Debian
chromium package

chromium 122.0.6261.57-1 source package in Debian

Changelog

chromium (122.0.6261.57-1) unstable; urgency=high

  * New upstream stable release.
    - CVE-2024-1669: Out of bounds memory access in Blink.
      Reported by Anonymous.
    - CVE-2024-1670: Use after free in Mojo.
      Reported by Cassidy Kim(@cassidy6564).
    - CVE-2024-1671: Inappropriate implementation in Site Isolation.
      Reported by Harry Chen.
    - CVE-2024-1672: Inappropriate implementation in Content Security Policy.
      Reported by Georg Felber (TU Wien) & Marco Squarcina (TU Wien).
    - CVE-2024-1673: Use after free in Accessibility.
      Reported by Weipeng Jiang (@Krace) of VRI.
    - CVE-2024-1674: Inappropriate implementation in Navigation.
      Reported by David Erceg.
    - CVE-2024-1675: Insufficient policy enforcement in Download.
      Reported by Bartłomiej Wacko.
    - CVE-2024-1676: Inappropriate implementation in Navigation.
      Reported by Khalil Zhani.
  * d/patches:
    - fixes/v8-compressed-ptrs.patch: drop, merged upstream.
    - fixes/stdint.patch: drop, merged upstream.
    - upstream/vector.patch: drop, merged upstream.
    - upstream/display-header.patch: drop, merged upstream.
    - upstream/bitset.patch: drop, merged upstream.
    - upstream/once_flag.patch: drop, merged upstream.
    - fixes/std-to-address.patch: refresh.
    - disable/signin.patch: refresh.
    - disable/catapult.patch: refresh.
    - bookworm/clang16.patch: refresh, and change
      -Wno-c++11-narrowing-const-reference to -Wno-c++11-narrowing.
    - bookworm/nvt.patch: refresh.
    - ungoogled/disable-privacy-sandbox.patch: update from ungoogled-chromium.
    - bookworm/undo-internal-alloc.patch: revert a commit that confuses
      clang16 w/ libstdc++. We need a better workaround than this.
    - upstream/mojo.patch: update from git.
    - bookworm/constexpr-equality.patch: add a few more build fixes
      (constexpr removals).
    - upstream/uniqptr.patch: add missing include.
    - upstream/optional.patch: add missing include.
    - upstream/bookmarknode.patch: add comparison equality fix pulled from
      upstream.
    - fixes/optional.patch: add missing includes.
    - bookworm/nvt2.patch: revert another upstream c++-20 change for clang-16.
    - upstream/bitset.patch: add missing include.
    - ppc64le/v8/0002-Add-ppc64-trap-instructions.patch: refresh.

  [ Timothy Pearson ]
  * d/patches/ppc64le:
    - 0001-Properly-detect-little-endian-PPC64-systems.patch: drop, upstream
      fix in GIT hash 25a6e6
    - 0001-Add-PPC64-support-for-boringssl.patch: refresh for upstream changes
    - 0002-third_party-libvpx-Remove-bad-ppc64-config.patch: refresh for
      upstream changes
    - skia-vsx-instructions.patch: refresh for upstream changes

 -- Andres Salomon <email address hidden>  Wed, 21 Feb 2024 19:56:32 -0500

Upload details

Uploaded by:
Debian Chromium Team
Uploaded to:
Sid
Original maintainer:
Debian Chromium Team
Architectures:
i386 amd64 arm64 armhf ppc64el all
Section:
misc
Urgency:
Very Urgent

See full publishing history Publishing

Series Pocket Published Component Section

Builds

Downloads

File Size SHA-256 Checksum
chromium_122.0.6261.57-1.dsc 3.6 KiB dbb4587dafbe97f4b1b55d4f7981f406fc1b7955db687473e36c6843b5d0057c
chromium_122.0.6261.57.orig.tar.xz 793.2 MiB 0a01105fa3ab5cf3c9645cbf5c508cf4792c463a4e8d6d0c76272c720fd7e9fb
chromium_122.0.6261.57-1.debian.tar.xz 369.9 KiB 759199afc3bca1fa3198baf6ee3c27543ccc839086e40ec51a4774ca42dd7653

No changes file available.

Binary packages built by this source