-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 13 Sep 2023 22:26:10 -0400
Source: chromium
Binary: chromium chromium-common chromium-common-dbgsym chromium-dbgsym chromium-driver chromium-sandbox chromium-sandbox-dbgsym chromium-shell chromium-shell-dbgsym
Architecture: ppc64el
Version: 117.0.5938.62-1~deb12u1
Distribution: bookworm-security
Urgency: high
Maintainer: ppc64el Build Daemon (ppc64el-osuosl-01) <buildd_ppc64el-ppc64el-osuosl-01@buildd.debian.org>
Changed-By: Andres Salomon <dilinger@debian.org>
Description:
 chromium   - web browser
 chromium-common - web browser - common resources used by the chromium packages
 chromium-driver - web browser - WebDriver support
 chromium-sandbox - web browser - setuid security sandbox for chromium
 chromium-shell - web browser - minimal shell
Closes: 1042111
Changes:
 chromium (117.0.5938.62-1~deb12u1) bookworm-security; urgency=high
 .
   [ Andres Salomon]
   * New upstream stable release.
     - CVE-2023-4900: Inappropriate implementation in Custom Tabs.
       Reported by Levit Nudi from Kenya.
     - CVE-2023-4901: Inappropriate implementation in Prompts.
       Reported by Kang Ali.
     - CVE-2023-4902: Inappropriate implementation in Input.
       Reported by Axel Chong.
     - CVE-2023-4903: Inappropriate implementation in Custom Mobile Tabs.
       Reported by Ahmed ElMasry.
     - CVE-2023-4904: Insufficient policy enforcement in Downloads.
       Reported by Tudor Enache @tudorhacks.
     - CVE-2023-4905: Inappropriate implementation in Prompts.
       Reported by Hafiizh.
     - CVE-2023-4906: Insufficient policy enforcement in Autofill.
       Reported by Ahmed ElMasry.
     - CVE-2023-4907: Inappropriate implementation in Intents.
       Reported by Mohit Raj (shadow2639) .
     - CVE-2023-4908: Inappropriate implementation in Picture in Picture.
       Reported by Axel Chong.
     - CVE-2023-4909: Inappropriate implementation in Interstitials.
       Reported by Axel Chong.
   * d/copyright: drop rust, llvm, siso, & cargo binaries.
   * d/patches:
     - fixes/size.patch: drop, merged upstream.
     - fixes/variant.patch: drop, merged upstream.
     - fixes/vector.patch: drop, merged upstream.
     - upstream/contains.patch: drop, merged upstream.
     - upstream/hvec.patch: drop, merged upstream.
     - upstream/limits.patch: drop, merged upstream.
     - upstream/statelessV4L2.patch: drop, merged upstream.
     - fixes/widevine-locations.patch: refresh for minor upstream changes.
     - disable/android.patch: drop half the patch.
     - disable/catapult.patch: refresh for minor upstream changes.
     - disable/tests.patch: refresh for minor upstream changes.
     - disable/unrar.patch: refresh for minor upstream changes.
     - fixes/material-utils.patch: build fix for clang w/ libstdc++.
     - rename fixes/null.patch to fixes/perfetto.patch.
     - upstream/memory.patch: build fix for missing header.
     - bookworm/struct-ctor.patch: add a bunch more build workarounds for
       clang-14.
     - bookworm/stringpiece3.patch: another clang-14 StringPiece to
       std::string explicit conversion.
     - bookworm/typename.patch: add more explicit typename declarations for
       clang-14.
     - bookworm/structured-binding-scope-bug.patch: add more clang-14 binding
       scope workarounds.
     - bookworm/initialize-const-ctor.patch: clang-14 workaround to init a
       const member inside a struct.
     - ppc64le/libaom/0001-Add-ppc64-target-to-libaom.patch: refresh.
     - disable/privacy-sandbox.patch: ensure Privacy Sandbox "features" are
       off by default.
     - bookworm/generate-ninja.patch: fix build failure w/ bookworm's older gn.
   * Switch to using bundled brotli, as the version in debian is too old.
     And so we can drop d/patches/bookworm/brotli.patch, too.
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - 0001-Implement-support-for-PPC64-on-Linux.patch: refresh for upstream
        changes
     - 0001-Add-PPC64-support-for-boringssl.patch: refresh for upstream changes
     - 0002-third-party-boringssl-add-generated-files.patch: refresh for
        upstream changes
     - 0002-third_party-libvpx-Remove-bad-ppc64-config.patch: refresh for
        upstream changes
     - 0004-third_party-crashpad-port-curl-transport-ppc64.patch: refresh for
        upstream changes
     - skia-vsx-instructions.patch: refresh for upstream changes
     - 0003-third_party-ffmpeg-Add-ppc64-generated-config.patch: regenerate
     - 0001-third_party-boringssl-Properly-detect-ppc64le-in-BUI.patch: drop
   * d/patches/ungoogled:
     - core/ungoogled-chromium/disable-web-environment-integrity.patch: disable
       "Web Environment Integrity" trial and remove from build (closes: #1042111)
Checksums-Sha1:
 020a2ad8c6ee0eac785c4a138e5a498bd92616dd 871580 chromium-common-dbgsym_117.0.5938.62-1~deb12u1_ppc64el.deb
 d6bf3ba95f0053ea7885b8c31fffe35e23f2d843 5189272 chromium-common_117.0.5938.62-1~deb12u1_ppc64el.deb
 853dea6c790b3834ebddab666fa7a4e5d995ac61 31193740 chromium-dbgsym_117.0.5938.62-1~deb12u1_ppc64el.deb
 eb84771fe194a6dae2f9f365276413754703df22 5926544 chromium-driver_117.0.5938.62-1~deb12u1_ppc64el.deb
 080610df357efa848251a44b180e3fff163c3930 13060 chromium-sandbox-dbgsym_117.0.5938.62-1~deb12u1_ppc64el.deb
 044e580b374e7efa07ec4b025d1d383bbb186bf9 82164 chromium-sandbox_117.0.5938.62-1~deb12u1_ppc64el.deb
 40fe3acc4975cf2fe611ce50a0f2a49688018f43 24146996 chromium-shell-dbgsym_117.0.5938.62-1~deb12u1_ppc64el.deb
 290731df9ddf7f4b0eb7eba2c4bb88858c016b8a 51067744 chromium-shell_117.0.5938.62-1~deb12u1_ppc64el.deb
 aeb8eefaef99a2b01587d5f85422f625b130ca50 23933 chromium_117.0.5938.62-1~deb12u1_ppc64el-buildd.buildinfo
 99468fce98dcb13721df9ad9d711002a1f7eebf2 73327168 chromium_117.0.5938.62-1~deb12u1_ppc64el.deb
Checksums-Sha256:
 03713a9a262ecae80f0b1f1ee1f7f336f0aad88ccd4bab423207f49d007e77a1 871580 chromium-common-dbgsym_117.0.5938.62-1~deb12u1_ppc64el.deb
 7d92977a6e97d5945c1280887ed6075c8a6871267a5f56a6855354757a07a476 5189272 chromium-common_117.0.5938.62-1~deb12u1_ppc64el.deb
 aae1ce15eb2d03a1c56dd95be5b5d68c9bb84847fdb3cb1dab21d16bcf213c87 31193740 chromium-dbgsym_117.0.5938.62-1~deb12u1_ppc64el.deb
 c71625fff99d316f7a17c842220690391af89c4f3050d4368514c20f22e853e8 5926544 chromium-driver_117.0.5938.62-1~deb12u1_ppc64el.deb
 0dd0b4a3d7f209d981e89bde2cd79f807462cbfe327274b248acfa5be89aedb6 13060 chromium-sandbox-dbgsym_117.0.5938.62-1~deb12u1_ppc64el.deb
 7ef5cda8a4693e8244f08004229083e3c05cc76a40962e9b9b31c00dbac5540f 82164 chromium-sandbox_117.0.5938.62-1~deb12u1_ppc64el.deb
 d62206cbb15ad5127cf094ae7629f3bc247b3de267ad4e5bd91ceebd6999e66d 24146996 chromium-shell-dbgsym_117.0.5938.62-1~deb12u1_ppc64el.deb
 98ef21d2ed3a5a859f75b11a90875ed1b02954755ea67a8db59a2a0c38ff20ef 51067744 chromium-shell_117.0.5938.62-1~deb12u1_ppc64el.deb
 c7c734bcfd4857736661db172c377324bc2c2338e59c572d2ce559fdd2dba084 23933 chromium_117.0.5938.62-1~deb12u1_ppc64el-buildd.buildinfo
 a07984104338a9e8a8d31c803b253c8d35f3df4789eb83097d1a1a69b19e6698 73327168 chromium_117.0.5938.62-1~deb12u1_ppc64el.deb
Files:
 f7418f32372b9b0faa1f92e723560a24 871580 debug optional chromium-common-dbgsym_117.0.5938.62-1~deb12u1_ppc64el.deb
 56066a93ba2cd9c162fcdb851b6199b8 5189272 web optional chromium-common_117.0.5938.62-1~deb12u1_ppc64el.deb
 2629fff6520253fd0de33b4e7300f021 31193740 debug optional chromium-dbgsym_117.0.5938.62-1~deb12u1_ppc64el.deb
 fd17f247a25fbc9797ebf88a4d77f5e1 5926544 web optional chromium-driver_117.0.5938.62-1~deb12u1_ppc64el.deb
 9b2acc0d4b0b005d3804daff80bf8632 13060 debug optional chromium-sandbox-dbgsym_117.0.5938.62-1~deb12u1_ppc64el.deb
 9538659296c57ff0bad750ccb0a0685b 82164 web optional chromium-sandbox_117.0.5938.62-1~deb12u1_ppc64el.deb
 3765667b5237e1b02d2b55526ed8247d 24146996 debug optional chromium-shell-dbgsym_117.0.5938.62-1~deb12u1_ppc64el.deb
 c26af3828467a86961655f062840da84 51067744 web optional chromium-shell_117.0.5938.62-1~deb12u1_ppc64el.deb
 b2f52c5cea2eb4229ae685c229400bc3 23933 web optional chromium_117.0.5938.62-1~deb12u1_ppc64el-buildd.buildinfo
 a6efbff4135d46dcee766265854146ba 73327168 web optional chromium_117.0.5938.62-1~deb12u1_ppc64el.deb

-----BEGIN PGP SIGNATURE-----
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=uT4v
-----END PGP SIGNATURE-----