Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-devel-changes@lists.debian.org>
Subject: Accepted chromium 132.0.6834.83-1 (source) into unstable
Date: Wed, 15 Jan 2025 05:20:28 +0000
Signed by: Andres Salomon <dilinger@debian.org>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Tue, 14 Jan 2025 21:20:43 -0500
Source: chromium
Architecture: source
Version: 132.0.6834.83-1
Distribution: unstable
Urgency: high
Maintainer: Debian Chromium Team <chromium@packages.debian.org>
Changed-By: Andres Salomon <dilinger@debian.org>
Changes:
 chromium (132.0.6834.83-1) unstable; urgency=high
 .
   [ Andres Salomon ]
   * New upstream stable release.
     - CVE-2025-0434: Out of bounds memory access in V8. Reported by ddme.
     - CVE-2025-0435: Inappropriate implementation in Navigation.
       Reported by Alesandro Ortiz.
     - CVE-2025-0436: Integer overflow in Skia.
       Reported by Han Zheng (HexHive).
     - CVE-2025-0437: Out of bounds read in Metrics.
       Reported by Xiantong Hou of Wuheng Lab and Pisanbao.
     - CVE-2025-0438: Stack buffer overflow in Tracing.
       Reported by Han Zheng (HexHive).
     - CVE-2025-0439: Race in Frames. Reported by Hafiizh.
     - CVE-2025-0440: Inappropriate implementation in Fullscreen.
       Reported by Umar Farooq.
     - CVE-2025-0441: Inappropriate implementation in Fenced Frames.
       Reported by someoneverycurious.
     - CVE-2025-0442: Inappropriate implementation in Payments.
       Reported by Ahmed ElMasry.
     - CVE-2025-0443: Insufficient data validation in Extensions.
       Reported by Anonymous.
     - CVE-2025-0446: Inappropriate implementation in Extensions.
       Reported by Hafiizh.
     - CVE-2025-0447: Inappropriate implementation in Navigation.
       Reported by Khiem Tran (@duckhiem).
     - CVE-2025-0448: Inappropriate implementation in Compositing.
       Reported by Dahyeon Park.
   * d/patches:
     - upstream/blink-fix-size-assertions.patch: drop, merged upstream.
     - upstream/dawn-strlen.patch: drop, merged upstream.
     - upstream/mrc-copy-op.patch: drop, merged upstream.
     - upstream/variant.patch: part of this was merged upstream; keep the
       rest.
     - fixes/freetype.patch: drop, merged upstream.
     - fixes/gpu-crash.patch: drop, merged upstream.
     - fixes/bindgen.patch: refresh and make patch even smaller. Also some
       upstream churn.
     - fixes/fix-assert-in-vnc-sessions.patch: refresh.
     - ungoogled/disable-privacy-sandbox.patch: refresh.
     - upstream/mojo.patch: fix missing files.
     - upstream/uint.patch: add gcc-specific build fix.
     - bookworm/constflatset.patch: add (probably) gcc-specific workaround.
     - fixes/lens-optional.patch: add gcc-specific build fix.
   * Downgrade to rollup3 for devtools-frontend stuff, due to the bundled
     rollup4 including wasm blobs. Update d/patches/system/rollup.patch to
     point to the right place as well, and build-dep on
     node-rollup-plugin-terser.
   * Build against newer bundled libtiff for memory limiting protection.
   * Switch to bundled libdrm due to DRM_IOCTL_SYNCOBJ_EVENTFD usage.
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - workarounds/HACK-debian-clang-disable-skia-musttail.patch: Drop due
       to upstream fixes
     - third_party/skia-vsx-instructions.patch: Refresh for upstream changes
Checksums-Sha1:
 6a2ac5947d52361bee9a95340897d89faebc4625 3742 chromium_132.0.6834.83-1.dsc
 9ea9ff13cbd95f21fb1e3a3aa8e32936e90c27f8 745627504 chromium_132.0.6834.83.orig.tar.xz
 8ac1e5611be753668e3b6603cf9725b7c53837b4 428768 chromium_132.0.6834.83-1.debian.tar.xz
 b77a86bf659f1f5e539541b4b36d36d8db06699c 27309 chromium_132.0.6834.83-1_source.buildinfo
Checksums-Sha256:
 94419fc0d752a5b648b2010be5bf446707e88c366d3a6c0dae1d8ec4d88086ae 3742 chromium_132.0.6834.83-1.dsc
 d6203713a2d1e1025e3817b06c08edb1406a9dd183cd72de623043948eab3ebf 745627504 chromium_132.0.6834.83.orig.tar.xz
 c3bc9e0898989942c28b03b9b2fdd9c8d7188dbe123c59312badef7400973af9 428768 chromium_132.0.6834.83-1.debian.tar.xz
 3a18d70271d1ffca22cf3b90b6c45aeac189ae3a464b9c54b57fba3637f86179 27309 chromium_132.0.6834.83-1_source.buildinfo
Files:
 0cb48327e8a1209864346a0143573eb8 3742 web optional chromium_132.0.6834.83-1.dsc
 4968d42e218807d81add6dd8088fa8ac 745627504 web optional chromium_132.0.6834.83.orig.tar.xz
 ad840722639271aa0044fb12a80690d8 428768 web optional chromium_132.0.6834.83-1.debian.tar.xz
 ad10d9db73a25f327accf7b6294c77d3 27309 web optional chromium_132.0.6834.83-1_source.buildinfo

-----BEGIN PGP SIGNATURE-----

iQJIBAEBCAAyFiEEUAUk+X1YiTIjs19qZF0CR8NudjcFAmeHORkUHGRpbGluZ2Vy
QGRlYmlhbi5vcmcACgkQZF0CR8NudjcnHQ//dAMg7GHg1bK0vCZUhKG8DEJ3HYzg
W7P6thLUnH/O9ptpTRT1EHRJELsVPi2wsHjPoTOKD/tdvw++fYxsrdmA/zGCAUwc
f9lR1VICBH5lbQuuZjFuD2iBtkucI6TdIyin+h7NOL1OLGR4UIjGa3qYsp2ByoYE
wznfl+GNAfickUZqxD9dP+3jLw/AWRKSXjLk4jDxDm5cNzb/M4KBaffZ5I5XGukM
+flhcWkpp7YvNr6agoK24l2JxwCE0sqh38DbQtjsy/0Y3gWi7ATlJ9XEOBiOKBOB
jWeZOqL6JdWgem+3XoiuAiGQxhKSVhwll34+sX4In+Ht10EzjR+r0gremR7QJfq5
JkFd0HDYs3NjVtDwEgk6EfYYQvg7qJaDp5z337dHVWT92YJZFBjcMqF//DqMXkWt
tczFW5gqM20zIQQFUT9eSg52WBqGHv39wOcGxh58Qqh5brYbWRur46VCG/M10EtU
CQ8awAZAw/OaLdS/+AcW9p7Acslt/Rox8K0tiO4HirFoq/awpJ5twKoK9M12tn2b
DT7VT/2dApXVcRKuC+61mpsSKeIFLUcyfGsfjBdQhh3cnjdIEBWrZDkDyfOe/JYp
Z8g4ok2Ql7k30ireXubkMkGuyAV80fKvrkXLl/nUQwP91pTjQBwaiMm5/6GsWPlr
ZYlLgd3js3QvEbw=
=S/7C
-----END PGP SIGNATURE-----
News for package chromium
