-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Wed, 20 Dec 2023 21:05:12 -0500 Source: chromium Architecture: source Version: 120.0.6099.129-1~deb12u1 Distribution: bookworm-security Urgency: high Maintainer: Debian Chromium Team <chromium@packages.debian.org> Changed-By: Andres Salomon <dilinger@debian.org> Changes: chromium (120.0.6099.129-1~deb12u1) bookworm-security; urgency=high . * New upstream security release. - CVE-2023-7024: Heap buffer overflow in WebRTC. Reported by Clément Lecigne and Vlad Stolyarov of Google's Threat Analysis Group. Checksums-Sha1: d1d46142d17f2b742c132bbfcfb340d31a1fb709 3738 chromium_120.0.6099.129-1~deb12u1.dsc 195f8a546ae9f4f2aaaf9ecbf46f5d170c0c438b 791850524 chromium_120.0.6099.129.orig.tar.xz e33420e256a1e8cd0dc7e488341f5c552c895ac1 368788 chromium_120.0.6099.129-1~deb12u1.debian.tar.xz 078a16851ca982d9156f2cd2defcb954a95fd599 21472 chromium_120.0.6099.129-1~deb12u1_source.buildinfo Checksums-Sha256: bbabf0c084267a57577065798778fbb47e9dbb71cd9718318da034615712091c 3738 chromium_120.0.6099.129-1~deb12u1.dsc 3c47f899f9a064780f009f48b68f9699b303791cf1c34ab03a2c9658951228ba 791850524 chromium_120.0.6099.129.orig.tar.xz 6fa5c305509adf7207c6d1b296a617192f70bd8ea451540dd94cd2544f9b8104 368788 chromium_120.0.6099.129-1~deb12u1.debian.tar.xz 0e85f89ab53ed2d7cbcc4e46368af5101cbf8a3a0a739c32ca05c6d379b9267d 21472 chromium_120.0.6099.129-1~deb12u1_source.buildinfo Files: ce5b2eae6727a9ae69f329cc7472fa69 3738 web optional chromium_120.0.6099.129-1~deb12u1.dsc c63a36fda999a5015196140249a7fc90 791850524 web optional chromium_120.0.6099.129.orig.tar.xz 7ea3017d3dd241721da1074534d185e7 368788 web optional chromium_120.0.6099.129-1~deb12u1.debian.tar.xz 0a11573a09f3dbb2e4472ddd83d59f44 21472 web optional chromium_120.0.6099.129-1~deb12u1_source.buildinfo -----BEGIN PGP SIGNATURE----- iQJIBAEBCAAyFiEEUAUk+X1YiTIjs19qZF0CR8NudjcFAmWEApAUHGRpbGluZ2Vy QGRlYmlhbi5vcmcACgkQZF0CR8Nudjdntg//beJocv+5wDCyX/4OO7kK+Z0HVszF MJ/IZ9yLB+pJhzmJifcSIf7tGRh6xIG/LPt0YkHXSyCyTe4LX2SD82Hbu1ASQlBM CWZqY4m84cLLvABa1p5udD/s6R1+TpQHCnsIHcXw/L/nflmD4TaTyCv6z/FLggBu JXJpDATg2aruP5VsoD+ZgyFzohjJUczeB/o+k1Tc0V1KmUzdeOIB5rFFsQEK3ReA O5h/+AEjL+jSt6v8pEyAb2PMd/49YfBfNhcrnOeA4OoUEfAS8FLHCq+aIgIcZ43N C9HPd446K4ybslQi3WaELNSmyLrPIKWlZwUYZFLSB8dVXcL7pWpxBvN3MmpAGfU1 BSQPheOLGP/2iw8NxyeD+glgfVvoqAjgfQ8HZ9FI0zVpGgkj9GLiTPGmzg88OUIB L2+kzEezx8r6xJ0db8NBszQgeTkqE9PxRPLgjZQdSOG3luBY/OEG4zFOOKZBCUFZ WKIA4BTE+m4XP3bipwmoqranY8XQWWR5nPGWjncuq4oWPJTIVA21WYV3nX3z17mj er4vzMjephjxuOmtB3Olf1P743a0ooNesyLr02T0ltEFCO7O4rK0+uY+LXlr4Dh7 StkKhNl7ZV2O2U0cZ6MHpdyMjxklor/EB+/D8oU/Jwtea7WNXpnTOu8p0+oGK873 A5sp+0hkmlWxy8g= =Ju8j -----END PGP SIGNATURE-----