-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Wed, 02 Apr 2025 02:04:23 -0400 Source: chromium Binary: chromium chromium-common chromium-common-dbgsym chromium-dbgsym chromium-driver chromium-headless-shell chromium-headless-shell-dbgsym chromium-sandbox chromium-sandbox-dbgsym chromium-shell chromium-shell-dbgsym Architecture: arm64 Version: 135.0.7049.52-1~deb12u1 Distribution: bookworm-security Urgency: high Maintainer: arm Build Daemon (arm-conova-04) Changed-By: Andres Salomon Description: chromium - web browser chromium-common - web browser - common resources used by the chromium packages chromium-driver - web browser - WebDriver support chromium-headless-shell - web browser - old headless shell chromium-sandbox - web browser - setuid security sandbox for chromium chromium-shell - web browser - minimal shell Changes: chromium (135.0.7049.52-1~deb12u1) bookworm-security; urgency=high . [ Andres Salomon ] * New upstream stable release. - CVE-2025-3066: Use after free in Navigations. Reported by Sven Dysthe (@svn-dys). - CVE-2025-3067: Inappropriate implementation in Custom Tabs. Reported by Philipp Beer (TU Wien). - CVE-2025-3068: Inappropriate implementation in Intents. Reported by Simon Rawet. - CVE-2025-3069: Inappropriate implementation in Extensions. Reported by NDevTK. - CVE-2025-3070: Insufficient validation of untrusted input in Extensions. - CVE-2025-3071: Inappropriate implementation in Navigations. Reported by David Erceg. - CVE-2025-3072: Inappropriate implementation in Custom Tabs. Reported by Om Apip. - CVE-2025-3073: Inappropriate implementation in Autofill. Reported by Hafiizh. - CVE-2025-3074: Inappropriate implementation in Downloads. Reported by Farras Givari. * d/patches: - upstream/optional.patch: drop, merged upstream. - upstream/qualifications.patch: drop, merged upstream. - fixes/lens-optional.patch: drop, merged upstream. - fixes/optional.patch: drop, merged upstream. - fixes/swiftshader-llvm.patch: drop, merged upstream. - fixes/variant.patch: drop, merged upstream. - bookworm/clang19.patch: refresh. - bookworm/gn-revert-path-exists.patch: add build fix to work around older gn. - ungoogled/disable-privacy-sandbox.patch: refresh from ungoogled. - fixes/make-pair.patch: add a gcc-specific build fix. - disable/buildtools-libc.patch: add patch to remove libc build stuff. - bookworm/gn-absl.patch: refresh. - bookworm/constexpr.patch: refresh. - bookworm/stdarch-arm.patch: refresh. - bookworm/eslint.patch: add bookworm-specific build fix; thanks Daniel Richard G. ! - bookworm/crabbyav1f.patch: add rustc 1.78 build fix workaround. . [ Timothy Pearson ] * Enable pointer compression on ppc64le This fixes V8 OOM conditions noted on e.g. https://trac.ffmpeg.org * d/patches/ppc64le: - v8/0001-Enable-ppc64-pointer-compression.patch - sandbox/0001-sandbox-linux-Update-syscall-helpers-lists-for-ppc64.patch: refresh for upstream changes . [ Daniel Richard G. ] * d/rules: Add switch to allow downloading either Google's upstream tarball, or an independently-created one from Gentoo. Default to the latter. Checksums-Sha1: 6f134449e72fc737fd32bc425ea760195f288c79 5613336 chromium-common-dbgsym_135.0.7049.52-1~deb12u1_arm64.deb 2451a300c327b945fdfd5912bf4c4ee41ca57486 25440900 chromium-common_135.0.7049.52-1~deb12u1_arm64.deb 141094881160682f31a457155691f3da9c785979 31076364 chromium-dbgsym_135.0.7049.52-1~deb12u1_arm64.deb 346a288fe164da0624aba515ef867fb7df13ba00 6796728 chromium-driver_135.0.7049.52-1~deb12u1_arm64.deb b97a2aa2166a1d5ca89f9719322d6c04fef6ac8e 26231648 chromium-headless-shell-dbgsym_135.0.7049.52-1~deb12u1_arm64.deb b2fabaecd4dadecebb0f0d82d830e91d629a076b 50784136 chromium-headless-shell_135.0.7049.52-1~deb12u1_arm64.deb e403c0bd9232ebe0aef589dfefde77b260d22476 14352 chromium-sandbox-dbgsym_135.0.7049.52-1~deb12u1_arm64.deb 8b5b249571831d5b482c2e286948a8718e568f01 101712 chromium-sandbox_135.0.7049.52-1~deb12u1_arm64.deb 2d317d43a86df4e2b3fec1c815792925d97b9123 25933232 chromium-shell-dbgsym_135.0.7049.52-1~deb12u1_arm64.deb 490f01bf0e813aac8ff9905aa7b415ec00d0c1a1 47733712 chromium-shell_135.0.7049.52-1~deb12u1_arm64.deb 4c441d54ae80561cbb44a649053036c922f8d166 30140 chromium_135.0.7049.52-1~deb12u1_arm64-buildd.buildinfo 2a057e6e9987ec40a94c33ebcbd461c5c3d0bc54 67760568 chromium_135.0.7049.52-1~deb12u1_arm64.deb Checksums-Sha256: 0ebd69962a17ae1c8b64d93c279855577bef1cb20e65609f2a2f74cf5c188d27 5613336 chromium-common-dbgsym_135.0.7049.52-1~deb12u1_arm64.deb b4a8dfbb340478b49106fe45fb164b3435178598d120e9e370367352cd45dcad 25440900 chromium-common_135.0.7049.52-1~deb12u1_arm64.deb 287ea95f16791b9c7a7f6f718194be46087a1f49e5971350658082fa276d64c2 31076364 chromium-dbgsym_135.0.7049.52-1~deb12u1_arm64.deb ed03dfa3c483bb0a4bdca88ead76b27ccc960b4baa7a337bce17f91937891c2d 6796728 chromium-driver_135.0.7049.52-1~deb12u1_arm64.deb cfc37ac7ea7c411bb81c38e9f6dd2fe406b0bd79c0327ca4f651ab20299ad27b 26231648 chromium-headless-shell-dbgsym_135.0.7049.52-1~deb12u1_arm64.deb 63e45e04a2d3babf850698c76cb29f3f6a8f305982fa7d0a71274fe662cc327c 50784136 chromium-headless-shell_135.0.7049.52-1~deb12u1_arm64.deb fb587b6465ffcb0cc4c1504edc99bfef6a805c6eefa4d10a60332167e1d45ef4 14352 chromium-sandbox-dbgsym_135.0.7049.52-1~deb12u1_arm64.deb 8321d45b9d9c79e6d1d0e8c294735dc01162856edd07bb6c09907f4e31cc04eb 101712 chromium-sandbox_135.0.7049.52-1~deb12u1_arm64.deb 01e0911c459f2f611560a89973bd54f122592ba2608c221e13404ef6bf137670 25933232 chromium-shell-dbgsym_135.0.7049.52-1~deb12u1_arm64.deb cec6973ebb806a06af17ca07bee455112971df744a20dd770bb675ea0ca05193 47733712 chromium-shell_135.0.7049.52-1~deb12u1_arm64.deb d5688c6819d793e2bd82a7a5c24326beef4cd4714f23eeecb8434fd125f9ad96 30140 chromium_135.0.7049.52-1~deb12u1_arm64-buildd.buildinfo 21657af39335c8d15bdd64b9246b8a464533246656572361e288fe2511a216d2 67760568 chromium_135.0.7049.52-1~deb12u1_arm64.deb Files: ba643f39da70b7b5d6101be34d96b939 5613336 debug optional chromium-common-dbgsym_135.0.7049.52-1~deb12u1_arm64.deb 48fd2b66502c94e331ab018ca5a7c40a 25440900 web optional chromium-common_135.0.7049.52-1~deb12u1_arm64.deb 6c4c7c59823ee1ad6d12c99eee07af56 31076364 debug optional chromium-dbgsym_135.0.7049.52-1~deb12u1_arm64.deb 619664cf246c2d7a44f7bd700fad4f16 6796728 web optional chromium-driver_135.0.7049.52-1~deb12u1_arm64.deb 625da1dfe52e1f35fdfcd9ca3a0cb3d9 26231648 debug optional chromium-headless-shell-dbgsym_135.0.7049.52-1~deb12u1_arm64.deb 8fd2b87121d75f4acc8e82f4024c8dad 50784136 web optional chromium-headless-shell_135.0.7049.52-1~deb12u1_arm64.deb 823a1c5b1cd87748dbc08e2331eee4ec 14352 debug optional chromium-sandbox-dbgsym_135.0.7049.52-1~deb12u1_arm64.deb 1f4199156a399481bceed8cca4137c22 101712 web optional chromium-sandbox_135.0.7049.52-1~deb12u1_arm64.deb d0636487f9802dd6c8cae821638d8664 25933232 debug optional chromium-shell-dbgsym_135.0.7049.52-1~deb12u1_arm64.deb 9b197c188203cd3db7459bed0b5fecb3 47733712 web optional chromium-shell_135.0.7049.52-1~deb12u1_arm64.deb 11659a395c5ba40936877aa91af1a8e3 30140 web optional chromium_135.0.7049.52-1~deb12u1_arm64-buildd.buildinfo 4bd6af607dec64e44440c2b3ed6b0356 67760568 web optional chromium_135.0.7049.52-1~deb12u1_arm64.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEvEwFZ4bqkVI+Rh6t+N4VxR6LZYEFAmfuOhUACgkQ+N4VxR6L ZYE9bQ//aOr52fc0PvFtrPyLgcnGiwEpr+sIpuxSbZ6XIVjujSrcSYXUsnWuv5Ds Ru4TdW+LBnunxcWqK8RuQm4CTi+4YnmKq+0gqgIxlPTzHJbHVluw6/40icrT9P2H 3Wm3GqX2IyLbGTQR8GRSiJeiHCzjaAIx8G8f4SplxXDQ+cBOrljAMqIA2uflKOKG GlY5YINmrkb3uDON1rxdMLASqVTJd3GZXF8KPS7gCWWsPvnFa+gjUWJ9DRNthS7+ H/pU9zkDWMOwxYLzYrsRxr0hpdXJX5HKCaD2LCw24n5H+SyPAk2V12ZJ2aYz4zAe FoUgIPgO90IsVqV6zGTYjrUFngNeCX2AUmm0n35UPwbeE8CacR+jZ/zr14CtdmCj txPc2RUR3qAJPtI2waKJdkT07VP0bAH7vVHYyKbw6KtG03bf7Pwa4RFcjQ4xEfTo 0Ww9YJjtisLQR3C2kwivLDXDpTKTDy1ODkGLUOv0z8so1JxjPOC4FcXW0UTlDs5C A0n4WXJe9UBt1UWm4n0GWASrFbVhDbGJvJycQC1Wyby/Vv/6rl7aunWF5r2h0RdE oRm5lPVKJTbgb+12iqdp33Zou2HHsRUnVPn4/ytCgShrOSPIvpgxgtDMgf1BH+KX XI2f9z07H2JulJtPZw9ygDi4B/3MeIFQ795s2Xh21lYQV9xx2Mw= =Rns7 -----END PGP SIGNATURE-----