-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 14 Jan 2025 21:20:43 -0500
Source: chromium
Binary: chromium-l10n
Architecture: all
Version: 132.0.6834.83-1~deb12u1
Distribution: bookworm-security
Urgency: high
Maintainer: all Build Daemon (x86-csail-02) <buildd_all-x86-csail-02@buildd.debian.org>
Changed-By: Andres Salomon <dilinger@debian.org>
Description:
 chromium-l10n - web browser - language packs
Changes:
 chromium (132.0.6834.83-1~deb12u1) bookworm-security; urgency=high
 .
   [ Andres Salomon ]
   * New upstream stable release.
     - CVE-2025-0434: Out of bounds memory access in V8. Reported by ddme.
     - CVE-2025-0435: Inappropriate implementation in Navigation.
       Reported by Alesandro Ortiz.
     - CVE-2025-0436: Integer overflow in Skia.
       Reported by Han Zheng (HexHive).
     - CVE-2025-0437: Out of bounds read in Metrics.
       Reported by Xiantong Hou of Wuheng Lab and Pisanbao.
     - CVE-2025-0438: Stack buffer overflow in Tracing.
       Reported by Han Zheng (HexHive).
     - CVE-2025-0439: Race in Frames. Reported by Hafiizh.
     - CVE-2025-0440: Inappropriate implementation in Fullscreen.
       Reported by Umar Farooq.
     - CVE-2025-0441: Inappropriate implementation in Fenced Frames.
       Reported by someoneverycurious.
     - CVE-2025-0442: Inappropriate implementation in Payments.
       Reported by Ahmed ElMasry.
     - CVE-2025-0443: Insufficient data validation in Extensions.
       Reported by Anonymous.
     - CVE-2025-0446: Inappropriate implementation in Extensions.
       Reported by Hafiizh.
     - CVE-2025-0447: Inappropriate implementation in Navigation.
       Reported by Khiem Tran (@duckhiem).
     - CVE-2025-0448: Inappropriate implementation in Compositing.
       Reported by Dahyeon Park.
   * d/patches:
     - upstream/blink-fix-size-assertions.patch: drop, merged upstream.
     - upstream/dawn-strlen.patch: drop, merged upstream.
     - upstream/mrc-copy-op.patch: drop, merged upstream.
     - upstream/variant.patch: part of this was merged upstream; keep the
       rest.
     - fixes/freetype.patch: drop, merged upstream.
     - fixes/gpu-crash.patch: drop, merged upstream.
     - fixes/bindgen.patch: refresh and make patch even smaller. Also some
       upstream churn.
     - fixes/fix-assert-in-vnc-sessions.patch: refresh.
     - ungoogled/disable-privacy-sandbox.patch: refresh.
     - upstream/mojo.patch: fix missing files.
     - upstream/uint.patch: add gcc-specific build fix.
     - bookworm/constflatset.patch: add (probably) gcc-specific workaround.
     - fixes/lens-optional.patch: add gcc-specific build fix.
     - bookworm/gn-absl.patch: modify for new dependency.
     - bookworm/rust-visibility.patch: add build fix for older rustc.
     - bookworm/less-void.patch: add build fix for older libstdc++/gcc.
   * Downgrade to rollup3 for devtools-frontend stuff, due to the bundled
     rollup4 including wasm blobs. Update d/patches/system/rollup.patch to
     point to the right place as well, and build-dep on
     node-rollup-plugin-terser.
   * Build against newer bundled libtiff for memory limiting protection.
   * Switch to bundled libdrm due to DRM_IOCTL_SYNCOBJ_EVENTFD usage.
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - workarounds/HACK-debian-clang-disable-skia-musttail.patch: Drop due
       to upstream fixes
     - third_party/skia-vsx-instructions.patch: Refresh for upstream changes
Checksums-Sha1:
 6707773357d62263cb1f19cb7e2ccb72231bd90a 7917772 chromium-l10n_132.0.6834.83-1~deb12u1_all.deb
 cfa6b9031b5873e21d9363193e5f0a75f1d438c6 26673 chromium_132.0.6834.83-1~deb12u1_all-buildd.buildinfo
Checksums-Sha256:
 716462be0eb85de35fd9b2630077dc67327e3d7ed16fb633b05fb4b874ee9e85 7917772 chromium-l10n_132.0.6834.83-1~deb12u1_all.deb
 696c498862d319fd91a35e4df0dde555120491e42ff3e7772396f66e968ba383 26673 chromium_132.0.6834.83-1~deb12u1_all-buildd.buildinfo
Files:
 ab9395d279bb9af4d360142001800eb9 7917772 localization optional chromium-l10n_132.0.6834.83-1~deb12u1_all.deb
 3a2ad6fad7e0019f23a1e644d24efe3a 26673 web optional chromium_132.0.6834.83-1~deb12u1_all-buildd.buildinfo

-----BEGIN PGP SIGNATURE-----
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=cLAC
-----END PGP SIGNATURE-----