-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Wed, 05 Mar 2025 13:26:45 -0500
Source: chromium
Binary: chromium chromium-common chromium-common-dbgsym chromium-dbgsym chromium-driver chromium-headless-shell chromium-headless-shell-dbgsym chromium-l10n chromium-sandbox chromium-sandbox-dbgsym chromium-shell chromium-shell-dbgsym
Architecture: source amd64 all
Version: 134.0.6998.35-1~deb12u1
Distribution: bookworm-security
Urgency: high
Maintainer: Debian Chromium Team <
chromium@packages.debian.org>
Changed-By: Andres Salomon <
dilinger@debian.org>
Description:
chromium - web browser
chromium-common - web browser - common resources used by the chromium packages
chromium-driver - web browser - WebDriver support
chromium-headless-shell - web browser - old headless shell
chromium-l10n - web browser - language packs
chromium-sandbox - web browser - setuid security sandbox for chromium
chromium-shell - web browser - minimal shell
Changes:
chromium (134.0.6998.35-1~deb12u1) bookworm-security; urgency=high
.
[ Andres Salomon ]
* New upstream stable release.
- CVE-2025-1914: Out of bounds read in V8. Reported by
Zhenghang Xiao (@Kipreyyy) and Nan Wang (@eternalsakura13).
- CVE-2025-1915: Improper Limitation of a Pathname to a Restricted
Directory in DevTools. Reported by Topi Lassila.
- CVE-2025-1916: Use after free in Profiles.
Reported by parkminchan, SSD Labs Korea.
- CVE-2025-1917: Inappropriate Implementation in Browser UI.
Reported by Khalil Zhani.
- CVE-2025-1918: Out of bounds read in PDFium. Reported by asnine.
- CVE-2025-1919: Out of bounds read in Media.
Reported by @Bl1nnnk and @Pisanbao.
- CVE-2025-1921: Inappropriate Implementation in Media Stream.
Reported by Kaiido.
- CVE-2025-1922: Inappropriate Implementation in Selection.
Reported by Alesandro Ortiz.
- CVE-2025-1923: Inappropriate Implementation in Permission Prompts.
Reported by Khalil Zhani.
* d/patches:
- fixes/widevine-revision.patch: drop. Upstream says "with CDMs using
manifest-based registration, no need to" hardcode version string.
- disable/catapult.patch: refresh.
- bookworm/clang19.patch: refresh.
- ungoogled/disable-privacy-sandbox.patch: refresh from ungoogled.
- bookworm/gn-allowlist.patch: add workaround for older gn.
- bookworm/adler1.patch: add workaround for older rust.
- fixes/stdatomic.patch: add build fix to ensure <stdatomic.h> isn't
used.
- fixes/variant.patch: add missing header include.
- upstream/qualifications.patch: add fix to silence annoying warnings.
- upstream/optional.patch: add more missing header includes.
- bookworm/constflatset.patch: refresh.
- bookworm/constexpr.patch: refresh.
- bookworm/modff.patch: add workaround for libstdc++ build issue.
- bookworm/foreach.patch: add workaround for libstdc++ build issue.
* d/rules: update to ensure both qt5 AND qt6 are disabled.
.
[ Timothy Pearson ]
* d/patches:
- fixes/swiftshader-llvm.patch: Add LLVM patches from upstream LLVM
project to fix integrated SwiftShader LLVM FTBFS
* d/patches/ppc64le:
- third_party/0001-Add-PPC64-support-for-boringssl.patch: Refresh for
upstream changes
Checksums-Sha1:
c993bc185f18537e16d8d06d0628880425eeab3a 3869 chromium_134.0.6998.35-1~deb12u1.dsc
332fa8cd06755604d127cd35ed7890a40dd22664 915150532 chromium_134.0.6998.35.orig.tar.xz
f397a11c8d235cae2e0b33eb758faab6bc3d259e 8421080 chromium_134.0.6998.35-1~deb12u1.debian.tar.xz
1547c44191a1e5dd4cd08d2477393f210a68ed07 4750796 chromium-common-dbgsym_134.0.6998.35-1~deb12u1_amd64.deb
7cc20ec61d30626c00a8fe4bb3c715bfa5e351a1 20253176 chromium-common_134.0.6998.35-1~deb12u1_amd64.deb
165fcdda7a45a3d0470a23a1eca322525089ff27 30378748 chromium-dbgsym_134.0.6998.35-1~deb12u1_amd64.deb
401ddcf57b8f6c9ae3d5bcbc5c84b3c1f28def8e 7527080 chromium-driver_134.0.6998.35-1~deb12u1_amd64.deb
cf8564bf7df7f64073d0e73372eca1f6624a430a 26022088 chromium-headless-shell-dbgsym_134.0.6998.35-1~deb12u1_amd64.deb
fc48c7a5bc603e523bfe475ad75d3cb5373a0f58 58055524 chromium-headless-shell_134.0.6998.35-1~deb12u1_amd64.deb
cfc5a691186b432eb1f177c6fda0a7d7108fb2ec 8085168 chromium-l10n_134.0.6998.35-1~deb12u1_all.deb
331a1b54df1375c12a8c00f8ddb5e4a0cf025ebf 14068 chromium-sandbox-dbgsym_134.0.6998.35-1~deb12u1_amd64.deb
8b3c5e767d32b366037fd34e054bf776573484d0 101104 chromium-sandbox_134.0.6998.35-1~deb12u1_amd64.deb
d80814cf5fc84a64c569dc612115a6da680c256e 25299312 chromium-shell-dbgsym_134.0.6998.35-1~deb12u1_amd64.deb
e09ccfe67b8af2f79d8b81467ca143a821fb1e6f 53617068 chromium-shell_134.0.6998.35-1~deb12u1_amd64.deb
5a68b9f3e5b885fd70b1e48b9f7eef09c0ebad57 30923 chromium_134.0.6998.35-1~deb12u1_amd64.buildinfo
064b41fd7320c28c336081fdedc9749c9a091569 78236272 chromium_134.0.6998.35-1~deb12u1_amd64.deb
Checksums-Sha256:
fb8375f9d5ebde9e4bee266884f729345c05d0963c1ba4af5f0d927af16c17a5 3869 chromium_134.0.6998.35-1~deb12u1.dsc
e5c25afaa1adbcc671f16ae7166e71bed20a01c99f979564cddafdf2ae2b1613 915150532 chromium_134.0.6998.35.orig.tar.xz
fc1f0be73a188606c0beb882c97a18072d6e4449b3301668ddcaf150cdf3e30f 8421080 chromium_134.0.6998.35-1~deb12u1.debian.tar.xz
36a441c536dbd7471b0071676db86c6f6600248965c34f3ca4869694a10c32ff 4750796 chromium-common-dbgsym_134.0.6998.35-1~deb12u1_amd64.deb
b565ef129f9b6da05f9f472abf246bbcd66fc711d5c6362b70c0b4bfb1387d59 20253176 chromium-common_134.0.6998.35-1~deb12u1_amd64.deb
f4e936822ee284e0e1c759fdf8039d8133aa4f812c0301b59ab79e46ba123309 30378748 chromium-dbgsym_134.0.6998.35-1~deb12u1_amd64.deb
56ed381889d8f396100d0a53b75855c2f7c13b09e408d7ac3ff3eae783aed347 7527080 chromium-driver_134.0.6998.35-1~deb12u1_amd64.deb
7a7c8d389135c7c060c6be7bc76139be8c4ad57b78b9435e90b748cdd45c4ee1 26022088 chromium-headless-shell-dbgsym_134.0.6998.35-1~deb12u1_amd64.deb
26da548ed74ec7884727b6e0936cbdf68cd12a3fbb07239b6651c62d042e6c93 58055524 chromium-headless-shell_134.0.6998.35-1~deb12u1_amd64.deb
3b33711cece2bb47d00b2df8f1f9fa7e110a06ee16a5c227c7b18f28a5c383b3 8085168 chromium-l10n_134.0.6998.35-1~deb12u1_all.deb
ea7a0ec66f3fb8ed0a509faf8e4720609f406b0e4a5232e52bf952f159f953d1 14068 chromium-sandbox-dbgsym_134.0.6998.35-1~deb12u1_amd64.deb
614bef018a5e93a6ff9d0423c041d43bd3142512509cbbf85c1802acef5c5729 101104 chromium-sandbox_134.0.6998.35-1~deb12u1_amd64.deb
0c1ee25a77b076eba63f8e4728f31b2a38b872404c2cb167201fa3ea68a566e2 25299312 chromium-shell-dbgsym_134.0.6998.35-1~deb12u1_amd64.deb
b3fb74cd4ff58116cc73df2f691973484e7a02e17ee8a9b257658832bfc8607c 53617068 chromium-shell_134.0.6998.35-1~deb12u1_amd64.deb
d36528b570ffd36b5875f505ae33dc16440cce7be92947d59fa606d3da99dfe2 30923 chromium_134.0.6998.35-1~deb12u1_amd64.buildinfo
754c4ab012dfb3941de6c460426e6de63370803547d2101c944e73b374f6f4ff 78236272 chromium_134.0.6998.35-1~deb12u1_amd64.deb
Files:
57bfac85f0bb0589de5f5302b036074b 3869 web optional chromium_134.0.6998.35-1~deb12u1.dsc
07428b758264b61deee55a23a3cf504e 915150532 web optional chromium_134.0.6998.35.orig.tar.xz
66e9cd9d8243318f2f53eb0a5d2ba0f1 8421080 web optional chromium_134.0.6998.35-1~deb12u1.debian.tar.xz
75a92f3c47cd0edf514c34105b0699d2 4750796 debug optional chromium-common-dbgsym_134.0.6998.35-1~deb12u1_amd64.deb
d6cfb989b56fd95ff8ac4c23ce7db0ef 20253176 web optional chromium-common_134.0.6998.35-1~deb12u1_amd64.deb
217933be1c2b7a8e472346e6c5fd0053 30378748 debug optional chromium-dbgsym_134.0.6998.35-1~deb12u1_amd64.deb
b8d04bcdecc3a163f09a120700ee68cc 7527080 web optional chromium-driver_134.0.6998.35-1~deb12u1_amd64.deb
6d421a650558136216c87b4e8cb86e98 26022088 debug optional chromium-headless-shell-dbgsym_134.0.6998.35-1~deb12u1_amd64.deb
6ca4ce38ea5af5ce2659c0a76cdb4c2c 58055524 web optional chromium-headless-shell_134.0.6998.35-1~deb12u1_amd64.deb
165512ac2c5d84490cad67d0d989ba8f 8085168 localization optional chromium-l10n_134.0.6998.35-1~deb12u1_all.deb
0d763e6e2187d2c29b87cdedad7816d9 14068 debug optional chromium-sandbox-dbgsym_134.0.6998.35-1~deb12u1_amd64.deb
ec3dee491d001face46c713f7d90ec5b 101104 web optional chromium-sandbox_134.0.6998.35-1~deb12u1_amd64.deb
e574456bdc7ec2fb852bb1d73a5e7343 25299312 debug optional chromium-shell-dbgsym_134.0.6998.35-1~deb12u1_amd64.deb
cc28aa96012a9f1c9d4d18e18fb77cab 53617068 web optional chromium-shell_134.0.6998.35-1~deb12u1_amd64.deb
324a3ce74efa51d05016ebad6816c416 30923 web optional chromium_134.0.6998.35-1~deb12u1_amd64.buildinfo
85b80d930e26d82886231b49c9bab310 78236272 web optional chromium_134.0.6998.35-1~deb12u1_amd64.deb
-----BEGIN PGP SIGNATURE-----
iQJIBAEBCAAyFiEEUAUk+X1YiTIjs19qZF0CR8NudjcFAmfJLvwUHGRpbGluZ2Vy QGRlYmlhbi5vcmcACgkQZF0CR8NudjdOJA//fzd+C5opZTwVOSwai4KfqtQRQc9e V/e+9jk5yoH885X3nPUsuwSY4nk8/4nsfvddJCe/uaWRFGhxIX4M5I5BwPPJu9zo REZ+yPCz9R/wJVgmS7Ifz0CmHb+kte2rRQMpOFYDITsXB0o5OXG2csYyLPVe/PU2 Zpz6YxmOhBccG8y2NkFnyeWNvuXm1athfWscXzj/z018zNaLTb/XbsvuavV9VbLm q3Srnk7g9fx6g8Wenkjk14tVJfskhV7+sGwPxMRp6h90QmMI+5azpXKO0Lh6P7z3 2ckvnBFjIJw5jyJlIa6FNQzpSwmdBVg3xUHLBuvXR1mN2SZALGwU6f+LYMUtx1GI tRGgxIAq6eLR09yHz0Cvn2eHAfnRfNzmhcn0eADqIwVfhNqSuuzasu/x4097wJQC 7z0UTwxVGZXNJeVwJigbfu9/KZwr3Sd3ttJQaLoka+RFtEEyemaQRw8W8HBxNuS0 8ec77w7i05ddEYaMwvllsJfVLKazN8Qm22Uk0D3n2BEvkjOFtd/84sZoRh61Fd5K aKutH3SzaNGCHfKhkoKD5dkPgT9hEPH1020SJrqLpO4UsXGPDrtaP0Ow4xogJAgV zJKEDl2lMB619lLFDJxnkHNCgbW3SELCl1mKEQSLfqa8bc5P4MLBojj08cEO55jb azsBgkylZL2Wrn0=
=V9vx
-----END PGP SIGNATURE-----
--==============å00512465030385503=Content-Type: application/pgp-signature
-----BEGIN PGP SIGNATURE-----
iHUEABYIAB0WIQTziqJOuF8J+ZI8pJSb9qggYcy5IQUCZ83GDgAKCRCb9qggYcy5 IWC7AP9aXxpQd/QreGyI4SXqA9BGOlT+YuwOdaHDdkkTPeOZogD/Xmo/5Wu+PCqk G//9POQpDjZxE176DRXk7wz/wYpSWQw=h1ar
-----END PGP SIGNATURE-----
--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)