Accepted chromium 120.0.6099.71-1~deb12u1 (source) into proposed-updates

To: debian-changes@lists.debian.org
Subject: Accepted chromium 120.0.6099.71-1~deb12u1 (source) into proposed-updates
From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
Date: Tue, 12 Dec 2023 13:32:10 +0000
Message-id: <[🔎] E1rD2rq-004STU-8d@fasolo.debian.org>
Mail-followup-to: debian-devel@lists.debian.org
Reply-to: debian-devel@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Fri, 08 Dec 2023 11:40:41 -0500
Source: chromium
Architecture: source
Version: 120.0.6099.71-1~deb12u1
Distribution: bookworm-security
Urgency: high
Maintainer: Debian Chromium Team <chromium@packages.debian.org>
Changed-By: Andres Salomon <dilinger@debian.org>
Changes:
 chromium (120.0.6099.71-1~deb12u1) bookworm-security; urgency=high
 .
   [ Andres Salomon ]
   * New upstream stable release.
     - CVE-2023-6508: Use after free in Media Stream.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2023-6509: Use after free in Side Panel Search.
       Reported by Khalil Zhani.
     - CVE-2023-6510: Use after free in Media Capture. Reported by [pwn2car].
     - CVE-2023-6511: Inappropriate implementation in Autofill.
       Reported by Ahmed ElMasry.
     - CVE-2023-6512: Inappropriate implementation in Web Browser UI.
       Reported by Om Apip.
   * d/copyright: adjust path for chai.js & mocha.js deletion.
     - delete third_party/libsecret.
   * d/control: new build depends on libsecret-1-dev.
   * d/scripts/unbundle: keep bundled libhwy; it's not available in bullseye.
     - also keep vulkan_memory_allocator and flatbuffers.
   * d/patches:
     - fixes/gcc13-headers.patch: refresh.
     - fixes/blink-frags.patch: drop part of patch & refresh.
     - disable/catapult.patch: refresh.
     - disable/driver-chrome-path.patch: update for minor upstream changes.
     - ungoogled/disable-privacy-sandbox.patch: update from ungoogled-chromium.
     - ungoogled/disable-web-environment-integrity.patch: update from
       from ungoogled-chromium.
     - upstream/mojo.patch: update patch from upstream's git.
     - bookworm/clang16.patch: new patch working around upstream's clang18 flags.
     - upstream/nullptr_t.patch: more libstdc++13 build fixes.
     - upstream/string-include.patch: add a simple header include build fix.
     - fixes/absl-optional.patch: add a workaround for a clang bug
       (https://github.com/llvm/llvm-project/issues/50248) by providing our
       own 'optional' header.
     - bookworm/constcountrycode.patch: add workaround for older libstdc++.
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - third_party/0001-Add-PPC64-support-for-libdav1d.patch: refresh for
       upstream changes
     - third_party/0002-third_party-libvpx-Remove-bad-ppc64-config.patch:
       refresh for upstream changes
     - third_party/0003-third_party-ffmpeg-Add-ppc64-generated-config.patch:
       regenerate
     - third_party/skia-vsx-instructions.patch: refresh for upstream changes
     - third_party/use-sysconf-page-size-on-ppc64.patch: refresh for upstream
       changes
     - Mass refresh all other patches against 120 codebase.  No functional
       change.
Checksums-Sha1:
 2cdd24596b6131b29862ca191ea9e84036f750c8 3731 chromium_120.0.6099.71-1~deb12u1.dsc
 c3144a7d6cad23975cf06fa4d64da6a4dd913000 792499468 chromium_120.0.6099.71.orig.tar.xz
 4a53d67c275754e52d00425dec9f072d662ff6a2 368716 chromium_120.0.6099.71-1~deb12u1.debian.tar.xz
 64abab27a17f9b23d5a94e427a0b4f65fca13152 21468 chromium_120.0.6099.71-1~deb12u1_source.buildinfo
Checksums-Sha256:
 915621ba6baafaa2daa664debb814a6543f0916d8f9ab5f845b6be869f3bc9ae 3731 chromium_120.0.6099.71-1~deb12u1.dsc
 c5fe64346783113cb2f62c3e99ab33552c891609297f2791fda32ee440423d44 792499468 chromium_120.0.6099.71.orig.tar.xz
 2141c00e9519377fa26c0542b237d7c1ba29630d33b0e4c272fa25fcf2389cf7 368716 chromium_120.0.6099.71-1~deb12u1.debian.tar.xz
 b78d3b3e9fc43bd14d0a5e9068d1db6870041373d34f43c6a2f20978c2406861 21468 chromium_120.0.6099.71-1~deb12u1_source.buildinfo
Files:
 203f3ece110ba6cce8a49e228b7d3142 3731 web optional chromium_120.0.6099.71-1~deb12u1.dsc
 fca7891decb6f31586eeba635845226a 792499468 web optional chromium_120.0.6099.71.orig.tar.xz
 0051418f9e1f3db0635b61acf9b9a884 368716 web optional chromium_120.0.6099.71-1~deb12u1.debian.tar.xz
 d2992f73a38fa32ac6ec7eb04d9301c0 21468 web optional chromium_120.0.6099.71-1~deb12u1_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=rE4I
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: Accepted debian-installer-netboot-images 20230607+deb12u4 (source) into proposed-updates
Next by Date: Accepted libreoffice 4:7.4.7-1+deb12u1 (source) into proposed-updates
Previous by thread: Accepted debian-installer-netboot-images 20230607+deb12u4 (source) into proposed-updates
Next by thread: Accepted libreoffice 4:7.4.7-1+deb12u1 (source) into proposed-updates
Index(es):
- Date
- Thread