-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Tue, 07 Sep 2010 18:49:45 +0200 Source: chromium-browser Binary: chromium-browser chromium-browser-dbg chromium-browser-l10n chromium-browser-inspector Architecture: source all amd64 Version: 6.0.472.53~r57914-3 Distribution: unstable Urgency: low Maintainer: Debian Chromium Maintainers <pkg-chromium-maint@lists.alioth.debian.org> Changed-By: Giuseppe Iuculano <iuculano@debian.org> Description: chromium-browser - Chromium browser chromium-browser-dbg - chromium-browser debug symbols chromium-browser-inspector - page inspector for the chromium-browser chromium-browser-l10n - chromium-browser language packages Closes: 581347 582648 587398 593748 594057 Changes: chromium-browser (6.0.472.53~r57914-3) unstable; urgency=low . * Upload to unstable, this release fixes the following security issue: - [34414] Low Pop-up blocker bypass with blank frame target. Credit to Google Chrome Security Team (Inferno) and “ironfist99”. - [37201] Medium URL bar visual spoofing with homographic sequences. Credit to Chris Weber of Casaba Security. - [41654] Medium Apply more restrictions on setting clipboard content. Credit to Brook Novak. - [45659] High Stale pointer with SVG filters. Credit to Tavis Ormandy of the Google Security Team. - [45876] Medium Possible installed extension enumeration. Credit to Lostmon. - [46750] [51846] Low Browser NULL crash with WebSockets. Credit to Google Chrome Security Team (SkyLined), Google Chrome Security Team (Justin Schuh) and Keith Campbell. - [50386] High Use-after-free in Notifications presenter. Credit to Sergey Glazunov. - [50839] High Notification permissions memory corruption. Credit to Michal Zalewski of the Google Security Team and Google Chrome Security Team (SkyLined). - [51630] [51739] High Integer errors in WebSockets. Credit to Keith Campbell and Google Chrome Security Team (Cris Neckar). - [51653] High Memory corruption with counter nodes. Credit to kuzzcc. - [51727] Low Avoid storing excessive autocomplete entries. Credit to Google Chrome Security Team (Inferno). - [52443] High Stale pointer in focus handling. Credit to VUPEN Vulnerability Research Team (VUPEN-SR-2010-249). - [52682] High Sandbox parameter deserialization error. Credit to Ashutosh Mehra and Vineet Batra of the Adobe Reader Sandbox Team. - [53001] Medium Cross-origin image theft. Credit to Isaac Dawson. * Provide gnome-www-browser (Closes: #594057) * use startup-notification correctly (Closes: #581347) * the main scrollbar doesn'have anymore low contrast (Closes: #582648) * check DISPLAY envvar (Closes: #587398) * Doesn't segfault with cups (Closes: #593748) Checksums-Sha1: 179cfa01b5ba345c30b5df25e2796c0aedfd0e13 2323 chromium-browser_6.0.472.53~r57914-3.dsc 63e3ad98d622802d0eb7fe0187ab77a29d914060 219772 chromium-browser_6.0.472.53~r57914-3.debian.tar.gz f0c17f67e1e130ada12e8825e462029f3531fae7 2054856 chromium-browser-l10n_6.0.472.53~r57914-3_all.deb 4cf562f0fa1a483f518067121c5f7376226121a3 882532 chromium-browser-inspector_6.0.472.53~r57914-3_all.deb e15be8ee8c18f39ad6b969d50ca565cc0fc46867 13340974 chromium-browser_6.0.472.53~r57914-3_amd64.deb fe4efbb09f64ae717200795c159f613997f14f49 173497484 chromium-browser-dbg_6.0.472.53~r57914-3_amd64.deb Checksums-Sha256: 7cd6ea742049eeb2814b398f1a9a1263b4430231047937b732a9079bfc40684b 2323 chromium-browser_6.0.472.53~r57914-3.dsc f6f5b63324db9186ce180fe190fe06820404247ac1b7adf168a0e867972afc6d 219772 chromium-browser_6.0.472.53~r57914-3.debian.tar.gz 374efe764caa1c8a063304f1ca6d803f9fe746ebfdec2af6e2b389c67c89fe5f 2054856 chromium-browser-l10n_6.0.472.53~r57914-3_all.deb 4be121f915d40240c71fe979d84cff791ef7ff03cfb5e9d048d8edfaf54a8b48 882532 chromium-browser-inspector_6.0.472.53~r57914-3_all.deb 99cdb86c3009806b5871e91369de54f44f0869a9b1f2431967269110eccae441 13340974 chromium-browser_6.0.472.53~r57914-3_amd64.deb de0209ba7be38bf9d6e25bca7c56bdbc0f1371cb7ee2ce45c496c95cdf1c68be 173497484 chromium-browser-dbg_6.0.472.53~r57914-3_amd64.deb Files: 8c135c462413b6faf052fb12bd03a315 2323 web optional chromium-browser_6.0.472.53~r57914-3.dsc afb0ddf46e65df36aa6cdcc516cf4a91 219772 web optional chromium-browser_6.0.472.53~r57914-3.debian.tar.gz 9dd8a0fa22ee73d1b6ca5ae88037c157 2054856 web optional chromium-browser-l10n_6.0.472.53~r57914-3_all.deb 52662c5122fe2b06ac59795989fb97e7 882532 web optional chromium-browser-inspector_6.0.472.53~r57914-3_all.deb e46ce43efc48376a7953c96d471d2339 13340974 web optional chromium-browser_6.0.472.53~r57914-3_amd64.deb b1657984377fd4cc344d08f440c7038f 173497484 debug extra chromium-browser-dbg_6.0.472.53~r57914-3_amd64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iEYEARECAAYFAkyGnFcACgkQNxpp46476ar5nACeM+fEzxbcQCOXvm2XSjKXB1YF WP0An3b4EvfGXMXuPgTZDYJ1WmjGQBBR =VsBy -----END PGP SIGNATURE----- Accepted: chromium-browser-dbg_6.0.472.53~r57914-3_amd64.deb to main/c/chromium-browser/chromium-browser-dbg_6.0.472.53~r57914-3_amd64.deb chromium-browser-inspector_6.0.472.53~r57914-3_all.deb to main/c/chromium-browser/chromium-browser-inspector_6.0.472.53~r57914-3_all.deb chromium-browser-l10n_6.0.472.53~r57914-3_all.deb to main/c/chromium-browser/chromium-browser-l10n_6.0.472.53~r57914-3_all.deb chromium-browser_6.0.472.53~r57914-3.debian.tar.gz to main/c/chromium-browser/chromium-browser_6.0.472.53~r57914-3.debian.tar.gz chromium-browser_6.0.472.53~r57914-3.dsc to main/c/chromium-browser/chromium-browser_6.0.472.53~r57914-3.dsc chromium-browser_6.0.472.53~r57914-3_amd64.deb to main/c/chromium-browser/chromium-browser_6.0.472.53~r57914-3_amd64.deb