-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 21 Feb 2024 19:56:32 -0500
Source: chromium
Binary: chromium chromium-common chromium-common-dbgsym chromium-dbgsym chromium-driver chromium-sandbox chromium-sandbox-dbgsym chromium-shell chromium-shell-dbgsym
Architecture: armhf
Version: 122.0.6261.57-1~deb12u1
Distribution: bookworm-security
Urgency: high
Maintainer: arm Build Daemon (arm-conova-01) <buildd_arm64-arm-conova-01@buildd.debian.org>
Changed-By: Andres Salomon <dilinger@debian.org>
Description:
 chromium   - web browser
 chromium-common - web browser - common resources used by the chromium packages
 chromium-driver - web browser - WebDriver support
 chromium-sandbox - web browser - setuid security sandbox for chromium
 chromium-shell - web browser - minimal shell
Changes:
 chromium (122.0.6261.57-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream stable release.
     - CVE-2024-1669: Out of bounds memory access in Blink.
       Reported by Anonymous.
     - CVE-2024-1670: Use after free in Mojo.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2024-1671: Inappropriate implementation in Site Isolation.
       Reported by Harry Chen.
     - CVE-2024-1672: Inappropriate implementation in Content Security Policy.
       Reported by Georg Felber (TU Wien) & Marco Squarcina (TU Wien).
     - CVE-2024-1673: Use after free in Accessibility.
       Reported by Weipeng Jiang (@Krace) of VRI.
     - CVE-2024-1674: Inappropriate implementation in Navigation.
       Reported by David Erceg.
     - CVE-2024-1675: Insufficient policy enforcement in Download.
       Reported by Bartłomiej Wacko.
     - CVE-2024-1676: Inappropriate implementation in Navigation.
       Reported by Khalil Zhani.
   * d/patches:
     - fixes/v8-compressed-ptrs.patch: drop, merged upstream.
     - fixes/stdint.patch: drop, merged upstream.
     - upstream/vector.patch: drop, merged upstream.
     - upstream/display-header.patch: drop, merged upstream.
     - upstream/bitset.patch: drop, merged upstream.
     - upstream/once_flag.patch: drop, merged upstream.
     - fixes/std-to-address.patch: refresh.
     - disable/signin.patch: refresh.
     - disable/catapult.patch: refresh.
     - bookworm/clang16.patch: refresh, and change
       -Wno-c++11-narrowing-const-reference to -Wno-c++11-narrowing.
     - bookworm/nvt.patch: refresh.
     - ungoogled/disable-privacy-sandbox.patch: update from ungoogled-chromium.
     - bookworm/undo-internal-alloc.patch: revert a commit that confuses
       clang16 w/ libstdc++. We need a better workaround than this.
     - upstream/mojo.patch: update from git.
     - bookworm/constexpr-equality.patch: add a few more build fixes
       (constexpr removals).
     - upstream/uniqptr.patch: add missing include.
     - upstream/optional.patch: add missing include.
     - upstream/bookmarknode.patch: add comparison equality fix pulled from
       upstream.
     - fixes/optional.patch: add missing includes.
     - bookworm/nvt2.patch: revert another upstream c++-20 change for clang-16.
     - upstream/bitset.patch: add missing include.
     - ppc64le/v8/0002-Add-ppc64-trap-instructions.patch: refresh.
     - bookworm/eraseif0.patch: revert another commit; needed by
       eraseif-lambda.patch.
     - bookworm/eraseif-lamba.patch: refresh.
     - bookworm/undo-rust-req.patch: refresh.
     - bookworm/bubble-contents.patch: remove static_assert() that fails with
       libstdc++12.
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - 0001-Properly-detect-little-endian-PPC64-systems.patch: drop, upstream
       fix in GIT hash 25a6e6
     - 0001-Add-PPC64-support-for-boringssl.patch: refresh for upstream changes
     - 0002-third_party-libvpx-Remove-bad-ppc64-config.patch: refresh for
       upstream changes
     - skia-vsx-instructions.patch: refresh for upstream changes
Checksums-Sha1:
 8c663b3d36882e691191795d254143fe78f59844 1280408 chromium-common-dbgsym_122.0.6261.57-1~deb12u1_armhf.deb
 b68bc47fc7767b3cdeb3ebbbcaee8ca57a51978b 4896564 chromium-common_122.0.6261.57-1~deb12u1_armhf.deb
 316f10edd3fb9d50217bf2562f96bbf8af91272e 31579288 chromium-dbgsym_122.0.6261.57-1~deb12u1_armhf.deb
 bf30cfb825846ab8f545e59b6408c44cc6779a3f 5740732 chromium-driver_122.0.6261.57-1~deb12u1_armhf.deb
 7fa9265cc60630787a57f1a262ac7110028b9c6b 12216 chromium-sandbox-dbgsym_122.0.6261.57-1~deb12u1_armhf.deb
 54071a1cce832e36b0ecde7cdc03f92e1ef04f1a 86104 chromium-sandbox_122.0.6261.57-1~deb12u1_armhf.deb
 d8d071f9d40421f4fa01690baf4147cecc5c7fdd 25427996 chromium-shell-dbgsym_122.0.6261.57-1~deb12u1_armhf.deb
 23fbe19ed927f8d235a8900021569da9fe15c511 46557208 chromium-shell_122.0.6261.57-1~deb12u1_armhf.deb
 2755194566fe9a016f355adaa310594e0679fc5e 24352 chromium_122.0.6261.57-1~deb12u1_armhf-buildd.buildinfo
 63919e2f2b677e0beef66eea1279690c48704827 67699548 chromium_122.0.6261.57-1~deb12u1_armhf.deb
Checksums-Sha256:
 9348d79508282d41156c1522db886b6b25f24e890db6d0617056698a2ce5916a 1280408 chromium-common-dbgsym_122.0.6261.57-1~deb12u1_armhf.deb
 6ab84fb10e1c4a3e6be529106006779de2fc36f09c7ca81186e89b7e1d13c395 4896564 chromium-common_122.0.6261.57-1~deb12u1_armhf.deb
 6d0d32fb99080b4e428cdbfa41014d5f4c6844abc25d28c91ad861775466e3e7 31579288 chromium-dbgsym_122.0.6261.57-1~deb12u1_armhf.deb
 31eeeb1849911a9a1fa935e668dd8395ed0bc08c42443bf47b35d5e1aac703f4 5740732 chromium-driver_122.0.6261.57-1~deb12u1_armhf.deb
 874a71b0c115e663c044d03136415325223de3d7bf53389b97a456806eec8d18 12216 chromium-sandbox-dbgsym_122.0.6261.57-1~deb12u1_armhf.deb
 8c9832b1cf03ca65caf3a9899deabe005c4a372b6d0911ebdc5a4ca15660f017 86104 chromium-sandbox_122.0.6261.57-1~deb12u1_armhf.deb
 c62875a6eaf8b3de088352db8f55245f8c6c5cbe606700e07ec9885860d3511b 25427996 chromium-shell-dbgsym_122.0.6261.57-1~deb12u1_armhf.deb
 4461dad2790e518145f72537940bd4bec4ac333f13c9f685b66fc8e5cb3c6a10 46557208 chromium-shell_122.0.6261.57-1~deb12u1_armhf.deb
 96ed7346e6e11824b0bf50adf7b17f786a35a52242aa4e428b8cd8802893afe6 24352 chromium_122.0.6261.57-1~deb12u1_armhf-buildd.buildinfo
 d6ab7b3c707461f7d7d592c5e3352a2ceb491862a9ffd8aaf9b65104165bcb1a 67699548 chromium_122.0.6261.57-1~deb12u1_armhf.deb
Files:
 2fe2b5adf8e3742ec95d5a6299334aa3 1280408 debug optional chromium-common-dbgsym_122.0.6261.57-1~deb12u1_armhf.deb
 d2e8e49c511cc2b5d36374d5419cc31d 4896564 web optional chromium-common_122.0.6261.57-1~deb12u1_armhf.deb
 0c4dd1b1aaf53233204f385785c8f0db 31579288 debug optional chromium-dbgsym_122.0.6261.57-1~deb12u1_armhf.deb
 7e5611ae778ba091fbf02dd0cfc56322 5740732 web optional chromium-driver_122.0.6261.57-1~deb12u1_armhf.deb
 13f5e1601c79e3aec493036127fd541d 12216 debug optional chromium-sandbox-dbgsym_122.0.6261.57-1~deb12u1_armhf.deb
 dc2bf4944928db86c77ed98a59b9a7e9 86104 web optional chromium-sandbox_122.0.6261.57-1~deb12u1_armhf.deb
 1d9f0cf3ce37bcf9de263092b21202d0 25427996 debug optional chromium-shell-dbgsym_122.0.6261.57-1~deb12u1_armhf.deb
 a0d292542a1c7a32ea93c773824d30ba 46557208 web optional chromium-shell_122.0.6261.57-1~deb12u1_armhf.deb
 fe6c5b0f02b29a59cbc67ff8dedbc08b 24352 web optional chromium_122.0.6261.57-1~deb12u1_armhf-buildd.buildinfo
 8965f064c3c2bae5b1b3675bad2ed748 67699548 web optional chromium_122.0.6261.57-1~deb12u1_armhf.deb

-----BEGIN PGP SIGNATURE-----
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=iCLB
-----END PGP SIGNATURE-----