chromium - Debian Package Tracker

general

source: chromium (main)
version: 149.0.7827.196-1
maintainer: Debian Chromium Team (DMD)
uploaders: Andres Salomon [DMD] – Timothy Pearson [DMD] – Daniel Richard G. [DMD]
arch: all amd64 arm64 armhf i386 loong64 ppc64el
std-ver: 4.5.0
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 120.0.6099.224-1~deb11u1
o-o-sec: 120.0.6099.224-1~deb11u1
oldstable: 147.0.7727.137-1~deb12u1
old-sec: 149.0.7827.196-1~deb12u1
old-p-u: 149.0.7827.196-1~deb12u1
stable: 147.0.7727.137-1~deb13u1
stable-sec: 149.0.7827.196-1~deb13u1
stable-p-u: 149.0.7827.196-1~deb13u1
testing: 149.0.7827.196-1
unstable: 149.0.7827.196-1

versioned links

120.0.6099.224-1~deb11u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
147.0.7727.137-1~deb12u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
147.0.7727.137-1~deb13u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
149.0.7827.196-1~deb12u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
149.0.7827.196-1~deb13u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
149.0.7827.196-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

chromium (69 bugs: 1, 38, 30, 0)
chromium-common
chromium-driver
chromium-headless-shell
chromium-l10n
chromium-sandbox
chromium-shell

action needed

A new upstream version is available: 149.0.7827.200 high

A new upstream version 149.0.7827.200 is available, you should consider packaging it.

Created: 2026-06-28 Last update: 2026-06-29 19:03

3 security issues in trixie high

There are 3 open security issues in trixie.

3 important issues:

CVE-2026-13281: Integer overflow in Mojo in Google Chrome prior to 149.0.7827.201 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a malicious file. (Chromium security severity: High)
CVE-2026-13282: Use after free in Payments in Google Chrome on Android prior to 149.0.7827.201 allowed a local attacker to potentially exploit heap corruption via physical access to the device. (Chromium security severity: High)
CVE-2026-13283: Use after free in AdFilter in Google Chrome on Android prior to 149.0.7827.201 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)

Created: 2026-06-27 Last update: 2026-06-28 10:33

3 security issues in sid high

There are 3 open security issues in sid.

3 important issues:

CVE-2026-13281: Integer overflow in Mojo in Google Chrome prior to 149.0.7827.201 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a malicious file. (Chromium security severity: High)
CVE-2026-13282: Use after free in Payments in Google Chrome on Android prior to 149.0.7827.201 allowed a local attacker to potentially exploit heap corruption via physical access to the device. (Chromium security severity: High)
CVE-2026-13283: Use after free in AdFilter in Google Chrome on Android prior to 149.0.7827.201 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)

Created: 2026-06-27 Last update: 2026-06-28 10:33

3 security issues in forky high

There are 3 open security issues in forky.

3 important issues:

CVE-2026-13281: Integer overflow in Mojo in Google Chrome prior to 149.0.7827.201 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a malicious file. (Chromium security severity: High)
CVE-2026-13282: Use after free in Payments in Google Chrome on Android prior to 149.0.7827.201 allowed a local attacker to potentially exploit heap corruption via physical access to the device. (Chromium security severity: High)
CVE-2026-13283: Use after free in AdFilter in Google Chrome on Android prior to 149.0.7827.201 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)

Created: 2026-06-17 Last update: 2026-06-28 10:33

3 security issues in bookworm high

There are 3 open security issues in bookworm.

3 important issues:

CVE-2026-13281: Integer overflow in Mojo in Google Chrome prior to 149.0.7827.201 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a malicious file. (Chromium security severity: High)
CVE-2026-13282: Use after free in Payments in Google Chrome on Android prior to 149.0.7827.201 allowed a local attacker to potentially exploit heap corruption via physical access to the device. (Chromium security severity: High)
CVE-2026-13283: Use after free in AdFilter in Google Chrome on Android prior to 149.0.7827.201 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)

Created: 2026-06-25 Last update: 2026-06-28 10:33

lintian reports 16 errors and 3013 warnings high

Lintian reports 16 errors and 3013 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2026-06-18 Last update: 2026-06-25 17:17

4 bugs tagged help in the BTS normal

The BTS contains 4 bugs tagged help, please consider helping the maintainer in dealing with them.

Created: 2019-03-21 Last update: 2026-06-29 22:00

7 bugs tagged patch in the BTS normal

The BTS contains patches fixing 7 bugs, consider including or untagging them.

Created: 2026-06-02 Last update: 2026-06-29 22:00

Fails to build during reproducibility testing normal

A package building reproducibly enables third parties to verify that the source matches the distributed binaries. It has been identified that this source package produced different results, failed to build or had other issues in a test environment. Please read about how to improve the situation!

Created: 2026-05-06 Last update: 2026-06-29 21:00

1 new commit since last upload, is it time to release? normal

vcswatch reports that this package seems to have new commits in its VCS but has not yet updated debian/changelog. You should consider updating the Debian changelog and uploading this new version into the archive.

Here are the relevant commit logs:

commit 7c2fee2905828d2d7055d9a30ff51850232d828b
Author: Andres Salomon <dilinger@queued.net>
Date:   Wed Jun 24 14:44:40 2026 -0400

    Add CVEs to prior release

Created: 2026-06-24 Last update: 2026-06-25 09:32

5 open merge requests in Salsa normal

There are 5 open merge requests for this package on Salsa. You should consider reviewing and/or merging these merge requests.

Created: 2026-03-08 Last update: 2026-06-24 08:02

RFH: The maintainer is looking for help with this package. normal

The current maintainer is looking for someone who can help with the maintenance of this package. If you are interested in this package, please consider helping out. One way you can help is offer to be a co-maintainer or triage bugs in the BTS. Please see bug number #1016047 for more information.

Created: 2022-07-26 Last update: 2022-07-26 03:32

AppStream hints: 1 warning normal

AppStream found metadata issues for packages:

chromium: 1 warning

You should get rid of them to provide more metadata about this software.

Created: 2020-06-01 Last update: 2020-06-01 01:12

debian/patches: 140 patches to forward upstream low

Among the 144 debian patches available in version 149.0.7827.196-1 of the package, we noticed the following issues:

140 patches where the metadata indicates that the patch has not yet been forwarded upstream. You should either forward the patch upstream or update the metadata to document its real status.

Created: 2023-02-26 Last update: 2026-06-25 09:00

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.7.4 instead of 4.5.0).

Created: 2020-11-17 Last update: 2026-06-25 00:00

news

[rss feed]

[2026-06-29] chromium 149.0.7827.196-1 MIGRATED to testing (Debian testing watch)
[2026-06-28] Accepted chromium 149.0.7827.196-1~deb12u1 (source) into oldstable-proposed-updates (Debian FTP Masters) (signed by: Andres Salomon)
[2026-06-27] Accepted chromium 149.0.7827.196-1~deb13u1 (source) into proposed-updates (Debian FTP Masters) (signed by: Andres Salomon)
[2026-06-26] Accepted chromium 149.0.7827.196-1~deb12u1 (source) into oldstable-security (Debian FTP Masters) (signed by: Andres Salomon)
[2026-06-25] Accepted chromium 149.0.7827.196-1~deb13u1 (source) into stable-security (Debian FTP Masters) (signed by: Andres Salomon)
[2026-06-24] Accepted chromium 149.0.7827.196-1 (source) into unstable (Andres Salomon)
[2026-06-19] Accepted chromium 149.0.7827.155-1~deb12u1 (source) into oldstable-proposed-updates (Debian FTP Masters) (signed by: Andres Salomon)
[2026-06-19] Accepted chromium 149.0.7827.155-1~deb13u1 (source) into proposed-updates (Debian FTP Masters) (signed by: Andres Salomon)
[2026-06-18] Accepted chromium 149.0.7827.155-1~deb12u1 (source) into oldstable-security (Debian FTP Masters) (signed by: Andres Salomon)
[2026-06-18] Accepted chromium 149.0.7827.155-1~deb13u1 (source) into stable-security (Debian FTP Masters) (signed by: Andres Salomon)
[2026-06-17] Accepted chromium 149.0.7827.155-1 (source) into unstable (Andres Salomon)
[2026-06-17] chromium 149.0.7827.114-1 MIGRATED to testing (Debian testing watch)
[2026-06-15] Accepted chromium 149.0.7827.114-1~deb12u1 (source) into oldstable-proposed-updates (Debian FTP Masters) (signed by: Andres Salomon)
[2026-06-15] Accepted chromium 149.0.7827.114-1~deb13u1 (source) into proposed-updates (Debian FTP Masters) (signed by: Andres Salomon)
[2026-06-13] Accepted chromium 149.0.7827.114-1~deb13u1 (source) into stable-security (Debian FTP Masters) (signed by: Andres Salomon)
[2026-06-13] Accepted chromium 149.0.7827.114-1~deb12u1 (source) into oldstable-security (Debian FTP Masters) (signed by: Andres Salomon)
[2026-06-13] Accepted chromium 149.0.7827.102-1~deb12u1 (source) into oldstable-proposed-updates (Debian FTP Masters) (signed by: Andres Salomon)
[2026-06-13] Accepted chromium 149.0.7827.53-1~deb12u1 (source) into oldstable-proposed-updates (Debian FTP Masters) (signed by: Andres Salomon)
[2026-06-13] Accepted chromium 148.0.7778.215-1~deb12u1 (source) into oldstable-proposed-updates (Debian FTP Masters) (signed by: Andres Salomon)
[2026-06-13] Accepted chromium 149.0.7827.102-1~deb13u1 (source) into proposed-updates (Debian FTP Masters) (signed by: Andres Salomon)
[2026-06-13] Accepted chromium 149.0.7827.53-1~deb13u1 (source) into proposed-updates (Debian FTP Masters) (signed by: Andres Salomon)
[2026-06-13] Accepted chromium 148.0.7778.215-1~deb13u1 (source) into proposed-updates (Debian FTP Masters) (signed by: Andres Salomon)
[2026-06-13] Accepted chromium 149.0.7827.114-1 (source) into unstable (Andres Salomon)
[2026-06-10] Accepted chromium 149.0.7827.102-1~deb13u1 (source) into stable-security (Debian FTP Masters) (signed by: Andres Salomon)
[2026-06-10] Accepted chromium 149.0.7827.102-1~deb12u1 (source) into oldstable-security (Debian FTP Masters) (signed by: Andres Salomon)
[2026-06-09] Accepted chromium 149.0.7827.102-1 (source) into unstable (Andres Salomon)
[2026-06-07] Accepted chromium 149.0.7827.53-1~deb13u1 (source) into stable-security (Debian FTP Masters) (signed by: Andres Salomon)
[2026-06-07] Accepted chromium 149.0.7827.53-1~deb12u1 (source) into oldstable-security (Debian FTP Masters) (signed by: Andres Salomon)
[2026-06-06] Accepted chromium 149.0.7827.53-1 (source) into unstable (Andres Salomon)
[2026-06-02] Accepted chromium 148.0.7778.215-2 (source) into unstable (Juan Manuel Méndez Rey) (signed by: Andres Salomon)

bugs [bug history graph]

all: 80 86
RC: 1
I&N: 41 43
M&W: 38 42
F&P: 0
patch: 7
help: 4

links

homepage
lintian (16, 3013)
buildd: logs, reproducibility, cross
popcon
browse source code
other distros
security tracker
screenshots
debian patches