buildd.debian.org>
Changed-By: Andres Salomon <dilinger@debian.org>
Description:
 chromium   - web browser
 chromium-common - web browser - common resources used by the chromium packages
 chromium-driver - web browser - WebDriver support
 chromium-sandbox - web browser - setuid security sandbox for chromium
 chromium-shell - web browser - minimal shell
Changes:
 chromium (120.0.6099.71-1~deb12u1) bookworm-security; urgency=high
 .
   [ Andres Salomon ]
   * New upstream stable release.
     - CVE-2023-6508: Use after free in Media Stream.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2023-6509: Use after free in Side Panel Search.
       Reported by Khalil Zhani.
     - CVE-2023-6510: Use after free in Media Capture. Reported by [pwn2car].
     - CVE-2023-6511: Inappropriate implementation in Autofill.
       Reported by Ahmed ElMasry.
     - CVE-2023-6512: Inappropriate implementation in Web Browser UI.
       Reported by Om Apip.
   * d/copyright: adjust path for chai.js & mocha.js deletion.
     - delete third_party/libsecret.
   * d/control: new build depends on libsecret-1-dev.
   * d/scripts/unbundle: keep bundled libhwy; it's not available in bullseye.
     - also keep vulkan_memory_allocator and flatbuffers.
   * d/patches:
     - fixes/gcc13-headers.patch: refresh.
     - fixes/blink-frags.patch: drop part of patch & refresh.
     - disable/catapult.patch: refresh.
     - disable/driver-chrome-path.patch: update for minor upstream changes.
     - ungoogled/disable-privacy-sandbox.patch: update from ungoogled-chromium.
     - ungoogled/disable-web-environment-integrity.patch: update from
       from ungoogled-chromium.
     - upstream/mojo.patch: update patch from upstream's git.
     - bookworm/clang16.patch: new patch working around upstream's clang18 flags.
     - upstream/nullptr_t.patch: more libstdc++13 build fixes.
     - upstream/string-include.patch: add a simple header include build fix.
     - fixes/absl-optional.patch: add a workaround for a clang bug
       (https://github.com/llvm/llvm-project/issues/50248) by providing our
       own 'optional' header.
     - bookworm/constcountrycode.patch: add workaround for older libstdc++.
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - third_party/0001-Add-PPC64-support-for-libdav1d.patch: refresh for
       upstream changes
     - third_party/0002-third_party-libvpx-Remove-bad-ppc64-config.patch:
       refresh for upstream changes
     - third_party/0003-third_party-ffmpeg-Add-ppc64-generated-config.patch:
       regenerate
     - third_party/skia-vsx-instructions.patch: refresh for upstream changes
     - third_party/use-sysconf-page-size-on-ppc64.patch: refresh for upstream
       changes
     - Mass refresh all other patches against 120 codebase.  No functional
       change.
Checksums-Sha1:
 3a7d856c075f07f9a0b941cd23db661b6f652f39 1195908 chromium-common-dbgsym_120.0.6099.71-1~deb12u1_amd64.deb
 8bb7d380b92465d23b18e006726e21e2af886f73 4951616 chromium-common_120.0.6099.71-1~deb12u1_amd64.deb
 8f24d43af633f51e310cbdce33b3d0a02335f821 31897264 chromium-dbgsym_120.0.6099.71-1~deb12u1_amd64.deb
 57e972ff9e31e7593b5bd54e50a9ce77d263135f 5940652 chromium-driver_120.0.6099.71-1~deb12u1_amd64.deb
 065bda27e9ababc9bb9a00bd51d85944c61aa27e 14132 chromium-sandbox-dbgsym_120.0.6099.71-1~deb12u1_amd64.deb
 cda36909e25a065f56fdd29ed0a63366cda2d18c 84820 chromium-sandbox_120.0.6099.71-1~deb12u1_amd64.deb
 096b7effdb299da2e9fe8df1e0671156d306844d 27182008 chromium-shell-dbgsym_120.0.6099.71-1~deb12u1_amd64.deb
 461188fe9e793587f63f2e6001e944ea6fae7ec5 50207852 chromium-shell_120.0.6099.71-1~deb12u1_amd64.deb
 d69e42061663a1a9d730ed160ef16e6d54fe746b 24445 chromium_120.0.6099.71-1~deb12u1_amd64-buildd.buildinfo
 03b071606a36eca4aa848d7da74e6c2c80b98675 72061344 chromium_120.0.6099.71-1~deb12u1_amd64.deb
Checksums-Sha256:
 2ba9854f74d5cc152b4a7e69a21024f3d6b4b9f710b809bf7f7dd34a9ac23abb 1195908 chromium-common-dbgsym_120.0.6099.71-1~deb12u1_amd64.deb
 1261d254bd154889aab8203aae54b6b7b4795de84e290e84bc1839ae908ecd19 4951616 chromium-common_120.0.6099.71-1~deb12u1_amd64.deb
 982f47e546d56623f0974b63618ff3f4794bc70d14f5b916d6b57ab3ad5621ed 31897264 chromium-dbgsym_120.0.6099.71-1~deb12u1_amd64.deb
 b2957959405ff80fd98e663481a11cda3b4dc58d32c7c5bc29b6d3ce48c983a4 5940652 chromium-driver_120.0.6099.71-1~deb12u1_amd64.deb
 bbbf86afa14e6a7fc30db9e1fed3b1cd5e6e52273f676d17503e05e9857de2be 14132 chromium-sandbox-dbgsym_120.0.6099.71-1~deb12u1_amd64.deb
 1e4244356d325a3919ca942a3136b4b058ac44ebd2e4439584f4568618c158a3 84820 chromium-sandbox_120.0.6099.71-1~deb12u1_amd64.deb
 ee4830cff7dac05b65beca7a4e64d27fe7e8f53268750f9175dd44771f6bd77f 27182008 chromium-shell-dbgsym_120.0.6099.71-1~deb12u1_amd64.deb
 229199f9f08b1cf8d11ec86d09ff77d8dec58de698a325e1e7a0dfe66dacb8f9 50207852 chromium-shell_120.0.6099.71-1~deb12u1_amd64.deb
 902d0c09736b0bef12a272ddfa1c2cb6731a692f3b1b07deff83973249d3eebf 24445 chromium_120.0.6099.71-1~deb12u1_amd64-buildd.buildinfo
 1049a3da1f5028d996f86f73aca5a19c85aac03f929e22da27d0bcc9e7b91a43 72061344 chromium_120.0.6099.71-1~deb12u1_amd64.deb
Files:
 586e1f0a123fb9b4606234b10bb314de 1195908 debug optional chromium-common-dbgsym_120.0.6099.71-1~deb12u1_amd64.deb
 5ecbd20e64c343b96092cc18702b03e7 4951616 web optional chromium-common_120.0.6099.71-1~deb12u1_amd64.deb
 facfd14c98aef13b769b965c2189f584 31897264 debug optional chromium-dbgsym_120.0.6099.71-1~deb12u1_amd64.deb
 0627302ed660747fa8908da975f0fdb8 5940652 web optional chromium-driver_120.0.6099.71-1~deb12u1_amd64.deb
 74f0f659bde0feea03ab502904e47844 14132 debug optional chromium-sandbox-dbgsym_120.0.6099.71-1~deb12u1_amd64.deb
 f76509ea27927a18a5d309c2f256d1ad 84820 web optional chromium-sandbox_120.0.6099.71-1~deb12u1_amd64.deb
 6a5a5167b6a830b1f2f7555ecb880358 27182008 debug optional chromium-shell-dbgsym_120.0.6099.71-1~deb12u1_amd64.deb
 7ecc31e360dd7426c6ecb2f3a8ee22c0 50207852 web optional chromium-shell_120.0.6099.71-1~deb12u1_amd64.deb
 da1a9274b92030c967b368c86634d984 24445 web optional chromium_120.0.6099.71-1~deb12u1_amd64-buildd.buildinfo
 09aa0fafd8fff8c32c560debfc1d3edc 72061344 web optional chromium_120.0.6099.71-1~deb12u1_amd64.deb

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEE85oDfSLnwLkvY4Ibj5YjFeDZ0JMFAmVz6msACgkQj5YjFeDZ
0JObFBAAhynvsrVwpI9yjLiEvkl4N3TtRnHIIpljVYhdEA1DZvzhET9hGcr3AqHa
UHat96kUmfeOGgjmgCerkBM4Je2ZboF3QWDby/XmJ+9/BiEZ22QBFBxVs6cwmPjM
edzZrs3irYqe63yJLBwVV1JsmXZZ0SsN0gmoGsgviC7srfksasBM8Uk4XiP0wmSR
Z4sXztbdMcjtLCrJBdZd/eYk3ZyPhcATwS+aMSCZRUdlzRafNBJQpEJwt4jsG0RY
8ZJKRYFRBvwRNrQ8riltARwT0crkbSI2zAES4jVHwJpCz3q9oNj/hmbTajf+z7P2
QWJSBhvibi0ECAXNEbwH+wY4WCCxLwkcZXKzLoFzTOgWszlWUSzKQZbAlJbKXEA3
fshiPBuJHVwTBu2BcRSqZuQYit+VK1LvGMEcHtVjRcJ4LFE7YDt7zMZUzEZU6eSU
C9aDRg4NgnqXXbNmLPq8QFkfDjcpP1Kr5+p/oqAxg4IzJ1Dy6i4gMKW/Dq2DqT9R
Et3jUlb96Q6LQI5JpLPieXXW0O85JRcpQKqYQb3XhD7oHkkKnV2VTxBGuMy8xWOl
NYXE3r35f/bjQl+CrN5Pv+0mXh55GW6cF3DgQw2o7m4LwtYjDTwfNO9YWFNaiWdR
WeWAyyuDLF3PaHE4coCMTlnt1hVRSzRl9f7dwVOgaeCDSp99bic=
=A5UQ
-----END PGP SIGNATURE-----