-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Thu, 21 Jan 2016 23:36:50 +0000 Source: chromium-browser Binary: chromium chromium-dbg chromium-l10n chromium-inspector chromedriver Architecture: source i386 all Version: 48.0.2564.82-1~deb8u1 Distribution: jessie-security Urgency: medium Maintainer: Debian Chromium Maintainers <pkg-chromium-maint@lists.alioth.debian.org> Changed-By: Michael Gilbert <mgilbert@debian.org> Description: chromedriver - web browser - WebDriver support chromium - web browser chromium-dbg - web browser - debugging symbols chromium-inspector - web browser - page inspection support chromium-l10n - web browser - language packs Closes: 812569 Changes: chromium-browser (48.0.2564.82-1~deb8u1) jessie-security; urgency=medium . * New upstream stable release: - CVE-2016-1612: Bad cast in V8. Credit to cloudfuzzer. - CVE-2016-1613: Use-after-free in PDFium. Credit to anonymous. - CVE-2016-1614: Information leak in Blink. Credit to Christoph Diehl. - CVE-2016-1615: Origin confusion in Omnibox. Credit to Ron Masas. - CVE-2016-1616: URL Spoofing. Credit to Luan Herrera. - CVE-2016-1617: History sniffing with HSTS and CSP. Credit to jenuis. - CVE-2016-1618: Weak random number generator in Blink. Credit to Aaron Toponce. - CVE-2016-1619: Out-of-bounds read in PDFium. Credit to Keve Nagy. - CVE-2016-1620: Various fixes from internal audits, fuzzing and other initiatives. - Multiple vulnerabilities in V8 fixed at the tip of the 4.8 branch (currently 4.8.271.17). * Use ld.gold to avoid memory exhaustion while linking (closes: #812569). Checksums-Sha1: 6b9a31cbb8b143379ff2b602b1ec6ff6b9d24d97 4060 chromium-browser_48.0.2564.82-1~deb8u1.dsc ff138d87a621f076dda7c43470127f2e9900dca6 432111956 chromium-browser_48.0.2564.82.orig.tar.xz cc5c5da4c7921884a4b2e054f9216a64d5a174c6 179620 chromium-browser_48.0.2564.82-1~deb8u1.debian.tar.xz 13b4d4eee8d73a1a8bb665f566701555072d6f5b 39322604 chromium_48.0.2564.82-1~deb8u1_i386.deb ea505525d0bbf210f79238ba6d20e05c409a03a1 7170894 chromium-dbg_48.0.2564.82-1~deb8u1_i386.deb a3e8c4c574fd8aba4180af65a3af89faa0e3166b 3178144 chromium-l10n_48.0.2564.82-1~deb8u1_all.deb 03091a45dd3a8e8488dc32a1b23d1e80ae8b5ecf 1116942 chromium-inspector_48.0.2564.82-1~deb8u1_all.deb 743fe474085dc31a9eadfef709cc827c06aa5049 2431868 chromedriver_48.0.2564.82-1~deb8u1_i386.deb Checksums-Sha256: 97e42c0cf5bd73f9351950c849c1140a20eb96e3a06478c4eda55957e8e14baa 4060 chromium-browser_48.0.2564.82-1~deb8u1.dsc 576756b10e5a11eb7d64e9d066fff29aebcdc57f346cd9caa93e2ce03a94436e 432111956 chromium-browser_48.0.2564.82.orig.tar.xz ace5990f60d50c489361c3746f7514ffac2fab70e7bb76e71d5fe52744f19342 179620 chromium-browser_48.0.2564.82-1~deb8u1.debian.tar.xz 0e19e2873abef28176d9637386131900b2b0c161c6bc585a65c93aab81da9f84 39322604 chromium_48.0.2564.82-1~deb8u1_i386.deb 9c522f2f4f975b86cc11999553d5187ebc069aae25a855116d74dd6021c2c157 7170894 chromium-dbg_48.0.2564.82-1~deb8u1_i386.deb 2c2aba18d96df53c7b0252607e7e2903a401b1205bc26ffa38c3e36b391095aa 3178144 chromium-l10n_48.0.2564.82-1~deb8u1_all.deb 7514eac34716c00445d6cfc7a07ace36ab0781832c63a0941088fa79ac239a36 1116942 chromium-inspector_48.0.2564.82-1~deb8u1_all.deb 06500c732c8d36d14c1f30ba8daa31367daf381637f2e49230727e932e75d776 2431868 chromedriver_48.0.2564.82-1~deb8u1_i386.deb Files: 127a6cfb71c7fbba200f812eec9a3cdf 4060 web optional chromium-browser_48.0.2564.82-1~deb8u1.dsc 27b885370d37019249eae55c41b8ca36 432111956 web optional chromium-browser_48.0.2564.82.orig.tar.xz 143bd98e6a568a743d10dc8a4afbe502 179620 web optional chromium-browser_48.0.2564.82-1~deb8u1.debian.tar.xz 4ca8d5852074cb052294e318ebe43644 39322604 web optional chromium_48.0.2564.82-1~deb8u1_i386.deb d7cb5ece1e237245a4ea55ba06f267c9 7170894 debug extra chromium-dbg_48.0.2564.82-1~deb8u1_i386.deb e9b44521ac0b008e033b9bf7af8addf2 3178144 localization optional chromium-l10n_48.0.2564.82-1~deb8u1_all.deb 21e1c36bdbc876ea29468e9b300c862f 1116942 web optional chromium-inspector_48.0.2564.82-1~deb8u1_all.deb 846490c5c389e98357b378c7db8773c1 2431868 web optional chromedriver_48.0.2564.82-1~deb8u1_i386.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQQcBAEBCgAGBQJWqA9CAAoJELjWss0C1vRzqdcf/jpgWVbqqooBHIgaLXlg40WI VTPYE1E6L9VnBzQc0VaRAlgLtF0clw2w363dRliWYtVq6lyl8j/VwDrZGyPPJwl4 SGyNxpUSwt1MG+cG9eGy/wCxeerut5UYd2mLM1xPz6+vzCv7jSHh/e7PY17dCloP M6e3kiP0m/BLa92GnlZtRyqLi8Or0JB20qLXAG/LepF9l8c/gt9tz6pFrBFeS+80 dHVEBG1Cj4fsyKEa5ji9hPxfhSRZP77mEP4JW+AViVRwEE3eszy62m2s1ot3ExWW AjTSdskfoPoALJzahnLzuvuKPXNpyb9DcYwZEoMvF7DZoIvqn5KY+WnS5ZQTJt1f cDVMFc/F415qxpfvcVPCvz84PojBuRd9P+XBdcJoq3rOrshavpEzn0DNVTIDFQf2 pQt4CEdsY18Rb82blNU+28Ud81wCfyYyHlV5g4viiVZ7n6A5XaL3wCFhT1HtV0ZU ZYtsChAur5J66588powO1UKM9XdjKIQwrihFK0dfQGbebfaGt2gHaI6S+K5SNkEk ELWmd7GrWY+2sJ+IWLuoJCEjMmIBTKE1JyhCT8EmDasYcmpyiAtYTq96lg5WjnAi HbtEHrtCBbmWnC6OEQT1neJt9fgoXbL1ujrDa6tOX0F9Cr1oSGnmkPoFCVzFXgQ1 ekmrrKKywcxWdLF0VgS2uyLLw+183t68tyh7QyVsekBlUg+IF8b+dVOMJ2flWvt9 aN/P4S7I+GRzGEN/sW0zONFsDx3YuBQoa/nGNJUmLnAAKTEuu+cd9LEyXY4egI2Z CTUunnx/h12jjCypbUqFRU+4GbxE7vCeTYYSIoJ35M+4QCKDGh9xbM9P2XgjXH/E 7RPqN/9tsSQf6lXZDWr2T9J+CaBag6OQFM+HlDNv6LSFv/IL4BCKIiYF5uSDm64h 0p8ZWNPPrB2bKbPdGvf91eceiYsQ+nZNEI+4eKDydDjZhgStm8+KH1q26j2ZnEZY zM7rZBAkntyfqbMUyZD6xfV4mZPrrNccTka+8+yTd7DIl7ihqFcA9jYH/VmrdbL0 DUHfrTp5ramc7PyPgc5wT3T0WU7V7+HOQ9/AxhJuQUq1U4Vtm1O4RVl276S9OaCG 9g6+0kLUHhpQ1P49xuzWn09natAkK0hX4h1MaW4AV+EMHRQPrIqUORWiDnSIvbBS czu7RKP92GZwpI1vP46cPIpe9WAgEefgpxAl133G55gTCF/A6ZUx9M+j4ngbI4Ny aQMNq5ym3FYy2xWsRjbVqP37bLc4KoF8//FdwhpF5WYM1Ap6ocUu2gJfxMeWy73Q IJmnxdhwFHafxfL9g9qOagfo/cuUqY+f+lWfL29kAG5gFrjAbcC+F8sxChZ6xEQ= =Hrrw -----END PGP SIGNATURE-----