-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Wed, 02 Oct 2024 01:07:19 -0400 Source: chromium Architecture: source Version: 129.0.6668.89-1~deb12u1 Distribution: bookworm-security Urgency: high Maintainer: Debian Chromium Team <chromium@packages.debian.org> Changed-By: Andres Salomon <dilinger@debian.org> Closes: 1033747 1077345 1082907 Changes: chromium (129.0.6668.89-1~deb12u1) bookworm-security; urgency=high . * New upstream security release. - CVE-2024-7025: Integer overflow in Layout. Reported by Tashita Software Security. - CVE-2024-9369: Insufficient data validation in Mojo. Reported by Xiantong Hou and Pisanbao of Wuheng Lab. - CVE-2024-9370: Inappropriate implementation in V8. Reported by Nguyễn Hoàng Thạch, Đỗ Minh Tuấn, and Wu JinLin of STAR Labs SG Pte Ltd. * d/patches: - bookworm/libxml-parseerr.patch: readd for downgraded libxml2 in unstable (closes: #1082907). - upstream/wayland-gbm-pixmap.patch: backport two patches to fix noisy wayland video playback (closes: #1077345). * Build against system libtiff, thanks to Soren Stoutner <soren@stoutner.com> for getting this fixed upstream (closes: #1033747). Checksums-Sha1: e1d2701790391e9f7e23ed15e65664991ac87484 3812 chromium_129.0.6668.89-1~deb12u1.dsc 64c765dc49a302d32eac17fb3a1ef617af0a9c5e 785983212 chromium_129.0.6668.89.orig.tar.xz a79e274b3a8c24a0480909f839cab738d82f5ab7 8493596 chromium_129.0.6668.89-1~deb12u1.debian.tar.xz 72be8697f54501945221b3e76629bb68a7d9b8c1 22071 chromium_129.0.6668.89-1~deb12u1_source.buildinfo Checksums-Sha256: d9e58d9971e85ae8e9402cb7bdad51b7e00e110f5be8c53622cdffd1077b942a 3812 chromium_129.0.6668.89-1~deb12u1.dsc 37e708e7f361085361b7739d413ae9e7d4df23a288a5d77f783696b6f87bc529 785983212 chromium_129.0.6668.89.orig.tar.xz 5b0c132042f754d3c610c5384acae4b49bb9d47a72bf1519022acadf9a4d40dc 8493596 chromium_129.0.6668.89-1~deb12u1.debian.tar.xz 22d4d8c377aa2824431a267c5529e549e328729cf9eee09e5fe7873a26dfb53f 22071 chromium_129.0.6668.89-1~deb12u1_source.buildinfo Files: ee225c10514e5f88f000881df418387e 3812 web optional chromium_129.0.6668.89-1~deb12u1.dsc 5c9f3591bbfd2290ae2d7d840f08160e 785983212 web optional chromium_129.0.6668.89.orig.tar.xz c704f1ba285626fc9db7187747eca91e 8493596 web optional chromium_129.0.6668.89-1~deb12u1.debian.tar.xz f82f478c12263dbb2874653e4b6ea0cd 22071 web optional chromium_129.0.6668.89-1~deb12u1_source.buildinfo -----BEGIN PGP SIGNATURE----- iQJIBAEBCAAyFiEEUAUk+X1YiTIjs19qZF0CR8NudjcFAmb9zqsUHGRpbGluZ2Vy QGRlYmlhbi5vcmcACgkQZF0CR8Nudje9Qg//dFKgAmdw2V2WnJ353dw8oMCAQqRb 9u0auv/sFKnN3rjizANKJfbEph0FgXa3AQbD95VpJojihRdvYtOWnwlz9mtthUri SeM2cummQF2/BaQF7Saj++XLhQixZ9zI3EWB3zih0VeNgoH60c/xkq5Y/eLrytBc RZotVbRlOWstmNFIsin7TAu3mFaNcR40TJRNd06dBXy4RZeP95TwYymJBiileMGa YNUurR4DyQBpiJtw2u8fvfVn/BpATZCl1+vNLNCOX9c25sM2T41kxYTK8xzRMBr7 W3VNeVMMUOE2hMrUWlqrmlNB/bbVbAqnFelbcQanDdTCP0veUPnYbss/e5TWQVom GtGaejQ2h/qpaLtkBOu0LNuCau/+C0znNxCMAxI17lwbcj0id+oYWWUxgChKqSLU IqaZjtyuedz11l/tpRHxBJrmQN4T4lpD6ByAMuplx7lrL5Di5l5u9fGYs3yj2uFt JzbjCon8LyQCUZPh/D4v4PmlRB1ag+onxSwMjfgkjnmAThnZk06tE0nLTXeCyKmt P78q6FmvG6r8Qg4tdqFVuIx8ET/zOHrWgqBjy+c97hDaiZyJhYVvOuwCZV8DAKDf zNp9S6XtKT25S6uRO7dGCa7bgvhHaWNJMnItHTkivE4o1ZSlNtopEgM7OHAK8Onj qpgrx0TGNvjyRks= =J0mc -----END PGP SIGNATURE-----