-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Wed, 05 Mar 2025 13:26:45 -0500
Source: chromium
Binary: chromium chromium-common chromium-common-dbgsym chromium-dbgsym chromium-driver chromium-headless-shell chromium-headless-shell-dbgsym chromium-l10n chromium-sandbox chromium-sandbox-dbgsym chromium-shell chromium-shell-dbgsym
Architecture: source amd64 all
Version: 134.0.6998.35-1~deb12u1
Distribution: bookworm-security
Urgency: high
Maintainer: Debian Chromium Team <chromium@packages.debian.org>
Changed-By: Andres Salomon <dilinger@debian.org>
Description:
 chromium   - web browser
 chromium-common - web browser - common resources used by the chromium packages
 chromium-driver - web browser - WebDriver support
 chromium-headless-shell - web browser - old headless shell
 chromium-l10n - web browser - language packs
 chromium-sandbox - web browser - setuid security sandbox for chromium
 chromium-shell - web browser - minimal shell
Changes:
 chromium (134.0.6998.35-1~deb12u1) bookworm-security; urgency=high
 .
   [ Andres Salomon ]
   * New upstream stable release.
     - CVE-2025-1914: Out of bounds read in V8. Reported by
       Zhenghang Xiao (@Kipreyyy) and Nan Wang (@eternalsakura13).
     - CVE-2025-1915: Improper Limitation of a Pathname to a Restricted
       Directory in DevTools. Reported by Topi Lassila.
     - CVE-2025-1916: Use after free in Profiles.
       Reported by parkminchan, SSD Labs Korea.
     - CVE-2025-1917: Inappropriate Implementation in Browser UI.
       Reported by Khalil Zhani.
     - CVE-2025-1918: Out of bounds read in PDFium. Reported by asnine.
     - CVE-2025-1919: Out of bounds read in Media.
       Reported by @Bl1nnnk and @Pisanbao.
     - CVE-2025-1921: Inappropriate Implementation in Media Stream.
       Reported by Kaiido.
     - CVE-2025-1922: Inappropriate Implementation in Selection.
       Reported by Alesandro Ortiz.
     - CVE-2025-1923: Inappropriate Implementation in Permission Prompts.
       Reported by Khalil Zhani.
   * d/patches:
     - fixes/widevine-revision.patch: drop. Upstream says "with CDMs using
       manifest-based registration, no need to" hardcode version string.
     - disable/catapult.patch: refresh.
     - bookworm/clang19.patch: refresh.
     - ungoogled/disable-privacy-sandbox.patch: refresh from ungoogled.
     - bookworm/gn-allowlist.patch: add workaround for older gn.
     - bookworm/adler1.patch: add workaround for older rust.
     - fixes/stdatomic.patch: add build fix to ensure <stdatomic.h> isn't
       used.
     - fixes/variant.patch: add missing header include.
     - upstream/qualifications.patch: add fix to silence annoying warnings.
     - upstream/optional.patch: add more missing header includes.
     - bookworm/constflatset.patch: refresh.
     - bookworm/constexpr.patch: refresh.
     - bookworm/modff.patch: add workaround for libstdc++ build issue.
     - bookworm/foreach.patch: add workaround for libstdc++ build issue.
   * d/rules: update to ensure both qt5 AND qt6 are disabled.
 .
   [ Timothy Pearson ]
   * d/patches:
     - fixes/swiftshader-llvm.patch: Add LLVM patches from upstream LLVM
       project to fix integrated SwiftShader LLVM FTBFS
   * d/patches/ppc64le:
     - third_party/0001-Add-PPC64-support-for-boringssl.patch: Refresh for
       upstream changes
Checksums-Sha1:
 c993bc185f18537e16d8d06d0628880425eeab3a 3869 chromium_134.0.6998.35-1~deb12u1.dsc
 332fa8cd06755604d127cd35ed7890a40dd22664 915150532 chromium_134.0.6998.35.orig.tar.xz
 f397a11c8d235cae2e0b33eb758faab6bc3d259e 8421080 chromium_134.0.6998.35-1~deb12u1.debian.tar.xz
 1547c44191a1e5dd4cd08d2477393f210a68ed07 4750796 chromium-common-dbgsym_134.0.6998.35-1~deb12u1_amd64.deb
 7cc20ec61d30626c00a8fe4bb3c715bfa5e351a1 20253176 chromium-common_134.0.6998.35-1~deb12u1_amd64.deb
 165fcdda7a45a3d0470a23a1eca322525089ff27 30378748 chromium-dbgsym_134.0.6998.35-1~deb12u1_amd64.deb
 401ddcf57b8f6c9ae3d5bcbc5c84b3c1f28def8e 7527080 chromium-driver_134.0.6998.35-1~deb12u1_amd64.deb
 cf8564bf7df7f64073d0e73372eca1f6624a430a 26022088 chromium-headless-shell-dbgsym_134.0.6998.35-1~deb12u1_amd64.deb
 fc48c7a5bc603e523bfe475ad75d3cb5373a0f58 58055524 chromium-headless-shell_134.0.6998.35-1~deb12u1_amd64.deb
 cfc5a691186b432eb1f177c6fda0a7d7108fb2ec 8085168 chromium-l10n_134.0.6998.35-1~deb12u1_all.deb
 331a1b54df1375c12a8c00f8ddb5e4a0cf025ebf 14068 chromium-sandbox-dbgsym_134.0.6998.35-1~deb12u1_amd64.deb
 8b3c5e767d32b366037fd34e054bf776573484d0 101104 chromium-sandbox_134.0.6998.35-1~deb12u1_amd64.deb
 d80814cf5fc84a64c569dc612115a6da680c256e 25299312 chromium-shell-dbgsym_134.0.6998.35-1~deb12u1_amd64.deb
 e09ccfe67b8af2f79d8b81467ca143a821fb1e6f 53617068 chromium-shell_134.0.6998.35-1~deb12u1_amd64.deb
 5a68b9f3e5b885fd70b1e48b9f7eef09c0ebad57 30923 chromium_134.0.6998.35-1~deb12u1_amd64.buildinfo
 064b41fd7320c28c336081fdedc9749c9a091569 78236272 chromium_134.0.6998.35-1~deb12u1_amd64.deb
Checksums-Sha256:
 fb8375f9d5ebde9e4bee266884f729345c05d0963c1ba4af5f0d927af16c17a5 3869 chromium_134.0.6998.35-1~deb12u1.dsc
 e5c25afaa1adbcc671f16ae7166e71bed20a01c99f979564cddafdf2ae2b1613 915150532 chromium_134.0.6998.35.orig.tar.xz
 fc1f0be73a188606c0beb882c97a18072d6e4449b3301668ddcaf150cdf3e30f 8421080 chromium_134.0.6998.35-1~deb12u1.debian.tar.xz
 36a441c536dbd7471b0071676db86c6f6600248965c34f3ca4869694a10c32ff 4750796 chromium-common-dbgsym_134.0.6998.35-1~deb12u1_amd64.deb
 b565ef129f9b6da05f9f472abf246bbcd66fc711d5c6362b70c0b4bfb1387d59 20253176 chromium-common_134.0.6998.35-1~deb12u1_amd64.deb
 f4e936822ee284e0e1c759fdf8039d8133aa4f812c0301b59ab79e46ba123309 30378748 chromium-dbgsym_134.0.6998.35-1~deb12u1_amd64.deb
 56ed381889d8f396100d0a53b75855c2f7c13b09e408d7ac3ff3eae783aed347 7527080 chromium-driver_134.0.6998.35-1~deb12u1_amd64.deb
 7a7c8d389135c7c060c6be7bc76139be8c4ad57b78b9435e90b748cdd45c4ee1 26022088 chromium-headless-shell-dbgsym_134.0.6998.35-1~deb12u1_amd64.deb
 26da548ed74ec7884727b6e0936cbdf68cd12a3fbb07239b6651c62d042e6c93 58055524 chromium-headless-shell_134.0.6998.35-1~deb12u1_amd64.deb
 3b33711cece2bb47d00b2df8f1f9fa7e110a06ee16a5c227c7b18f28a5c383b3 8085168 chromium-l10n_134.0.6998.35-1~deb12u1_all.deb
 ea7a0ec66f3fb8ed0a509faf8e4720609f406b0e4a5232e52bf952f159f953d1 14068 chromium-sandbox-dbgsym_134.0.6998.35-1~deb12u1_amd64.deb
 614bef018a5e93a6ff9d0423c041d43bd3142512509cbbf85c1802acef5c5729 101104 chromium-sandbox_134.0.6998.35-1~deb12u1_amd64.deb
 0c1ee25a77b076eba63f8e4728f31b2a38b872404c2cb167201fa3ea68a566e2 25299312 chromium-shell-dbgsym_134.0.6998.35-1~deb12u1_amd64.deb
 b3fb74cd4ff58116cc73df2f691973484e7a02e17ee8a9b257658832bfc8607c 53617068 chromium-shell_134.0.6998.35-1~deb12u1_amd64.deb
 d36528b570ffd36b5875f505ae33dc16440cce7be92947d59fa606d3da99dfe2 30923 chromium_134.0.6998.35-1~deb12u1_amd64.buildinfo
 754c4ab012dfb3941de6c460426e6de63370803547d2101c944e73b374f6f4ff 78236272 chromium_134.0.6998.35-1~deb12u1_amd64.deb
Files:
 57bfac85f0bb0589de5f5302b036074b 3869 web optional chromium_134.0.6998.35-1~deb12u1.dsc
 07428b758264b61deee55a23a3cf504e 915150532 web optional chromium_134.0.6998.35.orig.tar.xz
 66e9cd9d8243318f2f53eb0a5d2ba0f1 8421080 web optional chromium_134.0.6998.35-1~deb12u1.debian.tar.xz
 75a92f3c47cd0edf514c34105b0699d2 4750796 debug optional chromium-common-dbgsym_134.0.6998.35-1~deb12u1_amd64.deb
 d6cfb989b56fd95ff8ac4c23ce7db0ef 20253176 web optional chromium-common_134.0.6998.35-1~deb12u1_amd64.deb
 217933be1c2b7a8e472346e6c5fd0053 30378748 debug optional chromium-dbgsym_134.0.6998.35-1~deb12u1_amd64.deb
 b8d04bcdecc3a163f09a120700ee68cc 7527080 web optional chromium-driver_134.0.6998.35-1~deb12u1_amd64.deb
 6d421a650558136216c87b4e8cb86e98 26022088 debug optional chromium-headless-shell-dbgsym_134.0.6998.35-1~deb12u1_amd64.deb
 6ca4ce38ea5af5ce2659c0a76cdb4c2c 58055524 web optional chromium-headless-shell_134.0.6998.35-1~deb12u1_amd64.deb
 165512ac2c5d84490cad67d0d989ba8f 8085168 localization optional chromium-l10n_134.0.6998.35-1~deb12u1_all.deb
 0d763e6e2187d2c29b87cdedad7816d9 14068 debug optional chromium-sandbox-dbgsym_134.0.6998.35-1~deb12u1_amd64.deb
 ec3dee491d001face46c713f7d90ec5b 101104 web optional chromium-sandbox_134.0.6998.35-1~deb12u1_amd64.deb
 e574456bdc7ec2fb852bb1d73a5e7343 25299312 debug optional chromium-shell-dbgsym_134.0.6998.35-1~deb12u1_amd64.deb
 cc28aa96012a9f1c9d4d18e18fb77cab 53617068 web optional chromium-shell_134.0.6998.35-1~deb12u1_amd64.deb
 324a3ce74efa51d05016ebad6816c416 30923 web optional chromium_134.0.6998.35-1~deb12u1_amd64.buildinfo
 85b80d930e26d82886231b49c9bab310 78236272 web optional chromium_134.0.6998.35-1~deb12u1_amd64.deb

-----BEGIN PGP SIGNATURE-----
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=V9vx
-----END PGP SIGNATURE-----