-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Tue, 23 Jan 2024 17:59:49 -0500 Source: chromium Binary: chromium chromium-common chromium-common-dbgsym chromium-dbgsym chromium-driver chromium-sandbox chromium-sandbox-dbgsym chromium-shell chromium-shell-dbgsym Architecture: amd64 Version: 121.0.6167.85-1~deb12u1 Distribution: bookworm-security Urgency: high Maintainer: amd64 / i386 Build Daemon (x86-ubc-01) Changed-By: Andres Salomon Description: chromium - web browser chromium-common - web browser - common resources used by the chromium packages chromium-driver - web browser - WebDriver support chromium-sandbox - web browser - setuid security sandbox for chromium chromium-shell - web browser - minimal shell Changes: chromium (121.0.6167.85-1~deb12u1) bookworm-security; urgency=high . * New upstream stable release. - CVE-2024-0807: Use after free in WebAudio. Reported by Huang Xilin of Ant Group Light-Year Security Lab. - CVE-2024-0812: Inappropriate implementation in Accessibility. Reported by Anonymous. - CVE-2024-0808: Integer underflow in WebUI. Reported by Lyra Rebane (rebane2001). - CVE-2024-0810: Insufficient policy enforcement in DevTools. Reported by Shaheen Fazim. - CVE-2024-0814: Incorrect security UI in Payments. Reported by Muneaki Nishimura (nishimunea). - CVE-2024-0813: Use after free in Reading Mode. Reported by @retsew0x01. - CVE-2024-0806: Use after free in Passwords. Reported by 18楼梦想改造家. - CVE-2024-0805: Inappropriate implementation in Downloads. Reported by Om Apip. - CVE-2024-0804: Insufficient policy enforcement in iOS Security UI. Reported by Narendra Bhati of Suma Soft Pvt. Ltd. Pune (India) . - CVE-2024-0811: Inappropriate implementation in Extensions API. Reported by Jann Horn of Google Project Zero. - CVE-2024-0809: Inappropriate implementation in Autofill. Reported by Ahmed ElMasry. * d/copyright: drop another eu-strip binary. * d/patches: - fixes/atspi.patch: drop, merged upstream. - fixes/gcc13-headers.patch: drop portions that were merged upstream. - upstream/nullptr_t.patch: drop, merged upstream. - upstream/string-include.patch: drop, merged upstream. - ungoogled/disable-web-environment-integrity.patch: remove, upstream wisely backed off and removed WEI. - disable/signin.patch: refresh for minor upstream changes. - disable/catapult.patch: refresh for minor upstream changes. - system/openjpeg.patch: refresh for minor upstream changes. - bookworm/clang16.patch: drop portion that was merged upstream. - upstream/vector.patch: missing header fix, pulled from upstream. - upstream/display-header.patch: missing header fix, pulled from upstream. - upstream/bitset.patch: missing header fix, pulled from upstream. - upstream/once_flag.patch: missing header fix, pulled from upstream. - bookworm/constexpr-equality.patch: add clang-16 workaround. - bookworm/nvt.patch: revert an upstream c++-20 change that confuses clang-16. - fixes/libxml-parseerr.patch: revert change from a newer libxml than debian's. - bookworm/undo-rust-req.patch: revert change that makes rust required to build (for now). - bookworm/eraseif-lamba.patch: revert changes switching to std::erase_if to work around libstdc++-12 bug. . [ Timothy Pearson ] * d/patches: - fixes/std-to-address.patch: work around incorrect template selection in Mojo ConvertTo() - fixes/stdint.patch: add missing stdint include to performance manager * d/patches/ppc64le: - fixes/fix-rust-linking.patch: allow linking C and Rust libraries in full archive mode - libaom/0001-Add-pregenerated-config-for-libaom-on-ppc64.patch: refresh for upstream changes - third_party/skia-vsx-instructions.patch: refresh for upstream changes - third_party/0002-third_party-libvpx-Remove-bad-ppc64-config.patch: refresh for upstream changes - third_party/0003-third_party-libvpx-Add-ppc64-generated-config.patch: refresh for upstream changes Checksums-Sha1: 2168369e946c36de95c7dcd9b9f647127dbac919 1196756 chromium-common-dbgsym_121.0.6167.85-1~deb12u1_amd64.deb d88ba1d2e3d575dc08a5fba95f76ead9901bfd27 4971316 chromium-common_121.0.6167.85-1~deb12u1_amd64.deb 81eebfac78e48d8fd2b465e127dae01f86e1f7bc 32172584 chromium-dbgsym_121.0.6167.85-1~deb12u1_amd64.deb b62a5b19aa282543123c8dd54bcf363b968d2e36 5971240 chromium-driver_121.0.6167.85-1~deb12u1_amd64.deb daa1ad607e690fa929656fb4cec12073a08db528 14120 chromium-sandbox-dbgsym_121.0.6167.85-1~deb12u1_amd64.deb 115766c7491e90eeb641b0b8d1f2a5e4389df239 85928 chromium-sandbox_121.0.6167.85-1~deb12u1_amd64.deb 6b5dc9a0428e0bced9914d3db46841d16d0b0ce8 27390628 chromium-shell-dbgsym_121.0.6167.85-1~deb12u1_amd64.deb e2713da784688f3577b5b143814397c887adc791 49942812 chromium-shell_121.0.6167.85-1~deb12u1_amd64.deb 3b19ffce88b19dc3870ae5ff6a0630dbc691e57d 24410 chromium_121.0.6167.85-1~deb12u1_amd64-buildd.buildinfo 3a5e7d879af9e3ce7f10e56b143a41ab9649fb87 72279160 chromium_121.0.6167.85-1~deb12u1_amd64.deb Checksums-Sha256: 4e7a4a2df3620889781da3222cd5f26b6cac22abc675819ec24f04610686cec8 1196756 chromium-common-dbgsym_121.0.6167.85-1~deb12u1_amd64.deb be44ed266de8e5150d3051d6be22c632268feffb060a98504b024754fd07fa53 4971316 chromium-common_121.0.6167.85-1~deb12u1_amd64.deb acba987008a0c2af860995265eaf5eaaea1e9e5d587522cdff993d70ea9048c6 32172584 chromium-dbgsym_121.0.6167.85-1~deb12u1_amd64.deb 2088cc2e41acb88f15fcce52a180b9467596dbd2f425c703a5a503ef76237dce 5971240 chromium-driver_121.0.6167.85-1~deb12u1_amd64.deb 06933cd233d464465d774b3e983b0592d06cbad1ca5373f1684583a0a4644b82 14120 chromium-sandbox-dbgsym_121.0.6167.85-1~deb12u1_amd64.deb af4c15580e8e959c8665e6d224f14bbb2836e45bf4fc325074b51d4578ae81e3 85928 chromium-sandbox_121.0.6167.85-1~deb12u1_amd64.deb b3a918b1d0adfbab16074a84bcd34c1bf2d258caca2b41d0e0a5f7496882ecf7 27390628 chromium-shell-dbgsym_121.0.6167.85-1~deb12u1_amd64.deb dd09ecae7c0cd7a0aaf3b5a020d43212f47496c07ae02cab480e27735f29616a 49942812 chromium-shell_121.0.6167.85-1~deb12u1_amd64.deb 6da4f89fd0a00a462bfb6d629d076c20398fe40b3abe86a2654b7428af9c0baf 24410 chromium_121.0.6167.85-1~deb12u1_amd64-buildd.buildinfo 0c4b06bdc6e0cd9b715be2a4eb10ddb8805783f7680d1b2d773cb4678a03663a 72279160 chromium_121.0.6167.85-1~deb12u1_amd64.deb Files: fca096d623ab1e2b5fdb6e2761a12569 1196756 debug optional chromium-common-dbgsym_121.0.6167.85-1~deb12u1_amd64.deb c9a38737921711c21f67154408446fee 4971316 web optional chromium-common_121.0.6167.85-1~deb12u1_amd64.deb 167e32dea5b69cb53326dbeeebc33096 32172584 debug optional chromium-dbgsym_121.0.6167.85-1~deb12u1_amd64.deb c3d69b78cdd19c1d576149d170b72411 5971240 web optional chromium-driver_121.0.6167.85-1~deb12u1_amd64.deb 773fafe4fc5331e6f633265d4dee0c7f 14120 debug optional chromium-sandbox-dbgsym_121.0.6167.85-1~deb12u1_amd64.deb 5cf0d1a4fbd9b352954bdc814071fafb 85928 web optional chromium-sandbox_121.0.6167.85-1~deb12u1_amd64.deb 2d14a488bc3c50a3094c4646db76aa18 27390628 debug optional chromium-shell-dbgsym_121.0.6167.85-1~deb12u1_amd64.deb cc9b52372518c774cea966bb28aa70c1 49942812 web optional chromium-shell_121.0.6167.85-1~deb12u1_amd64.deb 0bcbb14ddcb89ed641a1ddd0fa74b414 24410 web optional chromium_121.0.6167.85-1~deb12u1_amd64-buildd.buildinfo aa27e4d300f968f7cbd3b6b2dc7767fe 72279160 web optional chromium_121.0.6167.85-1~deb12u1_amd64.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEfSHphWe6nwpTFrNNZXl/6h5+iU4FAmWx3RcACgkQZXl/6h5+ iU4CdQ/+K91pUIlsg36WJ2R0L+n3V55v8DQ1+KPtfRLtnkrJpfUrttRU3gnqBQPq jQcx/2V+AvnoQ9SHV9miC5bTV/Vm8b+YisEmscwD3uSNCSVq8Ta2cF7WpAJJWZrk Po4b3QYDuc3o9dIPCCjjaT3A74UCbFPZudcAkFRoRcvilFTuJBeabluY8RoIaJ18 C/BNzipiWSMnt6EdOnNRonJQ5YnbrSI7ZB8QqAl7NnYUmhVP9/V5M/BLg7Hw1kLw /oOd9igdAEWRskkJo9FX71uv8+/+D4dPozsXJSJamDSvHIAho9CLV8YBxFFKF9f+ 3NtvgWe7fjFWHhIOa1eBRAW9fInmzlRs+Eat/LSzRy5WziqLoJWDE1RgR+I2zYZz O6NGrsQkQu36VEgEeiY1/Tqleocs2HuuHXnyHCaUIONPmRlRDg4tFYzHfheuaWvF O4SVSeyf+Al1WDwWwDEtMOqOKYPuwfVk1q6R5IlAwRCsB9/hmS/JwVwiaBP9CM4B 5GR8p4cLyzUohLvzExwlEoDIejLYXs+cFwoOXcd53GGQeNAYZXGkyX+1Laosih80 ViO5Q4w7xXp7bUfilTHmE3L6+1L/DRlpbFJzVtniKQUJqZd95Z4mXIB7B9VG8vM5 DDVWdUk5u+8tpLBeS4N114kp0S9QzS9Q6b1cdyJrlfINDJlVF0I= =GoY0 -----END PGP SIGNATURE-----