Format: 1.8 Date: Thu, 07 Dec 2017 13:43:39 +0100 Source: chromium-browser Binary: chromium-browser chromium-browser-l10n chromium-codecs-ffmpeg chromium-codecs-ffmpeg-extra chromium-chromedriver Architecture: armhf Version: 63.0.3239.84-0ubuntu0.16.04.1 Distribution: xenial Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Olivier Tilloy Description: chromium-browser - Chromium web browser, open-source version of Chrome chromium-browser-l10n - chromium-browser language packages chromium-chromedriver - WebDriver driver for the Chromium Browser chromium-codecs-ffmpeg - Free ffmpeg codecs for the Chromium Browser chromium-codecs-ffmpeg-extra - Extra ffmpeg codecs for the Chromium Browser Launchpad-Bugs-Fixed: 1652110 Changes: chromium-browser (63.0.3239.84-0ubuntu0.16.04.1) xenial; urgency=medium . * Upstream release: 63.0.3239.84 - CVE-2017-15407: Out of bounds write in QUIC. - CVE-2017-15408: Heap buffer overflow in PDFium. - CVE-2017-15409: Out of bounds write in Skia. - CVE-2017-15410: Use after free in PDFium. - CVE-2017-15411: Use after free in PDFium. - CVE-2017-15412: Use after free in libXML. - CVE-2017-15413: Type confusion in WebAssembly. - CVE-2017-15415: Pointer information disclosure in IPC call. - CVE-2017-15416: Out of bounds read in Blink. - CVE-2017-15417: Cross origin information disclosure in Skia. - CVE-2017-15418: Use of uninitialized value in Skia. - CVE-2017-15419: Cross origin leak of redirect URL in Blink. - CVE-2017-15420: URL spoofing in Omnibox. - CVE-2017-15422: Integer overflow in ICU. - CVE-2017-15423: Issue with SPAKE implementation in BoringSSL. - CVE-2017-15424: URL Spoof in Omnibox. - CVE-2017-15425: URL Spoof in Omnibox. - CVE-2017-15426: URL Spoof in Omnibox. - CVE-2017-15427: Insufficient blocking of JavaScript in Omnibox. * debian/rules: - replace allow_posix_link_time_opt=false by use_lld=false, is_cfi=false and use_thin_lto=false - rename use_vulcanize GN flag to optimize_webui - generate the man page as it's not being built with chromium any longer (since commit 64b961499bebc54fe48478f5e37477252c7887fa) - build gn with clang * debian/patches/arm-neon.patch: refreshed * debian/patches/disable-sse2: refreshed * debian/patches/fix-gn-bootstrap.patch: removed, no longer needed * debian/patches/fix_building_widevinecdm_with_chromium.patch: replaced by debian/patches/widevine-revision.patch * debian/patches/no-new-ninja-flag.patch: refreshed * debian/patches/revert-Xclang-instcombine-lower-dbg-declare.patch: added * debian/patches/search-credit.patch: refreshed * debian/patches/set-rpath-on-chromium-executables.patch: updated * debian/patches/suppress-newer-clang-warning-flags.patch: updated * debian/patches/touch-v35: refreshed * debian/patches/use-clang-versioned.patch: refreshed * debian/patches/widevine-other-locations: updated (LP: #1652110) * debian/patches/widevine-revision.patch: added (LP: #1652110) Checksums-Sha1: b9c1c47ec4010d000f51251410d2fba39e5db461 119696826 chromium-browser-dbgsym_63.0.3239.84-0ubuntu0.16.04.1_armhf.ddeb 4649e0a8f54309437229e472e623d2122739a976 62269198 chromium-browser_63.0.3239.84-0ubuntu0.16.04.1_armhf.deb ba92b7ca6c7afade73b5f12c73794092d03a1a19 4878124 chromium-chromedriver-dbgsym_63.0.3239.84-0ubuntu0.16.04.1_armhf.ddeb 8dfc42418c985ae75449574dc7f87d3014b53dbd 2834412 chromium-chromedriver_63.0.3239.84-0ubuntu0.16.04.1_armhf.deb 990a87ae1768f0aca43296534aa3edd79aec41bc 324472 chromium-codecs-ffmpeg-dbgsym_63.0.3239.84-0ubuntu0.16.04.1_armhf.ddeb d9fe0a2a77e14562529b2585e01f36053a3f8cf3 572338 chromium-codecs-ffmpeg-extra-dbgsym_63.0.3239.84-0ubuntu0.16.04.1_armhf.ddeb dbb38c80c2a321c43135bdc236c52e1b1b70645b 899322 chromium-codecs-ffmpeg-extra_63.0.3239.84-0ubuntu0.16.04.1_armhf.deb 911c26f0ba5785af8f0b2c25f9006ca0df403dd0 580612 chromium-codecs-ffmpeg_63.0.3239.84-0ubuntu0.16.04.1_armhf.deb Checksums-Sha256: 0654431d17de6537165585c91accfc5bb94c014d704e13abb9cae04b053226b2 119696826 chromium-browser-dbgsym_63.0.3239.84-0ubuntu0.16.04.1_armhf.ddeb 0f58ee8398596c416efdcd7eee2ee1ea38770dd906547fe806bc92e0c7ad76e3 62269198 chromium-browser_63.0.3239.84-0ubuntu0.16.04.1_armhf.deb 5b12741b7fcb192669ae2d8092a0b6e0f61b8b4ee039d72310429668e822201c 4878124 chromium-chromedriver-dbgsym_63.0.3239.84-0ubuntu0.16.04.1_armhf.ddeb 1cc0c24b3deb99a8747cf987e7cd0518bf549dd57f9cd41cac94676e9c9e39b7 2834412 chromium-chromedriver_63.0.3239.84-0ubuntu0.16.04.1_armhf.deb 1cecff28fb9dc37bca845d727f8e36999b0ff0237a26889cc952de1f68f8b239 324472 chromium-codecs-ffmpeg-dbgsym_63.0.3239.84-0ubuntu0.16.04.1_armhf.ddeb 8a235a7decb1e91a7ebb7dc1c3816b3a2019ab53cda84b2357957967449b49a3 572338 chromium-codecs-ffmpeg-extra-dbgsym_63.0.3239.84-0ubuntu0.16.04.1_armhf.ddeb 7a7aa09172c17dd5a07807af35df2035faeea81ccf87283bc66269afea668bcd 899322 chromium-codecs-ffmpeg-extra_63.0.3239.84-0ubuntu0.16.04.1_armhf.deb ed1b2dddfbc491542d4b3263fa4525a32a26fb1cdf9b7a677907f76e9c6e07d1 580612 chromium-codecs-ffmpeg_63.0.3239.84-0ubuntu0.16.04.1_armhf.deb Files: 4f465055171481d18a19cbd08b9ebedb 119696826 web extra chromium-browser-dbgsym_63.0.3239.84-0ubuntu0.16.04.1_armhf.ddeb 628fe966a4a439c4268ee7af015da31c 62269198 web optional chromium-browser_63.0.3239.84-0ubuntu0.16.04.1_armhf.deb fd913af67a6c09205f6159c89ea1f5f6 4878124 web extra chromium-chromedriver-dbgsym_63.0.3239.84-0ubuntu0.16.04.1_armhf.ddeb 1a4c3da49f9657a015f5cf99891a001c 2834412 web optional chromium-chromedriver_63.0.3239.84-0ubuntu0.16.04.1_armhf.deb 3de24091da341ddf006f28bae9fb7eda 324472 web extra chromium-codecs-ffmpeg-dbgsym_63.0.3239.84-0ubuntu0.16.04.1_armhf.ddeb bbbc547785429e73c4444d4616455068 572338 web extra chromium-codecs-ffmpeg-extra-dbgsym_63.0.3239.84-0ubuntu0.16.04.1_armhf.ddeb 187b01e7ede947cf7966ffdfb75a1f68 899322 web optional chromium-codecs-ffmpeg-extra_63.0.3239.84-0ubuntu0.16.04.1_armhf.deb 26818557bad2d390b996347a955ccf63 580612 web optional chromium-codecs-ffmpeg_63.0.3239.84-0ubuntu0.16.04.1_armhf.deb