-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Tue, 23 Jan 2024 17:59:49 -0500 Source: chromium Binary: chromium chromium-common chromium-common-dbgsym chromium-dbgsym chromium-driver chromium-sandbox chromium-sandbox-dbgsym chromium-shell chromium-shell-dbgsym Architecture: arm64 Version: 121.0.6167.85-1~deb12u1 Distribution: bookworm-security Urgency: high Maintainer: arm Build Daemon (arm-conova-02) Changed-By: Andres Salomon Description: chromium - web browser chromium-common - web browser - common resources used by the chromium packages chromium-driver - web browser - WebDriver support chromium-sandbox - web browser - setuid security sandbox for chromium chromium-shell - web browser - minimal shell Changes: chromium (121.0.6167.85-1~deb12u1) bookworm-security; urgency=high . * New upstream stable release. - CVE-2024-0807: Use after free in WebAudio. Reported by Huang Xilin of Ant Group Light-Year Security Lab. - CVE-2024-0812: Inappropriate implementation in Accessibility. Reported by Anonymous. - CVE-2024-0808: Integer underflow in WebUI. Reported by Lyra Rebane (rebane2001). - CVE-2024-0810: Insufficient policy enforcement in DevTools. Reported by Shaheen Fazim. - CVE-2024-0814: Incorrect security UI in Payments. Reported by Muneaki Nishimura (nishimunea). - CVE-2024-0813: Use after free in Reading Mode. Reported by @retsew0x01. - CVE-2024-0806: Use after free in Passwords. Reported by 18楼梦想改造家. - CVE-2024-0805: Inappropriate implementation in Downloads. Reported by Om Apip. - CVE-2024-0804: Insufficient policy enforcement in iOS Security UI. Reported by Narendra Bhati of Suma Soft Pvt. Ltd. Pune (India) . - CVE-2024-0811: Inappropriate implementation in Extensions API. Reported by Jann Horn of Google Project Zero. - CVE-2024-0809: Inappropriate implementation in Autofill. Reported by Ahmed ElMasry. * d/copyright: drop another eu-strip binary. * d/patches: - fixes/atspi.patch: drop, merged upstream. - fixes/gcc13-headers.patch: drop portions that were merged upstream. - upstream/nullptr_t.patch: drop, merged upstream. - upstream/string-include.patch: drop, merged upstream. - ungoogled/disable-web-environment-integrity.patch: remove, upstream wisely backed off and removed WEI. - disable/signin.patch: refresh for minor upstream changes. - disable/catapult.patch: refresh for minor upstream changes. - system/openjpeg.patch: refresh for minor upstream changes. - bookworm/clang16.patch: drop portion that was merged upstream. - upstream/vector.patch: missing header fix, pulled from upstream. - upstream/display-header.patch: missing header fix, pulled from upstream. - upstream/bitset.patch: missing header fix, pulled from upstream. - upstream/once_flag.patch: missing header fix, pulled from upstream. - bookworm/constexpr-equality.patch: add clang-16 workaround. - bookworm/nvt.patch: revert an upstream c++-20 change that confuses clang-16. - fixes/libxml-parseerr.patch: revert change from a newer libxml than debian's. - bookworm/undo-rust-req.patch: revert change that makes rust required to build (for now). - bookworm/eraseif-lamba.patch: revert changes switching to std::erase_if to work around libstdc++-12 bug. . [ Timothy Pearson ] * d/patches: - fixes/std-to-address.patch: work around incorrect template selection in Mojo ConvertTo() - fixes/stdint.patch: add missing stdint include to performance manager * d/patches/ppc64le: - fixes/fix-rust-linking.patch: allow linking C and Rust libraries in full archive mode - libaom/0001-Add-pregenerated-config-for-libaom-on-ppc64.patch: refresh for upstream changes - third_party/skia-vsx-instructions.patch: refresh for upstream changes - third_party/0002-third_party-libvpx-Remove-bad-ppc64-config.patch: refresh for upstream changes - third_party/0003-third_party-libvpx-Add-ppc64-generated-config.patch: refresh for upstream changes Checksums-Sha1: ad8ad01dd1cfdc00dd394678f31b8f3fa7a169f1 1263376 chromium-common-dbgsym_121.0.6167.85-1~deb12u1_arm64.deb 30ae14714054a1f423a119b023560a02b08acbf2 4830448 chromium-common_121.0.6167.85-1~deb12u1_arm64.deb 4488005b47f5afcda6c842d1580cb3b8a6650168 32999168 chromium-dbgsym_121.0.6167.85-1~deb12u1_arm64.deb c6f10c4b4a266e8701b68e315970d3b586e03f4a 5418972 chromium-driver_121.0.6167.85-1~deb12u1_arm64.deb 2223dcaa36abdc0656b6a8d1ac45e5f4935e1ffe 14460 chromium-sandbox-dbgsym_121.0.6167.85-1~deb12u1_arm64.deb c1ded6a76a8343c80a82f004d08772d999ba6268 85788 chromium-sandbox_121.0.6167.85-1~deb12u1_arm64.deb 033124018be50caf530a631bea3aa7a74a3dd928 27336964 chromium-shell-dbgsym_121.0.6167.85-1~deb12u1_arm64.deb 05f6cbc3c6120c431507c73969c7c06c65398c46 44455924 chromium-shell_121.0.6167.85-1~deb12u1_arm64.deb e3440318d5de7dbbb590ad30c73c936b03ad3594 24513 chromium_121.0.6167.85-1~deb12u1_arm64-buildd.buildinfo 7c6c214cdddaf81d7d83e4aeedc17d91d500e4db 64700444 chromium_121.0.6167.85-1~deb12u1_arm64.deb Checksums-Sha256: 62c4b831945433041f025d5343ed68901e8f28f94cef86b459492a766bd0d8fe 1263376 chromium-common-dbgsym_121.0.6167.85-1~deb12u1_arm64.deb e41dfac957f0f353355624f8cf260baa97f62102dc06d925f14b2de160746777 4830448 chromium-common_121.0.6167.85-1~deb12u1_arm64.deb 8ff424229387e21b81dfdafcdf559fce7fe1696d6d1e2037240dc7688eafeea0 32999168 chromium-dbgsym_121.0.6167.85-1~deb12u1_arm64.deb d9e75cfbcded972937862965bd758394b170571b5c3ca9ff5ef19bff092e32e7 5418972 chromium-driver_121.0.6167.85-1~deb12u1_arm64.deb 115563aa6a4eb23ec5083389244ab2ca518867cd14fb3f14df645df29a026b76 14460 chromium-sandbox-dbgsym_121.0.6167.85-1~deb12u1_arm64.deb 479a85a9e23c96955d24e95574b3b6b58d7dadc58eaf12e69c862379ebdf7885 85788 chromium-sandbox_121.0.6167.85-1~deb12u1_arm64.deb 204cc285fb99a94ccfb80d78225ee6fa03781dc958706f37212fd13c0be3afeb 27336964 chromium-shell-dbgsym_121.0.6167.85-1~deb12u1_arm64.deb 9e028368c164533923c1217ef116fea76f2568be6f8d8395583f7f5100156f81 44455924 chromium-shell_121.0.6167.85-1~deb12u1_arm64.deb 64febd46d509336af8f2b079722a00925defedc0061beb875c28c45715bf79a9 24513 chromium_121.0.6167.85-1~deb12u1_arm64-buildd.buildinfo 1a6ddf700e0af313882aada3bfa4adf7cfcc6fc5b17467e045f6a2f7e5c97b85 64700444 chromium_121.0.6167.85-1~deb12u1_arm64.deb Files: 0c46134ed783e02833d5b30014ba2240 1263376 debug optional chromium-common-dbgsym_121.0.6167.85-1~deb12u1_arm64.deb 8f47cdaf90e8487b9623df2a4964f6e7 4830448 web optional chromium-common_121.0.6167.85-1~deb12u1_arm64.deb c767f92503bd604f61b9e07a9e433fbc 32999168 debug optional chromium-dbgsym_121.0.6167.85-1~deb12u1_arm64.deb 2afad0375c574a4b72103172b852a876 5418972 web optional chromium-driver_121.0.6167.85-1~deb12u1_arm64.deb 9ec0b7e38286b99aa32d5f9b67ea33f1 14460 debug optional chromium-sandbox-dbgsym_121.0.6167.85-1~deb12u1_arm64.deb e3389aed6039144d952302e469044b2c 85788 web optional chromium-sandbox_121.0.6167.85-1~deb12u1_arm64.deb d875afe36f77d486e113820e726a21d0 27336964 debug optional chromium-shell-dbgsym_121.0.6167.85-1~deb12u1_arm64.deb 20625ffba3dfdb1655dbe34a67b4de65 44455924 web optional chromium-shell_121.0.6167.85-1~deb12u1_arm64.deb 48f39b2a3eb92fdac09c6beef116a4ad 24513 web optional chromium_121.0.6167.85-1~deb12u1_arm64-buildd.buildinfo 993ac5d9b124edea8e7db91ff78decac 64700444 web optional chromium_121.0.6167.85-1~deb12u1_arm64.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEBv+o19JDIRm4yIQ5CeROIpkCGwcFAmWxUBAACgkQCeROIpkC GwerFw/9E/PbEJ452sYpOIo2IFM0C6VG4AeXkOiOCOZCi0gZdCdnsHa+5urChqky qEN/CnNIcPBR5bu1/uN19I2iXNWCoG6UYQ+SWJolrvYTWKzLjiWETW74cu1qSPVQ tcYLPTRQWCpJPeJYMWSeMOEaF7IVsXolaUMRh3PgbrFdzwCXrKqGIL0tLDaAmsRc eSk6+Sz8Z5k124TI5wH+mJaCbP9MR8OWZgOmFKzYSu3ob6SM5nRMJJe5GB83drze I2/4/TdROpkHxGwZ8qROQfU4nyfMbV6vO4Xj0rgk1uuk6v9SL9Ci9qI3lttG+SmN Nwt/JKujZ5fAZvG2oNsNbrqnDDKGFLwaqo40gbLqm6ES2izbsMX0V1o1lWB0bRRw ZDd2g+/LaJrE1pTEZqEkMw+tNCqs0blnS9j8D5QNGy4lD2hej4IHTuvlEx8bVL/6 xLrZpu1ljcuZ/4sD+2Jf0/lK0xkkK+LKBlQyZnmK/XsZEOkwvYu1cBqq0PaaT9Cc ks4/rDiV37RCriFQc5+6pxCiI1Oy1ts2diXK+SOC8/DTje+C0rRjEAMb6yUzpDtT Dda2OjrfrCNMBhPBFXgaL0InZnmN8esro8o+5tRGrvhlaWUmhgeBleKnvo8sGFmM Xd61fMYLFqjH8QnlnJGxEG9u59VKA+Wb4ueUaeZOnbYxFeaVuqM= =uL84 -----END PGP SIGNATURE-----