-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Sat, 08 Jun 2013 10:49:37 +0200 Source: chromium-browser Binary: chromium-browser chromium-browser-dbg chromium-browser-l10n chromium-browser-inspector chromium chromium-dbg chromium-l10n chromium-inspector Architecture: source all amd64 Version: 27.0.1453.110-1~deb7u1 Distribution: stable-security Urgency: high Maintainer: Debian Chromium Maintainers <pkg-chromium-maint@lists.alioth.debian.org> Changed-By: Giuseppe Iuculano <iuculano@debian.org> Description: chromium - Google's open source chromium web browser chromium-browser - Chromium browser - transitional dummy package chromium-browser-dbg - chromium-browser debug symbols transitional dummy package chromium-browser-inspector - page inspector for the chromium-browser - transitional dummy pack chromium-browser-l10n - chromium-browser language packages - transitional dummy package chromium-dbg - Debugging symbols for the chromium web browser chromium-inspector - page inspector for the chromium browser chromium-l10n - chromium-browser language packages Changes: chromium-browser (27.0.1453.110-1~deb7u1) stable-security; urgency=high . * New stable release: - Medium CVE-2013-2855: Memory corruption in dev tools API. Credit to "daniel.zulla". - High CVE-2013-2856: Use-after-free in input handling. Credit to miaubiz. - High CVE-2013-2857: Use-after-free in image handling. Credit to miaubiz. - High CVE-2013-2858: Use-after-free in HTML5 Audio. Credit to "cdel921". - High CVE-2013-2859: Cross-origin namespace pollution. Credit to "bobbyholley". - High CVE-2013-2860: Use-after-free with workers accessing database APIs. Credit to Collin Payne. - High CVE-2013-2861: Use-after-free with SVG. Credit to miaubiz. - High CVE-2013-2862: Memory corruption in Skia GPU handling. Credit to Atte Kettunen of OUSPG. - Critical CVE-2013-2863: Memory corruption in SSL socket handling. Credit to Sebastien Marchand of the Chromium development community. - High CVE-2013-2864: Bad free in PDF viewer. Credit to Mateusz Jurczyk, with contributions by Gynvael Coldwind, both from Google Security Team. - High CVE-2013-2865: Various fixes from internal audits, fuzzing and other initiatives. Checksums-Sha1: 92f1b271c2eb4c99997be3011454d77f24a78655 3041 chromium-browser_27.0.1453.110-1~deb7u1.dsc 5b4bad375a667413da64b6c55a1a359bc99597b6 684195904 chromium-browser_27.0.1453.110.orig.tar.xz 104be239efd18153b5115d0e2c1a7866e508d1a1 257046 chromium-browser_27.0.1453.110-1~deb7u1.debian.tar.gz b9cf39b7814b22fb802504514bb0a9617b142a5b 160842 chromium-browser_27.0.1453.110-1~deb7u1_all.deb 043b8f0faac69b59da098e03d7e2a9689904ea32 160142 chromium-browser-dbg_27.0.1453.110-1~deb7u1_all.deb 7bf02540b1d5ef005d0ebc3bc5bff58ccf89a80d 160296 chromium-browser-l10n_27.0.1453.110-1~deb7u1_all.deb 815f276f8eaabd83230049fc8ede29552e3ad147 160158 chromium-browser-inspector_27.0.1453.110-1~deb7u1_all.deb 7f05ba16f9aa7f16a6921ffdc1016e10f0bb0963 2595098 chromium-l10n_27.0.1453.110-1~deb7u1_all.deb 49482e6fed20984db6e870448cb7d958cb96f3af 949360 chromium-inspector_27.0.1453.110-1~deb7u1_all.deb 83503c41845b7ee4cdd37f59c7f689a124fb9bc7 41140296 chromium_27.0.1453.110-1~deb7u1_amd64.deb 82956610f4d4e04a8801436c6c0ae8a53c1a0ba3 432646904 chromium-dbg_27.0.1453.110-1~deb7u1_amd64.deb Checksums-Sha256: 992e0acd619310e829985e60f7ea0b688709e5b9e18b7beaade18a144fd87342 3041 chromium-browser_27.0.1453.110-1~deb7u1.dsc 08e45e687f37453c996c71d3440853149dac7dd68c5a2732d435280436ddbb81 684195904 chromium-browser_27.0.1453.110.orig.tar.xz b0c9a062c06ad80371efd67984ef41bcc55c67add00ab5cd43a0fa56c61dfb59 257046 chromium-browser_27.0.1453.110-1~deb7u1.debian.tar.gz 13e92399fa589978d39b3e0f71291c90c0135aff9c8e32a37d85bb1b621c20b5 160842 chromium-browser_27.0.1453.110-1~deb7u1_all.deb d92311e639b1ff73ec45d8c8815a032402ddbe1f7d50664cdf1d256c62cea26f 160142 chromium-browser-dbg_27.0.1453.110-1~deb7u1_all.deb d2e6ed50943f30bbbbec09a11eae7d25029ed6b4dcea45e2fd220fa5331810c7 160296 chromium-browser-l10n_27.0.1453.110-1~deb7u1_all.deb c993b0b84152622953b97f0e8b3d89fbe775d6160b8332b9180ed6cd67b28c6c 160158 chromium-browser-inspector_27.0.1453.110-1~deb7u1_all.deb 5675c16778eeddd4325655c5a2a28da13b1656ab8e100e8b37992af8d600f288 2595098 chromium-l10n_27.0.1453.110-1~deb7u1_all.deb 20c06953f7b457a877032bd8e5ac55fcda60c6af55ee2ad95f2b6e52abb81ace 949360 chromium-inspector_27.0.1453.110-1~deb7u1_all.deb 83c262bf685c5954300a3718c3a7f8735b76f905ce1a816806f1680a1b1168b5 41140296 chromium_27.0.1453.110-1~deb7u1_amd64.deb 11be1b996abd2715dc8632918a4a887a64003f919cba234e4638205812cfcf16 432646904 chromium-dbg_27.0.1453.110-1~deb7u1_amd64.deb Files: 22700cab41effa76f45968aeee39cdb1 3041 web optional chromium-browser_27.0.1453.110-1~deb7u1.dsc c124fa0dda6d1f5e4cef63a41ba25805 684195904 web optional chromium-browser_27.0.1453.110.orig.tar.xz 5e32b44fd1c34df5afe38e8b6195b2ad 257046 web optional chromium-browser_27.0.1453.110-1~deb7u1.debian.tar.gz 022a6690c5e2df0853f10e73b661d48f 160842 oldlibs optional chromium-browser_27.0.1453.110-1~deb7u1_all.deb 9984d2528c25783ddead5aa1a18c7107 160142 oldlibs extra chromium-browser-dbg_27.0.1453.110-1~deb7u1_all.deb 484e94b8f0286d0871d62fe6bb837131 160296 oldlibs optional chromium-browser-l10n_27.0.1453.110-1~deb7u1_all.deb 511b679d22234ee6e392cc965febf5c0 160158 oldlibs optional chromium-browser-inspector_27.0.1453.110-1~deb7u1_all.deb 770e1d337815d2cdd2220ed47f80237d 2595098 web optional chromium-l10n_27.0.1453.110-1~deb7u1_all.deb 38b395914a80552b5a5f4b7cd568d429 949360 web optional chromium-inspector_27.0.1453.110-1~deb7u1_all.deb 2e50212fbc58b4a67327d12f4e83fc01 41140296 web optional chromium_27.0.1453.110-1~deb7u1_amd64.deb 1a6fc20265498b56d949695d06353f17 432646904 debug extra chromium-dbg_27.0.1453.110-1~deb7u1_amd64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iEYEARECAAYFAlGzCnMACgkQNxpp46476aozWwCeIn6Kho3tWSMi+yUNDOxIE4w5 chMAn1lYDaOexA2DpJTF+fDoSgvqXAJL =haBg -----END PGP SIGNATURE-----