-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 28 Mar 2024 11:57:05 -0400
Source: chromium
Binary: chromium chromium-common chromium-common-dbgsym chromium-dbgsym chromium-driver chromium-sandbox chromium-sandbox-dbgsym chromium-shell chromium-shell-dbgsym
Architecture: amd64
Version: 123.0.6312.86-1~deb12u1
Distribution: bookworm-security
Urgency: high
Maintainer: all / amd64 / i386 Build Daemon (x86-conova-01) <buildd_amd64-x86-conova-01@buildd.debian.org>
Changed-By: Timothy Pearson <tpearson@debian.org>
Description:
 chromium   - web browser
 chromium-common - web browser - common resources used by the chromium packages
 chromium-driver - web browser - WebDriver support
 chromium-sandbox - web browser - setuid security sandbox for chromium
 chromium-shell - web browser - minimal shell
Closes: 1067886
Changes:
 chromium (123.0.6312.86-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream stable release.
     - CVE-2024-2883: Use after free in ANGLE.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2024-2885: Use after free in Dawn. Reported by wgslfuzz.
     - CVE-2024-2886: Use after free in WebCodecs. Reported by
       Seunghyun Lee (@0x10n) of KAIST Hacking Lab, via Pwn2Own 2024.
     - CVE-2024-2887: Type Confusion in WebAssembly.
       Reported by Manfred Paul, via Pwn2Own 2024.
   * d/patches/ppc64le:
     - fixes/fix-clang-selection.patch: select clang on ppc64 platforms
     - ppc64le/third_party/0001-Add-PPC64-support-for-boringssl.patch: fix
       ARM builds.
 .
   [ Andres Salomon ]
   * d/patches:
     - fixes/bad-font-gc1.patch, fixes/bad-font-gc2.patch: revert a pair of
       upstream commits that result in blink's garbage collector frequently
       deadlocking and crashing (closes: #1067886).
Checksums-Sha1:
 13e3b954e75ef289f8d21671a720108da21c72d6 1215484 chromium-common-dbgsym_123.0.6312.86-1~deb12u1_amd64.deb
 f949f66bef4dddd100163510e8e42e1df2f4f0e8 4973052 chromium-common_123.0.6312.86-1~deb12u1_amd64.deb
 4cc900d6de0e34ba6e67251534961c6da0ec7e00 35185092 chromium-dbgsym_123.0.6312.86-1~deb12u1_amd64.deb
 f7f52b5d7d483d2884a8e307d8b64f756b1ea48a 6043928 chromium-driver_123.0.6312.86-1~deb12u1_amd64.deb
 7899564d4752f6227420df6ee7e703a729afef2f 14128 chromium-sandbox-dbgsym_123.0.6312.86-1~deb12u1_amd64.deb
 1f32c718a725511615cdfbb4fed334e2a18ccfe7 87880 chromium-sandbox_123.0.6312.86-1~deb12u1_amd64.deb
 ca1e56fec8513f1352d24efbed8125644579996f 30619444 chromium-shell-dbgsym_123.0.6312.86-1~deb12u1_amd64.deb
 b2b651dfddba649e7f3153be2fdf49aab1f55ba0 51566904 chromium-shell_123.0.6312.86-1~deb12u1_amd64.deb
 88f7d02c8df394dcf667c00b1fe9bf138f3f4a33 24541 chromium_123.0.6312.86-1~deb12u1_amd64-buildd.buildinfo
 4bd6c2fdb04c7f11ebb48c05bf2992b4e59f3a9a 73553988 chromium_123.0.6312.86-1~deb12u1_amd64.deb
Checksums-Sha256:
 c86522ac7346ee5948a3f8c7d3daf1ecf88bfcba3323f22747d821533b09cc71 1215484 chromium-common-dbgsym_123.0.6312.86-1~deb12u1_amd64.deb
 b7eb3c1f8fe2de2ee3409ba67f19e0c45c35ce1765c67734dc2a54c4f57ba222 4973052 chromium-common_123.0.6312.86-1~deb12u1_amd64.deb
 ace2eb06c8a8b46a8cb33c38813a0e8fdf334621d025af0f4035074e93185445 35185092 chromium-dbgsym_123.0.6312.86-1~deb12u1_amd64.deb
 6b76e6fb4976c025fb32c4155cf6bb922620278fb9a7bc5045d86d91874100c0 6043928 chromium-driver_123.0.6312.86-1~deb12u1_amd64.deb
 8999108a98fc03bee405f7c25a3c9131e337c91c887bcf0a705bc06f561daf8c 14128 chromium-sandbox-dbgsym_123.0.6312.86-1~deb12u1_amd64.deb
 60f7167afa860e2d25981f604b8f26116981dec9fae29b4be9e553db7e2f405f 87880 chromium-sandbox_123.0.6312.86-1~deb12u1_amd64.deb
 3fa475d514591a735294e227755dd612b5fe9d1a43be50ccf622238c8ebd9d0d 30619444 chromium-shell-dbgsym_123.0.6312.86-1~deb12u1_amd64.deb
 929c5525dabb6c71bc8989dd37d2785b38bc438749e43c93f999e177aa07848e 51566904 chromium-shell_123.0.6312.86-1~deb12u1_amd64.deb
 1c7ebd6d361e264b17c8f61907307b03ac8d423dc3dd87423710f24711740238 24541 chromium_123.0.6312.86-1~deb12u1_amd64-buildd.buildinfo
 8d10a55e0844f043b58161f32552304570a329538b2078cc0e9c6f204cfa30ff 73553988 chromium_123.0.6312.86-1~deb12u1_amd64.deb
Files:
 7c146f90a183aafa6849dbfd24c865c7 1215484 debug optional chromium-common-dbgsym_123.0.6312.86-1~deb12u1_amd64.deb
 9ce7e63cfe73e9f8b4856bbb9d98ed65 4973052 web optional chromium-common_123.0.6312.86-1~deb12u1_amd64.deb
 93f05e26913f5dde03ddc22ad0072cd7 35185092 debug optional chromium-dbgsym_123.0.6312.86-1~deb12u1_amd64.deb
 b1130099619ad1ecdaaaedf373aa240e 6043928 web optional chromium-driver_123.0.6312.86-1~deb12u1_amd64.deb
 78b685af60517920974fe028b9c1df4d 14128 debug optional chromium-sandbox-dbgsym_123.0.6312.86-1~deb12u1_amd64.deb
 320a18aceee0aee05081e91e771d2836 87880 web optional chromium-sandbox_123.0.6312.86-1~deb12u1_amd64.deb
 2588f9906d6cf3d52d1409b8fca385c7 30619444 debug optional chromium-shell-dbgsym_123.0.6312.86-1~deb12u1_amd64.deb
 f593a23d80823051ec4c4cd3d7ebaeae 51566904 web optional chromium-shell_123.0.6312.86-1~deb12u1_amd64.deb
 4f1ab84e21bb17914c8f58c938522d59 24541 web optional chromium_123.0.6312.86-1~deb12u1_amd64-buildd.buildinfo
 b2db02bbd4304fdd5767727d8ec2e28f 73553988 web optional chromium_123.0.6312.86-1~deb12u1_amd64.deb

-----BEGIN PGP SIGNATURE-----
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=uBHR
-----END PGP SIGNATURE-----