-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 19 Mar 2026 19:35:31 -0400
Source: chromium
Binary: chromium chromium-common chromium-common-dbgsym chromium-dbgsym chromium-driver chromium-headless-shell chromium-headless-shell-dbgsym chromium-sandbox chromium-sandbox-dbgsym chromium-shell chromium-shell-dbgsym
Architecture: arm64
Version: 146.0.7680.153-1~deb12u1
Distribution: bookworm-security
Urgency: high
Maintainer: arm Build Daemon (arm-conova-02) <buildd_arm64-arm-conova-02@buildd.debian.org>
Changed-By: Andres Salomon <dilinger@debian.org>
Description:
 chromium   - web browser
 chromium-common - web browser - common resources used by the chromium packages
 chromium-driver - web browser - WebDriver support
 chromium-headless-shell - web browser - old headless shell
 chromium-sandbox - web browser - setuid security sandbox for chromium
 chromium-shell - web browser - minimal shell
Closes: 1130569
Changes:
 chromium (146.0.7680.153-1~deb12u1) bookworm-security; urgency=high
 .
   [ Andres Salomon ]
   * New upstream security release.
     - CVE-2026-4439: Out of bounds memory access in WebGL.
       Reported by Goodluck.
     - CVE-2026-4440: Out of bounds read and write in WebGL.
       Reported by c6eed09fc8b174b0f3eebedcceb1e792.
     - CVE-2026-4441: Use after free in Base. Reported by Google.
     - CVE-2026-4442: Heap buffer overflow in CSS. Reported by Syn4pse.
     - CVE-2026-4443: Heap buffer overflow in WebAudio.
       Reported by c6eed09fc8b174b0f3eebedcceb1e792.
     - CVE-2026-4444: Stack buffer overflow in WebRTC.
       Reported by c6eed09fc8b174b0f3eebedcceb1e792.
     - CVE-2026-4445: Use after free in WebRTC.
       Reported by c6eed09fc8b174b0f3eebedcceb1e792.
     - CVE-2026-4446: Use after free in WebRTC.
       Reported by c6eed09fc8b174b0f3eebedcceb1e792.
     - CVE-2026-4447: Inappropriate implementation in V8. Reported by Erge.
     - CVE-2026-4448: Heap buffer overflow in ANGLE.
       Reported by M. Fauzan Wijaya (Gh05t666nero).
     - CVE-2026-4449: Use after free in Blink. Reported by Syn4pse.
     - CVE-2026-4450: Out of bounds write in V8. Reported by qymag1c.
     - CVE-2026-4451: Insufficient validation of untrusted input in
       Navigation. Reported by c6eed09fc8b174b0f3eebedcceb1e792.
     - CVE-2026-4452: Integer overflow in ANGLE. Reported by cinzinga.
     - CVE-2026-4453: Integer overflow in Dawn. Reported by sweetchip.
     - CVE-2026-4454: Use after free in Network.
       Reported by heapracer (@heapracer).
     - CVE-2026-4455: Heap buffer overflow in PDFium.
       Reported by c6eed09fc8b174b0f3eebedcceb1e792.
     - CVE-2026-4456: Use after free in Digital Credentials API.
       Reported by sean wong.
     - CVE-2026-4457: Type Confusion in V8.
       Reported by Zhenpeng (Leo) Lin at depthfirst.
     - CVE-2026-4458: Use after free in Extensions. Reported by Shaheen Fazim.
     - CVE-2026-4459: Out of bounds read and write in WebAudio. Reported by
       Jihyeon Jeong (Compsec Lab, Seoul National University / Research Intern)
     - CVE-2026-4460: Out of bounds read in Skia.
       Reported by c6eed09fc8b174b0f3eebedcceb1e792.
     - CVE-2026-4461: Inappropriate implementation in V8. Reported by Google.
     - CVE-2026-4462: Out of bounds read in Blink.
       Reported by heapracer (@heapracer).
     - CVE-2026-4463: Heap buffer overflow in WebRTC.
       Reported by c6eed09fc8b174b0f3eebedcceb1e792.
     - CVE-2026-4464: Integer overflow in ANGLE. Reported by heesun.
   * d/patches/disable/glic.patch: refresh for upstream tab nudging changes
 .
   [ Jianfeng Liu ]
   * add upstreamed patch of boringssl to fix loong64 build (closes: #1130569)
Checksums-Sha1:
 7670d00f1cc2cb864f87d9b7689c0d275bb32f71 6290372 chromium-common-dbgsym_146.0.7680.153-1~deb12u1_arm64.deb
 547cf9b791b50b0ef2da52fa43b9a858f9bd745a 34081632 chromium-common_146.0.7680.153-1~deb12u1_arm64.deb
 45c3fd821b026799300060f153979c834c0962fc 36180508 chromium-dbgsym_146.0.7680.153-1~deb12u1_arm64.deb
 c45a3caf7cc51c840dc5f03e70092af696b9b3de 6640876 chromium-driver_146.0.7680.153-1~deb12u1_arm64.deb
 3ae2698a71743c650016828ec73a0aef1356ae42 29415516 chromium-headless-shell-dbgsym_146.0.7680.153-1~deb12u1_arm64.deb
 7ebbe2d34b88cfff02feb5c8c8e7cf11054b5b59 49882436 chromium-headless-shell_146.0.7680.153-1~deb12u1_arm64.deb
 f7d01546fd028eab6a498763a8f3a9436f0d0bea 20256 chromium-sandbox-dbgsym_146.0.7680.153-1~deb12u1_arm64.deb
 d19f314ae09fbe5a6710e168e9f6f0c65755f778 114232 chromium-sandbox_146.0.7680.153-1~deb12u1_arm64.deb
 c50bb185f4f730fe553ee05aa05e499ce6997c73 31675132 chromium-shell-dbgsym_146.0.7680.153-1~deb12u1_arm64.deb
 39ac68ef40acdd63db78b9c8fb21dc2d55da9918 54422328 chromium-shell_146.0.7680.153-1~deb12u1_arm64.deb
 09921f9daa15f35d265d2dcc81f7f64f68d333b6 30387 chromium_146.0.7680.153-1~deb12u1_arm64-buildd.buildinfo
 58c045bb4e87dcf20b0fde91501852a2bbcae685 63528168 chromium_146.0.7680.153-1~deb12u1_arm64.deb
Checksums-Sha256:
 505e48996f4c9b7b2cff8390eb18464b3365e881be46a5c9a2a0d2b9b006c1af 6290372 chromium-common-dbgsym_146.0.7680.153-1~deb12u1_arm64.deb
 cb0f202b6e20e63773a0a1e55157166ee3297c861103ca955f583e0c50fbddbc 34081632 chromium-common_146.0.7680.153-1~deb12u1_arm64.deb
 5dadc248fa7de17c1b7bf3187e31d5f7e533007af3b567c479b738ece3085a3f 36180508 chromium-dbgsym_146.0.7680.153-1~deb12u1_arm64.deb
 9afa3a12f03729a9af8f279ee182cd6ec86545622efd0d0a026b5560d85fd6ac 6640876 chromium-driver_146.0.7680.153-1~deb12u1_arm64.deb
 26ef533d0395749a6af28979756a2731238a3564ce3730efe37dab4b2510fe8d 29415516 chromium-headless-shell-dbgsym_146.0.7680.153-1~deb12u1_arm64.deb
 a88eb393e944894486b6901cdce63d704a81e47ad281f29976724f4885d130fa 49882436 chromium-headless-shell_146.0.7680.153-1~deb12u1_arm64.deb
 12331d0fe767e07166493467e6293f0833b48acbf56c2ed5a5054121721f84ce 20256 chromium-sandbox-dbgsym_146.0.7680.153-1~deb12u1_arm64.deb
 8e5b95e1efb3bc33b659bec3915c5c26f97d6e650bd5d846c5c4667e43b3eb74 114232 chromium-sandbox_146.0.7680.153-1~deb12u1_arm64.deb
 2776b6464912689c8062c71061eb715edac6f05750e38f41bf50167ee3dae1db 31675132 chromium-shell-dbgsym_146.0.7680.153-1~deb12u1_arm64.deb
 d5f2067b8c3b17539e84fc788b730ca44fafb736347b4dc3460ae1da017d32f6 54422328 chromium-shell_146.0.7680.153-1~deb12u1_arm64.deb
 7c8bdf27dea8fb77d145fe6c23ae0d2a8f8feb628755d8f1bdec6c24b851a032 30387 chromium_146.0.7680.153-1~deb12u1_arm64-buildd.buildinfo
 3b99e06296d845b02b324e30d7cc045480832d2529f7012b1b7f3dfab729b484 63528168 chromium_146.0.7680.153-1~deb12u1_arm64.deb
Files:
 784f0a47b6aed67d60f0581ddc2f4309 6290372 debug optional chromium-common-dbgsym_146.0.7680.153-1~deb12u1_arm64.deb
 52ae55333ce8fb23ffc8bae00fdc5f0b 34081632 web optional chromium-common_146.0.7680.153-1~deb12u1_arm64.deb
 2b902f176eb2b597b9f789a1f7a10181 36180508 debug optional chromium-dbgsym_146.0.7680.153-1~deb12u1_arm64.deb
 911971545f9ac51bb90de5562a276e02 6640876 web optional chromium-driver_146.0.7680.153-1~deb12u1_arm64.deb
 46fcfcc3bef33ea8805476dff79e83e1 29415516 debug optional chromium-headless-shell-dbgsym_146.0.7680.153-1~deb12u1_arm64.deb
 2c56ac615b00a3f5656a574f9c256ab3 49882436 web optional chromium-headless-shell_146.0.7680.153-1~deb12u1_arm64.deb
 2da7c5f520e66f1ea97167d96e0bf20d 20256 debug optional chromium-sandbox-dbgsym_146.0.7680.153-1~deb12u1_arm64.deb
 d094daa591e4cd727c86cb80c328f5e5 114232 web optional chromium-sandbox_146.0.7680.153-1~deb12u1_arm64.deb
 de66b54cfc4fbf27765991a35ba45de6 31675132 debug optional chromium-shell-dbgsym_146.0.7680.153-1~deb12u1_arm64.deb
 673ee0f98191f5d6d20157a867765df5 54422328 web optional chromium-shell_146.0.7680.153-1~deb12u1_arm64.deb
 292e66487c3e14280414780321342fcb 30387 web optional chromium_146.0.7680.153-1~deb12u1_arm64-buildd.buildinfo
 a64486947725dcad360ace6450977b35 63528168 web optional chromium_146.0.7680.153-1~deb12u1_arm64.deb

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEWHj9K9pO9l4btbD1OQKMdMnEH5MFAmm9gfMACgkQOQKMdMnE
H5O/pxAAziHtgiPi7Nj35/trt/PTUOjEYQ/5BVRQDd3Q2cvJyWZ6FBgpNWtH8pZ3
J98mHOuRDtbu4guXOybCtEB5Tm3S9MaMYWSNKkYJcAaCw2Ev9Ixm/9+KFEETJnZ6
mGoPkAIFZQ90izQhIHxMLXDor63ovYaoAX4UOnkMiyVna+NpNq5xyZallR3hO/+i
HE3SGjWeX64CZx+HsB6nYs/4SiTgR2OQDwo4HLMlI+CAIg4+TVbYxHXbc0XHbMNu
QoG2BwbDC9QJ97OUKfpBWBK/070E9mpQBIeE4LQReknposVnU31j/8wC6WmQIBw/
oZfa/9SmFlZw7tz/17caeDYh0IBxbOJGAxRz3VJhcQ1xX5MwGwl1NSHwX2Hxnhq8
5uB8QeR5+sVseRaakcECQhz8hQuKf+kFsUIIbA9/ZLo6FocBUoKozqmQ7z9XWfvr
Hl4g5GLGWy5zELA/731iBga2Z+ZiqsJAl76yQxuksCjD0d5g9Mli8L9qnSiN6vwt
QS0PRWqNFbF+YrYa947ov8E9QYP9TOicNT0OX9Y7JPZ5naruyXfiDql1zAc1zeXk
ZmGA0PVzVwQETY01ZSJv492ySmBL1mDQhZ3j3d2n3qLv/TvWO1Bc+An4gInZyryk
H9IvaXTG0iNifOAXjeUgVAnqpLIb10L+5TRAOo8quH886o62hoY=
=CL7q
-----END PGP SIGNATURE-----