-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Wed, 11 Dec 2024 15:33:53 -0500 Source: chromium Architecture: source Version: 131.0.6778.139-1~deb12u1 Distribution: bookworm-security Urgency: high Maintainer: Debian Chromium Team Changed-By: Andres Salomon Changes: chromium (131.0.6778.139-1~deb12u1) bookworm-security; urgency=high . [ Andres Salomon ] * New upstream security release. - CVE-2024-12381: Type Confusion in V8. Reported by Seunghyun Lee (@0x10n). - CVE-2024-12382: Use after free in Translate. Reported by lime(@limeSec_) from TIANGONG Team of Legendsec at QI-ANXIN Group. * (Temporarily?) switch from llvm's libc++ to gcc's libstdc++ to simplify the prior clang-16/19 upgrades. * d/patches: - fixes/bindgen.patch: refresh. - upstream/dawn-strlen.patch: add gcc-specific build fix. - upstream/ink-isfinite.patch: add gcc-specific build fix. - upstream/webrtc-optional.patch: add gcc-specific build fix. - upstream/variant.patch: add gcc-specific build fixes. - upstream/array.patch: add gcc-specific build fix. - fixes/absl-optional.patch: re-introduce clang/gcc build workaround. - upstream/mrc-copy-op.patch: add gcc-specific build fix. - fixes/font-gc-asan.patch: add a better workaround for bad font-gc behavior under libstdc++. This is self-contained and small, unlike the prior reverts of the switch to font garbage collection. - bookworm/constexpr.patch: re-enable (and refresh) build fix specifically for gcc 12. - bookworm/constexpr2.patch: re-enable build fix for gcc 12. - bookworm/bubble-contents.patch: re-enable build fix for gcc 12. . [ Nathan Teodosio ] * Simplify fixes/bindgen.patch so it doesn't need frequent rebasing. . [ Daniel Richard G. ] * d/copyright: Expand list of Files-Excluded: entries. * d/rules: Various updates to get-orig-source rule, including use of grep-dctrl(1) and the LASTCHANGE.committime timestamp. * d/scripts/check-upstream: Avoid issues with inaccurate $(pwd) value and spaces in filenames, and print all errors instead of only the first one. Checksums-Sha1: b33bce1048996f3448fc977d6cdeede755c658e4 3786 chromium_131.0.6778.139-1~deb12u1.dsc 6f7d2127ba0901a01cda465dcb1858c265966ef1 767269748 chromium_131.0.6778.139.orig.tar.xz 322e1c4c41ca25f637010e42895131c405c52b05 8509064 chromium_131.0.6778.139-1~deb12u1.debian.tar.xz ec41a700fb5f614d2898362b93c32ee466ad596d 22111 chromium_131.0.6778.139-1~deb12u1_source.buildinfo Checksums-Sha256: b322d5e42925008f00ff0ef6081f51f9c90238c63b903bb35c002c6fe9a2d32c 3786 chromium_131.0.6778.139-1~deb12u1.dsc 759e351454012489e542ce83d7ee2c0aa0e1b97a2360c75da6649db06c0d4c0f 767269748 chromium_131.0.6778.139.orig.tar.xz 90d07a0252cbabde229d22a2759b9d4465f792ba5a5750bad1e3f0b6886b8819 8509064 chromium_131.0.6778.139-1~deb12u1.debian.tar.xz 0d16e2c55d6d4fd9b0d08f48548186d5e9fed06165948449fefd86f21c1a9f0b 22111 chromium_131.0.6778.139-1~deb12u1_source.buildinfo Files: 90a0596e706c73adfe514e5a10b1f43a 3786 web optional chromium_131.0.6778.139-1~deb12u1.dsc e480ad3b863b0a65c94083451b3dd6c1 767269748 web optional chromium_131.0.6778.139.orig.tar.xz b70be4ebe218b3a5959096024a3bd836 8509064 web optional chromium_131.0.6778.139-1~deb12u1.debian.tar.xz 571759d3a1d66adb6c9d45910060b838 22111 web optional chromium_131.0.6778.139-1~deb12u1_source.buildinfo -----BEGIN PGP SIGNATURE----- iQJIBAEBCAAyFiEEUAUk+X1YiTIjs19qZF0CR8NudjcFAmdaN2wUHGRpbGluZ2Vy QGRlYmlhbi5vcmcACgkQZF0CR8NudjdQSg/+PSSVin+OpXQhhmJlCBLUpK3jjX+E Eg05Cn5iypgZ86aMcj12hjdrIvdO3xA8q3H3Nao4RBgy48JWj8UL9JT1Hpw2QSUj tSa8XwTxjL5osYfC52K7fJAFpFHSLGzFZyN4RwxA4mA34dLorsgCAM2cvkmeSujh Vxa/lsSV0GeCkmgP5uygLnRaMbQwnoFgkqiObEi//4FrtVRpBwZ9gzqVMyujRx67 4U2MzCwOpRhlrc+5w3Y+obEf42/zQvS+J3UzMaqPnuhuLuYy12G8Ir5pU5hgdvdP U88VMUwHB5qA2gAxqG8k+ZZxuAqyfDW4f9DWmiOHEp6/3z1wxvdt9fdCy+L5+PE1 FZQKRLYIp56JD5tLrisYMR6HRB+YfNOsP0FwZVgB/wuJb8UKYMJn9sItI7YB4GqH Lm2Kmju1/ZcjxoFpLIpyoz3oaiv76ieMipbvn55Ivd4Bq6BxBSm6z/wMQe7HMToh xs3CmNBYg3XSc4YNIVc5zaHDK0AYE7HgMOkrKQtn0aASIJhN6auc6hE8mhBzwdaI Sun+BARTG00QhvlcJUhsd59qd6Ts4AWeUZ7AyopYgocPut3MWKN1b6i63wdGCZz1 aDFBoHSBXH/3oIjNk68v+5EmbZDiDSlZLxZck5u/iaDETamWjBd2qFyFAn7lSzV5 kKS4SCsi6rjEY3M= =yc/z -----END PGP SIGNATURE-----