[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Accepted chromium 125.0.6422.141-1~deb12u1 (source) into proposed-updates

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Thu, 30 May 2024 22:11:26 -0400
Source: chromium
Architecture: source
Version: 125.0.6422.141-1~deb12u1
Distribution: bookworm-security
Urgency: high
Maintainer: Debian Chromium Team <chromium@packages.debian.org>
Changed-By: Andres Salomon <dilinger@debian.org>
Changes:
 chromium (125.0.6422.141-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream security release.
     - CVE-2024-5493: Heap buffer overflow in WebRTC.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2024-5494: Use after free in Dawn. Reported by wgslfuzz.
     - CVE-2024-5495: Use after free in Dawn. Reported by wgslfuzz.
     - CVE-2024-5496: Use after free in Media Session.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2024-5497: Out of bounds memory access in Keyboard Inputs.
       Reported by zh1x1an1221 of Ant Group Tianqiong Security Lab.
     - CVE-2024-5498: Use after free in Presentation API.
     - CVE-2024-5499: Out of bounds write in Streams API.
   * d/patches/fixes/libxml-parseerr.patch: move to bookworm directory.
   * d/control: add versioned build-dep on libxml2-dev < 2.10.
Checksums-Sha1:
 fbdfab5617042e950bfc613f8ec79d2de8789c32 3782 chromium_125.0.6422.141-1~deb12u1.dsc
 4ff8c8e30a97f8d1ab49d5ba5578192552a941a5 843803988 chromium_125.0.6422.141.orig.tar.xz
 a7e820a624542ceb2dd76ee8bdc3ba491839f549 431964 chromium_125.0.6422.141-1~deb12u1.debian.tar.xz
 2d0cf307f342ba3ba40b80cbdca113431446352e 21917 chromium_125.0.6422.141-1~deb12u1_source.buildinfo
Checksums-Sha256:
 dda1ba4f2411759848d833280175ed16ce158dbeebf07699b04500bc14292117 3782 chromium_125.0.6422.141-1~deb12u1.dsc
 ce13fa96561b3a724af2e03b716c0b57d808b4e0bc13fbff9f52f46e7ff55710 843803988 chromium_125.0.6422.141.orig.tar.xz
 fc42b3f7abeff8a2be6061d50922fe546740f683ada00413e7e4683434106f7c 431964 chromium_125.0.6422.141-1~deb12u1.debian.tar.xz
 cf1e271d46a11e0b3dcf86975e48e362811815a07ff49fc7061eb8b3796c8910 21917 chromium_125.0.6422.141-1~deb12u1_source.buildinfo
Files:
 0f12bbc76c8373ef01bdb08cbf1be800 3782 web optional chromium_125.0.6422.141-1~deb12u1.dsc
 52c57240c0631b17b3d466c4cd9661f9 843803988 web optional chromium_125.0.6422.141.orig.tar.xz
 516e6bbfa639658c890ab6a13abf1c3c 431964 web optional chromium_125.0.6422.141-1~deb12u1.debian.tar.xz
 da3d8195eea3ffe66f5b3619b6d30932 21917 web optional chromium_125.0.6422.141-1~deb12u1_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=t/+d
-----END PGP SIGNATURE-----

Attachment: pgp1LezklQmQ8.pgp
Description: PGP signature

Reply to: