Debian Package Tracker

From: Michael Gilbert <mgilbert@debian.org>
To: <debian-changes@lists.debian.org>
Subject: Accepted chromium-browser 53.0.2785.89-1~deb8u1 (source i386 all) into proposed-updates->stable-new, proposed-updates
Date: Thu, 08 Sep 2016 19:47:36 +0000
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sun, 04 Sep 2016 23:50:11 +0000
Source: chromium-browser
Binary: chromium chromium-dbg chromium-l10n chromium-inspector chromedriver
Architecture: source i386 all
Version: 53.0.2785.89-1~deb8u1
Distribution: jessie-security
Urgency: medium
Maintainer: Debian Chromium Maintainers <pkg-chromium-maint@lists.alioth.debian.org>
Changed-By: Michael Gilbert <mgilbert@debian.org>
Description:
 chromedriver - web browser - WebDriver support
 chromium   - web browser
 chromium-dbg - web browser - debugging symbols
 chromium-inspector - web browser - page inspection support
 chromium-l10n - web browser - language packs
Changes:
 chromium-browser (53.0.2785.89-1~deb8u1) jessie-security; urgency=medium
 .
   * New upstream stable release:
     - CVE-2016-5147: Universal XSS in Blink. Credit to anonymous
     - CVE-2016-5148: Universal XSS in Blink. Credit to anonymous
     - CVE-2016-5149: Script injection in extensions. Credit to Max Justicz
     - CVE-2016-5150: Use after free in Blink. Credit to anonymous
     - CVE-2016-5151: Use after free in PDFium. Credit to anonymous
     - CVE-2016-5152: Heap overflow in PDFium. Credit to GiWan Go of Stealien
     - CVE-2016-5153: Use after destruction in Blink. Credit to Atte Kettunen
     - CVE-2016-5154: Heap overflow in PDFium. Credit to anonymous
     - CVE-2016-5155: Address bar spoofing. Credit to anonymous
     - CVE-2016-5156: Use after free in event bindings. Credit to jinmo123
     - CVE-2016-5157: Heap overflow in PDFium. Credit to anonymous
     - CVE-2016-5158: Heap overflow in PDFium. Credit to GiWan Go
     - CVE-2016-5159: Heap overflow in PDFium. Credit to GiWan Go
     - CVE-2016-5160: Extensions web accessible resources bypass. Credit to
       @l33terally
     - CVE-2016-5161: Type confusion in Blink.
     - CVE-2016-5162: Extensions web accessible resources bypass. Credit to
       Nicolas Golubovic
     - CVE-2016-5163: Address bar spoofing. Credit to Rafay Baloch
     - CVE-2016-5164: Universal XSS using DevTools. Credit to anonymous
     - CVE-2016-5165: Script injection in DevTools. Credit to Gregory Panakkal
     - CVE-2016-5166: SMB Relay Attack via Save Page As. Credit to Gregory
       Panakkal
     - CVE-2016-5167: Various fixes from internal audits, fuzzing and other
       initiatives.
Checksums-Sha1:
 85a879b09a1e3469f4bddd9e97429c87654a8e25 4054 chromium-browser_53.0.2785.89-1~deb8u1.dsc
 dae2e8945a16af41add3248235ff3ea58fe93859 471772292 chromium-browser_53.0.2785.89.orig.tar.xz
 21dc987526b3a6c8ed2a78cf47a118dbc3109885 181268 chromium-browser_53.0.2785.89-1~deb8u1.debian.tar.xz
 23125dd15ff80c5d08420f5f1eef33f9c029850d 41701840 chromium_53.0.2785.89-1~deb8u1_i386.deb
 af76358f30697c8c95b4cf87643564559aa37666 7748870 chromium-dbg_53.0.2785.89-1~deb8u1_i386.deb
 8a4cdae40f0fa8b252cd8267bdfc57bb319b8e50 3106728 chromium-l10n_53.0.2785.89-1~deb8u1_all.deb
 1c6a7e5078ec4a92d78a97c6b680e68fbfdf169b 1351444 chromium-inspector_53.0.2785.89-1~deb8u1_all.deb
 3568585ead3bd71954becdd027fdf0e44cbceb67 2667308 chromedriver_53.0.2785.89-1~deb8u1_i386.deb
Checksums-Sha256:
 196d530d51a2be3628e9af89ef2a17554aa8311b51fca2ba834977e89bea5ca6 4054 chromium-browser_53.0.2785.89-1~deb8u1.dsc
 6b5a2187330950f716e61e8d416c69751858139c1ae76e504ab97c56e7512c40 471772292 chromium-browser_53.0.2785.89.orig.tar.xz
 b0db2db00ffd5e1e8ad879fb31f4e8e4dea7519e8cfd09af06dfe6f37277529c 181268 chromium-browser_53.0.2785.89-1~deb8u1.debian.tar.xz
 d7ef399c26d398dd37fa0011f5922c9fcfe8f02256763504b1c58180a2310b4b 41701840 chromium_53.0.2785.89-1~deb8u1_i386.deb
 252d740dd98ae5035b0223818dba2eab5153244515caa331a06018569f59c603 7748870 chromium-dbg_53.0.2785.89-1~deb8u1_i386.deb
 24191c47957b5cdabb0402d29d29c2bd2d4feab57759296545c873e83f568ca2 3106728 chromium-l10n_53.0.2785.89-1~deb8u1_all.deb
 0a507c86a6d6db8f051578f1e55e97fe59f172d22e3a4c3161dd27103b9167cf 1351444 chromium-inspector_53.0.2785.89-1~deb8u1_all.deb
 c244e8cd0daab3b1ff62d33cc6890740ee3accc3e7c2616fcced4952ceffae57 2667308 chromedriver_53.0.2785.89-1~deb8u1_i386.deb
Files:
 046f52d1c267381e4c4977bd71eeda6f 4054 web optional chromium-browser_53.0.2785.89-1~deb8u1.dsc
 71bc7fcbb9e3ef6612e9e0582dbba60c 471772292 web optional chromium-browser_53.0.2785.89.orig.tar.xz
 eff1009f85a0bae576da2e5cc1f9932c 181268 web optional chromium-browser_53.0.2785.89-1~deb8u1.debian.tar.xz
 1d289fcb213e8fbead5390c369a88b24 41701840 web optional chromium_53.0.2785.89-1~deb8u1_i386.deb
 94db4ff24846167284c42fa709c1e677 7748870 debug extra chromium-dbg_53.0.2785.89-1~deb8u1_i386.deb
 ee73712f16a017c934348224e95ea9d7 3106728 localization optional chromium-l10n_53.0.2785.89-1~deb8u1_all.deb
 14aa0882f5ded36380452e89276ae817 1351444 web optional chromium-inspector_53.0.2785.89-1~deb8u1_all.deb
 d43b4bf28bcc5200dd59f301ec00a13f 2667308 web optional chromedriver_53.0.2785.89-1~deb8u1_i386.deb

-----BEGIN PGP SIGNATURE-----
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=
=TsKy
-----END PGP SIGNATURE-----
News for package chromium-browser
