1. Forum
  2. Usenet
  3. LINUX.DEBIAN.CHANGES

  • Accepted chromium 131.0.6778.139-1~deb12u1 (source) into proposed-updat

    From Debian FTP Masters@21:1/5 to All on Sun Dec 15 23:10:02 2024
    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA256

    Format: 1.8
    Date: Wed, 11 Dec 2024 15:33:53 -0500
    Source: chromium
    Architecture: source
    Version: 131.0.6778.139-1~deb12u1
    Distribution: bookworm-security
    Urgency: high
    Maintainer: Debian Chromium Team <chromium@packages.debian.org>
    Changed-By: Andres Salomon <dilinger@debian.org>
    Changes:
    chromium (131.0.6778.139-1~deb12u1) bookworm-security; urgency=high
    .
    [ Andres Salomon ]
    * New upstream security release.
    - CVE-2024-12381: Type Confusion in V8.
    Reported by Seunghyun Lee (@0x10n).
    - CVE-2024-12382: Use after free in Translate. Reported by
    lime(@limeSec_) from TIANGONG Team of Legendsec at QI-ANXIN Group.
    * (Temporarily?) switch from llvm's libc++ to gcc's libstdc++ to
    simplify the prior clang-16/19 upgrades.
    * d/patches:
    - fixes/bindgen.patch: refresh.
    - upstream/dawn-strlen.patch: add gcc-specific build fix.
    - upstream/ink-isfinite.patch: add gcc-specific build fix.
    - upstream/webrtc-optional.patch: add gcc-specific build fix.
    - upstream/variant.patch: add gcc-specific build fixes.
    - upstream/array.patch: add gcc-specific build fix.
    - fixes/absl-optional.patch: re-introduce clang/gcc build workaround.
    - upstream/mrc-copy-op.patch: add gcc-specific build fix.
    - fixes/font-gc-asan.patch: add a better workaround for bad font-gc
    behavior under libstdc++. This is self-contained and small, unlike
    the prior reverts of the switch to font garbage collection.
    - bookworm/constexpr.patch: re-enable (and refresh) build fix
    specifically for gcc 12.
    - bookworm/constexpr2.patch: re-enable build fix for gcc 12.
    - bookworm/bubble-contents.patch: re-enable build fix for gcc 12.
    .
    [ Nathan Teodosio ]
    * Simplify fixes/bindgen.patch so it doesn't need frequent rebasing.
    .
    [ Daniel Richard G. ]
    * d/copyright: Expand list of Files-Excluded: entries.
    * d/rules: Various updates to get-orig-source rule, including use of
    grep-dctrl(1) and the LASTCHANGE.committime timestamp.
    * d/scripts/check-upstream: Avoid issues with inaccurate $(pwd) value and
    spaces in filenames, and print all errors instead of only the first one. Checksums-Sha1:
    b33bce1048996f3448fc977d6cdeede755c658e4 3786 chromium_131.0.6778.139-1~deb12u1.dsc
    6f7d2127ba0901a01cda465dcb1858c265966ef1 767269748 chromium_131.0.6778.139.orig.tar.xz
    322e1c4c41ca25f637010e42895131c405c52b05 8509064 chromium_131.0.6778.139-1~deb12u1.debian.tar.xz
    ec41a700fb5f614d2898362b93c32ee466ad596d 22111 chromium_131.0.6778.139-1~deb12u1_source.buildinfo
    Checksums-Sha256:
    b322d5e42925008f00ff0ef6081f51f9c90238c63b903bb35c002c6fe9a2d32c 3786 chromium_131.0.6778.139-1~deb12u1.dsc
    759e351454012489e542ce83d7ee2c0aa0e1b97a2360c75da6649db06c0d4c0f 767269748 chromium_131.0.6778.139.orig.tar.xz
    90d07a0252cbabde229d22a2759b9d4465f792ba5a5750bad1e3f0b6886b8819 8509064 chromium_131.0.6778.139-1~deb12u1.debian.tar.xz
    0d16e2c55d6d4fd9b0d08f48548186d5e9fed06165948449fefd86f21c1a9f0b 22111 chromium_131.0.6778.139-1~deb12u1_source.buildinfo
    Files:
    90a0596e706c73adfe514e5a10b1f43a 3786 web optional chromium_131.0.6778.139-1~deb12u1.dsc
    e480ad3b863b0a65c94083451b3dd6c1 767269748 web optional chromium_131.0.6778.139.orig.tar.xz
    b70be4ebe218b3a5959096024a3bd836 8509064 web optional chromium_131.0.6778.139-1~deb12u1.debian.tar.xz
    571759d3a1d66adb6c9d45910060b838 22111 web optional chromium_131.0.6778.139-1~deb12u1_source.buildinfo

    -----BEGIN PGP SIGNATURE-----

    iQJIBAEBCAAyFiEEUAUk+X1YiTIjs19qZF0CR8NudjcFAmdaN2wUHGRpbGluZ2Vy QGRlYmlhbi5vcmcACgkQZF0CR8NudjdQSg/+PSSVin+OpXQhhmJlCBLUpK3jjX+E Eg05Cn5iypgZ86aMcj12hjdrIvdO3xA8q3H3Nao4RBgy48JWj8UL9JT1Hpw2QSUj tSa8XwTxjL5osYfC52K7fJAFpFHSLGzFZyN4RwxA4mA34dLorsgCAM2cvkmeSujh Vxa/lsSV0GeCkmgP5uygLnRaMbQwnoFgkqiObEi//4FrtVRpBwZ9gzqVMyujRx67 4U2MzCwOpRhlrc+5w3Y+obEf42/zQvS+J3UzMaqPnuhuLuYy12G8Ir5pU5hgdvdP U88VMUwHB5qA2gAxqG8k+ZZxuAqyfDW4f9DWmiOHEp6/3z1wxvdt9fdCy+L5+PE1 FZQKRLYIp56JD5tLrisYMR6HRB+YfNOsP0FwZVgB/wuJb8UKYMJn9sItI7YB4GqH Lm2Kmju1/ZcjxoFpLIpyoz3oaiv76ieMipbvn55Ivd4Bq6BxBSm6z/wMQe7HMToh xs3CmNBYg3XSc4YNIVc5zaHDK0AYE7HgMOkrKQtn0aASIJhN6auc6hE8mhBzwdaI Sun+BARTG00QhvlcJUhsd59qd6Ts4AWeUZ7AyopYgocPut3MWKN1b6i63wdGCZz1 aDFBoHSBXH/3oIjNk68v+5EmbZDiDSlZLxZck5u/iaDETamWjBd2qFyFAn7lSzV5 kKS4SCsi6rjEY3M=
    =yc/z
    -----END PGP SIGNATURE-----


    --==============x04009816861597407=Content-Type: application/pgp-signature

    -----BEGIN PGP SIGNATURE-----

    iHUEABYIAB0WIQTziqJOuF8J+ZI8pJSb9qggYcy5IQUCZ19SJwAKCRCb9qggYcy5 IRshAQCAiW+qLZ5bki9TOmxUi+4H1oyPXdGZ2bvzfkRfDqMfMgD+LEtGKaUkByx0 /nSMWXS/jyMDsEcJqcAZOnN3qZ0g1AQπyN
    -----END PGP SIGNATURE-----

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)