-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Wed, 05 Feb 2025 00:18:56 -0500
Source: chromium
Architecture: source
Version: 133.0.6943.53-1
Distribution: unstable
Urgency: high
Maintainer: Debian Chromium Team <chromium@packages.debian.org>
Changed-By: Andres Salomon <dilinger@debian.org>
Changes:
chromium (133.0.6943.53-1) unstable; urgency=high
.
[ Andres Salomon ]
* New upstream stable release.
- CVE-2025-0444: Use after free in Skia.
Reported by Francisco Alonso (@revskills).
- CVE-2025-0445: Use after free in V8. Reported by 303f06e3.
- CVE-2025-0451: Inappropriate implementation in Extensions API.
Reported by Vitor Torres and Alesandro Ortiz.
* Stop deleting third_party/highway, drop libhwy-dev build-dep, and
build against the bundled libhwy due to new API requirements.
* d/patches:
- fixes/highway-include-path.patch: drop; switching to bundled hwy.
- upstream/array.patch: drop, merged upstream.
- upstream/ink-isfinite.patch: drop, merged upstream.
- upstream/ruy-include.patch: drop, merged upstream.
- upstream/uint.patch: drop, merged upstream.
- upstream/variant.patch: drop, merged upstream.
- upstream/webrtc-optional.patch: drop, merged upstream.
- fixes/perfetto.patch: drop, merged upstream.
- system/event.patch: drop, upstream no longer uses libevent.
- ungoogled/disable-privacy-sandbox.patch: refresh from upstream.
- fixes/highway-include-path.patch: delete a libhwy build test, add
another header build fix.
- bookworm/clang19.patch: add patch to disable unsupported build args
- fixes/optional.patch: add header build fix.
.
[ Timothy Pearson ]
* d/patches/ppc64le:
- third_party/0001-Add-PPC64-support-for-boringssl.patch: Refresh for
upstream changes
- third_party/0002-Add-PPC64-generated-files-for-boringssl.patch:
Refresh for upstream changes
- third_party/0002-third_party-libvpx-Remove-bad-ppc64-config.patch:
Refresh for upstream changes
- third_party/0001-third-party-hwy-wrong-include.patch: Work around
incorrect header include
Checksums-Sha1:
4650aa79f367c8400b4bfc96b8ef1bfd7fd3a262 3727 chromium_133.0.6943.53-1.dsc
5415f179c2c18b9ba028bb6b8354b901a7a8e819 882919156 chromium_133.0.6943.53.orig.tar.xz
489a8a4a252a1d310e8e1d7408754ef6093d5f60 330732 chromium_133.0.6943.53-1.debian.tar.xz
fef5a5d403860d2cb239118fe0a6c3a852a297fb 27287 chromium_133.0.6943.53-1_source.buildinfo
Checksums-Sha256:
48376a14c691aa681ba4cd8cb4d68ea8d6a705981c12b078180d264630ba6ff0 3727 chromium_133.0.6943.53-1.dsc
47b3adfe6611c43d63d8ce448beb8a2431c0e6f5a6dafff38b814c656d66b8c5 882919156 chromium_133.0.6943.53.orig.tar.xz
eef7a2c3df55ff5729ce098789849ea9b8f9e1e9a73202701957c2f929197386 330732 chromium_133.0.6943.53-1.debian.tar.xz
8ed08f1e2b46d1957cc773217975db122c004852f9ee57d3fe5cb19617588a9b 27287 chromium_133.0.6943.53-1_source.buildinfo
Files:
f9d0e469c3f5abc1b604bf8131fa4141 3727 web optional chromium_133.0.6943.53-1.dsc
fa6622b25ae411a280a93b3c386f8682 882919156 web optional chromium_133.0.6943.53.orig.tar.xz
9c82ec94b4ba7fe1f9721656efb2e4e5 330732 web optional chromium_133.0.6943.53-1.debian.tar.xz
92145a31286daf431a3eb1c39b9f2780 27287 web optional chromium_133.0.6943.53-1_source.buildinfo
-----BEGIN PGP SIGNATURE-----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=dwEt
-----END PGP SIGNATURE-----
Attachment:
pgp3pAtivJNbK.pgp
Description: PGP signature