There are 23 open security issues in trixie.
Among the 120 debian patches available in version 124.0.6367.78-1 of the package, we noticed the following issues:
commit 727087cbbfc986a865c2ea875bc5b9028e79b999 Author: Andres Salomon <dilinger@queued.net> Date: Fri Apr 26 14:16:21 2024 -0400 unbundle harfbuzz-ng and switch to using libharfbuzz-dev Now that debian has harfbuzz-subset0, chromium is happy. commit d76256b762c3b473ac51cbec36a9212201da4af5 Author: Timothy Pearson <tpearson@raptorengineering.com> Date: Fri Apr 26 16:45:26 2024 +0000 Fix inadvertent breakage of i386 build commit 0ef9a36c98ec9b5470c281fff7a63dfc713a875e Author: Andres Salomon <dilinger@queued.net> Date: Thu Apr 25 23:02:50 2024 -0400 stop using bundled dav1d and use packaged libdav1d instead Tested on bookworm & sid. Build-dep on libdav1d-dev, & delete the bundled third_party/dav1d. We can also drop some dav1d-specific patches as well.