-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Wed, 02 Apr 2025 02:04:23 -0400 Source: chromium Binary: chromium chromium-common chromium-common-dbgsym chromium-dbgsym chromium-driver chromium-headless-shell chromium-headless-shell-dbgsym chromium-sandbox chromium-sandbox-dbgsym chromium-shell chromium-shell-dbgsym Architecture: i386 Version: 135.0.7049.52-1~deb12u1 Distribution: bookworm-security Urgency: high Maintainer: i386 Build Daemon (x86-grnet-01) Changed-By: Andres Salomon Description: chromium - web browser chromium-common - web browser - common resources used by the chromium packages chromium-driver - web browser - WebDriver support chromium-headless-shell - web browser - old headless shell chromium-sandbox - web browser - setuid security sandbox for chromium chromium-shell - web browser - minimal shell Changes: chromium (135.0.7049.52-1~deb12u1) bookworm-security; urgency=high . [ Andres Salomon ] * New upstream stable release. - CVE-2025-3066: Use after free in Navigations. Reported by Sven Dysthe (@svn-dys). - CVE-2025-3067: Inappropriate implementation in Custom Tabs. Reported by Philipp Beer (TU Wien). - CVE-2025-3068: Inappropriate implementation in Intents. Reported by Simon Rawet. - CVE-2025-3069: Inappropriate implementation in Extensions. Reported by NDevTK. - CVE-2025-3070: Insufficient validation of untrusted input in Extensions. - CVE-2025-3071: Inappropriate implementation in Navigations. Reported by David Erceg. - CVE-2025-3072: Inappropriate implementation in Custom Tabs. Reported by Om Apip. - CVE-2025-3073: Inappropriate implementation in Autofill. Reported by Hafiizh. - CVE-2025-3074: Inappropriate implementation in Downloads. Reported by Farras Givari. * d/patches: - upstream/optional.patch: drop, merged upstream. - upstream/qualifications.patch: drop, merged upstream. - fixes/lens-optional.patch: drop, merged upstream. - fixes/optional.patch: drop, merged upstream. - fixes/swiftshader-llvm.patch: drop, merged upstream. - fixes/variant.patch: drop, merged upstream. - bookworm/clang19.patch: refresh. - bookworm/gn-revert-path-exists.patch: add build fix to work around older gn. - ungoogled/disable-privacy-sandbox.patch: refresh from ungoogled. - fixes/make-pair.patch: add a gcc-specific build fix. - disable/buildtools-libc.patch: add patch to remove libc build stuff. - bookworm/gn-absl.patch: refresh. - bookworm/constexpr.patch: refresh. - bookworm/stdarch-arm.patch: refresh. - bookworm/eslint.patch: add bookworm-specific build fix; thanks Daniel Richard G. ! - bookworm/crabbyav1f.patch: add rustc 1.78 build fix workaround. . [ Timothy Pearson ] * Enable pointer compression on ppc64le This fixes V8 OOM conditions noted on e.g. https://trac.ffmpeg.org * d/patches/ppc64le: - v8/0001-Enable-ppc64-pointer-compression.patch - sandbox/0001-sandbox-linux-Update-syscall-helpers-lists-for-ppc64.patch: refresh for upstream changes . [ Daniel Richard G. ] * d/rules: Add switch to allow downloading either Google's upstream tarball, or an independently-created one from Gentoo. Default to the latter. Checksums-Sha1: 6e0ba020d59113a050cce1a4d5b671cfccc21e76 4837860 chromium-common-dbgsym_135.0.7049.52-1~deb12u1_i386.deb 3c765da894e69f59d3d505b26ae5e8e6402bdd98 20548220 chromium-common_135.0.7049.52-1~deb12u1_i386.deb 125e196e298fb92c918b332156c02c9fa346c34b 32634124 chromium-dbgsym_135.0.7049.52-1~deb12u1_i386.deb 3872ff025d414d594bfd489791d3861ff6c6f244 7990152 chromium-driver_135.0.7049.52-1~deb12u1_i386.deb 7e063758c13d4e02ce7b7ba32b190bf057da6081 27230184 chromium-headless-shell-dbgsym_135.0.7049.52-1~deb12u1_i386.deb 51ef0b97c7e474d53b49211e82a0b0ecd35c50a9 53966100 chromium-headless-shell_135.0.7049.52-1~deb12u1_i386.deb 1fea21d96a482d5bdd218771242ea5e4f2aca6b1 14116 chromium-sandbox-dbgsym_135.0.7049.52-1~deb12u1_i386.deb d5c81f62c42014fd1dfa9872447b99cb40003f68 101712 chromium-sandbox_135.0.7049.52-1~deb12u1_i386.deb 354da9eb155a1ac6938f6b5424de96ad2fd1d891 27630156 chromium-shell-dbgsym_135.0.7049.52-1~deb12u1_i386.deb 330ec373509b0cff2b93aa1e164dfd0ad09a37d9 55898484 chromium-shell_135.0.7049.52-1~deb12u1_i386.deb ea535d8acb5fa5b218b9be3d8b3db03f2d872091 30165 chromium_135.0.7049.52-1~deb12u1_i386-buildd.buildinfo 369d48bd88b7338c825317b0005f8d00a9ec9056 70383700 chromium_135.0.7049.52-1~deb12u1_i386.deb Checksums-Sha256: 08d3764e2388950d569c9e7faa495f5798608023979859452fe6f81a7c8e28ee 4837860 chromium-common-dbgsym_135.0.7049.52-1~deb12u1_i386.deb 0555d180345cdf3c9fb1528f2b7a6c63ebfb98f6a146566ea67fa0293442df68 20548220 chromium-common_135.0.7049.52-1~deb12u1_i386.deb 0d7e510051f9e15a7a00ca795e7755e0a87a91f61ea9f88457b13769a6a8b693 32634124 chromium-dbgsym_135.0.7049.52-1~deb12u1_i386.deb c17b86f2ae5f42c4acc590649f7da5d3ee198ce1f0f959305c39c0d237efe69e 7990152 chromium-driver_135.0.7049.52-1~deb12u1_i386.deb 3a30d1e67f3586b1b2a2bf2beaad77751966688d2bb04b6ef3b0e31303d34e3e 27230184 chromium-headless-shell-dbgsym_135.0.7049.52-1~deb12u1_i386.deb 0aaef3050307dbcca53ebd41b3940559811b106c10734164ab55114996a712a8 53966100 chromium-headless-shell_135.0.7049.52-1~deb12u1_i386.deb ce64b7dc970659330bf45f7a6ffb5695aef33a0804713d37d8b8843f9deff0f2 14116 chromium-sandbox-dbgsym_135.0.7049.52-1~deb12u1_i386.deb 7c35fa45002d4c75820cfaf1248e5b427b0696342db9c3457b1480c3d080a4d8 101712 chromium-sandbox_135.0.7049.52-1~deb12u1_i386.deb 15b779148ab9760df8923b4fba0c2b1389d80d2f6b16b5c78a9a6d90791ec116 27630156 chromium-shell-dbgsym_135.0.7049.52-1~deb12u1_i386.deb b3cadda8c1c4f68013f7448545fabcb0a7bf28031d052231a640b2a955415560 55898484 chromium-shell_135.0.7049.52-1~deb12u1_i386.deb 70e6c0e5f6a29dddbefaf889fe147118a72d1ec770c34233b374471a8e489f87 30165 chromium_135.0.7049.52-1~deb12u1_i386-buildd.buildinfo 172b4290b37f05570f97c1c42019d52540dcb4b0da7ba288640e37cbb655d773 70383700 chromium_135.0.7049.52-1~deb12u1_i386.deb Files: 849fdafd269f811e875dac1cd4ed76ae 4837860 debug optional chromium-common-dbgsym_135.0.7049.52-1~deb12u1_i386.deb c22684a59a2c5c006466abed2608d8e9 20548220 web optional chromium-common_135.0.7049.52-1~deb12u1_i386.deb dbb8377643f22eb333e325a243b11a6c 32634124 debug optional chromium-dbgsym_135.0.7049.52-1~deb12u1_i386.deb 0ccdf2c6bb63950fe6b14e8b40761831 7990152 web optional chromium-driver_135.0.7049.52-1~deb12u1_i386.deb 795c2da41869f4fd15d4ffdbdf4e1465 27230184 debug optional chromium-headless-shell-dbgsym_135.0.7049.52-1~deb12u1_i386.deb 8b1960523ab6e92dd403410ada3fd2f0 53966100 web optional chromium-headless-shell_135.0.7049.52-1~deb12u1_i386.deb d1071b9eceed708f522dabf274f7dac8 14116 debug optional chromium-sandbox-dbgsym_135.0.7049.52-1~deb12u1_i386.deb b5e1828c8bcd4b2988ea619a9d64d2ef 101712 web optional chromium-sandbox_135.0.7049.52-1~deb12u1_i386.deb 2b9dd211f6b4841e595519d90a513900 27630156 debug optional chromium-shell-dbgsym_135.0.7049.52-1~deb12u1_i386.deb bac009a471d2e33e72b66d23e78c2e96 55898484 web optional chromium-shell_135.0.7049.52-1~deb12u1_i386.deb a1ca040af3bb6ea0b6a0e080cb2f855b 30165 web optional chromium_135.0.7049.52-1~deb12u1_i386-buildd.buildinfo 06d34aac2190a502835dd6cf03461c99 70383700 web optional chromium_135.0.7049.52-1~deb12u1_i386.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEv2qEY4xQXyY/2dWIvGw9w6VrLCcFAmfuPHcACgkQvGw9w6Vr LCdkFA//bEvQKq/zEWWhZX34g8Cslc1JPi2+vwwMHxABRhlNSbdXw9oQJuwzYCN5 PutpHflQ6XtTde8NhBpROOElbohdcjVCB2ymnZqubUOU3AUuLeCBQS6P1N1+14P+ Fgl2quWvJ3j+W0+4TpfY71hVgZhP+j1SGpfZK7KpzE9+AZDM8cCfyT2NNTE+7J4Q OaKZiAzH6OZY1ad5nEQV9pOEjYIJU5NJLfOmXqvbBlZkxfw3TghePy6760efc4FF 5shae6+ks2MjTUF3AYS6EOoGCBctTr5JxNfsYTARVOEuYUsCTw9FGWaMxdl3E/Dt CtxcwLE9q6OoziGFO8mBz5BJijYYuL4Q9SUwWgiKAiDaDa/3plEavST22Xn4hLmm DZsBRhDU6v4NoKaQykpuzDmZKlFtBdcoWBxP77Qc23K+lQw1ppnfceTWUrpKI3uF m/enr8bUa5/1AzRhgkIcMJQazttyhpg+atdINLOOvaxKrMejGbE/LEd7LnItcaHd FZI9JtIsSQXArxhjKEG9LCH6AYeZS8LbFemn2hZKrYLHuvDUx27s5fo/TOI9Iofi yM3EwLZJKjk0VO54nuqBcEoVPC9QhHtTajGz3lfqDzeqNWYBoswuR+N3mc0DscAh BJl9jntm1hhMm8jsyLEIserzKA4YKh6MNY+STLuX/0lYbtmU0iY= =s6ly -----END PGP SIGNATURE-----