-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Tue, 23 Jan 2024 17:59:49 -0500 Source: chromium Binary: chromium chromium-common chromium-common-dbgsym chromium-dbgsym chromium-driver chromium-sandbox chromium-sandbox-dbgsym chromium-shell chromium-shell-dbgsym Architecture: i386 Version: 121.0.6167.85-1~deb12u1 Distribution: bookworm-security Urgency: high Maintainer: i386 Build Daemon (x86-grnet-01) Changed-By: Andres Salomon Description: chromium - web browser chromium-common - web browser - common resources used by the chromium packages chromium-driver - web browser - WebDriver support chromium-sandbox - web browser - setuid security sandbox for chromium chromium-shell - web browser - minimal shell Changes: chromium (121.0.6167.85-1~deb12u1) bookworm-security; urgency=high . * New upstream stable release. - CVE-2024-0807: Use after free in WebAudio. Reported by Huang Xilin of Ant Group Light-Year Security Lab. - CVE-2024-0812: Inappropriate implementation in Accessibility. Reported by Anonymous. - CVE-2024-0808: Integer underflow in WebUI. Reported by Lyra Rebane (rebane2001). - CVE-2024-0810: Insufficient policy enforcement in DevTools. Reported by Shaheen Fazim. - CVE-2024-0814: Incorrect security UI in Payments. Reported by Muneaki Nishimura (nishimunea). - CVE-2024-0813: Use after free in Reading Mode. Reported by @retsew0x01. - CVE-2024-0806: Use after free in Passwords. Reported by 18楼梦想改造家. - CVE-2024-0805: Inappropriate implementation in Downloads. Reported by Om Apip. - CVE-2024-0804: Insufficient policy enforcement in iOS Security UI. Reported by Narendra Bhati of Suma Soft Pvt. Ltd. Pune (India) . - CVE-2024-0811: Inappropriate implementation in Extensions API. Reported by Jann Horn of Google Project Zero. - CVE-2024-0809: Inappropriate implementation in Autofill. Reported by Ahmed ElMasry. * d/copyright: drop another eu-strip binary. * d/patches: - fixes/atspi.patch: drop, merged upstream. - fixes/gcc13-headers.patch: drop portions that were merged upstream. - upstream/nullptr_t.patch: drop, merged upstream. - upstream/string-include.patch: drop, merged upstream. - ungoogled/disable-web-environment-integrity.patch: remove, upstream wisely backed off and removed WEI. - disable/signin.patch: refresh for minor upstream changes. - disable/catapult.patch: refresh for minor upstream changes. - system/openjpeg.patch: refresh for minor upstream changes. - bookworm/clang16.patch: drop portion that was merged upstream. - upstream/vector.patch: missing header fix, pulled from upstream. - upstream/display-header.patch: missing header fix, pulled from upstream. - upstream/bitset.patch: missing header fix, pulled from upstream. - upstream/once_flag.patch: missing header fix, pulled from upstream. - bookworm/constexpr-equality.patch: add clang-16 workaround. - bookworm/nvt.patch: revert an upstream c++-20 change that confuses clang-16. - fixes/libxml-parseerr.patch: revert change from a newer libxml than debian's. - bookworm/undo-rust-req.patch: revert change that makes rust required to build (for now). - bookworm/eraseif-lamba.patch: revert changes switching to std::erase_if to work around libstdc++-12 bug. . [ Timothy Pearson ] * d/patches: - fixes/std-to-address.patch: work around incorrect template selection in Mojo ConvertTo() - fixes/stdint.patch: add missing stdint include to performance manager * d/patches/ppc64le: - fixes/fix-rust-linking.patch: allow linking C and Rust libraries in full archive mode - libaom/0001-Add-pregenerated-config-for-libaom-on-ppc64.patch: refresh for upstream changes - third_party/skia-vsx-instructions.patch: refresh for upstream changes - third_party/0002-third_party-libvpx-Remove-bad-ppc64-config.patch: refresh for upstream changes - third_party/0003-third_party-libvpx-Add-ppc64-generated-config.patch: refresh for upstream changes Checksums-Sha1: 4b845a57c190674b537a651293caedfc18000943 1157972 chromium-common-dbgsym_121.0.6167.85-1~deb12u1_i386.deb a5bd9b24bee3e617db298c03a276ee8903c47ca0 4966540 chromium-common_121.0.6167.85-1~deb12u1_i386.deb f8b8e9674629c380e5266b080dda6cf14efb85e1 32132900 chromium-dbgsym_121.0.6167.85-1~deb12u1_i386.deb 4de65e2e0a832c4323cc82f1b30b243a3ec9570b 6169400 chromium-driver_121.0.6167.85-1~deb12u1_i386.deb 6747f4ae402ba8d3fad35057fd6550637ee2f4b1 13956 chromium-sandbox-dbgsym_121.0.6167.85-1~deb12u1_i386.deb 9866b0f35401c019e794dfffd30ae9106181ca1d 85784 chromium-sandbox_121.0.6167.85-1~deb12u1_i386.deb e47e55efcae0b8dedd4034e188191b81db15fdb9 27316048 chromium-shell-dbgsym_121.0.6167.85-1~deb12u1_i386.deb 7095209bab9ecd40f89f38226e715e72892f6e2a 50849488 chromium-shell_121.0.6167.85-1~deb12u1_i386.deb 79e852e99965440bd9a7a868c79545ba2048fbf7 24422 chromium_121.0.6167.85-1~deb12u1_i386-buildd.buildinfo 097bc6459d1dc964d14f90e7cef461d9c297f2b4 73928360 chromium_121.0.6167.85-1~deb12u1_i386.deb Checksums-Sha256: 1ffc5016bf99fe16d8f364709a75ef878ee7826a939a8e22d605ecea8100f6c3 1157972 chromium-common-dbgsym_121.0.6167.85-1~deb12u1_i386.deb 7e47bfc2bf21cfce00b882457aa44f7a3741eebcd67b46e4f97f57e2aaf1bc38 4966540 chromium-common_121.0.6167.85-1~deb12u1_i386.deb 1a3dfbad8d93eaa1b71eecc49e57db2a3ca6464b47131c4a8bda36a20774a828 32132900 chromium-dbgsym_121.0.6167.85-1~deb12u1_i386.deb 669352b19160b12b05f20eb4c205ae43caf6b1f6b401f1593b1acfb76723f78f 6169400 chromium-driver_121.0.6167.85-1~deb12u1_i386.deb 1ef428eedeed8ad17d97b4fe6e40c0b67f723735c55ec8961fddaf7321d12f86 13956 chromium-sandbox-dbgsym_121.0.6167.85-1~deb12u1_i386.deb 449826219ebe451450a6de034d269b8ea85cbf103dca9b12502d47a383a62bc8 85784 chromium-sandbox_121.0.6167.85-1~deb12u1_i386.deb 62f806478a6704e9f6f793b4b06bda04c8639747decd0f951f3c9a1e49495e00 27316048 chromium-shell-dbgsym_121.0.6167.85-1~deb12u1_i386.deb e87dc8ec77aa931a5f66feb465edd8f5bd628453d98e4258ca6f113f11569eb5 50849488 chromium-shell_121.0.6167.85-1~deb12u1_i386.deb 536dd7bcdb3573888d8649cc9db1f8e3e14b8629d60409b2754c3b6ddabd46a8 24422 chromium_121.0.6167.85-1~deb12u1_i386-buildd.buildinfo 17496aa84b2f1e41e3636170696aa48bd716ce9e8a90f784d7b83e1816d12f8e 73928360 chromium_121.0.6167.85-1~deb12u1_i386.deb Files: a2b08ad14a901bc532681e0f49576afa 1157972 debug optional chromium-common-dbgsym_121.0.6167.85-1~deb12u1_i386.deb c02cbb6379924fc0e78f054304da4663 4966540 web optional chromium-common_121.0.6167.85-1~deb12u1_i386.deb 182b90171a6689929daed9e65dd7d7ee 32132900 debug optional chromium-dbgsym_121.0.6167.85-1~deb12u1_i386.deb 02420ecac6477c19c144317bbc238f80 6169400 web optional chromium-driver_121.0.6167.85-1~deb12u1_i386.deb 06932d8b0ae5939a7ba3e2bab167fa43 13956 debug optional chromium-sandbox-dbgsym_121.0.6167.85-1~deb12u1_i386.deb 548f5ebf52d5cc0d52e40b1bb430f2ac 85784 web optional chromium-sandbox_121.0.6167.85-1~deb12u1_i386.deb fc69a6706b3ae7cf6d1586378c324c0c 27316048 debug optional chromium-shell-dbgsym_121.0.6167.85-1~deb12u1_i386.deb 1ba31bf96e564def0df5f3168f64d05e 50849488 web optional chromium-shell_121.0.6167.85-1~deb12u1_i386.deb 11f2de7d5b8403227058b1a77373ef0c 24422 web optional chromium_121.0.6167.85-1~deb12u1_i386-buildd.buildinfo f8e84623f2b6b3c9c5f0b6a401384feb 73928360 web optional chromium_121.0.6167.85-1~deb12u1_i386.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEqYm4ZPyuLwhx8Meo2VckltclZ4AFAmWxXboACgkQ2Vckltcl Z4BKlxAAgcPlyKVirFXiaFRslkT1qcExs5INnfIGEzo1tKJNdPNauLS/O857Gol9 GW8EBCbcnVT8uOMr4+WEYE/dVeQYtzFI4DFqnDNqgsjjejWrAddas2XmVfiDfDRd +JKsD+849pO5q4q0yffZBofv27ZnR98uHrzaltngnMSNlN4KudBs/GTmOubQyz3y 8ZwUqppg+lbNuFBmF9JfRIRyQaMhSpWjP7lWzwHrrb6oat0Pj6FGms/9ScJlxUMc 4PBrnHToa6J/LtpeQ7LTjyUeHeoAwzEM1TvsZUcMlGrs2YJr9vlozQ8MG7mqIpcA R76PERQbT9grs8H1iSApFJLTF2nbir1WKEDkrkEIcdXT+wydJsDc4rN0crGMt6JY qCcMNLj8DMh1qtwxGMO/586FH4MgL2LgevSDp3fxUNMSS4UIdIXWLuAoWSfHqyM0 D5zTgBxP5JiYReK8JbPl1Q0ugkj/f+ky3pHffLLZQvjf5fGp/OUSUz8rmArTG/ye 1HVjNL7ef3/US7lZqa5a5fGKMKj+o3HxhaQ9Lc68z/VrjfEzIT+qXfP3lMz/Cp3b nlOfoTW/2HVjIxaXZdyNbm7EUj+fOW8SrTza/fI/XbiHYd/iO7eGEfijsLdRSpD8 wLZYuAQ/nNTd0C4+vTEeNlkgNAvTW+4v+muz98YsTX7pyoFEMnc= =3tJv -----END PGP SIGNATURE-----