Format: 1.8
Date: Fri, 16 Sep 2016 12:56:44 -0400
Source: chromium-browser
Binary: chromium-browser chromium-browser-l10n chromium-codecs-ffmpeg chromium-codecs-ffmpeg-extra chromium-chromedriver
Architecture: arm64
Version: 53.0.2785.143-0ubuntu0.16.04.1.1254
Distribution: xenial
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@bos01-arm64-005.buildd>
Changed-By: Chad MILLER <chad.miller@canonical.com>
Description:
 chromium-browser - Chromium web browser, open-source version of Chrome
 chromium-browser-l10n - chromium-browser language packages
 chromium-chromedriver - WebDriver driver for the Chromium Browser
 chromium-codecs-ffmpeg - Free ffmpeg codecs for the Chromium Browser
 chromium-codecs-ffmpeg-extra - Extra ffmpeg codecs for the Chromium Browser
Changes:
 chromium-browser (53.0.2785.143-0ubuntu0.16.04.1.1254) xenial-security; urgency=medium
 .
   * Upstream release 53.0.2785.143:
     - CVE-2016-5177: Use after free in V8.
     - CVE-2016-5178: Various fixes from internal audits, fuzzing and other
       initiatives.
   * Upstream release 53.0.2785.113:
     - CVE-2016-5170: Use after free in Blink.
     - CVE-2016-5171: Use after free in Blink.
     - CVE-2016-5172: Arbitrary Memory Read in v8.
     - CVE-2016-5173: Extension resource access.
     - CVE-2016-5174: Popup not correctly suppressed.
     - CVE-2016-5175: Various fixes from internal audits, fuzzing and other
       initiatives.
   * debian/rules: Use gold ld to link.
   * debian/rules: Kill delete-null-pointer-checks. In the javascript engine,
     we can not assume a memory access to address zero always results in a
     trap.
   * debian/patches/gsettings-display-scaling,
     debian/patches/display-scaling-default-value, reenable DPI scaling taken
     from dconf.
   * debian/rules: explicitly set target arch for arm64.
   * debian/control, debian/rules: re-add -dbg transitional packages.
   * Upstream release 53.0.2785.89:
     - CVE-2016-5147: Universal XSS in Blink.
     - CVE-2016-5148: Universal XSS in Blink.
     - CVE-2016-5149: Script injection in extensions.
     - CVE-2016-5150: Use after free in Blink.
     - CVE-2016-5151: Use after free in PDFium.
     - CVE-2016-5152: Heap overflow in PDFium.
     - CVE-2016-5153: Use after destruction in Blink.
     - CVE-2016-5154: Heap overflow in PDFium.
     - CVE-2016-5155: Address bar spoofing.
     - CVE-2016-5156: Use after free in event bindings.
     - CVE-2016-5157: Heap overflow in PDFium.
     - CVE-2016-5158: Heap overflow in PDFium.
     - CVE-2016-5159: Heap overflow in PDFium.
     - CVE-2016-5161: Type confusion in Blink.
     - CVE-2016-5162: Extensions web accessible resources bypass.
     - CVE-2016-5163: Address bar spoofing.
     - CVE-2016-5164: Universal XSS using DevTools.
     - CVE-2016-5165: Script injection in DevTools.
     - CVE-2016-5166: SMB Relay Attack via Save Page As.
     - CVE-2016-5160: Extensions web accessible resources bypass.
     - CVE-2016-5167: Various fixes from internal audits, fuzzing and other
       initiatives.
   * debian/patches/cups-include-deprecated-ppd, debian/rules: include cups
     functions.
   * debian/rules, debian/control: Force using gcc-5 compiler.
   * Use system libraries for expat, speex, zlib, opus, png, jpeg.
   * Also build for arm64 architecture.
   * Don't compile in cups support by default on all architectures.
   * debian/control: remvove build-dep on clang.
   * debian/patches/linux45-madvfree: If MADV_FREE is not defined, do not allow
     it in sandbox filter. Also, undefine it so we don't use MADV_FREE and
     thereby depend on it at runtime.
   * debian/rules: Use gold ld to link.
   * debian/rules: Kill delete-null-pointer-checks. In the javascript engine,
     we can not assume a memory access to address zero always results in a
     trap.
   * debian/patches/series, debian/rules: Re-enable widevine component.
Checksums-Sha1:
 3f5b1d84b4d3ea204360f2f85511ecaf9660c20f 668753618 chromium-browser-dbgsym_53.0.2785.143-0ubuntu0.16.04.1.1254_arm64.ddeb
 e72bff7d6a2d939b5cb36e5a1c0acf1baab2fc1b 51154528 chromium-browser_53.0.2785.143-0ubuntu0.16.04.1.1254_arm64.deb
 3017b529f9c62bbff681770bd71472c762edf762 3005360 chromium-chromedriver-dbgsym_53.0.2785.143-0ubuntu0.16.04.1.1254_arm64.ddeb
 c00fea0a6080e88992835504fc3d4ea8611e9df5 351768 chromium-chromedriver_53.0.2785.143-0ubuntu0.16.04.1.1254_arm64.deb
 49b6f9a9831929478aa818f558dd3a353a4ea105 799278 chromium-codecs-ffmpeg-dbgsym_53.0.2785.143-0ubuntu0.16.04.1.1254_arm64.ddeb
 ed2c8174e30abe3a753856dd0e4d0afb00417dbc 1555642 chromium-codecs-ffmpeg-extra-dbgsym_53.0.2785.143-0ubuntu0.16.04.1.1254_arm64.ddeb
 840567dfd0388f453a78044f20f4219d5c961d48 797216 chromium-codecs-ffmpeg-extra_53.0.2785.143-0ubuntu0.16.04.1.1254_arm64.deb
 6f844a23d83fefca6bd03e8e34bf9834a7cdfe1a 485754 chromium-codecs-ffmpeg_53.0.2785.143-0ubuntu0.16.04.1.1254_arm64.deb
Checksums-Sha256:
 5c3e1f25654f4f92e6ad54582e1674d8de1f48d081a647a0e7aa351cff88a953 668753618 chromium-browser-dbgsym_53.0.2785.143-0ubuntu0.16.04.1.1254_arm64.ddeb
 423e31816270fe310e2c57efb306bce1035e12bb55831e186fa3d77ab4f9fd97 51154528 chromium-browser_53.0.2785.143-0ubuntu0.16.04.1.1254_arm64.deb
 edb41a801266320b7bc9020d551d88f6a6569568dc347ae0ddf15ed0938cf793 3005360 chromium-chromedriver-dbgsym_53.0.2785.143-0ubuntu0.16.04.1.1254_arm64.ddeb
 345191918a8bebdb441528573cbb08597e406beb0874efd1e42d3b83287c2c99 351768 chromium-chromedriver_53.0.2785.143-0ubuntu0.16.04.1.1254_arm64.deb
 1a80765172456f577ae999667ca864907babab9ba7e89198259643912636d6ed 799278 chromium-codecs-ffmpeg-dbgsym_53.0.2785.143-0ubuntu0.16.04.1.1254_arm64.ddeb
 0da39d62214c2fdafb79432a6e2e4473f2517cb2acfee89178d15af0f4e5b99c 1555642 chromium-codecs-ffmpeg-extra-dbgsym_53.0.2785.143-0ubuntu0.16.04.1.1254_arm64.ddeb
 aab90a9d82c6b6a0dcde6893e218efc8b1f79b9df81a848cc3e623634274321d 797216 chromium-codecs-ffmpeg-extra_53.0.2785.143-0ubuntu0.16.04.1.1254_arm64.deb
 fa57b87f5f604565d8104a6a4520a2220862a289b374e055a4028ecb556e2489 485754 chromium-codecs-ffmpeg_53.0.2785.143-0ubuntu0.16.04.1.1254_arm64.deb
Files:
 d1cb8a26a3e53c8acc1de070650f0942 668753618 web extra chromium-browser-dbgsym_53.0.2785.143-0ubuntu0.16.04.1.1254_arm64.ddeb
 a76c88e1a0d8900c4877020ad51c91b3 51154528 web optional chromium-browser_53.0.2785.143-0ubuntu0.16.04.1.1254_arm64.deb
 f65c04048c7254745beebd8a5344fcfe 3005360 web extra chromium-chromedriver-dbgsym_53.0.2785.143-0ubuntu0.16.04.1.1254_arm64.ddeb
 071be7d393d6936745cf8850763cb24f 351768 web optional chromium-chromedriver_53.0.2785.143-0ubuntu0.16.04.1.1254_arm64.deb
 c229cb15ffa034e62eaed29dd0f44c55 799278 web extra chromium-codecs-ffmpeg-dbgsym_53.0.2785.143-0ubuntu0.16.04.1.1254_arm64.ddeb
 f7cf3450ca0ea4b10efe77dc8e5e2e76 1555642 web extra chromium-codecs-ffmpeg-extra-dbgsym_53.0.2785.143-0ubuntu0.16.04.1.1254_arm64.ddeb
 023169b498c6d6c39658d09291d1e9ed 797216 web optional chromium-codecs-ffmpeg-extra_53.0.2785.143-0ubuntu0.16.04.1.1254_arm64.deb
 0497bd1bfcf666947235487482c07efd 485754 web optional chromium-codecs-ffmpeg_53.0.2785.143-0ubuntu0.16.04.1.1254_arm64.deb