-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 15 Apr 2025 22:12:30 -0400
Source: chromium
Binary: chromium chromium-common chromium-common-dbgsym chromium-dbgsym chromium-driver chromium-headless-shell chromium-headless-shell-dbgsym chromium-sandbox chromium-sandbox-dbgsym chromium-shell chromium-shell-dbgsym
Architecture: amd64
Version: 135.0.7049.95-1~deb12u1
Distribution: bookworm-security
Urgency: high
Maintainer: all / amd64 / i386 Build Daemon (x86-conova-01) <buildd_amd64-x86-conova-01@buildd.debian.org>
Changed-By: Andres Salomon <dilinger@debian.org>
Description:
 chromium   - web browser
 chromium-common - web browser - common resources used by the chromium packages
 chromium-driver - web browser - WebDriver support
 chromium-headless-shell - web browser - old headless shell
 chromium-sandbox - web browser - setuid security sandbox for chromium
 chromium-shell - web browser - minimal shell
Closes: 1103226
Changes:
 chromium (135.0.7049.95-1~deb12u1) bookworm-security; urgency=high
 .
   [ Andres Salomon ]
   * New upstream security release.
     - CVE-2025-3619: Heap buffer overflow in Codecs. Reported by Elias Hohl.
     - CVE-2025-3620: Use after free in USB. Reported by @retsew0x01.
 .
   [ Daniel Richard G. ]
   * d/copyright, d/patches/system/rapidjson.patch: Slightly narrow the scope
     of the bundled RapidJSON deletion, and rework this patch so that it does
     not require the deletion in order to apply. This allows applying the
     debianization directly to the unrepackaged upstream tarball source.
   * d/patches/system/gperf.patch: Import (self-authored) upstream patch to
     prevent build breakage due to changes in gperf 3.2 generated code
     (closes: #1103226).
   * d/rules: Add new check-version rule to validate the package version.
     Also squelch error messages due to absent clang and rustc executables.
   * d/rules: Download Gentoo's upstream source tarball straight from GitHub.
Checksums-Sha1:
 a435b13dbd3d3f126c16e631f8b42600111ab462 4761528 chromium-common-dbgsym_135.0.7049.95-1~deb12u1_amd64.deb
 4dc0a72daa28db4962963174be8d2c04cef23076 20390664 chromium-common_135.0.7049.95-1~deb12u1_amd64.deb
 0dd8e2bfb837623ff4cc8d0916480d080bdb62f8 30441972 chromium-dbgsym_135.0.7049.95-1~deb12u1_amd64.deb
 9a2325dc83df827118f8f3c0c670d129d8f2c76e 7556616 chromium-driver_135.0.7049.95-1~deb12u1_amd64.deb
 8b75615c19a3204b5961337373bd7de29a64757f 26115420 chromium-headless-shell-dbgsym_135.0.7049.95-1~deb12u1_amd64.deb
 c1e8b8dca09c0d9c5e2f91f76af2ff83f30bf129 58230312 chromium-headless-shell_135.0.7049.95-1~deb12u1_amd64.deb
 4fe8ec7101677e552d66522d564f3fa15d46787a 14080 chromium-sandbox-dbgsym_135.0.7049.95-1~deb12u1_amd64.deb
 e75864d4c68ee125af89c5cf8fa6761356cfa289 102260 chromium-sandbox_135.0.7049.95-1~deb12u1_amd64.deb
 3643da626bc2628411a8df7d9b16e64de4aa739d 25377456 chromium-shell-dbgsym_135.0.7049.95-1~deb12u1_amd64.deb
 aaefc1ef5694c8ac1e7e3057670936f3a037991c 53794224 chromium-shell_135.0.7049.95-1~deb12u1_amd64.deb
 ea2ae5634f905a480dd1c7d7716b2ac93b34d570 30337 chromium_135.0.7049.95-1~deb12u1_amd64-buildd.buildinfo
 dbe0a184fdd8f701e27af907266e314eb8475b72 78176992 chromium_135.0.7049.95-1~deb12u1_amd64.deb
Checksums-Sha256:
 a0328d0000382278b1dca0832ebc9858cac75d0d7f6facd4b326a971177be4ea 4761528 chromium-common-dbgsym_135.0.7049.95-1~deb12u1_amd64.deb
 015d957fd717553382683caed1def8f25b8f424ee4cceb8a6b62465cc1415fae 20390664 chromium-common_135.0.7049.95-1~deb12u1_amd64.deb
 790904bb1619a44691b48b904baa56eb9cddac664cc2fea185c5450dc76c0b81 30441972 chromium-dbgsym_135.0.7049.95-1~deb12u1_amd64.deb
 e3a59d9b0d03903f6c774b9ccac83ba05eb9af35b15bf1fa40b32e75b4c107c7 7556616 chromium-driver_135.0.7049.95-1~deb12u1_amd64.deb
 c5548cff377c02fcd94d1c267043b34234d246e95a085a5b19b9b60299e4b325 26115420 chromium-headless-shell-dbgsym_135.0.7049.95-1~deb12u1_amd64.deb
 2505160b4bdb184232054ef81542c423d77a7a685ff84078cc8502b3184ca71b 58230312 chromium-headless-shell_135.0.7049.95-1~deb12u1_amd64.deb
 d287047886a356244b062a7ec42677e05a2061422ba3dc6fe511e9ff44cba012 14080 chromium-sandbox-dbgsym_135.0.7049.95-1~deb12u1_amd64.deb
 3d6a4b73a7ae1c78ae0c59f3bcd4ea98e1421bc971ee430ad4413b710a3d4eb4 102260 chromium-sandbox_135.0.7049.95-1~deb12u1_amd64.deb
 8f12fac3bf1ea66ad49e3ec51389770f6dcd4bd4a261f788e8d99a46accde2af 25377456 chromium-shell-dbgsym_135.0.7049.95-1~deb12u1_amd64.deb
 01551a61b80dd3a442c4dee9f5d6267bff0aee6eeb072aa75418f7a5540098cf 53794224 chromium-shell_135.0.7049.95-1~deb12u1_amd64.deb
 81ef942d4406bedb8cc4a0d484e6d1ffb7ea6218c26cb21803891118c25cb329 30337 chromium_135.0.7049.95-1~deb12u1_amd64-buildd.buildinfo
 63ac0b1ec5db5f6239018f60dca3a2d22343c2a5297bf20cd2ee12978b9e0809 78176992 chromium_135.0.7049.95-1~deb12u1_amd64.deb
Files:
 cc591f067d0623d1ea12fd17f8363c9c 4761528 debug optional chromium-common-dbgsym_135.0.7049.95-1~deb12u1_amd64.deb
 56e43b81945435b1c38ae1fb33029871 20390664 web optional chromium-common_135.0.7049.95-1~deb12u1_amd64.deb
 72251a0fa93470768509031447a33326 30441972 debug optional chromium-dbgsym_135.0.7049.95-1~deb12u1_amd64.deb
 e6fe91fc2a6a1752bd1588a222d97e5d 7556616 web optional chromium-driver_135.0.7049.95-1~deb12u1_amd64.deb
 da4aad57097cd12b76830c3935e78a40 26115420 debug optional chromium-headless-shell-dbgsym_135.0.7049.95-1~deb12u1_amd64.deb
 ba901bb8f9d3d251a4d3672cc8e38e3d 58230312 web optional chromium-headless-shell_135.0.7049.95-1~deb12u1_amd64.deb
 974917d70a7b4bf77b0757c9fe7b1589 14080 debug optional chromium-sandbox-dbgsym_135.0.7049.95-1~deb12u1_amd64.deb
 593fb2149cb2b2dad8fa054b561043ad 102260 web optional chromium-sandbox_135.0.7049.95-1~deb12u1_amd64.deb
 5e2e0d8f8754d04a9ac2a08e7212ecd9 25377456 debug optional chromium-shell-dbgsym_135.0.7049.95-1~deb12u1_amd64.deb
 ed18d138625e861bb6c552da7f7b6183 53794224 web optional chromium-shell_135.0.7049.95-1~deb12u1_amd64.deb
 7062972f42813c0e45f70da4d7f89075 30337 web optional chromium_135.0.7049.95-1~deb12u1_amd64-buildd.buildinfo
 17805d022c4f947315b28b08e4cdef4e 78176992 web optional chromium_135.0.7049.95-1~deb12u1_amd64.deb

-----BEGIN PGP SIGNATURE-----
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=qJPM
-----END PGP SIGNATURE-----