-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Wed, 05 Feb 2025 00:18:56 -0500
Source: chromium
Architecture: source
Version: 133.0.6943.53-1~deb12u1
Distribution: bookworm-security
Urgency: high
Maintainer: Debian Chromium Team <chromium@packages.debian.org>
Changed-By: Andres Salomon <dilinger@debian.org>
Changes:
 chromium (133.0.6943.53-1~deb12u1) bookworm-security; urgency=high
 .
   [ Andres Salomon ]
   * New upstream stable release.
     - CVE-2025-0444: Use after free in Skia.
       Reported by Francisco Alonso (@revskills).
     - CVE-2025-0445: Use after free in V8. Reported by 303f06e3.
     - CVE-2025-0451: Inappropriate implementation in Extensions API.
       Reported by Vitor Torres and Alesandro Ortiz.
   * Stop deleting third_party/highway, drop libhwy-dev build-dep, and
     build against the bundled libhwy due to new API requirements.
   * d/patches:
     - fixes/highway-include-path.patch: drop; switching to bundled hwy.
     - bookworm/highway-blink.patch: drop; switching to bundled hwy.
     - upstream/array.patch: drop, merged upstream.
     - upstream/ink-isfinite.patch: drop, merged upstream.
     - upstream/ruy-include.patch: drop, merged upstream.
     - upstream/uint.patch: drop, merged upstream.
     - upstream/variant.patch: drop, merged upstream.
     - upstream/webrtc-optional.patch: drop, merged upstream.
     - fixes/perfetto.patch: drop, merged upstream.
     - system/event.patch: drop, upstream no longer uses libevent.
     - ungoogled/disable-privacy-sandbox.patch: refresh from upstream.
     - fixes/highway-include-path.patch: delete a libhwy build test, add
       another header build fix.
     - bookworm/clang19.patch: add patch to disable unsupported build args
     - fixes/optional.patch: add header build fix.
     - bookworm/gn-absl.patch: add global visibilty for more symbols.
     - bookworm/dq-forward-iterator.patch: add workaround for bookworm's
       libstdc++ 12.
     - bookworm/constflatset.patch, bookworm/constexpr.patch: add another
       workaround for bookworm's libstdc++ 12.
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - third_party/0001-Add-PPC64-support-for-boringssl.patch: Refresh for
       upstream changes
     - third_party/0002-Add-PPC64-generated-files-for-boringssl.patch:
       Refresh for upstream changes
     - third_party/0002-third_party-libvpx-Remove-bad-ppc64-config.patch:
       Refresh for upstream changes
     - third_party/0001-third-party-hwy-wrong-include.patch: Work around
       incorrect header include
Checksums-Sha1:
 f09bc43c1d7230fa188b1caf12442e70230a30bd 3766 chromium_133.0.6943.53-1~deb12u1.dsc
 5415f179c2c18b9ba028bb6b8354b901a7a8e819 882919156 chromium_133.0.6943.53.orig.tar.xz
 68aaff7bdb952894311a9a29aac8a3adf23f8e0a 8414396 chromium_133.0.6943.53-1~deb12u1.debian.tar.xz
 63caae53d558bd67e357a7f2fdba18ed051bf3ec 26759 chromium_133.0.6943.53-1~deb12u1_source.buildinfo
Checksums-Sha256:
 b2953217f9b14af2e49550138a5dd5e0b35e8d3dc5304e494330a6a6d8fdd63c 3766 chromium_133.0.6943.53-1~deb12u1.dsc
 47b3adfe6611c43d63d8ce448beb8a2431c0e6f5a6dafff38b814c656d66b8c5 882919156 chromium_133.0.6943.53.orig.tar.xz
 b83043c63d8344d1d47c0da9e790153bfce3cfa094ddc54d378f4a49e22e718f 8414396 chromium_133.0.6943.53-1~deb12u1.debian.tar.xz
 cce8cec033165002fe66bab9dd7d253481ef4378624295a46ba6dab0b0cc5fa5 26759 chromium_133.0.6943.53-1~deb12u1_source.buildinfo
Files:
 4d9bbca22df7ea858b5e68edb1b88eeb 3766 web optional chromium_133.0.6943.53-1~deb12u1.dsc
 fa6622b25ae411a280a93b3c386f8682 882919156 web optional chromium_133.0.6943.53.orig.tar.xz
 beda248b904b2979f0b0c057492314cd 8414396 web optional chromium_133.0.6943.53-1~deb12u1.debian.tar.xz
 474f34838aeee36a8643b0508d1680f7 26759 web optional chromium_133.0.6943.53-1~deb12u1_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=3HkK
-----END PGP SIGNATURE-----