Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-devel-changes@lists.debian.org>
Subject: Accepted chromium 116.0.5845.110-1 (source) into unstable
Date: Wed, 23 Aug 2023 17:37:29 +0000
Signed by: Timothy Pearson <tpearson@raptorengineering.com>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Wed, 23 Aug 2023 08:58:00 -0500
Source: chromium
Architecture: source
Version: 116.0.5845.110-1
Distribution: unstable
Urgency: high
Maintainer: Debian Chromium Team <chromium@packages.debian.org>
Changed-By: Timothy Pearson <tpearson@raptorengineering.com>
Changes:
 chromium (116.0.5845.110-1) unstable; urgency=high
 .
   [ Timothy Pearson ]
   * New upstream security release.
     - CVE-2023-4430: Use after free in Vulkan.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2023-4429: Use after free in Loader. Reported by Anonymous.
     - CVE-2023-4428: Out of bounds memory access in CSS.
       Reported by Francisco Alonso (@revskills).
     - CVE-2023-4427: Out of bounds memory access in V8.
       Reported by Sergei Glazunov of Google Project Zero.
     - CVE-2023-4431: Out of bounds memory access in Fonts.
       Reported by Microsoft Security Researcher.
     - CVE-2023-4074 Use after free in Blink Task Scheduling [53]1450899 High 
     - CVE-2023-3732 Out of bounds memory access in Mojo [54]1459124 High 
     - CVE-2023-4076 Use after free in WebRTC Giuliana Pritchard
 .
   [ Andres Salomon ]
   * d/patches/upstream hvec.patch: add arm* v4l2 build fix.
   * d/rules: FTBFS if we're uploading to -security distribution w/out CVEs.
Checksums-Sha1:
 52627d561035e01f3c1d3a446fcdf6ae149b43e2 3689 chromium_116.0.5845.110-1.dsc
 7558bb1eae8c5a94bb6de3be74f79f6bb18d0e84 648375276 chromium_116.0.5845.110.orig.tar.xz
 c1fcf2e285fd97134ba992a20633a91cf94ea2cd 383840 chromium_116.0.5845.110-1.debian.tar.xz
 c39388ca8dff7072b202d3637af957d28ba276a4 21120 chromium_116.0.5845.110-1_source.buildinfo
Checksums-Sha256:
 d40d3375c4025a90262ae1eefa0daf2679788c427c05e0071730952cfc417d1a 3689 chromium_116.0.5845.110-1.dsc
 d33fca9d572fde6f353a272200d99408e9629ab3ee64acbe3db913cc1342d689 648375276 chromium_116.0.5845.110.orig.tar.xz
 0fcb559e67770e6feeaa09fa5416dc5f341b7aed3093190c66281c2e7aaeb2aa 383840 chromium_116.0.5845.110-1.debian.tar.xz
 b4f9dd1040ecda99e6a478c258e46c6a4c56f5b6f9ea879b6aa161e7e86e3341 21120 chromium_116.0.5845.110-1_source.buildinfo
Files:
 596e85c7502a772ba927c3014748e7a7 3689 web optional chromium_116.0.5845.110-1.dsc
 90664bbcdb871e8c54ec00b10e9d7e08 648375276 web optional chromium_116.0.5845.110.orig.tar.xz
 a549497a9122bd523ee4b74896843c45 383840 web optional chromium_116.0.5845.110-1.debian.tar.xz
 9c531734890f5575ac96dc3c54100f4f 21120 web optional chromium_116.0.5845.110-1_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=T85h
-----END PGP SIGNATURE-----
News for package chromium
