Changelog
chromium (111.0.5563.110-1) unstable; urgency=high
* New upstream security release.
- CVE-2023-1528: Use after free in Passwords.
Reported by Wan Choi of Seoul National University.
- CVE-2023-1529: Out of bounds memory access in WebHID.
- CVE-2023-1530: Use after free in PDF.
Reported by The UK's National Cyber Security Centre (NCSC).
- CVE-2023-1531: Use after free in ANGLE.
Reported by Piotr Bania of Cisco Talos.
- CVE-2023-1532: Out of bounds read in GPU Video.
Reported by Mark Brand of Google Project Zero.
- CVE-2023-1533: Use after free in WebProtect.
Reported by Weipeng Jiang (@Krace) of VRI.
- CVE-2023-1534: Out of bounds read in ANGLE.
Reported by Jann Horn and Mark Brand of Google Project Zero.
* Document how to properly enable Wayland support in README.Debian
(closes: #1033223).
* d/rules patch from "Daniel Richard G." <email address hidden>:
- Disable lto flags (closes: #1015367).
- don't clobber LDFLAGS from dpkg-buildflags (closes: #1033015).
-- Andres Salomon <email address hidden> Wed, 22 Mar 2023 03:17:36 -0400