-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Wed, 05 Mar 2025 13:26:45 -0500 Source: chromium Binary: chromium chromium-common chromium-common-dbgsym chromium-dbgsym chromium-driver chromium-headless-shell chromium-headless-shell-dbgsym chromium-sandbox chromium-sandbox-dbgsym chromium-shell chromium-shell-dbgsym Architecture: armhf Version: 134.0.6998.35-1~deb12u1 Distribution: bookworm-security Urgency: high Maintainer: arm Build Daemon (arm-ubc-03) Changed-By: Andres Salomon Description: chromium - web browser chromium-common - web browser - common resources used by the chromium packages chromium-driver - web browser - WebDriver support chromium-headless-shell - web browser - old headless shell chromium-sandbox - web browser - setuid security sandbox for chromium chromium-shell - web browser - minimal shell Changes: chromium (134.0.6998.35-1~deb12u1) bookworm-security; urgency=high . [ Andres Salomon ] * New upstream stable release. - CVE-2025-1914: Out of bounds read in V8. Reported by Zhenghang Xiao (@Kipreyyy) and Nan Wang (@eternalsakura13). - CVE-2025-1915: Improper Limitation of a Pathname to a Restricted Directory in DevTools. Reported by Topi Lassila. - CVE-2025-1916: Use after free in Profiles. Reported by parkminchan, SSD Labs Korea. - CVE-2025-1917: Inappropriate Implementation in Browser UI. Reported by Khalil Zhani. - CVE-2025-1918: Out of bounds read in PDFium. Reported by asnine. - CVE-2025-1919: Out of bounds read in Media. Reported by @Bl1nnnk and @Pisanbao. - CVE-2025-1921: Inappropriate Implementation in Media Stream. Reported by Kaiido. - CVE-2025-1922: Inappropriate Implementation in Selection. Reported by Alesandro Ortiz. - CVE-2025-1923: Inappropriate Implementation in Permission Prompts. Reported by Khalil Zhani. * d/patches: - fixes/widevine-revision.patch: drop. Upstream says "with CDMs using manifest-based registration, no need to" hardcode version string. - disable/catapult.patch: refresh. - bookworm/clang19.patch: refresh. - ungoogled/disable-privacy-sandbox.patch: refresh from ungoogled. - bookworm/gn-allowlist.patch: add workaround for older gn. - bookworm/adler1.patch: add workaround for older rust. - fixes/stdatomic.patch: add build fix to ensure isn't used. - fixes/variant.patch: add missing header include. - upstream/qualifications.patch: add fix to silence annoying warnings. - upstream/optional.patch: add more missing header includes. - bookworm/constflatset.patch: refresh. - bookworm/constexpr.patch: refresh. - bookworm/modff.patch: add workaround for libstdc++ build issue. - bookworm/foreach.patch: add workaround for libstdc++ build issue. * d/rules: update to ensure both qt5 AND qt6 are disabled. . [ Timothy Pearson ] * d/patches: - fixes/swiftshader-llvm.patch: Add LLVM patches from upstream LLVM project to fix integrated SwiftShader LLVM FTBFS * d/patches/ppc64le: - third_party/0001-Add-PPC64-support-for-boringssl.patch: Refresh for upstream changes Checksums-Sha1: 7b04ffef63a566fe82dfab0be594176c72da4ac0 5101692 chromium-common-dbgsym_134.0.6998.35-1~deb12u1_armhf.deb 4e7f1a5f9fad57a15d5ea0b5b52df79ea36d4e67 20117064 chromium-common_134.0.6998.35-1~deb12u1_armhf.deb fc62e8a4af98e6ba332e925b9eaef58db8531290 32175016 chromium-dbgsym_134.0.6998.35-1~deb12u1_armhf.deb ea3c51c2de6aa6cbbff326767a2890fad8e47387 7293092 chromium-driver_134.0.6998.35-1~deb12u1_armhf.deb 662adbd0d59568a6455ab9676198c1cbbdce51e0 25535432 chromium-headless-shell-dbgsym_134.0.6998.35-1~deb12u1_armhf.deb a9d52cf60ee63dca1d3729176dd6624c866dda30 48624488 chromium-headless-shell_134.0.6998.35-1~deb12u1_armhf.deb 4ae80d8dbd2a373e5f64ee132aeda922e7450069 12676 chromium-sandbox-dbgsym_134.0.6998.35-1~deb12u1_armhf.deb 7717874e153c5bbfe250a2bd8dc33c12d1690ed6 100684 chromium-sandbox_134.0.6998.35-1~deb12u1_armhf.deb 3e41da3569be4bc6f9dd2f1dfc42698f39434073 26024912 chromium-shell-dbgsym_134.0.6998.35-1~deb12u1_armhf.deb 4c78242770e51835508b6740c75d7b6e40fa07ef 50480504 chromium-shell_134.0.6998.35-1~deb12u1_armhf.deb 98de2a13a8b73c41fd632f19e2ad151a765b7dc3 30045 chromium_134.0.6998.35-1~deb12u1_armhf-buildd.buildinfo 6cd9e075561684ce2e5464e4a08d7bb6a69dae0b 63174508 chromium_134.0.6998.35-1~deb12u1_armhf.deb Checksums-Sha256: 644431ab8033a3433737c3ae8646920af27ae3725d11286991225240528ded36 5101692 chromium-common-dbgsym_134.0.6998.35-1~deb12u1_armhf.deb 61fd66977b95de09ae97a9b8d559425aac66a22e804ba92165c939a90a5d6606 20117064 chromium-common_134.0.6998.35-1~deb12u1_armhf.deb 269ef05587154eb915f3d63072b1a8cf6cef1eb3ac205b1473c4dbb0e4133e36 32175016 chromium-dbgsym_134.0.6998.35-1~deb12u1_armhf.deb fd16a778cf903723436dc8ffd53159534082683e74b260bf657888c7691450f0 7293092 chromium-driver_134.0.6998.35-1~deb12u1_armhf.deb 08c7a1ecdd88c63f8fec69b1c2dc7ae3288abbf057c61244ff46c9d996052e50 25535432 chromium-headless-shell-dbgsym_134.0.6998.35-1~deb12u1_armhf.deb 46ea1338f37837398c94cc8e548884d9ad98406ac9d97493f08e2042c81b1f38 48624488 chromium-headless-shell_134.0.6998.35-1~deb12u1_armhf.deb 5226f8a437b701a904a923225f5fd6652b2c48370157487fb0537b56c24eaaee 12676 chromium-sandbox-dbgsym_134.0.6998.35-1~deb12u1_armhf.deb 54a77be3a833f8ed50e40e52bbeeff614653f8ac76a964abebd6f4e43fcfcb35 100684 chromium-sandbox_134.0.6998.35-1~deb12u1_armhf.deb 7403fac2709cc07c3961953707a9a19ae7127a5542e3c7a7883cdb2e161c3d0c 26024912 chromium-shell-dbgsym_134.0.6998.35-1~deb12u1_armhf.deb 68890039b6ead47eeddddfac20c6d4c61219cea078c98e8293382d38c2a7a0c4 50480504 chromium-shell_134.0.6998.35-1~deb12u1_armhf.deb 601ebe11c89707e2e08c25a4793567b00ffc29b009d7dcafe80e6d2936cc9318 30045 chromium_134.0.6998.35-1~deb12u1_armhf-buildd.buildinfo a1e4c9ab044326836e05c07021b3ce913c82687d0f48503e53655b79f1dfea47 63174508 chromium_134.0.6998.35-1~deb12u1_armhf.deb Files: ec89b21141ca2048db591197cca77f48 5101692 debug optional chromium-common-dbgsym_134.0.6998.35-1~deb12u1_armhf.deb 1ac2281c5c6c083938aaf31a70209a4c 20117064 web optional chromium-common_134.0.6998.35-1~deb12u1_armhf.deb 1f7c04ec0a72b3ef5f72b0561f7030b6 32175016 debug optional chromium-dbgsym_134.0.6998.35-1~deb12u1_armhf.deb 91ee0c53bed759740274a201e25178c6 7293092 web optional chromium-driver_134.0.6998.35-1~deb12u1_armhf.deb d419bb3664f894f820aa73901edcebc3 25535432 debug optional chromium-headless-shell-dbgsym_134.0.6998.35-1~deb12u1_armhf.deb 79c4b2396d084fd1bf8df311d7691cc1 48624488 web optional chromium-headless-shell_134.0.6998.35-1~deb12u1_armhf.deb 1f12372689d57891d6296c6c8fcc3e83 12676 debug optional chromium-sandbox-dbgsym_134.0.6998.35-1~deb12u1_armhf.deb 538c1200ec20a8dbf141e359572b159f 100684 web optional chromium-sandbox_134.0.6998.35-1~deb12u1_armhf.deb e72cdfe4965a6813b0d823f08785a369 26024912 debug optional chromium-shell-dbgsym_134.0.6998.35-1~deb12u1_armhf.deb d177f38b52f7e22757896b062b9a3935 50480504 web optional chromium-shell_134.0.6998.35-1~deb12u1_armhf.deb d56f0870ad7bfb04ca57818d972aa688 30045 web optional chromium_134.0.6998.35-1~deb12u1_armhf-buildd.buildinfo 2617773437e5ffcb33939d3b540e9703 63174508 web optional chromium_134.0.6998.35-1~deb12u1_armhf.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEE0+FegZ3qs8CHnZkx+XaKpT5fkBIFAmfM60oACgkQ+XaKpT5f kBJJaQ/+KTE5NdVO5rt9XySQegxUkkWachqBO0ICLQHp2RW3YpT0NJHygYSqWnAS vY0K8tRo37DdMjLbyOqp/nTTR6xlNBSXovdD+5/+Vpjf1hZSTjFSh30fKnya5I9a d9hmNTfI72+zh7OzTpEov+wXFkFJuBE04WJr7V29JJuzxrmswXW9tSGtQCLfKogS dXSqmJQlUZug0BrHsM0FSpYz5Gc8iJ7o/X+RzKQDeT2k1yk4KTWVaxo9+UkTydhj slKi3AIm7XOIWlWLmJLyItW/5tV+DzPVs1Yr9IdhHIySPaHlPVJkIMFSTg+jQC9a 9BCvYAksW9yWTZS2K0JmoYqA3eNmaI54smXp2W51fhBU4Dwi/S3n0/zjme65hMUo YpsZIHl4DQj69vzxkZ0jnogJIpAs/zJ428x479Kq6hgk1fm8sGSyf9U18MWyi1nY Ri6aSKrRduT3l3h5Sfvrm7Qge9czMlnLMwvWYWRqdfaDHxvNJw/k7/xcK9L75PXf 7LbBM741qR2Id4K3k+z9SMBEwE3luvbwJX+fcQqebYT9FDgtV+WDVjkA2AYrCR7N SWy5C31avPEhmyMjGS7Pfj2LLqE9gfB9AU3HIg6E6vWuWszr9vf/XED2+Gn0w5MW kA/JGJ4cIX7tS+ZCV9T1tQpDiMJirZuhdIPA04Drxnyt/jevAKs= =peE1 -----END PGP SIGNATURE-----