-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 18 Sep 2024 20:47:23 -0400
Source: chromium
Binary: chromium chromium-common chromium-common-dbgsym chromium-dbgsym chromium-driver chromium-sandbox chromium-sandbox-dbgsym chromium-shell chromium-shell-dbgsym
Architecture: armhf
Version: 129.0.6668.58-1~deb12u1
Distribution: bookworm-security
Urgency: high
Maintainer: arm Build Daemon (arm-ubc-03) <buildd_arm64-arm-ubc-03@buildd.debian.org>
Changed-By: Andres Salomon <dilinger@debian.org>
Description:
 chromium   - web browser
 chromium-common - web browser - common resources used by the chromium packages
 chromium-driver - web browser - WebDriver support
 chromium-sandbox - web browser - setuid security sandbox for chromium
 chromium-shell - web browser - minimal shell
Changes:
 chromium (129.0.6668.58-1~deb12u1) bookworm-security; urgency=high
 .
   [ Andres Salomon ]
   * New upstream stable release.
     - CVE-2024-8904: Type Confusion in V8. Reported by Popax21.
     - CVE-2024-8905: Inappropriate implementation in V8.
       Reported by Ganjiang Zhou(@refrain_areu) of ChaMd5-H1 team.
     - CVE-2024-8906: Incorrect security UI in Downloads.
       Reported by @retsew0x01.
     - CVE-2024-8907: Insufficient data validation in Omnibox.
       Reported by Muhammad Zaid Ghifari.
     - CVE-2024-8908: Inappropriate implementation in Autofill.
       Reported by Levit Nudi from Kenya.
     - CVE-2024-8909: Inappropriate implementation in UI.
       Reported by Shaheen Fazim.
   * d/patches:
     - debianization/sandbox.patch: refresh for upstream changes. Since we
       have some downstream users of this package, retain the Ubuntu wording.
     - disable/tests.patch: refresh.
     - disable/catapult.patch: refresh.
     - bookworm/clang16.patch: refresh, delete -Wno-dangling-assignment-gsl
     - ppc64le/crashpad/0001-Implement-support-for-PPC64-on-Linux.patch:
       refresh.
     - ppc64le/sandbox/Sandbox-linux-services-credentials.cc-PPC.patch:
       refresh.
     - ppc64le/third_party/dawn-fix-ppc64le-detection.patch: refresh.
     - bookworm/more-spaceships.patch: yet another clang-17 header
       backport for clang-16 inadequecies.
     - bookworm/signer-lambda.patch: clang-16 lambda bug workaround.
     - bookworm/bubble-contents.patch: refresh.
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - third_party/dawn-fix-typos.patch: drop, applied upstream
     - third_party/0003-third_party-ffmpeg-Add-ppc64-generated-config.patch:
       refresh for upstream changes
     - libaom/0001-Add-pregenerated-config-for-libaom-on-ppc64.patch: refresh
       for upstream changes
     - core/cargo-add-ppc64.diff: Add ppc64 to cargo architecture definitions
Checksums-Sha1:
 a8a6bf25d2c2e8a1cd3eaf7c8b02cb6c1d3c5f41 5777060 chromium-common-dbgsym_129.0.6668.58-1~deb12u1_armhf.deb
 90d606d6647dbc4162b160d558f15ff56f791c46 9745592 chromium-common_129.0.6668.58-1~deb12u1_armhf.deb
 b8250d6f27eb62e781064a3964d2f550baea67f0 34335192 chromium-dbgsym_129.0.6668.58-1~deb12u1_armhf.deb
 0936c8f0c74ec0c32611d3ee8f532d42c34329c8 6230708 chromium-driver_129.0.6668.58-1~deb12u1_armhf.deb
 2da72804c3e9d4c4d766ee9aa69f2f2f74c3c24e 12264 chromium-sandbox-dbgsym_129.0.6668.58-1~deb12u1_armhf.deb
 3c1c7db2cb075819d0f79dccbfe4f06c2fab89e6 95164 chromium-sandbox_129.0.6668.58-1~deb12u1_armhf.deb
 42cafdfb428233a6c3787371ced38f4101c21676 28243788 chromium-shell-dbgsym_129.0.6668.58-1~deb12u1_armhf.deb
 218a71816329127fe14291d02ce25480ded1f6b2 48607564 chromium-shell_129.0.6668.58-1~deb12u1_armhf.deb
 f7107452b7c5af6476ee390a21ccdb61c7ebb853 24801 chromium_129.0.6668.58-1~deb12u1_armhf-buildd.buildinfo
 1b436374a07c8d9bff1794255889c4700f1ff7da 69545116 chromium_129.0.6668.58-1~deb12u1_armhf.deb
Checksums-Sha256:
 b3b4cec377898d6d880d6444245fead8b8f78a92830f7041e413f73567395026 5777060 chromium-common-dbgsym_129.0.6668.58-1~deb12u1_armhf.deb
 3b6c5189794b5f07ed52a9d05328fe331904b404f983c635fabbcc51950ad3e9 9745592 chromium-common_129.0.6668.58-1~deb12u1_armhf.deb
 b79399ede50243e5027f8f35f70a57f4317bca345a6c9d8043e0fd55e99b0201 34335192 chromium-dbgsym_129.0.6668.58-1~deb12u1_armhf.deb
 d9d9e94be601f3a9be0336416f4b4b7616384f8698945d474bbf2a3a1ba20024 6230708 chromium-driver_129.0.6668.58-1~deb12u1_armhf.deb
 7dc7c31f2bf379d2e03ca0b8ace3bae9c4f2e496eab7f4c9d22892e84a2ebb1d 12264 chromium-sandbox-dbgsym_129.0.6668.58-1~deb12u1_armhf.deb
 3a6b8abf20574df08024e80bd301e82b73e89523007c49a829a4e97342b12743 95164 chromium-sandbox_129.0.6668.58-1~deb12u1_armhf.deb
 a131671421f1c10af7652ba8fccc1552c2b004d1b1602b63e042f5fc683bf808 28243788 chromium-shell-dbgsym_129.0.6668.58-1~deb12u1_armhf.deb
 f457679af2bc303adf7b7d77804f9ccc6546a85bdf467ab21bba87e7ec4766df 48607564 chromium-shell_129.0.6668.58-1~deb12u1_armhf.deb
 fe19ddbc15a775924b85aa6c260f95e45f9ec164b90069d3efe82bc8a39ab4be 24801 chromium_129.0.6668.58-1~deb12u1_armhf-buildd.buildinfo
 c6d88c3fef1ee08e079752179ca1e0d1dd5176aeb58bc3147d37a716ff6eaaad 69545116 chromium_129.0.6668.58-1~deb12u1_armhf.deb
Files:
 0ab323bd039d7f95c964fc87ce91a85c 5777060 debug optional chromium-common-dbgsym_129.0.6668.58-1~deb12u1_armhf.deb
 eb96ef69e52544fa505fb9dbe99dcb72 9745592 web optional chromium-common_129.0.6668.58-1~deb12u1_armhf.deb
 e20979d3765fce81f03dd98a18eb24ff 34335192 debug optional chromium-dbgsym_129.0.6668.58-1~deb12u1_armhf.deb
 46e08b78ba71e3a68b48f13c1a64e799 6230708 web optional chromium-driver_129.0.6668.58-1~deb12u1_armhf.deb
 a60e5129e274bdeb59d3bae37db499b7 12264 debug optional chromium-sandbox-dbgsym_129.0.6668.58-1~deb12u1_armhf.deb
 cb5f77117c3474ac812f77097d91747c 95164 web optional chromium-sandbox_129.0.6668.58-1~deb12u1_armhf.deb
 42a161e10c66f89d44c1752ab053822b 28243788 debug optional chromium-shell-dbgsym_129.0.6668.58-1~deb12u1_armhf.deb
 d8fa41b795ca159a74bc1f5e37edd733 48607564 web optional chromium-shell_129.0.6668.58-1~deb12u1_armhf.deb
 33c6d4d237e272efb068e09f6b063018 24801 web optional chromium_129.0.6668.58-1~deb12u1_armhf-buildd.buildinfo
 32ba19aad8ae5ce91aa92d60f99cce38 69545116 web optional chromium_129.0.6668.58-1~deb12u1_armhf.deb

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEE0+FegZ3qs8CHnZkx+XaKpT5fkBIFAmbud8AACgkQ+XaKpT5f
kBICqg/+OljJN0s9eE8kG2tr6pe2BLu40Cuc0uao7N/1r20g0pzT75IsD+l8e6y3
66Czc6do6bJrmR77as16HgSWlPqRoe0vFnBBKGWIxlmD8bqqlXtlwt8+eZpgtB7/
FPY333FCyF7d0e/WdYiFi3QONh/cX0zOCQAuzEnPs3ag6uedEOAjZkjlL76fowHm
ifRXXvD+F5HfIc1gDyvwq0GLoT9k3dIriugNTP2vt6hTP2AfVtBjhJb77EBIflNN
/W/OpogHGcv7YbttKmFXCIcmMM6MJEkD4kjCdn/hA7QVS+C8SA2rhb9e2v4gc76y
CNoIKFRSaIGMJSnOq6g4W28Ss5AW/37/uHCiijryvA7GcB1mxjaqa9zVZOfJYKFz
FqrHYPF0M1OGm8n1SkAiCZyIhUdyfniBIhA2XlAdrkBlN/cPdEDR3zSV4kVxRUmU
JG9GfCVZHgaVcTP3frO/Xk2f6vs8F6CUWMUde0v+WJ23X/qpcUULj3SD2q6RUVo0
VfPEhgwt8SQJupOp6HIPDNqm2IH2UHBUBMNyUa20Rpd2pTqSFzMI1Xi/SX5L+isW
QOKMXjPTlFZlWohdMZUd5Q1IB499ZKdxBzdK81m4jxN8OhpyJdFpyYIOCO+V5tdM
YW/bMVPxBSgUfiJaJPv6Z8nYt2kLQh7SdNrMR1YY8JYa9y40QUI=
=7DYU
-----END PGP SIGNATURE-----