Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-devel-changes@lists.debian.org>
Subject: Accepted chromium 135.0.7049.95-1 (source) into unstable
Date: Wed, 16 Apr 2025 06:36:23 +0000
Signed by: Andres Salomon <dilinger@debian.org>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Tue, 15 Apr 2025 22:12:30 -0400
Source: chromium
Architecture: source
Version: 135.0.7049.95-1
Distribution: unstable
Urgency: high
Maintainer: Debian Chromium Team <chromium@packages.debian.org>
Changed-By: Andres Salomon <dilinger@debian.org>
Closes: 1103226
Changes:
 chromium (135.0.7049.95-1) unstable; urgency=high
 .
   [ Andres Salomon ]
   * New upstream security release.
     - CVE-2025-3619: Heap buffer overflow in Codecs. Reported by Elias Hohl.
     - CVE-2025-3620: Use after free in USB. Reported by @retsew0x01.
 .
   [ Daniel Richard G. ]
   * d/copyright, d/patches/system/rapidjson.patch: Slightly narrow the scope
     of the bundled RapidJSON deletion, and rework this patch so that it does
     not require the deletion in order to apply. This allows applying the
     debianization directly to the unrepackaged upstream tarball source.
   * d/patches/system/gperf.patch: Import (self-authored) upstream patch to
     prevent build breakage due to changes in gperf 3.2 generated code
     (closes: #1103226).
   * d/rules: Add new check-version rule to validate the package version.
     Also squelch error messages due to absent clang and rustc executables.
   * d/rules: Download Gentoo's upstream source tarball straight from GitHub.
Checksums-Sha1:
 82392eed459b6c5102684af39e45b76c09bbe4ac 3830 chromium_135.0.7049.95-1.dsc
 788415e107741e45c2401198c2acc79a46713659 915632280 chromium_135.0.7049.95.orig.tar.xz
 1488d6f786c2d65cee604996a4bc0d0a8ff6b87c 338164 chromium_135.0.7049.95-1.debian.tar.xz
 e62675bb6c78d297923218a01a32b3a3ffec1e50 27541 chromium_135.0.7049.95-1_source.buildinfo
Checksums-Sha256:
 75f001a88cbb123ba5115ee5842b03b82816a4197c76da8b40a5a8eb8392033f 3830 chromium_135.0.7049.95-1.dsc
 1eced33757e662834b6b37c6973d5ce06218fdac07e6fd1f18416d2fa932ccbe 915632280 chromium_135.0.7049.95.orig.tar.xz
 5eacdcd468d79fbae3a55b4426546fafc9ba205b77432d130d3f5788b8eb11c3 338164 chromium_135.0.7049.95-1.debian.tar.xz
 353cfb0de7939e2e9d9cae7eb8747392420a58e1c7d479ac16901b9c6bde1e4d 27541 chromium_135.0.7049.95-1_source.buildinfo
Files:
 c9fb6803bb18ded1d1b5fccb0d7c5911 3830 web optional chromium_135.0.7049.95-1.dsc
 9630d56c8bc9e437091b4a7d2d3cbba5 915632280 web optional chromium_135.0.7049.95.orig.tar.xz
 f84904194026fcc82668612b58f01681 338164 web optional chromium_135.0.7049.95-1.debian.tar.xz
 ee467cd4028cb59d4d500554e7f9b21c 27541 web optional chromium_135.0.7049.95-1_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=TZd+
-----END PGP SIGNATURE-----
News for package chromium
