-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Wed, 05 Mar 2025 13:26:45 -0500 Source: chromium Binary: chromium chromium-common chromium-common-dbgsym chromium-dbgsym chromium-driver chromium-headless-shell chromium-headless-shell-dbgsym chromium-sandbox chromium-sandbox-dbgsym chromium-shell chromium-shell-dbgsym Architecture: arm64 Version: 134.0.6998.35-1~deb12u1 Distribution: bookworm-security Urgency: high Maintainer: arm Build Daemon (arm-conova-04) Changed-By: Andres Salomon Description: chromium - web browser chromium-common - web browser - common resources used by the chromium packages chromium-driver - web browser - WebDriver support chromium-headless-shell - web browser - old headless shell chromium-sandbox - web browser - setuid security sandbox for chromium chromium-shell - web browser - minimal shell Changes: chromium (134.0.6998.35-1~deb12u1) bookworm-security; urgency=high . [ Andres Salomon ] * New upstream stable release. - CVE-2025-1914: Out of bounds read in V8. Reported by Zhenghang Xiao (@Kipreyyy) and Nan Wang (@eternalsakura13). - CVE-2025-1915: Improper Limitation of a Pathname to a Restricted Directory in DevTools. Reported by Topi Lassila. - CVE-2025-1916: Use after free in Profiles. Reported by parkminchan, SSD Labs Korea. - CVE-2025-1917: Inappropriate Implementation in Browser UI. Reported by Khalil Zhani. - CVE-2025-1918: Out of bounds read in PDFium. Reported by asnine. - CVE-2025-1919: Out of bounds read in Media. Reported by @Bl1nnnk and @Pisanbao. - CVE-2025-1921: Inappropriate Implementation in Media Stream. Reported by Kaiido. - CVE-2025-1922: Inappropriate Implementation in Selection. Reported by Alesandro Ortiz. - CVE-2025-1923: Inappropriate Implementation in Permission Prompts. Reported by Khalil Zhani. * d/patches: - fixes/widevine-revision.patch: drop. Upstream says "with CDMs using manifest-based registration, no need to" hardcode version string. - disable/catapult.patch: refresh. - bookworm/clang19.patch: refresh. - ungoogled/disable-privacy-sandbox.patch: refresh from ungoogled. - bookworm/gn-allowlist.patch: add workaround for older gn. - bookworm/adler1.patch: add workaround for older rust. - fixes/stdatomic.patch: add build fix to ensure isn't used. - fixes/variant.patch: add missing header include. - upstream/qualifications.patch: add fix to silence annoying warnings. - upstream/optional.patch: add more missing header includes. - bookworm/constflatset.patch: refresh. - bookworm/constexpr.patch: refresh. - bookworm/modff.patch: add workaround for libstdc++ build issue. - bookworm/foreach.patch: add workaround for libstdc++ build issue. * d/rules: update to ensure both qt5 AND qt6 are disabled. . [ Timothy Pearson ] * d/patches: - fixes/swiftshader-llvm.patch: Add LLVM patches from upstream LLVM project to fix integrated SwiftShader LLVM FTBFS * d/patches/ppc64le: - third_party/0001-Add-PPC64-support-for-boringssl.patch: Refresh for upstream changes Checksums-Sha1: 99b1a93f8b306f4737bdceca001aca74c46fca34 5588080 chromium-common-dbgsym_134.0.6998.35-1~deb12u1_arm64.deb 9fa2b11b6afe10665dac14f6ee86078b3931784e 25304728 chromium-common_134.0.6998.35-1~deb12u1_arm64.deb 0a259457cce92bcd5a91a3ea3c6deae60fac8698 30972588 chromium-dbgsym_134.0.6998.35-1~deb12u1_arm64.deb e4a79207d922241cf48de67ea3946280fadf7b19 6769676 chromium-driver_134.0.6998.35-1~deb12u1_arm64.deb 297e8ec18960e2f90c85dd5ade2619bc8c060281 26124700 chromium-headless-shell-dbgsym_134.0.6998.35-1~deb12u1_arm64.deb 1a7b8e30be6b7804619ee0bc178e233fafa29583 50595472 chromium-headless-shell_134.0.6998.35-1~deb12u1_arm64.deb 4a1378b1f64b7712a072cd21d9316b2566de7ea1 14344 chromium-sandbox-dbgsym_134.0.6998.35-1~deb12u1_arm64.deb 321bddfbec7ae4aa9b68defe86ecce29b40ab3e9 100948 chromium-sandbox_134.0.6998.35-1~deb12u1_arm64.deb 715157a5568d284b2b09646926f6c2af214f0d93 25838640 chromium-shell-dbgsym_134.0.6998.35-1~deb12u1_arm64.deb 2f78697e788d474561c377ffdbc0032ce7914fa0 47572696 chromium-shell_134.0.6998.35-1~deb12u1_arm64.deb d1ba1a2deb6baf35b958e0bbc21233034fd6b94b 30103 chromium_134.0.6998.35-1~deb12u1_arm64-buildd.buildinfo bcef6566bf76fe5ceb3fabc2051f94d5181b3341 67651044 chromium_134.0.6998.35-1~deb12u1_arm64.deb Checksums-Sha256: 824a3e5678a4797b526b3a0d2645a780cd27fe85fe1b2b0d8ab60ba9968acaed 5588080 chromium-common-dbgsym_134.0.6998.35-1~deb12u1_arm64.deb fa51a3d880e69f0f4208eba10990129be967dc4474488b53662f0a6db0e40b55 25304728 chromium-common_134.0.6998.35-1~deb12u1_arm64.deb 53757a01dc4350ea76de38c81a21048e4728d40303cbe70750aeea7ec8d65014 30972588 chromium-dbgsym_134.0.6998.35-1~deb12u1_arm64.deb 07ffea019d538b05dc73d006fdd02a34fe8d28a280ea9acaf13f8220bbf3b3ed 6769676 chromium-driver_134.0.6998.35-1~deb12u1_arm64.deb 1f101251894bee909ef9c51b6f5c6e58f785c7b0ca3faa9f757f0a3e94dc0566 26124700 chromium-headless-shell-dbgsym_134.0.6998.35-1~deb12u1_arm64.deb 6960b1d9548bce5b0a5746dea4a0da68ad56ef5f66a18f63fe46802fffc48f61 50595472 chromium-headless-shell_134.0.6998.35-1~deb12u1_arm64.deb 73620af94ee467a54304c6f450f0f831677e8d1adb419d2f94caad627d74afc3 14344 chromium-sandbox-dbgsym_134.0.6998.35-1~deb12u1_arm64.deb 7722ace9101a98a5d6d62dd1cb2dfd01f2ebbd020c12803966dc7cc2e8aeb423 100948 chromium-sandbox_134.0.6998.35-1~deb12u1_arm64.deb 6f7994f5c4e950c386fa9a2e5375aadc24ddae8a3590d9ce0285ad497904f2ae 25838640 chromium-shell-dbgsym_134.0.6998.35-1~deb12u1_arm64.deb 243ece9bdf822363dea9ab0609de8b6abb20457d02087ebb67a26a0a5cdcfbfe 47572696 chromium-shell_134.0.6998.35-1~deb12u1_arm64.deb 40f6b7c98ba960b78dd93ee03c2955c316af364d1d8b26710cb3621bb17554c2 30103 chromium_134.0.6998.35-1~deb12u1_arm64-buildd.buildinfo 484931b3282bdeab2b93a038e473c4d14bafc5434632ba3907de90304c32eaa4 67651044 chromium_134.0.6998.35-1~deb12u1_arm64.deb Files: b265aefc19e700b87bd8f4de14fdcd78 5588080 debug optional chromium-common-dbgsym_134.0.6998.35-1~deb12u1_arm64.deb a76a08d16f3e87d4cb1455adacb76766 25304728 web optional chromium-common_134.0.6998.35-1~deb12u1_arm64.deb 56ad0115a9ce4eb1f6d425e8be10be8b 30972588 debug optional chromium-dbgsym_134.0.6998.35-1~deb12u1_arm64.deb d2cdaf6601a8720a383bfa15e88a40fa 6769676 web optional chromium-driver_134.0.6998.35-1~deb12u1_arm64.deb 5c7a7d8eba2ab59ceb5beee4dcd1aad0 26124700 debug optional chromium-headless-shell-dbgsym_134.0.6998.35-1~deb12u1_arm64.deb 0ad16c596803ce989caec1811058d603 50595472 web optional chromium-headless-shell_134.0.6998.35-1~deb12u1_arm64.deb 6adbdd974cc1c5b7123514151ed36098 14344 debug optional chromium-sandbox-dbgsym_134.0.6998.35-1~deb12u1_arm64.deb 92d516c288f71f2a0ce64248aab3df8b 100948 web optional chromium-sandbox_134.0.6998.35-1~deb12u1_arm64.deb 9f180356a8f717377128123af76b2c71 25838640 debug optional chromium-shell-dbgsym_134.0.6998.35-1~deb12u1_arm64.deb bbd855e67e35dc88f5cbd94be8021984 47572696 web optional chromium-shell_134.0.6998.35-1~deb12u1_arm64.deb 8333e996e7b37193d4bb4cbb2d21d656 30103 web optional chromium_134.0.6998.35-1~deb12u1_arm64-buildd.buildinfo a3c4a1d2457a0615694922737cb636c4 67651044 web optional chromium_134.0.6998.35-1~deb12u1_arm64.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEvEwFZ4bqkVI+Rh6t+N4VxR6LZYEFAmfJ85MACgkQ+N4VxR6L ZYGyqg//Uj1n8wvHH4HQL71BnDJhO4aH3EHnS9r5pqBqawfY9E0BmCNAC+R9YBGe tOUe1SLYE+DPxHmM/g1X5HIb+XnmASPJR23u8zj1pnE1lWMWqRzU9u/AflG/Ojrt V8z0k6v3or0JcULiwu3V09OZLCN1Ff7x7cXnN7YN2Na7rZLZoS89kD2aPIvqqXcU t5ZmeQYO22KG2/Q1RvuAh3kCelkCl9DCjfDmambApQz6FHSJOj1rpXfcQlpjRtQ8 lA7qQ4IF0BKG+C+gRAgLyJqAPvBR5tFuxWCrF26nRIkJI0vjU8v5qjj4P/MeBSvD DY5Rjqy5oGXK5ndHGemJcqJe1pMFnNU4WD61dWGxgiOTPRY+pxUekddPluVSGWlp /9mEdtKFGRDwQHajFOCgfhBuBxy9Mgx2GS5zpeSTzNCWAU/gG2F99s51gKxyInW+ xlQ429EeAaiKzb8jfiTKjK5HyRM3pST8VX/jvuH3E9wvT9CqSezXQWsXRniGr/iS L+J0K5/Lz+5aXZLQ1o0u/7lW8rjkhvcMPBA9OR8PJqGkIVK4cvglN029xF+IcrUW zwa9lqTniJnyIl5OIlRRccvTniGDTz2jscr181+hptay1YNJilAnGz+OYWwqMQay 3M+9WanLRPhbq5ZQRs1L1bOlye9CvUnWxkmAoIB1+3/FbugQZqY= =0WcV -----END PGP SIGNATURE-----