Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-devel-changes@lists.debian.org>
Subject: Accepted chromium 128.0.6613.137-1 (source) into unstable
Date: Wed, 11 Sep 2024 06:38:22 +0000
Signed by: Andres Salomon <dilinger@debian.org>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Tue, 10 Sep 2024 21:56:02 -0400
Source: chromium
Architecture: source
Version: 128.0.6613.137-1
Distribution: unstable
Urgency: high
Maintainer: Debian Chromium Team <chromium@packages.debian.org>
Changed-By: Andres Salomon <dilinger@debian.org>
Changes:
 chromium (128.0.6613.137-1) unstable; urgency=high
 .
   [ Andres Salomon ]
   * New upstream security release.
     - CVE-2024-8636: Heap buffer overflow in Skia.
       Reported by Renan Rios (@hyhy_100).
     - CVE-2024-8637: Use after free in Media Router. Reported by
       lime(@limeSec_) from TIANGONG Team of Legendsec at QI-ANXIN Group.
     - CVE-2024-8638: Type Confusion in V8.
       Reported by Zhenghang Xiao (@Kipreyyy).
     - CVE-2024-8639: Use after free in Autofill. Reported by
       lime(@limeSec_) from TIANGONG Team of Legendsec at QI-ANXIN Group.
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - core/add-ppc64-architecture-string.patch
     - fixes/fix-study-crash.patch
 .
   [ Daniel Richard G. ]
   * d/copyright: Add some more Files-Excluded: entries.
   * d/rules: Ensure all files in orig source tarball are user-writable.
   * d/patches/disable:
     - tests.patch: Break out SwiftShader tests deletion to...
     - tests-swiftshader.patch: ...a separate file, to simplify resolving
       conflicts with the ungoogled-chromium patch series.
Checksums-Sha1:
 a2915426c5af967a96ef2b2b226d3016eaeee1e1 3767 chromium_128.0.6613.137-1.dsc
 9aec51d0d91d7cdeceafec7238c395bb36e44adc 790404204 chromium_128.0.6613.137.orig.tar.xz
 45abef10cb1cba1f0728c28e9b02873b72005598 409508 chromium_128.0.6613.137-1.debian.tar.xz
 8c51720d2cd0bf7bbc238edcfd5022bf810b07a3 22855 chromium_128.0.6613.137-1_source.buildinfo
Checksums-Sha256:
 dcda790a1081165979ac44f508e7141c861636a8db6a5bbd038c6c30757502bf 3767 chromium_128.0.6613.137-1.dsc
 006d4d68d919679913c619012a67f8e784217faccf26861e804345fc8c2b919b 790404204 chromium_128.0.6613.137.orig.tar.xz
 70b6ce64d38cf1295d77bb1a6e6253187c5f44e4bc7a2e23c20722d869d44eb9 409508 chromium_128.0.6613.137-1.debian.tar.xz
 f629d3ee3b57337d7aca4725e36bc947587aad74ab0a31497ab6a75fc34ce9b2 22855 chromium_128.0.6613.137-1_source.buildinfo
Files:
 e342e0d26247694af91ef13acfd2c6f7 3767 web optional chromium_128.0.6613.137-1.dsc
 863ab68b92eab8b81ceab00c212bfe05 790404204 web optional chromium_128.0.6613.137.orig.tar.xz
 7f634a713348b748366a1dfcd9cdbd21 409508 web optional chromium_128.0.6613.137-1.debian.tar.xz
 face92987abee505f5a054287edecea8 22855 web optional chromium_128.0.6613.137-1_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=lpFr
-----END PGP SIGNATURE-----
News for package chromium
