Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-changes@lists.debian.org>
Subject: Accepted chromium 143.0.7499.109-1~deb13u1 (source) into proposed-updates
Date: Sat, 20 Dec 2025 11:32:15 +0000
Signed by: Andres Salomon <dilinger@debian.org>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Wed, 10 Dec 2025 22:14:03 -0500
Source: chromium
Architecture: source
Version: 143.0.7499.109-1~deb13u1
Distribution: trixie-security
Urgency: high
Maintainer: Debian Chromium Team <chromium@packages.debian.org>
Changed-By: Andres Salomon <dilinger@debian.org>
Changes:
 chromium (143.0.7499.109-1~deb13u1) trixie-security; urgency=high
 .
   [ Andres Salomon ]
   * New upstream security release.
     - CVE-????-?????: Under coordination.
     - CVE-2025-14372: Use after free in Password Manager.
       Reported by Weipeng Jiang (@Krace) of VRI.
     - CVE-2025-14373: Inappropriate implementation in Toolbar.
       Reported by Khalil Zhani.
 .
   [ Jianfeng Liu ]
   * set use_av1_hw_decoder=true for arm64 and add build dep
     linux-libc-dev (>= 6.5). This will enable V4L2 stateful/stateless AV1
     decoder found on some arm SoCs.
   * d/patches:
     - upstream/fix-rk3588-v4l2-av1-decoder.patch: Fixes upstream issue
       https://crbug.com/464638992. This patch is backported from v145
       and will fix green frame issue when playing av1 video on RK3588.
     - ppc64le/sandbox/0001-sandbox-Enable-seccomp_bpf-for-ppc64.patch:
       fix FTBFS on ppc64el related to conflicting kernel_stat patches.
Checksums-Sha1:
 3821357799777d5c7be93fd1897bd0a2004a1c74 4119 chromium_143.0.7499.109-1~deb13u1.dsc
 96ebe804db4181d9c936c38f83a47b4cf511cc7b 714315812 chromium_143.0.7499.109.orig.tar.xz
 95e22d4e84ab4dbad7610f8599d62c85eb9f030a 441088 chromium_143.0.7499.109-1~deb13u1.debian.tar.xz
 efcc5a893472f8d32ee027b2a1ca8d15525ee23f 26541 chromium_143.0.7499.109-1~deb13u1_source.buildinfo
Checksums-Sha256:
 3d0c691accccd96c300413e3852433de07ec0516a9e2e3e77ede6c90f74c08e0 4119 chromium_143.0.7499.109-1~deb13u1.dsc
 c20a7f0e317728e49f047840828cad4fefc7ae385bd9e4f063e7c22fa3dd914f 714315812 chromium_143.0.7499.109.orig.tar.xz
 1fba16601fa92ccec3664ba17976f0439f80651b8b3c8429e3bfdeef9411edb7 441088 chromium_143.0.7499.109-1~deb13u1.debian.tar.xz
 a819d1d069143427abf1b2ac4db25296788b421f5f0a5921f4521385d5447172 26541 chromium_143.0.7499.109-1~deb13u1_source.buildinfo
Files:
 d9d32e07de894c8c7b2537b19a26ecc4 4119 web optional chromium_143.0.7499.109-1~deb13u1.dsc
 6eb776ee2fd28c858e00e9cb18ffaebd 714315812 web optional chromium_143.0.7499.109.orig.tar.xz
 c4fb64ac45d8b527aee65e2e554216a7 441088 web optional chromium_143.0.7499.109-1~deb13u1.debian.tar.xz
 e9bbdd2129c1a223eadc3960a166ac3e 26541 web optional chromium_143.0.7499.109-1~deb13u1_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=kURu
-----END PGP SIGNATURE-----
News for package chromium
