-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 10 Oct 2023 22:03:00 -0500
Source: chromium
Binary: chromium chromium-common chromium-common-dbgsym chromium-dbgsym chromium-driver chromium-sandbox chromium-sandbox-dbgsym chromium-shell chromium-shell-dbgsym
Architecture: amd64
Version: 118.0.5993.70-1~deb12u1
Distribution: bookworm-security
Urgency: high
Maintainer: all / amd64 / i386 Build Daemon (x86-conova-01) <buildd_amd64-x86-conova-01@buildd.debian.org>
Changed-By: Timothy Pearson <tpearson@raptorengineering.com>
Description:
 chromium   - web browser
 chromium-common - web browser - common resources used by the chromium packages
 chromium-driver - web browser - WebDriver support
 chromium-sandbox - web browser - setuid security sandbox for chromium
 chromium-shell - web browser - minimal shell
Changes:
 chromium (118.0.5993.70-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream stable release.
     - CVE-2023-5218: Use after free in Site Isolation.
       Reported by @18楼梦想改造家.
     - CVE-2023-5487: Inappropriate implementation in Fullscreen.
       Reported by Anonymous.
     - CVE-2023-5484: Inappropriate implementation in Navigation.
       Reported by Thomas Orlita.
     - CVE-2023-5475: Inappropriate implementation in DevTools.
       Reported by Axel Chong.
     - CVE-2023-5483: Inappropriate implementation in Intents.
       Reported by Axel Chong.
     - CVE-2023-5481: Inappropriate implementation in Downloads.
       Reported by Om Apip.
     - CVE-2023-5476: Use after free in Blink History. Reported by Yunqin Sun.
     - CVE-2023-5474: Heap buffer overflow in PDF. Reported by [pwn2car].
     - CVE-2023-5479: Inappropriate implementation in Extensions API.
       Reported by Axel Chong.
     - CVE-2023-5485: Inappropriate implementation in Autofill.
       Reported by Ahmed ElMasry.
     - CVE-2023-5478: Inappropriate implementation in Autofill.
       Reported by Ahmed ElMasry.
     - CVE-2023-5477: Inappropriate implementation in Installer.
       Reported by Bahaa Naamneh of Crosspoint Labs.
     - CVE-2023-5486: Inappropriate implementation in Input. Reported by Hafiizh.
     - CVE-2023-5473: Use after free in Cast. Reported by DarkNavy.
   * d/patches/ppc64le:
     - 0002-third_party-libvpx-Remove-bad-ppc64-config.patch: refresh for
        upstream changes
     - 0001-Add-PPC64-support-for-boringssl.patch: refresh for upstream changes
     - skia-vsx-instructions.patch: refresh for upstream changes
     - third_party/0003-third_party-libvpx-Add-ppc64-generated-config.patch:
       regenerate configs from upstream source
     - database/0001-Properly-detect-little-endian-PPC64-systems.patch:
       refresh
     - ffmpeg/0001-Add-support-for-ppc64.patch: refresh
     - fixes/fix-breakpad-compile.patch: refresh
     - fixes/fix-unknown-warning-option-messages.diff: refresh
     - libaom/0001-Add-ppc64-target-to-libaom.patch: refresh
     - sandbox/0001-sandbox-linux-Update-IsSyscallAllowed-in-broker_proc.patch:
       refresh
     - sandbox/0001-sandbox-linux-Update-syscall-helpers-lists-for-ppc64.patch:
       refresh
     - sandbox/0008-sandbox-fix-ppc64le-glibc234.patch: refresh
     - third_party/0001-Add-PPC64-support-for-boringssl.patch: refresh
     - third_party/0001-Force-baseline-POWER8-AltiVec-VSX-CPU-features-when-.patch:
       refresh
     - third_party/0001-third_party-libvpx-Properly-generate-gni-on-ppc64.patch:
       refresh
     - third_party/0002-third-party-boringssl-add-generated-files.patch: refresh
     - third_party/dawn-fix-ppc64le-detection.patch: refresh
     - third_party/dawn-fix-typos.patch: refresh
     - third_party/skia-vsx-instructions.patch: refresh
     - third_party/use-sysconf-page-size-on-ppc64.patch: refresh
     - workarounds/HACK-third_party-libvpx-use-generic-gnu.patch: refresh
 .
   [ Andres Salomon]
   * d/copyright:
     - blanket.js is gone, no need to remove it any more.
     - delete some khronos images marked executable.
   * d/patches:
     - upstream/memory.patch: drop, merged upstream.
     - upstream/sensor-reading.patch: add, gcc13 build fix from upstream.
     - upstream/lweight.patch: add, gcc13 build fix from upstream.
     - upstream/freetype.patch: add, fix freetype header inclusion FTBFS.
     - upstream/sizet.patch: add, libstdc++ build fix from upstream.
     - disable/unrar.patch: update for minor upstream changes.
     - bookworm/struct-ctor.patch: add various new workarounds for clang-14.
     - bookworm/structured-binding-scope-bug.patch: drop part of the patch.
     - bullseye/constexpr.patch: drop bullseye patch from bookworm.
     - ungoogled/.../disable-web-environment-integrity.patch: sync with
       ungoogled-chromium for upstream changes.
     - bookworm/i386-lock-free.patch: refresh.
Checksums-Sha1:
 3360450f3c1d511e169b79e58eede3cd2083a921 1203728 chromium-common-dbgsym_118.0.5993.70-1~deb12u1_amd64.deb
 6b5ba2566b33a43c1c9b4c302193d1d9171a8eb6 4979120 chromium-common_118.0.5993.70-1~deb12u1_amd64.deb
 b146ed490e03d463e6d468849a39b1ca1d61146f 31375764 chromium-dbgsym_118.0.5993.70-1~deb12u1_amd64.deb
 155d0c45325f35739d4dd8090fa6766add3b1fd8 5360784 chromium-driver_118.0.5993.70-1~deb12u1_amd64.deb
 c967d598e13e0527bb789e3fb471b3febfbcc08a 12652 chromium-sandbox-dbgsym_118.0.5993.70-1~deb12u1_amd64.deb
 54d7e8e0d48d9075099a600362e63b8a43b2a71c 83100 chromium-sandbox_118.0.5993.70-1~deb12u1_amd64.deb
 412b61278783fe61efd3860172ed432b467f82d3 26670956 chromium-shell-dbgsym_118.0.5993.70-1~deb12u1_amd64.deb
 e8be225cf64c49e0f3705f51577389834a000a10 50028300 chromium-shell_118.0.5993.70-1~deb12u1_amd64.deb
 5f2afd1fd8d9865bfcb42f8212288122ae3193f5 24069 chromium_118.0.5993.70-1~deb12u1_amd64-buildd.buildinfo
 64023078804d14f09ce421edc830a3ddcd195a97 71458860 chromium_118.0.5993.70-1~deb12u1_amd64.deb
Checksums-Sha256:
 07c33e06e7f000fcb1caf5ac2377bec9f168a16725a07eea94488e7a6f8e7880 1203728 chromium-common-dbgsym_118.0.5993.70-1~deb12u1_amd64.deb
 bb9611240900242a78683415a187b193ecf6d7379ed5a192692366f6f9418efc 4979120 chromium-common_118.0.5993.70-1~deb12u1_amd64.deb
 c365d87fbbb76249e70d1b95f1812afc97c627b51c8026438d008fdc2a96d6bb 31375764 chromium-dbgsym_118.0.5993.70-1~deb12u1_amd64.deb
 ec73a5eadc463ec4ee57a6bf1e367c184bea9f428be7c9b70e4b97c7dea6fd6e 5360784 chromium-driver_118.0.5993.70-1~deb12u1_amd64.deb
 c56578324bb7b36ba1fa76b04d8851a3cd50fe7092320da096df02479d5e7b81 12652 chromium-sandbox-dbgsym_118.0.5993.70-1~deb12u1_amd64.deb
 8dbfccc18d88a1c90fa4ddcfe95fbfbb2e196139496cde6bddc23a43f07e2854 83100 chromium-sandbox_118.0.5993.70-1~deb12u1_amd64.deb
 6bbb0b491486edb1ea5b677fc6dc32597a9f2be2e3b5f3562b6f731111ca9bcb 26670956 chromium-shell-dbgsym_118.0.5993.70-1~deb12u1_amd64.deb
 f297ebd6b2f2aad8a57f967b7b3d4eb5fd34cccaa3d485d0ba9bad4b5bab6229 50028300 chromium-shell_118.0.5993.70-1~deb12u1_amd64.deb
 2ee30107b652b997e65a8195024f37c97eb19491fe4c97f505258d677d0bff74 24069 chromium_118.0.5993.70-1~deb12u1_amd64-buildd.buildinfo
 7942ef3787a713b3b43390db5a30c7195d2e931681a1b3bd3e7a7a1e31366e3f 71458860 chromium_118.0.5993.70-1~deb12u1_amd64.deb
Files:
 3570280d1d87c294e5df4d835cc87f70 1203728 debug optional chromium-common-dbgsym_118.0.5993.70-1~deb12u1_amd64.deb
 7845e788f094b0855535211014833bd6 4979120 web optional chromium-common_118.0.5993.70-1~deb12u1_amd64.deb
 394f061ef4dc245eef733c3c14c02dc7 31375764 debug optional chromium-dbgsym_118.0.5993.70-1~deb12u1_amd64.deb
 1b054d87a1567362da1407ac2a85c814 5360784 web optional chromium-driver_118.0.5993.70-1~deb12u1_amd64.deb
 e82e740a11f37a896887e07fec1aa575 12652 debug optional chromium-sandbox-dbgsym_118.0.5993.70-1~deb12u1_amd64.deb
 be946572e6a8df73c514485f4a52404d 83100 web optional chromium-sandbox_118.0.5993.70-1~deb12u1_amd64.deb
 8a0389b6f333e155403c0da0d9e01a27 26670956 debug optional chromium-shell-dbgsym_118.0.5993.70-1~deb12u1_amd64.deb
 e9c29aae71bc14765ec62e1d0db0bb5e 50028300 web optional chromium-shell_118.0.5993.70-1~deb12u1_amd64.deb
 d8d503e29a0b0e0f16b3fc2370b29655 24069 web optional chromium_118.0.5993.70-1~deb12u1_amd64-buildd.buildinfo
 88a56a9f0650536d1f29b94582903976 71458860 web optional chromium_118.0.5993.70-1~deb12u1_amd64.deb

-----BEGIN PGP SIGNATURE-----
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=SAmJ
-----END PGP SIGNATURE-----