Accepted chromium-browser 13.0.782.107~r94237-1 (source all amd64)

To: debian-devel-changes@lists.debian.org
Subject: Accepted chromium-browser 13.0.782.107~r94237-1 (source all amd64)
From: Giuseppe Iuculano <iuculano@debian.org>
Date: Thu, 04 Aug 2011 13:52:00 +0000
Message-id: <[🔎] E1QoyLA-0003AC-IL@franck.debian.org>
Mail-followup-to: debian-devel@lists.debian.org
Reply-to: debian-devel@lists.debian.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Thu, 04 Aug 2011 11:02:34 +0200
Source: chromium-browser
Binary: chromium-browser chromium-browser-dbg chromium-browser-l10n chromium-browser-inspector chromium chromium-dbg chromium-l10n chromium-inspector
Architecture: source all amd64
Version: 13.0.782.107~r94237-1
Distribution: unstable
Urgency: high
Maintainer: Debian Chromium Maintainers <pkg-chromium-maint@lists.alioth.debian.org>
Changed-By: Giuseppe Iuculano <iuculano@debian.org>
Description: 
 chromium   - Chromium browser
 chromium-browser - Chromium browser - transitional dummy package
 chromium-browser-dbg - chromium-browser debug symbols transitional dummy package
 chromium-browser-inspector - page inspector for the chromium-browser - transitional dummy pack
 chromium-browser-l10n - chromium-browser language packages - transitional dummy package
 chromium-dbg - chromium-browser debug symbols
 chromium-inspector - page inspector for the chromium browser
 chromium-l10n - chromium-browser language packages
Changes: 
 chromium-browser (13.0.782.107~r94237-1) unstable; urgency=high
 .
   * New stable version
     - Medium CVE-2011-2358: Always confirm an extension install via a browser
       dialog. Credit to Sergey Glazunov.
     - High CVE-2011-2359: Stale pointer due to bad line box tracking in
       rendering. Credit to miaubiz and Martin Barbella.
     - Low CVE-2011-2360: Potential bypass of dangerous file prompt.
       Credit to kuzzcc.
     - Low CVE-2011-2361: Improve designation of strings in the basic auth
       dialog. Credit to kuzzcc.
     - Medium CVE-2011-2782: File permissions error with drag and drop.
       Credit to Evan Martin of the Chromium development community.
     - Medium CVE-2011-2783: Always confirm a developer mode NPAPI extension
       install via a browser dialog. Credit to Sergey Glazunov.
     - Low CVE-2011-2784: Local file path disclosure via GL program log.
       Credit to kuzzcc.
     - Low CVE-2011-2785: Sanitize the homepage URL in extensions.
       Credit to kuzzcc.
     - Low CVE-2011-2786: Make sure the speech input bubble is always on-screen.
       Credit to Olli Pettay of Mozilla.
     - Medium CVE-2011-2787: Browser crash due to GPU lock re-entrancy issue.
       Credit to kuzzcc.
     - Low CVE-2011-2788: Buffer overflow in inspector serialization.
       Credit to Mikołaj Małecki.
     - Medium CVE-2011-2789: Use after free in Pepper plug-in instantiation.
       Credit to Mario Gomes and kuzzcc.
     - High CVE-2011-2790: Use-after-free with floating styles.
       Credit to miaubiz.
     - High CVE-2011-2791: Out-of-bounds write in ICU. Credit to Yang Dingning
       from NCNIPC, Graduate University of Chinese Academy of Sciences.
     - High CVE-2011-2792: Use-after-free with float removal. Credit to miaubiz.
     - High CVE-2011-2793: Use-after-free in media selectors. Credit to miaubiz.
     - Medium CVE-2011-2794: Out-of-bounds read in text iteration.
       Credit to miaubiz.
     - Medium CVE-2011-2795: Cross-frame function leak. Credit to Shih Wei-Long.
     - High CVE-2011-2796: Use-after-free in Skia. Credit to Google Chrome
       Security Team (Inferno) and Kostya Serebryany of the Chromium
       development community.
     - High CVE-2011-2797: Use-after-free in resource caching. Credit to miaubiz.
     - Low CVE-2011-2798: Prevent a couple of internal schemes from being web
       accessible. Credit to sirdarckcat of the Google Security Team.
     - High CVE-2011-2799: Use-after-free in HTML range handling.
       Credit to miaubiz.
     - Medium CVE-2011-2800: Leak of client-side redirect target.
       Credit to Juho Nurminen.
     - High CVE-2011-2802: v8 crash with const lookups.
       Credit to Christian Holler.
     - Medium CVE-2011-2803: Out-of-bounds read in Skia paths.
       Credit to Google Chrome Security Team (Inferno).
     - High CVE-2011-2801: Use-after-free in frame loader. Credit to miaubiz.
     - High CVE-2011-2818: Use-after-free in display box rendering.
       Credit to Martin Barbella.
     - High CVE-2011-2805: Cross-origin script injection.
       Credit to Sergey Glazunov.
     - [90222] High CVE-2011-2819: Cross-origin violation in base URI handling.
       Credit to Sergey Glazunov.
   * Re-added binutils-gold in Build-depends
   * Refreshed patches
   * Switch to git
   * Use system vpx, flac, webp, speex libs
   * Build-depens on gyp >= 0.1~svn971
   * Run the gclient hooks when creating the source tarball, as we need files
     from the Native Client's integrated runtime (IRT) library
     (Thanks to Fabien Tassin)
   * Install the NaCL IRT files
   * Added a lintian override for the NaCL IRT files
Checksums-Sha1: 
 0f99e2f9941e267d61e504453209a2391910983a 2419 chromium-browser_13.0.782.107~r94237-1.dsc
 b747b496abb4f36d4c48261eae31333fa601bd88 224975604 chromium-browser_13.0.782.107~r94237.orig.tar.bz2
 19cc27e85da624ddcd4d7cbd20d33625619f6e7d 232881 chromium-browser_13.0.782.107~r94237-1.debian.tar.gz
 70fb94cc3f3fa81434937aa6c696a75a6f6f71a6 173504 chromium-browser_13.0.782.107~r94237-1_all.deb
 6c6f9f40b2a65c621cd066f3b73bca8fb723cad4 172856 chromium-browser-dbg_13.0.782.107~r94237-1_all.deb
 3c1490a7950c0759bd950d022cc7d53b6ff180bb 173004 chromium-browser-l10n_13.0.782.107~r94237-1_all.deb
 eae055dd8244397c101a67bc7a590276a4b8e248 172874 chromium-browser-inspector_13.0.782.107~r94237-1_all.deb
 e61555893f844d5396e41d841473f2120907e67c 5018304 chromium-l10n_13.0.782.107~r94237-1_all.deb
 cbc34a262e9fa3c80c7d6629e2c81a52aa0ea207 751078 chromium-inspector_13.0.782.107~r94237-1_all.deb
 dc7c4c1db30f3514c375ad78e087305a32af98fc 27577676 chromium_13.0.782.107~r94237-1_amd64.deb
 7e3c397f0b15db2d108153523688614341118daf 393154078 chromium-dbg_13.0.782.107~r94237-1_amd64.deb
Checksums-Sha256: 
 e49832dc64142ef89567657b6f6f20dcc9bea7229446f032a71694c1db0b5911 2419 chromium-browser_13.0.782.107~r94237-1.dsc
 bc06d95fc5a3b9ea54a725926a7b7c9cd4f51d0abaf6782e1538e28b0bc42c7b 224975604 chromium-browser_13.0.782.107~r94237.orig.tar.bz2
 b509645d7baf018c4241b423a7a1e5db7116afaf143216bf3f55e05263138d0f 232881 chromium-browser_13.0.782.107~r94237-1.debian.tar.gz
 053baff8e659c84b0ea28a36ad29b324e10bc70ffd08e49e127ad96e0097f54d 173504 chromium-browser_13.0.782.107~r94237-1_all.deb
 7277e4b83eb542c0fd0aadf29d7c74c0a6f228dac1ffd7e9284ce929d615f909 172856 chromium-browser-dbg_13.0.782.107~r94237-1_all.deb
 51b50cf73c33ca25dc2732882081c7b66de9bab56ec16ea1025a5d34fb074cf6 173004 chromium-browser-l10n_13.0.782.107~r94237-1_all.deb
 9a9e7d39295a0af521ba46380ab232ac933e28c1bc626fdcf4f8a845cd7e4205 172874 chromium-browser-inspector_13.0.782.107~r94237-1_all.deb
 59684daa19afbb6451eb3955c68dcb4c4178b110c4b9c1fe1b04732fd9208c2f 5018304 chromium-l10n_13.0.782.107~r94237-1_all.deb
 339db4192220b054ac7aa44433c7aecf6595cc9da5b5e9c78fd8f201f376f938 751078 chromium-inspector_13.0.782.107~r94237-1_all.deb
 1ced8b2bab82e1f082148436229e2d6a779f2f0bbfbd2cbf8c09631a7331da98 27577676 chromium_13.0.782.107~r94237-1_amd64.deb
 f6bb52b0f212ebd2f73b3cf48e7e75476e224eacaf1d3d45bf27960216d1e562 393154078 chromium-dbg_13.0.782.107~r94237-1_amd64.deb
Files: 
 60f1135d5cd7840a36f1ed59918c61b5 2419 web optional chromium-browser_13.0.782.107~r94237-1.dsc
 04258edefc74eab11a960f9525d5bba1 224975604 web optional chromium-browser_13.0.782.107~r94237.orig.tar.bz2
 c8fa328a6f11dda0e0b577f340ef0834 232881 web optional chromium-browser_13.0.782.107~r94237-1.debian.tar.gz
 68f7836973e948a561aafef2a2025ce2 173504 oldlibs optional chromium-browser_13.0.782.107~r94237-1_all.deb
 c2505aaccc6cf45caf35ab4227beaff5 172856 oldlibs optional chromium-browser-dbg_13.0.782.107~r94237-1_all.deb
 233a0f4af49f664e69f40b3c4aaf7b9e 173004 oldlibs optional chromium-browser-l10n_13.0.782.107~r94237-1_all.deb
 e2acddb7c1fc35f4a6b838ee47f167f0 172874 oldlibs optional chromium-browser-inspector_13.0.782.107~r94237-1_all.deb
 2fb3b65815560117d483f8e4c70fe135 5018304 web optional chromium-l10n_13.0.782.107~r94237-1_all.deb
 c44cff3a326864a3430d06ecfd4322d4 751078 web optional chromium-inspector_13.0.782.107~r94237-1_all.deb
 2cf8b186698ced787d6f06f96c0bc1a9 27577676 web optional chromium_13.0.782.107~r94237-1_amd64.deb
 5c49de4c38ad64e38f4ed27fb693af52 393154078 debug extra chromium-dbg_13.0.782.107~r94237-1_amd64.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)

iEYEARECAAYFAk46nc4ACgkQNxpp46476arftgCdEiXbhmOxknuIj/SR8jpb0iAv
+tIAn2bfP88SCW20qciLMSLZX+aaMkT/
=ktGt
-----END PGP SIGNATURE-----


Accepted:
chromium-browser-dbg_13.0.782.107~r94237-1_all.deb
  to main/c/chromium-browser/chromium-browser-dbg_13.0.782.107~r94237-1_all.deb
chromium-browser-inspector_13.0.782.107~r94237-1_all.deb
  to main/c/chromium-browser/chromium-browser-inspector_13.0.782.107~r94237-1_all.deb
chromium-browser-l10n_13.0.782.107~r94237-1_all.deb
  to main/c/chromium-browser/chromium-browser-l10n_13.0.782.107~r94237-1_all.deb
chromium-browser_13.0.782.107~r94237-1.debian.tar.gz
  to main/c/chromium-browser/chromium-browser_13.0.782.107~r94237-1.debian.tar.gz
chromium-browser_13.0.782.107~r94237-1.dsc
  to main/c/chromium-browser/chromium-browser_13.0.782.107~r94237-1.dsc
chromium-browser_13.0.782.107~r94237-1_all.deb
  to main/c/chromium-browser/chromium-browser_13.0.782.107~r94237-1_all.deb
chromium-browser_13.0.782.107~r94237.orig.tar.bz2
  to main/c/chromium-browser/chromium-browser_13.0.782.107~r94237.orig.tar.bz2
chromium-dbg_13.0.782.107~r94237-1_amd64.deb
  to main/c/chromium-browser/chromium-dbg_13.0.782.107~r94237-1_amd64.deb
chromium-inspector_13.0.782.107~r94237-1_all.deb
  to main/c/chromium-browser/chromium-inspector_13.0.782.107~r94237-1_all.deb
chromium-l10n_13.0.782.107~r94237-1_all.deb
  to main/c/chromium-browser/chromium-l10n_13.0.782.107~r94237-1_all.deb
chromium_13.0.782.107~r94237-1_amd64.deb
  to main/c/chromium-browser/chromium_13.0.782.107~r94237-1_amd64.deb
Reply to:
Prev by Date: Accepted r-cran-xml 3.4-2-1 (source i386)
Next by Date: Accepted effects 2.1.0-1 (source all)
Previous by thread: Accepted r-cran-xml 3.4-2-1 (source i386)
Next by thread: Accepted effects 2.1.0-1 (source all)
Index(es):
- Date
- Thread