-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 01 Oct 2025 02:24:37 -0400
Source: chromium
Binary: chromium chromium-common chromium-common-dbgsym chromium-dbgsym chromium-driver chromium-headless-shell chromium-headless-shell-dbgsym chromium-sandbox chromium-sandbox-dbgsym chromium-shell chromium-shell-dbgsym
Architecture: i386
Version: 141.0.7390.54-1~deb12u1
Distribution: bookworm-security
Urgency: high
Maintainer: all / amd64 / i386 Build Daemon (x86-conova-02) <buildd_amd64-x86-conova-02@buildd.debian.org>
Changed-By: Andres Salomon <dilinger@debian.org>
Description:
 chromium   - web browser
 chromium-common - web browser - common resources used by the chromium packages
 chromium-driver - web browser - WebDriver support
 chromium-headless-shell - web browser - old headless shell
 chromium-sandbox - web browser - setuid security sandbox for chromium
 chromium-shell - web browser - minimal shell
Changes:
 chromium (141.0.7390.54-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream stable release.
     - CVE-2025-11205: Heap buffer overflow in WebGPU.
       Reported by Atte Kettunen of OUSPG.
     - CVE-2025-11206: Heap buffer overflow in Video. Reported by Elias Hohl.
     - CVE-2025-11207: Side-channel information leakage in Storage.
       Reported by Alesandro Ortiz.
     - CVE-2025-11208: Inappropriate implementation in Media.
       Reported by Kevin Joensen.
     - CVE-2025-11209: Inappropriate implementation in Omnibox.
       Reported by Hafiizh.
     - CVE-2025-11210: Side-channel information leakage in Tab.
       Reported by Umar Farooq.
     - CVE-2025-11211: Out of bounds read in Media. Reported by Kosir Jakob.
     - CVE-2025-11212: Inappropriate implementation in Media.
       Reported by Ameen Basha M K.
     - CVE-2025-11213: Inappropriate implementation in Omnibox.
       Reported by Hafiizh.
     - CVE-2025-11215: Off by one error in V8. Reported by Google Big Sleep.
     - CVE-2025-11216: Inappropriate implementation in Storage.
       Reported by Farras Givari.
     - CVE-2025-11219: Use after free in V8. Reported by Google Big Sleep.
   * d/patches:
     - fixes/rust-clanglib.patch: refresh.
     - trixie/rust-no-alloc-shim.patch: refresh.
     - ungoogled/disable-privacy-sandbox.patch: update from ungoogled.
     - fixes/gentoo-stylesheet.patch: add patch from gentoo to fix build.
     - fixes/libcpp-headers.patch: add build fix for unbundling clang.
   * d/rules: set rtc_video_psnr=false for bookworm's older openh264.
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - sandbox/0001-sandbox-Enable-seccomp_bpf-for-ppc64.patch: Refresh for
       upstream changes
     - fixes/fix-rustc.patch: Refresh for upstream changes
Checksums-Sha1:
 547bae0517fbe38272d4b10363aa5b9d0f791445 5113296 chromium-common-dbgsym_141.0.7390.54-1~deb12u1_i386.deb
 f6a21bcea57f91641e148b4a294d3c271a998a84 22551188 chromium-common_141.0.7390.54-1~deb12u1_i386.deb
 7ef6d5db22607b62e8a28564c8c0d54df5014eec 33798360 chromium-dbgsym_141.0.7390.54-1~deb12u1_i386.deb
 9ee44ec7676f4963ad9573455d24fd5588399308 7431004 chromium-driver_141.0.7390.54-1~deb12u1_i386.deb
 d82a9728a71464d1090f7cf752e3f89672fe41c3 28039752 chromium-headless-shell-dbgsym_141.0.7390.54-1~deb12u1_i386.deb
 c947d135e80a63b4d68dd5501dae028401038dfc 55414364 chromium-headless-shell_141.0.7390.54-1~deb12u1_i386.deb
 a555c8c784b3443d1963c6f42826d5e94aa77aa3 18088 chromium-sandbox-dbgsym_141.0.7390.54-1~deb12u1_i386.deb
 097af98de79c3e23905d4a09e49219cdc7822e1c 106964 chromium-sandbox_141.0.7390.54-1~deb12u1_i386.deb
 572ae7ac2772b3e8ee506ce483e76c5af0859276 30147648 chromium-shell-dbgsym_141.0.7390.54-1~deb12u1_i386.deb
 9d1d0222eeab47768e97516086004d588e1cef7e 60126508 chromium-shell_141.0.7390.54-1~deb12u1_i386.deb
 4505616b7f5219ab7348cfca8fc99de83cf1846a 30298 chromium_141.0.7390.54-1~deb12u1_i386-buildd.buildinfo
 c84fc7543b4601303517ec9c1d1408eb1970a3fd 72002596 chromium_141.0.7390.54-1~deb12u1_i386.deb
Checksums-Sha256:
 34c54617fd42498139c6c9c6121e1b3b1e0b8415fe9dd8bf55fe099a172744fe 5113296 chromium-common-dbgsym_141.0.7390.54-1~deb12u1_i386.deb
 0b98d6fa877ef5186b1ca6e69043d9d4463601503dac4e8ce89f5eee7b99c55a 22551188 chromium-common_141.0.7390.54-1~deb12u1_i386.deb
 bb7f1aef56f293f928ee88f1bf58d79603c058e3398a0083f4179b828dedc4a0 33798360 chromium-dbgsym_141.0.7390.54-1~deb12u1_i386.deb
 52d3e5d25802ade0cf10f360540bd0431202edc6adec9dfba648810e15f7a24a 7431004 chromium-driver_141.0.7390.54-1~deb12u1_i386.deb
 46b53cca938ec36e3834fb06a46b95b5fd9864577351c47a61b574ab7d5ffb0c 28039752 chromium-headless-shell-dbgsym_141.0.7390.54-1~deb12u1_i386.deb
 12e549ec719c821206d7858ee75dc7b6a32ff81e95f9180439951cb932a9928b 55414364 chromium-headless-shell_141.0.7390.54-1~deb12u1_i386.deb
 efa15d6055cce4d3fd4a0cd51ae2d8bd6831afba3ab8eacd19537ec470fd3125 18088 chromium-sandbox-dbgsym_141.0.7390.54-1~deb12u1_i386.deb
 134fef8e476a9d25b442be480ba9d9111eec4855ecca424e2ca7e13c45fe22f7 106964 chromium-sandbox_141.0.7390.54-1~deb12u1_i386.deb
 2e6da51885097f87ec504bed7435dff7683b00111602beb95fecc359317017fe 30147648 chromium-shell-dbgsym_141.0.7390.54-1~deb12u1_i386.deb
 7e289f9bff8ee699294b5ce094b6b6d49ce8c490f9089a14e42ad98f1d9789a8 60126508 chromium-shell_141.0.7390.54-1~deb12u1_i386.deb
 7eb066f673e9a887959a2359b37efd2a02635ab4da3e65e56e9cde192f89f145 30298 chromium_141.0.7390.54-1~deb12u1_i386-buildd.buildinfo
 50f0556b094ccaf86e6b946d20ed33ef8a02dbe62681985dde22d6bdba251240 72002596 chromium_141.0.7390.54-1~deb12u1_i386.deb
Files:
 a8279d6400a90d70cf8e740452a14ef7 5113296 debug optional chromium-common-dbgsym_141.0.7390.54-1~deb12u1_i386.deb
 dab54e4826cd618ba8cb3df34fe3d43b 22551188 web optional chromium-common_141.0.7390.54-1~deb12u1_i386.deb
 6e0f0c274218d04df92d6c8825ef6e69 33798360 debug optional chromium-dbgsym_141.0.7390.54-1~deb12u1_i386.deb
 c6c350041714a35928c524afc4bd7e48 7431004 web optional chromium-driver_141.0.7390.54-1~deb12u1_i386.deb
 f5269333ad3b906879bf04a8d1692591 28039752 debug optional chromium-headless-shell-dbgsym_141.0.7390.54-1~deb12u1_i386.deb
 1a4ebb30eb5db359d9d627c08da939e3 55414364 web optional chromium-headless-shell_141.0.7390.54-1~deb12u1_i386.deb
 eba2415b47c16b4fea8af518fb80132f 18088 debug optional chromium-sandbox-dbgsym_141.0.7390.54-1~deb12u1_i386.deb
 30411a126e2e06ee8ff36306693b4156 106964 web optional chromium-sandbox_141.0.7390.54-1~deb12u1_i386.deb
 29afcf9c95c7e3df8780d508da71a16d 30147648 debug optional chromium-shell-dbgsym_141.0.7390.54-1~deb12u1_i386.deb
 b44c2a145580cfbaca99870b543a7d89 60126508 web optional chromium-shell_141.0.7390.54-1~deb12u1_i386.deb
 fb2a6137c8d7a9f92db474be7f3e9857 30298 web optional chromium_141.0.7390.54-1~deb12u1_i386-buildd.buildinfo
 48b89f3c597800a5862f776b682acd9e 72002596 web optional chromium_141.0.7390.54-1~deb12u1_i386.deb

-----BEGIN PGP SIGNATURE-----
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=8Yts
-----END PGP SIGNATURE-----