-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 15 Apr 2025 22:12:30 -0400
Source: chromium
Binary: chromium chromium-common chromium-common-dbgsym chromium-dbgsym chromium-driver chromium-headless-shell chromium-headless-shell-dbgsym chromium-sandbox chromium-sandbox-dbgsym chromium-shell chromium-shell-dbgsym
Architecture: i386
Version: 135.0.7049.95-1~deb12u1
Distribution: bookworm-security
Urgency: high
Maintainer: all / amd64 / i386 Build Daemon (x86-grnet-03) <buildd_amd64-x86-grnet-03@buildd.debian.org>
Changed-By: Andres Salomon <dilinger@debian.org>
Description:
 chromium   - web browser
 chromium-common - web browser - common resources used by the chromium packages
 chromium-driver - web browser - WebDriver support
 chromium-headless-shell - web browser - old headless shell
 chromium-sandbox - web browser - setuid security sandbox for chromium
 chromium-shell - web browser - minimal shell
Closes: 1103226
Changes:
 chromium (135.0.7049.95-1~deb12u1) bookworm-security; urgency=high
 .
   [ Andres Salomon ]
   * New upstream security release.
     - CVE-2025-3619: Heap buffer overflow in Codecs. Reported by Elias Hohl.
     - CVE-2025-3620: Use after free in USB. Reported by @retsew0x01.
 .
   [ Daniel Richard G. ]
   * d/copyright, d/patches/system/rapidjson.patch: Slightly narrow the scope
     of the bundled RapidJSON deletion, and rework this patch so that it does
     not require the deletion in order to apply. This allows applying the
     debianization directly to the unrepackaged upstream tarball source.
   * d/patches/system/gperf.patch: Import (self-authored) upstream patch to
     prevent build breakage due to changes in gperf 3.2 generated code
     (closes: #1103226).
   * d/rules: Add new check-version rule to validate the package version.
     Also squelch error messages due to absent clang and rustc executables.
   * d/rules: Download Gentoo's upstream source tarball straight from GitHub.
Checksums-Sha1:
 9f8b25056ac90921f88189451e4d97fab7ea1fc5 4837116 chromium-common-dbgsym_135.0.7049.95-1~deb12u1_i386.deb
 3a22df8651ff1e155a583839b5804af19c2b3531 20545544 chromium-common_135.0.7049.95-1~deb12u1_i386.deb
 f92c760446ab5abae44048c84fca815c393abe9f 32632392 chromium-dbgsym_135.0.7049.95-1~deb12u1_i386.deb
 0b9da24365cbf2b24566e024ea34401f9fb895e4 7989756 chromium-driver_135.0.7049.95-1~deb12u1_i386.deb
 664a7dcf34b4edb26db81f5209f1e6fe95c724a9 27232736 chromium-headless-shell-dbgsym_135.0.7049.95-1~deb12u1_i386.deb
 823cad17f737620075e5ef32356b1c0f897597d7 53967112 chromium-headless-shell_135.0.7049.95-1~deb12u1_i386.deb
 5ee038279ddf97d02d016bbed57f6e801e2e8518 14120 chromium-sandbox-dbgsym_135.0.7049.95-1~deb12u1_i386.deb
 a225bf75bce1aaa21e932f72a1f8625cbb80ecd2 102144 chromium-sandbox_135.0.7049.95-1~deb12u1_i386.deb
 b24d1e94b0986e3e3959aa8c466aebc1c1332c73 27628640 chromium-shell-dbgsym_135.0.7049.95-1~deb12u1_i386.deb
 3996d2af29ecbfe45db114f2ba61f5b5fa5d2d9c 55905848 chromium-shell_135.0.7049.95-1~deb12u1_i386.deb
 783008a7f934a423acdf512c34aa3f2043911c08 30319 chromium_135.0.7049.95-1~deb12u1_i386-buildd.buildinfo
 6ec0a1ac5ce164d9e0cb3c57a0bf32b6a4174f47 70369276 chromium_135.0.7049.95-1~deb12u1_i386.deb
Checksums-Sha256:
 fc312c3c5ff85275efc96b44e5c1ce00c36c2fb9c2993f1b7aad7a50559dceea 4837116 chromium-common-dbgsym_135.0.7049.95-1~deb12u1_i386.deb
 dc00a6822a96d7e031c3bdf29a0cbb1dcac6d16f27c7d74396b5ff6a70ba6c7f 20545544 chromium-common_135.0.7049.95-1~deb12u1_i386.deb
 19b0c35f4af05729a94d7e6737ee93f7f7df32118b4b6b18b00da953ad0b2bfd 32632392 chromium-dbgsym_135.0.7049.95-1~deb12u1_i386.deb
 128a583e9c77aacffaf80e0061df9609f16afdb3bc37d902fbf46202a0931b5f 7989756 chromium-driver_135.0.7049.95-1~deb12u1_i386.deb
 7537b30ca39478a8c20f8573c053464cafe4f257040ab18f6de5ec432f7c9539 27232736 chromium-headless-shell-dbgsym_135.0.7049.95-1~deb12u1_i386.deb
 40c035c7ed1f373254a508cd9565d933a177c46650f9ad9a46db56348c2eb2e4 53967112 chromium-headless-shell_135.0.7049.95-1~deb12u1_i386.deb
 bad1575f4e1bcf6bf13c38adafd921ed11210ded917624cc931e937a02d42704 14120 chromium-sandbox-dbgsym_135.0.7049.95-1~deb12u1_i386.deb
 b0f817c3378c580c0a5a429c03630dd8e39106d27f7b4205f44b243395677824 102144 chromium-sandbox_135.0.7049.95-1~deb12u1_i386.deb
 a02b3d6be9d7417fc220116d3f1435a622c2c19597aca7daf68c716a16ffbf05 27628640 chromium-shell-dbgsym_135.0.7049.95-1~deb12u1_i386.deb
 6a76a6da347010beb4e03fc5c6f9fd2eadfb3be21911221c00e6575e4e645609 55905848 chromium-shell_135.0.7049.95-1~deb12u1_i386.deb
 4dd95d098fdeb0cf420ac73e300032a1cd84bf7fbad545ab3d20680ddd361603 30319 chromium_135.0.7049.95-1~deb12u1_i386-buildd.buildinfo
 af773b8be96e55a687970f61bd9fd457f88c13daf3f07b7b2fc9aeeb22325cdd 70369276 chromium_135.0.7049.95-1~deb12u1_i386.deb
Files:
 520e75345f39f0a0aac0cfd296dde379 4837116 debug optional chromium-common-dbgsym_135.0.7049.95-1~deb12u1_i386.deb
 7b4248c00268a8e59262db4ca7031e76 20545544 web optional chromium-common_135.0.7049.95-1~deb12u1_i386.deb
 e3119df2f56517aad61a9307d82e5e5e 32632392 debug optional chromium-dbgsym_135.0.7049.95-1~deb12u1_i386.deb
 f1e298c6d02396a225ee71c8d1b04e03 7989756 web optional chromium-driver_135.0.7049.95-1~deb12u1_i386.deb
 2dcd5f06d91dab92bad0c17643c36804 27232736 debug optional chromium-headless-shell-dbgsym_135.0.7049.95-1~deb12u1_i386.deb
 d4b5c8b467097291b195bf585b58e3ba 53967112 web optional chromium-headless-shell_135.0.7049.95-1~deb12u1_i386.deb
 ca92c1a6a8a3062334a52b46a4a28531 14120 debug optional chromium-sandbox-dbgsym_135.0.7049.95-1~deb12u1_i386.deb
 30d806e326c6ec74b6ba59db32eba180 102144 web optional chromium-sandbox_135.0.7049.95-1~deb12u1_i386.deb
 feedceea42c4c056e5b1c166c37ce384 27628640 debug optional chromium-shell-dbgsym_135.0.7049.95-1~deb12u1_i386.deb
 e48ba73d447fa0f9d4cc0d18bb9d6ce3 55905848 web optional chromium-shell_135.0.7049.95-1~deb12u1_i386.deb
 1dbdd5e40ec2e07ad5871404e1fba3c0 30319 web optional chromium_135.0.7049.95-1~deb12u1_i386-buildd.buildinfo
 15aa91650ebb2acbeb5985d444f27074 70369276 web optional chromium_135.0.7049.95-1~deb12u1_i386.deb

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEHqtYLkdKRyCY94K8fUw6/tXbAmMFAmgAjmAACgkQfUw6/tXb
AmMFZA//c6nFV+INp5z386Rvk9Gea7RAaWxsMJVvRKhYj7BPsji+e41FFzsyF7fK
ZT1ECDYctu72fj0ER8R0KT+624bFc+nnsSiyoORKjMlyEQ5QPHZapZ/ImgqS7/g8
Wg8LT0YhNKdt93yLu6h2WShhQE9nRz5qotWmm3C5WATAVwhvb6jCT3cWAkMd5pp/
1yUW7JNtHaROP+66WwpifK3rUEKhQadsdXj7ySHq9a8Okg/+qNCt0oi1oHu5QTDd
/NacODMCSl/3MQkSxKfzlQB0vZHMLMDjUMjndZsjfwGAAdm5lyiNFC27ASrSvV6j
U64cJs9sAmumNJtF/ycKChGABE7G83AvBr4P8OxGwqzximDqfYfq3opVWLNN4QR3
WoYgEtzaqeXsSx1xn77wQ0T9/f1fLUNYNWKYn6nDaUFfAClCcoFEMX1N9bX1+x3O
YaeXb897j+V2sjW+aI4NFHjbqXKG0NUOyp+NbgLl0F4oUApOetvenRdDThCbWFQR
jf68fVaEYKXmalkDPf8nsM6QYsMBn6PnBQIDHBtlB/+VtuDAlXvDVYubjqJrp5TV
aMKohNjisp8tNqNYoOIbCLlNoq3ArfcHt3WwAByspkZEH5DKvlqRwXLnh/C4yFO6
kHtSgT8f9p9iKTH/Cbs7GMLlGMGHEc03vMp2OHQnXI6+f0gIA8s=
=D9Cu
-----END PGP SIGNATURE-----