chromium - Debian Package Tracker

general

source: chromium (main)
version: 137.0.7151.119-1
maintainer: Debian Chromium Team (DMD)
uploaders: Andres Salomon [DMD] – Timothy Pearson [DMD]
arch: all amd64 arm64 armhf i386 ppc64el
std-ver: 4.5.0
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 90.0.4430.212-1~deb10u1
o-o-sec: 90.0.4430.212-1~deb10u1
oldstable: 120.0.6099.224-1~deb11u1
old-sec: 120.0.6099.224-1~deb11u1
stable: 135.0.7049.95-1~deb12u1
stable-sec: 137.0.7151.119-1~deb12u1
stable-p-u: 137.0.7151.68-1~deb12u1
testing: 137.0.7151.68-1
test-p-u: 128.0.6613.113-1~deb13u1
unstable: 137.0.7151.119-1

versioned links

89.0.4389.114-1~deb10u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
90.0.4430.212-1~deb10u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
120.0.6099.224-1~deb11u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
128.0.6613.113-1~deb13u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
135.0.7049.95-1~deb12u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
137.0.7151.68-1~deb12u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
137.0.7151.68-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
137.0.7151.119-1~deb12u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
137.0.7151.119-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

chromium (57 bugs: 0, 28, 29, 0)
chromium-common
chromium-driver
chromium-headless-shell
chromium-l10n
chromium-sandbox
chromium-shell

action needed

4 security issues in trixie high

There are 4 open security issues in trixie.

4 important issues:

CVE-2025-5958: Use after free in Media in Google Chrome prior to 137.0.7151.103 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2025-5959: Type Confusion in V8 in Google Chrome prior to 137.0.7151.103 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
CVE-2025-6191: Integer overflow in V8 in Google Chrome prior to 137.0.7151.119 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)
CVE-2025-6192: Use after free in Metrics in Google Chrome prior to 137.0.7151.119 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

Created: 2025-06-10 Last update: 2025-06-19 05:00

lintian reports 15 errors and 2966 warnings high

Lintian reports 15 errors and 2966 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2025-06-18 Last update: 2025-06-19 03:02

Fails to build during reproducibility testing normal

A package building reproducibly enables third parties to verify that the source matches the distributed binaries. It has been identified that this source package produced different results, failed to build or had other issues in a test environment. Please read about how to improve the situation!

Created: 2025-04-09 Last update: 2025-06-19 13:32

4 bugs tagged help in the BTS normal

The BTS contains 4 bugs tagged help, please consider helping the maintainer in dealing with them.

Created: 2019-03-21 Last update: 2025-06-19 13:30

8 bugs tagged patch in the BTS normal

The BTS contains patches fixing 8 bugs, consider including or untagging them.

Created: 2025-01-06 Last update: 2025-06-19 13:30

3 new commits since last upload, is it time to release? normal

vcswatch reports that this package seems to have new commits in its VCS but has not yet updated debian/changelog. You should consider updating the Debian changelog and uploading this new version into the archive.

Here are the relevant commit logs:

commit 3a92b7ac2f9c7eea67cdad634fb0e2e6926805e9
Author: Andres Salomon <dilinger@queued.net>
Date:   Tue Jun 17 19:15:00 2025 -0400

    release 137.0.7151.119-1

commit 34c60b0e5cd23d7e1eef322392aefbe9d346589c
Author: Andres Salomon <dilinger@queued.net>
Date:   Tue Jun 17 19:11:19 2025 -0400

    fix chromium-shell's missing library

commit a89f7ae56f11e3c67bbdffcf2d5958c1ada42659
Author: Andres Salomon <dilinger@queued.net>
Date:   Fri Jun 13 13:46:45 2025 -0400

    add armhf ICF workaround from Daniel

Created: 2025-06-13 Last update: 2025-06-18 10:02

RFH: The maintainer is looking for help with this package. normal

The current maintainer is looking for someone who can help with the maintenance of this package. If you are interested in this package, please consider helping out. One way you can help is offer to be a co-maintainer or triage bugs in the BTS. Please see bug number #1016047 for more information.

Created: 2022-07-26 Last update: 2022-07-26 03:32

AppStream hints: 1 warning normal

AppStream found metadata issues for packages:

chromium: 1 warning

You should get rid of them to provide more metadata about this software.

Created: 2020-06-01 Last update: 2020-06-01 01:12

debian/patches: 113 patches to forward upstream low

Among the 116 debian patches available in version 137.0.7151.119-1 of the package, we noticed the following issues:

113 patches where the metadata indicates that the patch has not yet been forwarded upstream. You should either forward the patch upstream or update the metadata to document its real status.

Created: 2023-02-26 Last update: 2025-06-18 12:57

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.7.2 instead of 4.5.0).

Created: 2020-11-17 Last update: 2025-06-18 12:58

testing migrations

This package will soon be part of the auto-libxml2 transition. You might want to ensure that your package is ready for it. You can probably find supplementary information in the debian-release archives or in the corresponding release.debian.org bug.
excuses:
- Migration status for chromium (137.0.7151.68-1 to 137.0.7151.119-1): BLOCKED: Maybe temporary, maybe blocked but Britney is missing information (check below)
- Issues preventing migration:
- ∙ ∙ missing build on armhf
- ∙ ∙ blocked by freeze: does not have autopkgtest (Follow the freeze policy when applying for an unblock)
- ∙ ∙ arch:armhf not built yet, autopkgtest delayed there
- ∙ ∙ autopkgtest for dbus-glib/0.114-1: amd64: No tests, superficial or marked flaky ♻ (reference ♻), arm64: Test in progress, i386: No tests, superficial or marked flaky ♻ (reference ♻), ppc64el: No tests, superficial or marked flaky ♻ (reference ♻)
- ∙ ∙ autopkgtest for dmarc-srg/2.3-1: amd64: No tests, superficial or marked flaky ♻ (reference ♻), arm64: Test in progress, i386: No tests, superficial or marked flaky ♻ (reference ♻), ppc64el: Failed (not a regression)
- ∙ ∙ autopkgtest for dnstwist/0~20250130-1: amd64: Pass, arm64: Test in progress, i386: Pass, ppc64el: Failed (not a regression)
- ∙ ∙ autopkgtest for gimp/3.0.2-3.1: amd64: No tests, superficial or marked flaky ♻ (reference ♻), arm64: Test in progress, i386: No tests, superficial or marked flaky ♻ (reference ♻), ppc64el: No tests, superficial or marked flaky ♻ (reference ♻)
- ∙ ∙ autopkgtest for gtkmm2.4/1:2.24.5-6: amd64: No tests, superficial or marked flaky ♻ (reference ♻), arm64: Test in progress, i386: No tests, superficial or marked flaky ♻ (reference ♻), ppc64el: No tests, superficial or marked flaky ♻ (reference ♻)
- ∙ ∙ autopkgtest for jquery-timepicker/1.6.3-6: amd64: Pass, arm64: Test in progress, i386: Pass, ppc64el: Failed (not a regression)
- ∙ ∙ autopkgtest for libwwwbrowser-perl/2.23-4: amd64: Pass, arm64: Test in progress, i386: Pass, ppc64el: Pass
- ∙ ∙ autopkgtest for matomo/5.3.1+dfsg-1: amd64: Pass, arm64: Test in progress, i386: Pass, ppc64el: Failed (not a regression)
- ∙ ∙ autopkgtest for nghttp2/1.64.0-1.1: amd64: Pass, arm64: Test in progress, i386: Pass, ppc64el: Pass
- ∙ ∙ autopkgtest for phpldapadmin/1.2.6.7-4: amd64: Pass, arm64: Test in progress, i386: Pass, ppc64el: Failed (not a regression)
- ∙ ∙ autopkgtest for phpsysinfo/3.4.4-1: amd64: Pass, arm64: Test in progress, i386: Pass, ppc64el: Failed (not a regression)
- ∙ ∙ autopkgtest for pysatellites/2.7-4: amd64: Pass, arm64: Test in progress, i386: Pass, ppc64el: Pass
- ∙ ∙ autopkgtest for python-selenium/4.24.4+dfsg-1: amd64: Pass, arm64: Test in progress, i386: Pass, ppc64el: Pass
- ∙ ∙ autopkgtest for qunit-selenium/0.0.4-2: amd64: Pass, arm64: Test in progress, i386: Pass, ppc64el: Pass
- ∙ ∙ autopkgtest for sabnzbdplus/4.5.0+dfsg-1: amd64: Pass, arm64: Test in progress, i386: Pass, ppc64el: No tests, superficial or marked flaky ♻ (reference ♻)
- ∙ ∙ autopkgtest for slm/1.32-3: amd64: Pass, arm64: Test in progress, i386: Pass, ppc64el: No tests, superficial or marked flaky ♻ (reference ♻)
- ∙ ∙ Too young, only 1 of 20 days old
- Additional info:
- ∙ ∙ Piuparts tested OK - https://piuparts.debian.org/sid/source/c/chromium.html
- ∙ ∙ uninstallable on arch armel (which is allowed), not running autopkgtest there
- ∙ ∙ uninstallable on arch riscv64 (which is allowed), not running autopkgtest there
- ∙ ∙ uninstallable on arch s390x (which is allowed), not running autopkgtest there
- ∙ ∙ Reproducible on amd64 - info ♻
- ∙ ∙ Waiting for reproducibility test results on armhf - info ♻
- Not considered

news

[rss feed]

[2025-06-19] Accepted chromium 137.0.7151.119-1~deb12u1 (source) into stable-security (Debian FTP Masters) (signed by: Andres Salomon)
[2025-06-18] Accepted chromium 137.0.7151.119-1 (source) into unstable (Andres Salomon)
[2025-06-12] Accepted chromium 137.0.7151.103-1~deb12u1 (source) into stable-security (Debian FTP Masters) (signed by: Andres Salomon)
[2025-06-11] Accepted chromium 137.0.7151.103-1 (source) into unstable (Andres Salomon)
[2025-06-07] chromium 137.0.7151.68-1 MIGRATED to testing (Debian testing watch)
[2025-06-06] Accepted chromium 137.0.7151.68-1~deb12u1 (source) into proposed-updates (Debian FTP Masters) (signed by: Andres Salomon)
[2025-06-04] Accepted chromium 137.0.7151.68-1~deb12u1 (source) into stable-security (Debian FTP Masters) (signed by: Andres Salomon)
[2025-06-03] Accepted chromium 137.0.7151.68-1 (source) into unstable (Andres Salomon)
[2025-05-30] Accepted chromium 137.0.7151.55-3~deb12u1 (source) into proposed-updates (Debian FTP Masters) (signed by: Andres Salomon)
[2025-05-29] Accepted chromium 137.0.7151.55-3~deb12u1 (source) into stable-security (Debian FTP Masters) (signed by: Andres Salomon)
[2025-05-28] Accepted chromium 137.0.7151.55-3 (source) into unstable (Andres Salomon)
[2025-05-28] Accepted chromium 137.0.7151.55-2 (source) into unstable (Andres Salomon)
[2025-05-28] Accepted chromium 137.0.7151.55-1 (source) into unstable (Andres Salomon)
[2025-05-18] Accepted chromium 136.0.7103.113-1~deb12u1 (source) into proposed-updates (Debian FTP Masters) (signed by: Andres Salomon)
[2025-05-18] Accepted chromium 136.0.7103.92-1~deb12u1 (source) into proposed-updates (Debian FTP Masters) (signed by: Andres Salomon)
[2025-05-18] Accepted chromium 136.0.7103.59-2~deb12u2 (source) into proposed-updates (Debian FTP Masters) (signed by: Andres Salomon)
[2025-05-18] chromium 136.0.7103.113-1 MIGRATED to testing (Debian testing watch)
[2025-05-15] Accepted chromium 136.0.7103.113-1~deb12u1 (source) into stable-security (Debian FTP Masters) (signed by: Andres Salomon)
[2025-05-15] Accepted chromium 136.0.7103.113-1 (source) into unstable (Andres Salomon)
[2025-05-07] Accepted chromium 136.0.7103.92-1~deb12u1 (source) into stable-security (Debian FTP Masters) (signed by: Andres Salomon)
[2025-05-07] Accepted chromium 136.0.7103.92-2 (source) into unstable (Andres Salomon)
[2025-05-07] Accepted chromium 136.0.7103.92-1 (source) into unstable (Andres Salomon)
[2025-05-02] Accepted chromium 136.0.7103.59-2~deb12u2 (source) into stable-security (Debian FTP Masters) (signed by: Andres Salomon)
[2025-05-01] Accepted chromium 136.0.7103.59-2 (source) into unstable (Andres Salomon)
[2025-04-23] Accepted chromium 135.0.7049.114-1 (source) into unstable (Andres Salomon)
[2025-04-23] chromium 135.0.7049.95-1 MIGRATED to testing (Debian testing watch)
[2025-04-18] Accepted chromium 135.0.7049.95-1~deb12u1 (source) into proposed-updates (Debian FTP Masters) (signed by: Andres Salomon)
[2025-04-17] Accepted chromium 135.0.7049.95-1~deb12u1 (source) into stable-security (Debian FTP Masters) (signed by: Andres Salomon)
[2025-04-16] Accepted chromium 135.0.7049.95-1 (source) into unstable (Andres Salomon)
[2025-04-15] Accepted chromium 135.0.7049.84-1~deb12u1 (source) into proposed-updates (Debian FTP Masters) (signed by: Andres Salomon)

bugs [bug history graph]

all: 64 70
RC: 0
I&N: 28 30
M&W: 36 40
F&P: 0
patch: 8
help: 4

links

homepage
lintian (15, 2966)
buildd: logs, checks, reproducibility, cross
popcon
browse source code
edit tags
other distros
security tracker
screenshots
debian patches