-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Wed, 23 Aug 2023 08:58:00 -0500 Source: chromium Architecture: source Version: 116.0.5845.110-1~deb12u1 Distribution: bookworm-security Urgency: high Maintainer: Debian Chromium Team Changed-By: Timothy Pearson Changes: chromium (116.0.5845.110-1~deb12u1) bookworm-security; urgency=high . [ Timothy Pearson ] * New upstream security release. - CVE-2023-4430: Use after free in Vulkan. Reported by Cassidy Kim(@cassidy6564). - CVE-2023-4429: Use after free in Loader. Reported by Anonymous. - CVE-2023-4428: Out of bounds memory access in CSS. Reported by Francisco Alonso (@revskills). - CVE-2023-4427: Out of bounds memory access in V8. Reported by Sergei Glazunov of Google Project Zero. - CVE-2023-4431: Out of bounds memory access in Fonts. Reported by Microsoft Security Researcher. . [ Andres Salomon ] * d/patches/upstream hvec.patch: add arm* v4l2 build fix. * d/rules: FTBFS if we're uploading to -security distribution w/out CVEs. . chromium (116.0.5845.96-2) unstable; urgency=high . * d/patches/upstream/limits.patch: Add a build fix for arm64. Checksums-Sha1: da414f59bbeac01e4122e448eba6d9d870593b01 3730 chromium_116.0.5845.110-1~deb12u1.dsc 7558bb1eae8c5a94bb6de3be74f79f6bb18d0e84 648375276 chromium_116.0.5845.110.orig.tar.xz f050e3784a67fb70dacdeeb528062834f0eca1b6 383492 chromium_116.0.5845.110-1~deb12u1.debian.tar.xz 3405005f103854abc335419521752bc3655a66cc 21149 chromium_116.0.5845.110-1~deb12u1_source.buildinfo Checksums-Sha256: 4a1bc904c855994146cffa191c053ae265cf9a7b80a546545037f09fea395f63 3730 chromium_116.0.5845.110-1~deb12u1.dsc d33fca9d572fde6f353a272200d99408e9629ab3ee64acbe3db913cc1342d689 648375276 chromium_116.0.5845.110.orig.tar.xz c3bc5b287d809afc3aaa69fca898bf984c50d06e75da0bb51f8510c180441468 383492 chromium_116.0.5845.110-1~deb12u1.debian.tar.xz 3af4bac1b4663762096d75f5b68775ab5d6bdd67545a4874cb3b5d770c55706b 21149 chromium_116.0.5845.110-1~deb12u1_source.buildinfo Files: 90dd0e54c8a5ae96f6b2ef816e775e25 3730 web optional chromium_116.0.5845.110-1~deb12u1.dsc 90664bbcdb871e8c54ec00b10e9d7e08 648375276 web optional chromium_116.0.5845.110.orig.tar.xz 03be083c861d344434d022557d4f947b 383492 web optional chromium_116.0.5845.110-1~deb12u1.debian.tar.xz 00d820fd02edcd8fbf5783b9b0c3ebd5 21149 web optional chromium_116.0.5845.110-1~deb12u1_source.buildinfo -----BEGIN PGP SIGNATURE----- iQJIBAEBCAAyFiEEUAUk+X1YiTIjs19qZF0CR8NudjcFAmTnqdgUHGRpbGluZ2Vy QHF1ZXVlZC5uZXQACgkQZF0CR8Nudjdgqw/+ObAINmtw93QiQbdoBWIDmkrOZY83 uNQwKNvnVAH73qWux2oJ1EeSnD8Ghf0vsWLN6qCuOGPkSFkmRRoUU+KBEfnkYuWM PJnDEj+DLPdovsR7olcTBWzWEacC60BnXUSY5urFMpGKY/7lY56RUcrDYPEXFcmM vr5RcTnXjjvR7qpEFFzYmTCSlcL9zLl3RRtFTuFLOwCD32EZj3/TKYIIEAg6+FdC C4jq00yjgg+Eg2Y2Ijd60+HHxvotQFliecVtXhNin2Xt3dw7bweGvA8jr1pSD44g kQaBwg3DMlDNzOnmmi0mS1cei85XMJv3JYoStX7WW6Hbm+u0xP2p6PtMzziHg2sO wq9hYb+VjZyFyBeRfqBTHDRPkraaZJznJz/n/HzMrNyMfr8R+NthYsstDuY8hmLI NtKHJpzE0KcIRK14humlw4Z7TBGxLBpb0IceljvDpKovkzuiQ+beK484x3RyOmY/ rp1vBsvxb/qUD4yUe14SZu0BL4Wrhf5QqMr1OmanWOcEugdxzq2fBISUdwdoE7/0 9E+QtbrXX2V+uCU0eK2CqLJvYQ5R1ONJaBCKsSc4htYI+NqaAODBKalUP/EM1UDI 8y+hogHpvaFS2ZfESG3IlIUlX/e5hdpNZ6hD+I9BhJN3ntm/u2jmVjTJp3N2twvt gHh97YytMDC8n7U= =TEpF -----END PGP SIGNATURE-----