-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Thu, 16 Apr 2015 00:12:00 +0000 Source: chromium-browser Binary: chromium chromium-dbg chromium-l10n chromium-inspector chromedriver Architecture: source amd64 all Version: 42.0.2311.90-1 Distribution: unstable Urgency: medium Maintainer: Debian Chromium Maintainers <pkg-chromium-maint@lists.alioth.debian.org> Changed-By: Michael Gilbert <mgilbert@debian.org> Description: chromedriver - web browser - WebDriver support chromium - web browser chromium-dbg - web browser - debugging symbols chromium-inspector - web browser - page inspection support chromium-l10n - web browser - language packs Changes: chromium-browser (42.0.2311.90-1) unstable; urgency=medium . * New upstream stable release: - CVE-2015-1235: Cross-origin-bypass in HTML parser. Credit to anonymous. - CVE-2015-1236: Cross-origin-bypass in Blink. Credit to Amitay Dobo. - CVE-2015-1237: Use-after-free in IPC. Credit to Khalil Zhani. - CVE-2015-1238: Out-of-bounds write in Skia. Credit to cloudfuzzer. - CVE-2015-1240: Out-of-bounds read in WebGL. Credit to w3bd3vil. - CVE-2015-1241: Tap-Jacking. Credit to Phillip Moon and Matt Weston. - CVE-2015-1242: Type confusion in V8. Credit to fcole@onshape.com. - CVE-2015-1244: HSTS bypass in WebSockets. Credit to Mike Ruddy. - CVE-2015-1245: Use-after-free in PDFium. Credit to Khalil Zhani. - CVE-2015-1246: Out-of-bounds read in Blink. Credit to Atte Kettunen. - CVE-2015-1247: Scheme issues in OpenSearch. Credit to Jann Horn. - CVE-2015-1248: SafeBrowsing bypass. Credit to Vittorio Gambaletta. - CVE-2015-1249: Various fixes from internal audits, fuzzing and other initiatives. Also multiple issues in v8 4.2.77.14. Checksums-Sha1: 8031f174f05c64bb36b1ba971bc4a202dcf20c76 4032 chromium-browser_42.0.2311.90-1.dsc 6e70255793cc50ea9903998351839b3dfa9842ff 332349296 chromium-browser_42.0.2311.90.orig.tar.xz 1f309ea9166fe33837d13fb1b7100c93b2352edd 178316 chromium-browser_42.0.2311.90-1.debian.tar.xz b0033a415671ba4d189812f5e7d972b6f9e31c1a 37245820 chromium_42.0.2311.90-1_amd64.deb db7f01b0aa6781f173234baf23937636d3c4188e 599010770 chromium-dbg_42.0.2311.90-1_amd64.deb bf8f96745f8976a8c1c058a09c5badcb99c98359 3154986 chromium-l10n_42.0.2311.90-1_all.deb ef21fe814260477b15c568332cc8702b39205643 880134 chromium-inspector_42.0.2311.90-1_all.deb dbe2db0d1c57d5cc1116e1e80626f60c2ff6adc5 2192986 chromedriver_42.0.2311.90-1_amd64.deb Checksums-Sha256: 6a0f67bf7e41b9f7a4fc86dc9d7c7190795ab2160d52207930164cc1bcf68629 4032 chromium-browser_42.0.2311.90-1.dsc d42bf381a04025585089753a2e464f903a56786ab0ef5d6f92150f4ad34339b5 332349296 chromium-browser_42.0.2311.90.orig.tar.xz f5995fd1a49fb2b60c281782eff47cd00332b2df62caa4209e4bf89c453ab772 178316 chromium-browser_42.0.2311.90-1.debian.tar.xz 0f7a6b9b4b50a5e9701b5e570f1599a89a621b09ed222d7a01e050caf60cd597 37245820 chromium_42.0.2311.90-1_amd64.deb 3dc0d71eda91e9020c617aa40611bbb5659d173f105c48db610d835142ed3967 599010770 chromium-dbg_42.0.2311.90-1_amd64.deb a62374966bd94e712cbdd483a851bd1a272aa7f9b8275dbae4aa38d4e609582f 3154986 chromium-l10n_42.0.2311.90-1_all.deb 06800c5aced6476f8d0355c61090ba110bc4251f619fd07930309c0cbcee8eab 880134 chromium-inspector_42.0.2311.90-1_all.deb 1b1521daaae4bea923cd0d5f12649002a2f5fec50081ccf10b52e4c3c12c707e 2192986 chromedriver_42.0.2311.90-1_amd64.deb Files: 4c4a86e6c118955597b74dd205b5a4b7 4032 web optional chromium-browser_42.0.2311.90-1.dsc 5543df164db99bd73b64409af7d504e0 332349296 web optional chromium-browser_42.0.2311.90.orig.tar.xz cc03a909d20abbf1a9703f489bcabc70 178316 web optional chromium-browser_42.0.2311.90-1.debian.tar.xz 218f5ce7645a8d1285952ff87c9c78d2 37245820 web optional chromium_42.0.2311.90-1_amd64.deb 28b5d31974d43b0e4e26640a7d3f7ba9 599010770 debug extra chromium-dbg_42.0.2311.90-1_amd64.deb c069f9def089a65c470e195954be92a3 3154986 localization optional chromium-l10n_42.0.2311.90-1_all.deb 11821b675763e146255d0c8fb47e8db4 880134 web optional chromium-inspector_42.0.2311.90-1_all.deb c7741762b926e704a1f891b7f8631537 2192986 web optional chromedriver_42.0.2311.90-1_amd64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQQcBAEBCgAGBQJVLxIFAAoJELjWss0C1vRzkuIgAL8buP1gKlOJrl/ycYqgZyl2 GMJ0KExaMgSp86tszRujYcVzqzdo2ncwMOIDnUXBov36uJF2TsPYvNr0DuPVZRGq E5Q+loQ2JIzYDH319LJWgCsUYflE8k8vsKVvvo8V4fj4CGE6Lhe222u88XSosOE1 UN7IoWpwFJskt0YGy05KLTXRYpAOv+kbZwnLydZuKfMUBQpVmpfdfn58cWHbJK7G E7n6YvcrYCUql94QRJP1L9faq8ai9JD3kHylDGlqIXnIPVT4fnYEu9rfetr9npLE CZ1/HYTR1Bxsae632dgzNGsp2DIb5I1plXqXBiD4vBJ8JJjp+7q1licEoWEQgoff GlWS7O0Xjnd/1P3ObviwUp/6WMOKjnzQVSa2aptbuT2am4db/t3EoYibT9AV1Tcg uyW2efyfFhym5GAJ6wXgDCFsh/8mLVfwOd/IKU6lrRN24oMVHNolLXcN09BHpjv2 gGPJmABtzjJGN46JHoZRqJ+wrXP+Ch38+mAvuAkdUirO21KYw5VOHpvNlib0uJ3j +3/gW4gMt0FMffrXEnptVFREFBlUvYEMyxY+VnoiVd9sMDNYXvFRU3QVRfU55m+j NTzXOuvC4V0Ilbn+q2thY9gvwXRBwEU1/vym9JKI8doqr4qNQcaXnHNt62xauF94 2zlshoQRxqyCNdNFsdL/CiZf7j6n3SYddNAcy4FG7gII5ZInOYeI4PbQYTdaAhwM +TxzIhDhIgqGXhG9YjJ2TM09LNYdlIZrr+L3tg4MzM8+kMIHp3I98TitHho+A4a8 KXcBufBekdDNEQnAqQ4b8Ec+/arJI+yaVFPCK5qCapH5uXBAsby6DcJQiflbVen6 UEHr7FPfaz7gbKzn+F2lR039eg4GFEffFbeaZaJOy7gVYdIYfLfP9NSAoJbFpZM/ owU4vYnTXv3LYrCEgXEIT043dTvpYwBbgSNoJqO8SXemwTDrg5NYBNqMS0yreLQu 0xyxBvj/xsmF9Z9+MUc+bLoBZ0OSaltgC15pgx0Brvbe1JaFJkIKXJMccw1sNNt5 BffPKQPwhXDTg9yeDZXeUv2jq/0hpKieC/eTGMd78RZ+4c3URxxitzAr0mnZeXKV 2Dfqe2jrIH8eWUNcGUYCJ560X0pVYhw1nX8H0wVSF9e1OOnulYiDuz5m/ewOne3U WbftthWkxB6dyLekVfAPCzt/Vx4DVo0zMTfI1mv8Lpj++RV0m8gocTwcdIxp07fC Umvcz9H3HLeRVEEkIZtuYxIcnNfqRCQNogVYG6/Pl/6lZOdz11LMM9uscyNWXTAX z/Bky/bT96oyYUVwsDwq2695j86LdOxyczfKdYZsjJRg0lhcFlRDqqYltUWrP0k= =p0cd -----END PGP SIGNATURE-----