Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-devel-changes@lists.debian.org>
Subject: Accepted chromium 125.0.6422.141-1 (source) into unstable
Date: Fri, 31 May 2024 18:01:14 +0000
Signed by: Andres Salomon <dilinger@debian.org>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Thu, 30 May 2024 22:11:26 -0400
Source: chromium
Architecture: source
Version: 125.0.6422.141-1
Distribution: unstable
Urgency: high
Maintainer: Debian Chromium Team <chromium@packages.debian.org>
Changed-By: Andres Salomon <dilinger@debian.org>
Changes:
 chromium (125.0.6422.141-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2024-5493: Heap buffer overflow in WebRTC.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2024-5494: Use after free in Dawn. Reported by wgslfuzz.
     - CVE-2024-5495: Use after free in Dawn. Reported by wgslfuzz.
     - CVE-2024-5496: Use after free in Media Session.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2024-5497: Out of bounds memory access in Keyboard Inputs.
       Reported by zh1x1an1221 of Ant Group Tianqiong Security Lab.
     - CVE-2024-5498: Use after free in Presentation API.
     - CVE-2024-5499: Out of bounds write in Streams API.
   * d/patches/fixes/libxml-parseerr.patch: delete, now that we have a
     newer libxml2.
   * d/control: add versioned build-dep on libxml2-dev >= 2.12.
Checksums-Sha1:
 fba4f676bfff13fb1dea22511ee10ff125ba9418 3766 chromium_125.0.6422.141-1.dsc
 4ff8c8e30a97f8d1ab49d5ba5578192552a941a5 843803988 chromium_125.0.6422.141.orig.tar.xz
 59069dd7ae903827a439a5eccd58a17476cfbbfd 429780 chromium_125.0.6422.141-1.debian.tar.xz
 16639d8e7a6edb1ff33fc75fb53ba8470cfc3643 22116 chromium_125.0.6422.141-1_source.buildinfo
Checksums-Sha256:
 087febcb95acd7aa90499ba300a634fed3bb15f47f01c79ecd28323bdedfe282 3766 chromium_125.0.6422.141-1.dsc
 ce13fa96561b3a724af2e03b716c0b57d808b4e0bc13fbff9f52f46e7ff55710 843803988 chromium_125.0.6422.141.orig.tar.xz
 c729fe8121d1c0a9be37d8f915340a9650be0122cc360f22ce7e7dc4c3333aad 429780 chromium_125.0.6422.141-1.debian.tar.xz
 aa4d954bbc1c5aebe3690fce4ce87c18b16c834242527e6abc01fdbc1135c331 22116 chromium_125.0.6422.141-1_source.buildinfo
Files:
 dd16d6c1d38d3eadb955a3e2200971b0 3766 web optional chromium_125.0.6422.141-1.dsc
 52c57240c0631b17b3d466c4cd9661f9 843803988 web optional chromium_125.0.6422.141.orig.tar.xz
 7a3253fa82a8f0edca52a5774fff5853 429780 web optional chromium_125.0.6422.141-1.debian.tar.xz
 750a6cb1b323deb76798408800e87323 22116 web optional chromium_125.0.6422.141-1_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=gxh8
-----END PGP SIGNATURE-----
News for package chromium
