-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 19 Mar 2026 19:35:31 -0400
Source: chromium
Binary: chromium chromium-common chromium-common-dbgsym chromium-dbgsym chromium-driver chromium-headless-shell chromium-headless-shell-dbgsym chromium-sandbox chromium-sandbox-dbgsym chromium-shell chromium-shell-dbgsym
Architecture: amd64
Version: 146.0.7680.153-1~deb13u1
Distribution: trixie-security
Urgency: high
Maintainer: amd64 / i386 Build Daemon (x86-ubc-01) <buildd_amd64-x86-ubc-01@buildd.debian.org>
Changed-By: Andres Salomon <dilinger@debian.org>
Description:
 chromium   - web browser
 chromium-common - web browser - common resources used by the chromium packages
 chromium-driver - web browser - WebDriver support
 chromium-headless-shell - web browser - old headless shell
 chromium-sandbox - web browser - setuid security sandbox for chromium
 chromium-shell - web browser - minimal shell
Closes: 1130569
Changes:
 chromium (146.0.7680.153-1~deb13u1) trixie-security; urgency=high
 .
   [ Andres Salomon ]
   * New upstream security release.
     - CVE-2026-4439: Out of bounds memory access in WebGL.
       Reported by Goodluck.
     - CVE-2026-4440: Out of bounds read and write in WebGL.
       Reported by c6eed09fc8b174b0f3eebedcceb1e792.
     - CVE-2026-4441: Use after free in Base. Reported by Google.
     - CVE-2026-4442: Heap buffer overflow in CSS. Reported by Syn4pse.
     - CVE-2026-4443: Heap buffer overflow in WebAudio.
       Reported by c6eed09fc8b174b0f3eebedcceb1e792.
     - CVE-2026-4444: Stack buffer overflow in WebRTC.
       Reported by c6eed09fc8b174b0f3eebedcceb1e792.
     - CVE-2026-4445: Use after free in WebRTC.
       Reported by c6eed09fc8b174b0f3eebedcceb1e792.
     - CVE-2026-4446: Use after free in WebRTC.
       Reported by c6eed09fc8b174b0f3eebedcceb1e792.
     - CVE-2026-4447: Inappropriate implementation in V8. Reported by Erge.
     - CVE-2026-4448: Heap buffer overflow in ANGLE.
       Reported by M. Fauzan Wijaya (Gh05t666nero).
     - CVE-2026-4449: Use after free in Blink. Reported by Syn4pse.
     - CVE-2026-4450: Out of bounds write in V8. Reported by qymag1c.
     - CVE-2026-4451: Insufficient validation of untrusted input in
       Navigation. Reported by c6eed09fc8b174b0f3eebedcceb1e792.
     - CVE-2026-4452: Integer overflow in ANGLE. Reported by cinzinga.
     - CVE-2026-4453: Integer overflow in Dawn. Reported by sweetchip.
     - CVE-2026-4454: Use after free in Network.
       Reported by heapracer (@heapracer).
     - CVE-2026-4455: Heap buffer overflow in PDFium.
       Reported by c6eed09fc8b174b0f3eebedcceb1e792.
     - CVE-2026-4456: Use after free in Digital Credentials API.
       Reported by sean wong.
     - CVE-2026-4457: Type Confusion in V8.
       Reported by Zhenpeng (Leo) Lin at depthfirst.
     - CVE-2026-4458: Use after free in Extensions. Reported by Shaheen Fazim.
     - CVE-2026-4459: Out of bounds read and write in WebAudio. Reported by
       Jihyeon Jeong (Compsec Lab, Seoul National University / Research Intern)
     - CVE-2026-4460: Out of bounds read in Skia.
       Reported by c6eed09fc8b174b0f3eebedcceb1e792.
     - CVE-2026-4461: Inappropriate implementation in V8. Reported by Google.
     - CVE-2026-4462: Out of bounds read in Blink.
       Reported by heapracer (@heapracer).
     - CVE-2026-4463: Heap buffer overflow in WebRTC.
       Reported by c6eed09fc8b174b0f3eebedcceb1e792.
     - CVE-2026-4464: Integer overflow in ANGLE. Reported by heesun.
   * d/patches/disable/glic.patch: refresh for upstream tab nudging changes
 .
   [ Jianfeng Liu ]
   * add upstreamed patch of boringssl to fix loong64 build (closes: #1130569)
Checksums-Sha1:
 37548e6e9355e757e749756d49fb32a0ee2301be 5113468 chromium-common-dbgsym_146.0.7680.153-1~deb13u1_amd64.deb
 e468b9efdabc377d52badcb4bd219401a69612e0 29234740 chromium-common_146.0.7680.153-1~deb13u1_amd64.deb
 44dd192df33162d4f1fd7d27f930346145bcc260 33004012 chromium-dbgsym_146.0.7680.153-1~deb13u1_amd64.deb
 f56f73a02a95f94f885758db00d85120f1bca29a 7352956 chromium-driver_146.0.7680.153-1~deb13u1_amd64.deb
 c17fc57cab848b55e429d302a30cd26db5c8a57d 28080140 chromium-headless-shell-dbgsym_146.0.7680.153-1~deb13u1_amd64.deb
 0f72c22e8b132dbbc655ffea6e5a8bf80da824e8 61325828 chromium-headless-shell_146.0.7680.153-1~deb13u1_amd64.deb
 9c19dda840c14330cb0f77a780f29396384cf192 20216 chromium-sandbox-dbgsym_146.0.7680.153-1~deb13u1_amd64.deb
 7e082a65989c68fd44e61ef548d6b2e996b8fedd 111360 chromium-sandbox_146.0.7680.153-1~deb13u1_amd64.deb
 06c1359ac99565a633f53ef668cafa9f0a712034 29463316 chromium-shell-dbgsym_146.0.7680.153-1~deb13u1_amd64.deb
 7140804f1140b52e78726b15a08457a0238d8f53 60760160 chromium-shell_146.0.7680.153-1~deb13u1_amd64.deb
 373aeafd7a6280d599763f833e5398119129369a 30397 chromium_146.0.7680.153-1~deb13u1_amd64-buildd.buildinfo
 c3e6371fddff674dcaf3ede6cb61537471822c64 82450836 chromium_146.0.7680.153-1~deb13u1_amd64.deb
Checksums-Sha256:
 02637f24071c0277698dfc9029087e577eff936fbb951b90a39d83efc9bb0218 5113468 chromium-common-dbgsym_146.0.7680.153-1~deb13u1_amd64.deb
 f50130729529c4c343b749ab9077198cb5ce80ce6073a86cb833ab3ef8a3bdee 29234740 chromium-common_146.0.7680.153-1~deb13u1_amd64.deb
 45c3d781cb6d122b8b6104f91f12d3b8a55dd796076f5b57b194adf9f5ba65eb 33004012 chromium-dbgsym_146.0.7680.153-1~deb13u1_amd64.deb
 1da4c3f7921913fbfe05b0d625d7c1c8b8f1a2f3c1b1d81a42fd6114d26d9174 7352956 chromium-driver_146.0.7680.153-1~deb13u1_amd64.deb
 3ace4c5f5f281d6f7a0071be4e6de221e6c6285bc4ec19f78877abcc33e651b8 28080140 chromium-headless-shell-dbgsym_146.0.7680.153-1~deb13u1_amd64.deb
 805d75b4bfa4f4eddce0952c5f90cf0bd4c830eb365e044e3b7fa80fd7b42d29 61325828 chromium-headless-shell_146.0.7680.153-1~deb13u1_amd64.deb
 85190208eeb2fda8dec45678acefb43a274e32cad18170cacb17c33e4d416776 20216 chromium-sandbox-dbgsym_146.0.7680.153-1~deb13u1_amd64.deb
 3dbf2dedb0149b4d911d4e5829a60f4ca1dc392ff9daab90484ba17cdc9d98ec 111360 chromium-sandbox_146.0.7680.153-1~deb13u1_amd64.deb
 d379e3d275380083b6e7cae32b8b40dc9281a5835ebab87c1a3f13906bff23fa 29463316 chromium-shell-dbgsym_146.0.7680.153-1~deb13u1_amd64.deb
 7b61baba19f898804f9d577bded6c93b666cd7bb64bb7dafdcbc9bfe277340f6 60760160 chromium-shell_146.0.7680.153-1~deb13u1_amd64.deb
 68e53b1912608b274e45efd100af92aa8e156d6dae46b55c31fc0eccad37bfdb 30397 chromium_146.0.7680.153-1~deb13u1_amd64-buildd.buildinfo
 dc6fc862a31c9c14a7078b4f46d24a8e35ece7a1c87adc9fd6352a63fe970f24 82450836 chromium_146.0.7680.153-1~deb13u1_amd64.deb
Files:
 ddcc2b60204f2476cc82b3786dacdfe7 5113468 debug optional chromium-common-dbgsym_146.0.7680.153-1~deb13u1_amd64.deb
 d1eb7a5046ab94a9e26631a529a65359 29234740 web optional chromium-common_146.0.7680.153-1~deb13u1_amd64.deb
 d30df8eaed4ae5cdac06b6c81e18c14c 33004012 debug optional chromium-dbgsym_146.0.7680.153-1~deb13u1_amd64.deb
 ac1d37d9aaf24cc7a5e14199e79dfe45 7352956 web optional chromium-driver_146.0.7680.153-1~deb13u1_amd64.deb
 357d013e218d2464f8097ae5d343f00d 28080140 debug optional chromium-headless-shell-dbgsym_146.0.7680.153-1~deb13u1_amd64.deb
 9b671e5b7e78f8dfb5e26f9631792f7d 61325828 web optional chromium-headless-shell_146.0.7680.153-1~deb13u1_amd64.deb
 66bf8cd6294e2d2fd9e111c458ae363c 20216 debug optional chromium-sandbox-dbgsym_146.0.7680.153-1~deb13u1_amd64.deb
 bc229a46b1c94286504debc7c07ead3f 111360 web optional chromium-sandbox_146.0.7680.153-1~deb13u1_amd64.deb
 551e902acb2cb6b0dbd84e9150dc9060 29463316 debug optional chromium-shell-dbgsym_146.0.7680.153-1~deb13u1_amd64.deb
 fd6d3d963314c2943957aa8c53999d22 60760160 web optional chromium-shell_146.0.7680.153-1~deb13u1_amd64.deb
 17ca0e83b2f30edb69cf24eee286fb45 30397 web optional chromium_146.0.7680.153-1~deb13u1_amd64-buildd.buildinfo
 9e41f1a14388ba925aed50fefbd0f090 82450836 web optional chromium_146.0.7680.153-1~deb13u1_amd64.deb

-----BEGIN PGP SIGNATURE-----
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=CjGl
-----END PGP SIGNATURE-----