-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Wed, 01 Oct 2025 02:24:37 -0400
Source: chromium
Binary: chromium chromium-common chromium-common-dbgsym chromium-dbgsym chromium-driver chromium-headless-shell chromium-headless-shell-dbgsym chromium-l10n chromium-sandbox chromium-sandbox-dbgsym chromium-shell chromium-shell-dbgsym
Architecture: source amd64 all
Version: 141.0.7390.54-1~deb12u1
Distribution: bookworm-security
Urgency: high
Maintainer: Debian Chromium Team <chromium@packages.debian.org>
Changed-By: Andres Salomon <dilinger@debian.org>
Description:
chromium - web browser
chromium-common - web browser - common resources used by the chromium packages
chromium-driver - web browser - WebDriver support
chromium-headless-shell - web browser - old headless shell
chromium-l10n - web browser - language packs
chromium-sandbox - web browser - setuid security sandbox for chromium
chromium-shell - web browser - minimal shell
Changes:
chromium (141.0.7390.54-1~deb12u1) bookworm-security; urgency=high
.
* New upstream stable release.
- CVE-2025-11205: Heap buffer overflow in WebGPU.
Reported by Atte Kettunen of OUSPG.
- CVE-2025-11206: Heap buffer overflow in Video. Reported by Elias Hohl.
- CVE-2025-11207: Side-channel information leakage in Storage.
Reported by Alesandro Ortiz.
- CVE-2025-11208: Inappropriate implementation in Media.
Reported by Kevin Joensen.
- CVE-2025-11209: Inappropriate implementation in Omnibox.
Reported by Hafiizh.
- CVE-2025-11210: Side-channel information leakage in Tab.
Reported by Umar Farooq.
- CVE-2025-11211: Out of bounds read in Media. Reported by Kosir Jakob.
- CVE-2025-11212: Inappropriate implementation in Media.
Reported by Ameen Basha M K.
- CVE-2025-11213: Inappropriate implementation in Omnibox.
Reported by Hafiizh.
- CVE-2025-11215: Off by one error in V8. Reported by Google Big Sleep.
- CVE-2025-11216: Inappropriate implementation in Storage.
Reported by Farras Givari.
- CVE-2025-11219: Use after free in V8. Reported by Google Big Sleep.
* d/patches:
- fixes/rust-clanglib.patch: refresh.
- trixie/rust-no-alloc-shim.patch: refresh.
- ungoogled/disable-privacy-sandbox.patch: update from ungoogled.
- fixes/gentoo-stylesheet.patch: add patch from gentoo to fix build.
- fixes/libcpp-headers.patch: add build fix for unbundling clang.
* d/rules: set rtc_video_psnr=false for bookworm's older openh264.
.
[ Timothy Pearson ]
* d/patches/ppc64le:
- sandbox/0001-sandbox-Enable-seccomp_bpf-for-ppc64.patch: Refresh for
upstream changes
- fixes/fix-rustc.patch: Refresh for upstream changes
Checksums-Sha1:
a3640b5b100178dda4158e74a8e2c053b4da3481 4059 chromium_141.0.7390.54-1~deb12u1.dsc
0cde1117ab4610c147eb64c8f09fc1d360fe71df 1001962000 chromium_141.0.7390.54.orig.tar.xz
6f8068d1ac2333cfa6d001c2b8357003011f1d14 8502696 chromium_141.0.7390.54-1~deb12u1.debian.tar.xz
e82433ad72058c03fa225e460e43cb805351b947 5274204 chromium-common-dbgsym_141.0.7390.54-1~deb12u1_amd64.deb
e564cf4805afd22e29eff3e6a0bea56eb75e8234 22455040 chromium-common_141.0.7390.54-1~deb12u1_amd64.deb
1aac083656486ef284a56e2711a44e68c7f58ba7 33531220 chromium-dbgsym_141.0.7390.54-1~deb12u1_amd64.deb
8a2b18dbf7b74fd23c61668dc7e3e84e9999525a 7122948 chromium-driver_141.0.7390.54-1~deb12u1_amd64.deb
080520540a295ef7876b9bbe5502a8ba7ef0c5fa 27806780 chromium-headless-shell-dbgsym_141.0.7390.54-1~deb12u1_amd64.deb
a2680d69701519da73ff56562d0efeb1ce10aa6b 54286008 chromium-headless-shell_141.0.7390.54-1~deb12u1_amd64.deb
ca1a6f4c8e1d12c13c681f1a8dbe545f1e87e61a 8423640 chromium-l10n_141.0.7390.54-1~deb12u1_all.deb
ca13bf23bc5581b58db72ecbaa7a7268053fcc07 19368 chromium-sandbox-dbgsym_141.0.7390.54-1~deb12u1_amd64.deb
4c6281f66b453031f334a473458061c6fa922e3e 107132 chromium-sandbox_141.0.7390.54-1~deb12u1_amd64.deb
02f730fb2eb52abbd07d847a7c2ff75f94dbf751 29911912 chromium-shell-dbgsym_141.0.7390.54-1~deb12u1_amd64.deb
98e616725fd4a07baf2fbbc7849ca1ddc3d3d213 59013288 chromium-shell_141.0.7390.54-1~deb12u1_amd64.deb
7afdc4205bfb4dfe7b39afeb4c5fd916863b6047 30916 chromium_141.0.7390.54-1~deb12u1_amd64.buildinfo
56827567633bdf8a9b1a599d4fe98606146b5746 70337112 chromium_141.0.7390.54-1~deb12u1_amd64.deb
Checksums-Sha256:
7cccac5ec7dd4c9e223056db5c8b359b668fbc1f9e8e8bfe9f192d1f77415add 4059 chromium_141.0.7390.54-1~deb12u1.dsc
d3d28421c264a9ec46e99e65d8d162e49bd227d2e756d4bbc0d6d9a2f9248ba5 1001962000 chromium_141.0.7390.54.orig.tar.xz
ca1d78a70f413627ea90512ffb8673d50b250941aee984d36a80ca7c5566fa19 8502696 chromium_141.0.7390.54-1~deb12u1.debian.tar.xz
96e7f7b8d0a6ab3bc36c5811515d16692a32a53dec93e1f60508f91aa2de91bd 5274204 chromium-common-dbgsym_141.0.7390.54-1~deb12u1_amd64.deb
95d18b8a6febe700b56a15c4b2414c3a629f8f28fb053e4b1ab8bb34166c6dad 22455040 chromium-common_141.0.7390.54-1~deb12u1_amd64.deb
43ac1bfd4b4edfc06432f55f24e016585c69427028a981857760e4908580bac6 33531220 chromium-dbgsym_141.0.7390.54-1~deb12u1_amd64.deb
e70ef593500b8af6dd62f6f5aaa818ab3d57c259c0fa71d8c200614f0ff7bd51 7122948 chromium-driver_141.0.7390.54-1~deb12u1_amd64.deb
c0b895e18eebcfbb5489f3a0535d12b7f192e0c71109b75a76d6a6656b162d75 27806780 chromium-headless-shell-dbgsym_141.0.7390.54-1~deb12u1_amd64.deb
7f6ffcab35a80c39db1c61a968540f83d5490fb159667f7e53b0cb9324dc2cd9 54286008 chromium-headless-shell_141.0.7390.54-1~deb12u1_amd64.deb
7fad322f4a022fe1a2ec3d7840ed69b42afdaf9722b7d8075f2f05b4c7fc2d63 8423640 chromium-l10n_141.0.7390.54-1~deb12u1_all.deb
ed65d4d42f9378ec83325ae2481cb97385a4768befb5327a95dc113d978f7fea 19368 chromium-sandbox-dbgsym_141.0.7390.54-1~deb12u1_amd64.deb
930186b0f6cd750bd08349c025d3d2e92069cda45873f418cbc09879f1e66ced 107132 chromium-sandbox_141.0.7390.54-1~deb12u1_amd64.deb
cbb9a9f182625e00edf44beb5b1cefaad704da26d19e00cd5847aa4895c0d13e 29911912 chromium-shell-dbgsym_141.0.7390.54-1~deb12u1_amd64.deb
4d2c7f9a77587ead683cc28c554943de8e5e59c4a106833db71d3cbc155d7531 59013288 chromium-shell_141.0.7390.54-1~deb12u1_amd64.deb
fed94d41e21dd9e3f0c4d1a3e1731bf0760d70d7801be59da0d76f8a3cdb32a3 30916 chromium_141.0.7390.54-1~deb12u1_amd64.buildinfo
0bb413b1d5376fa89384acf67e004af1c9f55124995bb65d91aff4956204f2e2 70337112 chromium_141.0.7390.54-1~deb12u1_amd64.deb
Files:
ed24f0d63ea10f4a9c567123b09fdc5e 4059 web optional chromium_141.0.7390.54-1~deb12u1.dsc
c65eb99c82161e31658d445aefdb28ae 1001962000 web optional chromium_141.0.7390.54.orig.tar.xz
af3210349df27426f21896fbbd5007d8 8502696 web optional chromium_141.0.7390.54-1~deb12u1.debian.tar.xz
ed517c87f689ed992cdc473ceef7ee0a 5274204 debug optional chromium-common-dbgsym_141.0.7390.54-1~deb12u1_amd64.deb
c284b87efa5043919b9c6dd5e0d2fa3a 22455040 web optional chromium-common_141.0.7390.54-1~deb12u1_amd64.deb
b3422a350b3e6b9c1ce743a380869e08 33531220 debug optional chromium-dbgsym_141.0.7390.54-1~deb12u1_amd64.deb
f0a79ef8e890b9aae12ea78b47890362 7122948 web optional chromium-driver_141.0.7390.54-1~deb12u1_amd64.deb
27b666c51f71d09ac50d6e3efd1c4d3f 27806780 debug optional chromium-headless-shell-dbgsym_141.0.7390.54-1~deb12u1_amd64.deb
e1cd9baa09669f45a3019dc1fd63b7ab 54286008 web optional chromium-headless-shell_141.0.7390.54-1~deb12u1_amd64.deb
b973877b101684101253c3504ab3f07e 8423640 localization optional chromium-l10n_141.0.7390.54-1~deb12u1_all.deb
4681ba1b14e09caca67fb3f3b90e1afb 19368 debug optional chromium-sandbox-dbgsym_141.0.7390.54-1~deb12u1_amd64.deb
4d92727139d293ffb0a8e71f79877ca6 107132 web optional chromium-sandbox_141.0.7390.54-1~deb12u1_amd64.deb
d53ce69809a8b9a293180f6b4c3420a0 29911912 debug optional chromium-shell-dbgsym_141.0.7390.54-1~deb12u1_amd64.deb
d8d2eb0bdb91de6dbc4b47a59e557dbb 59013288 web optional chromium-shell_141.0.7390.54-1~deb12u1_amd64.deb
333f2fec8fecea50d44df3c890bb606f 30916 web optional chromium_141.0.7390.54-1~deb12u1_amd64.buildinfo
94f7f1b76aebbbb5d64a3d7ae6bcfc9f 70337112 web optional chromium_141.0.7390.54-1~deb12u1_amd64.deb
-----BEGIN PGP SIGNATURE-----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=GPes
-----END PGP SIGNATURE-----
