-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 14 Jan 2025 21:20:43 -0500
Source: chromium
Binary: chromium chromium-common chromium-common-dbgsym chromium-dbgsym chromium-driver chromium-sandbox chromium-sandbox-dbgsym chromium-shell chromium-shell-dbgsym
Architecture: ppc64el
Version: 132.0.6834.83-1~deb12u1
Distribution: bookworm-security
Urgency: high
Maintainer: ppc64el Build Daemon (ppc64el-osuosl-02) <buildd_ppc64el-ppc64el-osuosl-02@buildd.debian.org>
Changed-By: Andres Salomon <dilinger@debian.org>
Description:
 chromium   - web browser
 chromium-common - web browser - common resources used by the chromium packages
 chromium-driver - web browser - WebDriver support
 chromium-sandbox - web browser - setuid security sandbox for chromium
 chromium-shell - web browser - minimal shell
Changes:
 chromium (132.0.6834.83-1~deb12u1) bookworm-security; urgency=high
 .
   [ Andres Salomon ]
   * New upstream stable release.
     - CVE-2025-0434: Out of bounds memory access in V8. Reported by ddme.
     - CVE-2025-0435: Inappropriate implementation in Navigation.
       Reported by Alesandro Ortiz.
     - CVE-2025-0436: Integer overflow in Skia.
       Reported by Han Zheng (HexHive).
     - CVE-2025-0437: Out of bounds read in Metrics.
       Reported by Xiantong Hou of Wuheng Lab and Pisanbao.
     - CVE-2025-0438: Stack buffer overflow in Tracing.
       Reported by Han Zheng (HexHive).
     - CVE-2025-0439: Race in Frames. Reported by Hafiizh.
     - CVE-2025-0440: Inappropriate implementation in Fullscreen.
       Reported by Umar Farooq.
     - CVE-2025-0441: Inappropriate implementation in Fenced Frames.
       Reported by someoneverycurious.
     - CVE-2025-0442: Inappropriate implementation in Payments.
       Reported by Ahmed ElMasry.
     - CVE-2025-0443: Insufficient data validation in Extensions.
       Reported by Anonymous.
     - CVE-2025-0446: Inappropriate implementation in Extensions.
       Reported by Hafiizh.
     - CVE-2025-0447: Inappropriate implementation in Navigation.
       Reported by Khiem Tran (@duckhiem).
     - CVE-2025-0448: Inappropriate implementation in Compositing.
       Reported by Dahyeon Park.
   * d/patches:
     - upstream/blink-fix-size-assertions.patch: drop, merged upstream.
     - upstream/dawn-strlen.patch: drop, merged upstream.
     - upstream/mrc-copy-op.patch: drop, merged upstream.
     - upstream/variant.patch: part of this was merged upstream; keep the
       rest.
     - fixes/freetype.patch: drop, merged upstream.
     - fixes/gpu-crash.patch: drop, merged upstream.
     - fixes/bindgen.patch: refresh and make patch even smaller. Also some
       upstream churn.
     - fixes/fix-assert-in-vnc-sessions.patch: refresh.
     - ungoogled/disable-privacy-sandbox.patch: refresh.
     - upstream/mojo.patch: fix missing files.
     - upstream/uint.patch: add gcc-specific build fix.
     - bookworm/constflatset.patch: add (probably) gcc-specific workaround.
     - fixes/lens-optional.patch: add gcc-specific build fix.
     - bookworm/gn-absl.patch: modify for new dependency.
     - bookworm/rust-visibility.patch: add build fix for older rustc.
     - bookworm/less-void.patch: add build fix for older libstdc++/gcc.
   * Downgrade to rollup3 for devtools-frontend stuff, due to the bundled
     rollup4 including wasm blobs. Update d/patches/system/rollup.patch to
     point to the right place as well, and build-dep on
     node-rollup-plugin-terser.
   * Build against newer bundled libtiff for memory limiting protection.
   * Switch to bundled libdrm due to DRM_IOCTL_SYNCOBJ_EVENTFD usage.
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - workarounds/HACK-debian-clang-disable-skia-musttail.patch: Drop due
       to upstream fixes
     - third_party/skia-vsx-instructions.patch: Refresh for upstream changes
Checksums-Sha1:
 f4838b5832be2de50fcf1042529b8c6363bdb64e 5339304 chromium-common-dbgsym_132.0.6834.83-1~deb12u1_ppc64el.deb
 5bffb70373cb7e974cb03b9195072e381969e688 16118704 chromium-common_132.0.6834.83-1~deb12u1_ppc64el.deb
 32bf5e468e0b52de286959c11eb959fb38f677ca 27834240 chromium-dbgsym_132.0.6834.83-1~deb12u1_ppc64el.deb
 210653909af2359dd13c43c7e0eaaccbdd6d4152 7289604 chromium-driver_132.0.6834.83-1~deb12u1_ppc64el.deb
 ca8e87ca76f3ac5c00f090927d76d2f3a5dc965e 14240 chromium-sandbox-dbgsym_132.0.6834.83-1~deb12u1_ppc64el.deb
 3cb7c7af4b9bc178484be9e718554919a8155e71 99152 chromium-sandbox_132.0.6834.83-1~deb12u1_ppc64el.deb
 8ca313cb9feb0ffad060cb0a0631ec1f930d14a2 22448468 chromium-shell-dbgsym_132.0.6834.83-1~deb12u1_ppc64el.deb
 03e2a81292887c5e906e1c91e8469832a83063da 51232608 chromium-shell_132.0.6834.83-1~deb12u1_ppc64el.deb
 89248bd838015d9868f8c8f924e62675cc25ff74 29336 chromium_132.0.6834.83-1~deb12u1_ppc64el-buildd.buildinfo
 8ec367efe46f930fa7f88b8f123b8adeff6f05c5 83488208 chromium_132.0.6834.83-1~deb12u1_ppc64el.deb
Checksums-Sha256:
 142d28bf1eaedbeb57948e4d783560c88c1ffedac7bd0505c65e6b65f563d9c8 5339304 chromium-common-dbgsym_132.0.6834.83-1~deb12u1_ppc64el.deb
 46255c9257a82130293bb006b57b5dd74956d46d79f318012ae7fd6a8c41bdf3 16118704 chromium-common_132.0.6834.83-1~deb12u1_ppc64el.deb
 276e34b12b4ece4edc83355a363f6dd5317333e0f6162d141019056e52d7f96f 27834240 chromium-dbgsym_132.0.6834.83-1~deb12u1_ppc64el.deb
 3bfcb4de67584213065201ba01c8268344724bf4a46e876cfb8742d671980e0c 7289604 chromium-driver_132.0.6834.83-1~deb12u1_ppc64el.deb
 1243739f4c54c1e41e6aaddd2c69d18067697829e84e8347d83280572e0d8165 14240 chromium-sandbox-dbgsym_132.0.6834.83-1~deb12u1_ppc64el.deb
 2ed6c64ca196dfa5234c8a274c686ed186b86317acb618d4d197224f9b29aba5 99152 chromium-sandbox_132.0.6834.83-1~deb12u1_ppc64el.deb
 9651b0f637b86349e3a9e7117ae705b065ddd525a891ff3d26ea5557f2d20ceb 22448468 chromium-shell-dbgsym_132.0.6834.83-1~deb12u1_ppc64el.deb
 59539aab0500bc10387863f9decfe59fc57ca41a50ad120632e2e3d7c52cef95 51232608 chromium-shell_132.0.6834.83-1~deb12u1_ppc64el.deb
 1d21d5d18b8bb972c72ab56d487b94152b5abd5cd0739201700f7b2c967444e6 29336 chromium_132.0.6834.83-1~deb12u1_ppc64el-buildd.buildinfo
 34d88d114f25be9fe1d1207192af6b87c186752531ee866c7c8b8548d6fe75fa 83488208 chromium_132.0.6834.83-1~deb12u1_ppc64el.deb
Files:
 4f404d2a73ce93fe8e31faf99b28a222 5339304 debug optional chromium-common-dbgsym_132.0.6834.83-1~deb12u1_ppc64el.deb
 1512866e524b0dc4f5ed29e0a8bf7cec 16118704 web optional chromium-common_132.0.6834.83-1~deb12u1_ppc64el.deb
 8a0bab4a28a0083abe732c8243d0de45 27834240 debug optional chromium-dbgsym_132.0.6834.83-1~deb12u1_ppc64el.deb
 926d7c93524e67cab705d15511707dfc 7289604 web optional chromium-driver_132.0.6834.83-1~deb12u1_ppc64el.deb
 44ed0d880ec3dccd4b07d98f8b5a1397 14240 debug optional chromium-sandbox-dbgsym_132.0.6834.83-1~deb12u1_ppc64el.deb
 02f3692d9c54d8d2663eacc11cab4e0b 99152 web optional chromium-sandbox_132.0.6834.83-1~deb12u1_ppc64el.deb
 47857ff5da9a1b7712edc03e3a66e30d 22448468 debug optional chromium-shell-dbgsym_132.0.6834.83-1~deb12u1_ppc64el.deb
 40dcddd4c2007c73a25175ce9d6c5bd5 51232608 web optional chromium-shell_132.0.6834.83-1~deb12u1_ppc64el.deb
 080d88f79734fe307082d5de8eca56aa 29336 web optional chromium_132.0.6834.83-1~deb12u1_ppc64el-buildd.buildinfo
 fa4987f42b3d3ab0607174a783b13f60 83488208 web optional chromium_132.0.6834.83-1~deb12u1_ppc64el.deb

-----BEGIN PGP SIGNATURE-----
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=8Ldw
-----END PGP SIGNATURE-----