-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Tue, 23 Jan 2024 17:59:49 -0500 Source: chromium Binary: chromium chromium-common chromium-common-dbgsym chromium-dbgsym chromium-driver chromium-sandbox chromium-sandbox-dbgsym chromium-shell chromium-shell-dbgsym Architecture: armhf Version: 121.0.6167.85-1~deb12u1 Distribution: bookworm-security Urgency: high Maintainer: arm Build Daemon (arm-conova-03) Changed-By: Andres Salomon Description: chromium - web browser chromium-common - web browser - common resources used by the chromium packages chromium-driver - web browser - WebDriver support chromium-sandbox - web browser - setuid security sandbox for chromium chromium-shell - web browser - minimal shell Changes: chromium (121.0.6167.85-1~deb12u1) bookworm-security; urgency=high . * New upstream stable release. - CVE-2024-0807: Use after free in WebAudio. Reported by Huang Xilin of Ant Group Light-Year Security Lab. - CVE-2024-0812: Inappropriate implementation in Accessibility. Reported by Anonymous. - CVE-2024-0808: Integer underflow in WebUI. Reported by Lyra Rebane (rebane2001). - CVE-2024-0810: Insufficient policy enforcement in DevTools. Reported by Shaheen Fazim. - CVE-2024-0814: Incorrect security UI in Payments. Reported by Muneaki Nishimura (nishimunea). - CVE-2024-0813: Use after free in Reading Mode. Reported by @retsew0x01. - CVE-2024-0806: Use after free in Passwords. Reported by 18楼梦想改造家. - CVE-2024-0805: Inappropriate implementation in Downloads. Reported by Om Apip. - CVE-2024-0804: Insufficient policy enforcement in iOS Security UI. Reported by Narendra Bhati of Suma Soft Pvt. Ltd. Pune (India) . - CVE-2024-0811: Inappropriate implementation in Extensions API. Reported by Jann Horn of Google Project Zero. - CVE-2024-0809: Inappropriate implementation in Autofill. Reported by Ahmed ElMasry. * d/copyright: drop another eu-strip binary. * d/patches: - fixes/atspi.patch: drop, merged upstream. - fixes/gcc13-headers.patch: drop portions that were merged upstream. - upstream/nullptr_t.patch: drop, merged upstream. - upstream/string-include.patch: drop, merged upstream. - ungoogled/disable-web-environment-integrity.patch: remove, upstream wisely backed off and removed WEI. - disable/signin.patch: refresh for minor upstream changes. - disable/catapult.patch: refresh for minor upstream changes. - system/openjpeg.patch: refresh for minor upstream changes. - bookworm/clang16.patch: drop portion that was merged upstream. - upstream/vector.patch: missing header fix, pulled from upstream. - upstream/display-header.patch: missing header fix, pulled from upstream. - upstream/bitset.patch: missing header fix, pulled from upstream. - upstream/once_flag.patch: missing header fix, pulled from upstream. - bookworm/constexpr-equality.patch: add clang-16 workaround. - bookworm/nvt.patch: revert an upstream c++-20 change that confuses clang-16. - fixes/libxml-parseerr.patch: revert change from a newer libxml than debian's. - bookworm/undo-rust-req.patch: revert change that makes rust required to build (for now). - bookworm/eraseif-lamba.patch: revert changes switching to std::erase_if to work around libstdc++-12 bug. . [ Timothy Pearson ] * d/patches: - fixes/std-to-address.patch: work around incorrect template selection in Mojo ConvertTo() - fixes/stdint.patch: add missing stdint include to performance manager * d/patches/ppc64le: - fixes/fix-rust-linking.patch: allow linking C and Rust libraries in full archive mode - libaom/0001-Add-pregenerated-config-for-libaom-on-ppc64.patch: refresh for upstream changes - third_party/skia-vsx-instructions.patch: refresh for upstream changes - third_party/0002-third_party-libvpx-Remove-bad-ppc64-config.patch: refresh for upstream changes - third_party/0003-third_party-libvpx-Add-ppc64-generated-config.patch: refresh for upstream changes Checksums-Sha1: 0eb149bfaf23e972eff046231d2f009a4cdf530a 1273660 chromium-common-dbgsym_121.0.6167.85-1~deb12u1_armhf.deb 5c1a03abbe65c67f3c80a88c4f371091ed645ad2 4898568 chromium-common_121.0.6167.85-1~deb12u1_armhf.deb 6e0b9f804d8f7c6eee61b9180be745bfe922aa07 31359072 chromium-dbgsym_121.0.6167.85-1~deb12u1_armhf.deb a31facd28ff1818794997c16b6eb6ab1364fd07a 5689312 chromium-driver_121.0.6167.85-1~deb12u1_armhf.deb 9859a757f0bd99c3ec38d0d7e8fc37965d1e0837 12216 chromium-sandbox-dbgsym_121.0.6167.85-1~deb12u1_armhf.deb 9f4de952bdd571b2390860f141a8b73bd7c51a1e 85480 chromium-sandbox_121.0.6167.85-1~deb12u1_armhf.deb 0ce194fa39656ce07cb9179e33b6da9e67df384e 25225072 chromium-shell-dbgsym_121.0.6167.85-1~deb12u1_armhf.deb 1849fbb670a7e768cb0700d939e27c538eaea8ea 46002244 chromium-shell_121.0.6167.85-1~deb12u1_armhf.deb 8b43a1f111ea3b9f5d046211963c915a167944b5 24455 chromium_121.0.6167.85-1~deb12u1_armhf-buildd.buildinfo 0353a26a18547310feb0f5fa39f04a7429b0bd96 67067372 chromium_121.0.6167.85-1~deb12u1_armhf.deb Checksums-Sha256: a1425d6611cbdb1e396a5963228d1e99fcce54a09623923c5c01dcf912d867f7 1273660 chromium-common-dbgsym_121.0.6167.85-1~deb12u1_armhf.deb abdac980439a9e161accef257c9cfd1f930ce95cdfaa08f6a5f8bb2dd5b23047 4898568 chromium-common_121.0.6167.85-1~deb12u1_armhf.deb 8514b1684cb1b65d679ae6fc8a99c892b9817d518beb8e70f314f5ad1504e962 31359072 chromium-dbgsym_121.0.6167.85-1~deb12u1_armhf.deb 6c81129693f1e3de6501d059c711879225f801ef39e7b993badc2e98b81780e1 5689312 chromium-driver_121.0.6167.85-1~deb12u1_armhf.deb 0d2720672882f30744c3c04482a82be09f337570727170b34982b85b6e041cd6 12216 chromium-sandbox-dbgsym_121.0.6167.85-1~deb12u1_armhf.deb b330ac30c0963ea8b5ebe7ebd8c37de4d51f694a53d39b4628d1164bc2ffb258 85480 chromium-sandbox_121.0.6167.85-1~deb12u1_armhf.deb b70e2f26e8d237425225138cb6e2aace2c876025ff1a06507d77777147f38a25 25225072 chromium-shell-dbgsym_121.0.6167.85-1~deb12u1_armhf.deb 74e03dd9ccbf73c8799abf6f80d2c4421ed7f4c70371ef6448dd307ba601e16c 46002244 chromium-shell_121.0.6167.85-1~deb12u1_armhf.deb 99b6adc41cfde98181dcc73f91cd83ae8a18dda5fb9a1a23925fe28b3b32beaa 24455 chromium_121.0.6167.85-1~deb12u1_armhf-buildd.buildinfo f7da54d322847806c4bd600d6accd931a7538345837526901468da87056ea34b 67067372 chromium_121.0.6167.85-1~deb12u1_armhf.deb Files: 14d11987461ddbe4ec9d2f19ec88567c 1273660 debug optional chromium-common-dbgsym_121.0.6167.85-1~deb12u1_armhf.deb f84a44a7aadfccdb44f1ab3aa1c42f7a 4898568 web optional chromium-common_121.0.6167.85-1~deb12u1_armhf.deb 3bccb9e860c7456568f4cd419b3a2c76 31359072 debug optional chromium-dbgsym_121.0.6167.85-1~deb12u1_armhf.deb a911692c2461e0627c421fa64df50cff 5689312 web optional chromium-driver_121.0.6167.85-1~deb12u1_armhf.deb 527b35b54e03ea68a738d47f9370a745 12216 debug optional chromium-sandbox-dbgsym_121.0.6167.85-1~deb12u1_armhf.deb bd5f2a3d41290ed99abe7aa75e42347b 85480 web optional chromium-sandbox_121.0.6167.85-1~deb12u1_armhf.deb 9073855b034f99b5cc61685a49c7bf1b 25225072 debug optional chromium-shell-dbgsym_121.0.6167.85-1~deb12u1_armhf.deb 865dce21c93c78707fc4abaa25ea8bb5 46002244 web optional chromium-shell_121.0.6167.85-1~deb12u1_armhf.deb 93b218c481387ed35c0088de9bacbba7 24455 web optional chromium_121.0.6167.85-1~deb12u1_armhf-buildd.buildinfo df8385a1466a780710f9831a8f972689 67067372 web optional chromium_121.0.6167.85-1~deb12u1_armhf.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEU81tY/BC8e+eAeWhLffeOnPnbLUFAmWxWskACgkQLffeOnPn bLWlZBAAqS8ArJAM0vZJ5lrveeZ9gvnsl9M+btrfBdnIQZIYV2qnAtH/ij2kG53S uvA5UswV7bYNjE4uNapJhU52cEFuz9D0QB13ItOty5/7n4Tw9wgkpgPNW8yFAlm9 D2q+UWqp16fG9RX0lFGqcqcKjJLTpZ8FO/qa/ZZjg87WJRSDBDzH4S3joCZZCzcM JA41I/FWi/WXOQPP4lhDn/vU3R6MFc2Xs/8iRXue8uQK3kEOA4HBeJNi9mulMpdf 7icdzfAutaP29oj/S4amWz3lGLUyJ+EObAaNzn3wNf/cqoGKN3BrQZ94qBQ9edGU U0GRxSIkA1Yta+sjhGHWTpzp50yMSkeSxRszWDbCxmb+bJ2KO4qJIsdiDsseP4j1 WxV3g7dHeG9/+ux32vMWuhjh2h4L8Hf0Zmbc86K+FdNP5GOPxerkKkFSOM9IWAxE UvUpSRNhScO+6Mq77guyPOPUFxzFtfq2CUE/GlhYzgFHcDMCEEw7clhq/0MGdnOM kOb6trAlgrDwyKRo05F/7SRQfHeWoZT7egoEUJPru344jxF1v3dmbcCjuzI4G58N ix66xucx+N4Rfi0v+B/iKMoZa/guZ79bV+p67UtjFtA77qeZ0ftlC4MbpkKcUF/D xrRVokCciOm3MuKohSn5E0htqOSXPChUgQCMNtYp4VB48tVwrO0= =OeC/ -----END PGP SIGNATURE-----