-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 03 May 2023 00:42:00 -0500
Source: chromium
Binary: chromium chromium-common chromium-common-dbgsym chromium-dbgsym chromium-driver chromium-sandbox chromium-sandbox-dbgsym chromium-shell chromium-shell-dbgsym
Architecture: amd64
Version: 113.0.5672.63-1~deb11u1
Distribution: bullseye-security
Urgency: high
Maintainer: all / amd64 / i386 Build Daemon (x86-conova-01) <buildd_amd64-x86-conova-01@buildd.debian.org>
Changed-By: Timothy Pearson <tpearson@raptorengineering.com>
Description:
 chromium   - web browser
 chromium-common - web browser - common resources used by the chromium packages
 chromium-driver - web browser - WebDriver support
 chromium-sandbox - web browser - setuid security sandbox for chromium
 chromium-shell - web browser - minimal shell
Closes: 992178 1031352
Changes:
 chromium (113.0.5672.63-1~deb11u1) bullseye-security; urgency=high
 .
   * New upstream stable release.
     - CVE-2023-2459: Inappropriate implementation in Prompts.
       Reported by Rong Jian of VRI.
     - CVE-2023-2460: Insufficient validation of untrusted input in Extensions.
       Reported by Martin Bajanik, Fingerprint[.]com.
     - CVE-2023-2461: Use after free in OS Inputs. Reported by @ginggilBesel.
     - CVE-2023-2462: Inappropriate implementation in Prompts.
       Reported by Alesandro Ortiz.
     - CVE-2023-2463: Inappropriate implementation in Full Screen Mode.
       Reported by Irvan Kurniawan (sourc7).
     - CVE-2023-2464: Inappropriate implementation in PictureInPicture.
       Reported by Thomas Orlita.
     - CVE-2023-2465: Inappropriate implementation in CORS.
       Reported by @kunte_ctf.
     - CVE-2023-2466: Inappropriate implementation in Prompts.
       Reported by Jasper Rebane (popstonia).
     - CVE-2023-2467: Inappropriate implementation in Prompts.
       Reported by Thomas Orlita.
     - CVE-2023-2468: Inappropriate implementation in PictureInPicture.
       Reported by Alesandro Ortiz.
 .
   [ Andres Salomon]
    * Remove Michel from Uploaders.
    * Build against libopenh264-dev (closes: #1031352).
    * d/copyright:
      - drop fuchsia*: entirely different OS.
      - drop chrome/build: 200MB of PGO optimizations for official chrome builds.
      - drop third_party/updater: upstream included update binary.
      - re-add part of chrome/browser/resources/chromeos/ and chrome/android/ to
        fix build errors.
    * d/patches:
      - debianization/master-preferences.patch: check for initial_preferences or
        master_preferences, rather than just for the latter (closes: #992178).
      - disable/unrar.patch: complete rewrite for upstream's nested archive changes.
      - disable/catapult.patch: refresh.
      - upstream/webview-cstr.patch: add simple build fix from upstream.
      - upstream/monostate.patch: add simple build fix from upstream.
      - bookworm/clang-attribs.patch: build fix for clang-14 to keep from
        generating hundreds of warnings per compilation unit.
      - bookworm/typename.patch: add another build fix for missing typename.
      - bookworm/lamba-bug.patch: add to work around compiler bug (clang < 16).
      - bullseye/constexpr.patch: work around build failure w/ bullseye's
        clang/libstdc++.
      - disable/openh264.patch -> bullseye/openh264.patch, and stop using it
        for sid & bookworm.
      - bullseye/disable-mojo-ipcz.patch: refresh.
      - bullseye/mulodic.patch: refresh.
 .
   [ Timothy Pearson ]
    * d/patches:
      - Set baseline ppc64 CPU to POWER ISA 3.0 (OpenPOWER, POWER9)
      - Enable VSX acceleration in Skia
      - Refresh ppc64le/third_party/0002-third_party-libvpx-Remove-bad-ppc64-config.patch
      - Add fixes for new Highway library on ppc64
      - Suppress harmless warning messages from compiler during ppc64 builds
Checksums-Sha1:
 3e1bc2fe96934e35405644ae3119d4c937ee6892 1090260 chromium-common-dbgsym_113.0.5672.63-1~deb11u1_amd64.deb
 842507b494664a72ca9c6392ecb3a51ba440bd56 4984628 chromium-common_113.0.5672.63-1~deb11u1_amd64.deb
 1705f1423b4ea8cab61f5390968e2a6652fff084 28903032 chromium-dbgsym_113.0.5672.63-1~deb11u1_amd64.deb
 bb0d0c535b3148da4c4edb425c142a8965fa0bdd 5600448 chromium-driver_113.0.5672.63-1~deb11u1_amd64.deb
 972c9b3c53c52498c39673bc94d0abfebc94b1cf 12272 chromium-sandbox-dbgsym_113.0.5672.63-1~deb11u1_amd64.deb
 0112c7de6693d38da248385cb11f41f29d64a824 133164 chromium-sandbox_113.0.5672.63-1~deb11u1_amd64.deb
 2ea4349e55c8cfe3c55c1cfff2ce29cb3e1ea1c4 25021056 chromium-shell-dbgsym_113.0.5672.63-1~deb11u1_amd64.deb
 ca94cb7862d8ce8edcac194d0b7d4534fceba719 48504132 chromium-shell_113.0.5672.63-1~deb11u1_amd64.deb
 0880b5392993ecb4371da067df982fd1dd39c538 25587 chromium_113.0.5672.63-1~deb11u1_amd64-buildd.buildinfo
 13984d781311b30d0a3c7b9f5f9d8f80cae1f05d 68933920 chromium_113.0.5672.63-1~deb11u1_amd64.deb
Checksums-Sha256:
 e51279f9df88151e96aeb83790d2886a46102404f776c979814b5542a1801df7 1090260 chromium-common-dbgsym_113.0.5672.63-1~deb11u1_amd64.deb
 d9a79d7df28f118872c19f978f6372ce400ae97cdb228ad5f6b083432e74ec78 4984628 chromium-common_113.0.5672.63-1~deb11u1_amd64.deb
 2ee2c96955c51a85367bab18be51c903de3a744c184ce9f4db47bcd5e27d1bfb 28903032 chromium-dbgsym_113.0.5672.63-1~deb11u1_amd64.deb
 a47db162e21c38ce469ae6dd2f17189e6b808137c60d9463acc7f4e749f2ef6b 5600448 chromium-driver_113.0.5672.63-1~deb11u1_amd64.deb
 a50f7cb0f9f2aaa1cc6fd2be0f7d6759b7fdf1c800b084fad198ae9686b4e43c 12272 chromium-sandbox-dbgsym_113.0.5672.63-1~deb11u1_amd64.deb
 ee3d94d2deae6a8877da08cb1f7faadcc5b0009d019968b9bacfb29a21adba1b 133164 chromium-sandbox_113.0.5672.63-1~deb11u1_amd64.deb
 8e3009bfb2833cf45cdf760456a85dee98385708184863ba473c97eb71d998dd 25021056 chromium-shell-dbgsym_113.0.5672.63-1~deb11u1_amd64.deb
 649100180b01b2f373add654e3bfc5ad12869c85e7e12745743248f80d8de21f 48504132 chromium-shell_113.0.5672.63-1~deb11u1_amd64.deb
 3d0aee596b19e277b830fd1926c3a85598ceeb39811e32d947ab8fa7e01f6f76 25587 chromium_113.0.5672.63-1~deb11u1_amd64-buildd.buildinfo
 195ed75626c8d20cf50ca16da8f26886a1611463a67137d0352a9e546054bf39 68933920 chromium_113.0.5672.63-1~deb11u1_amd64.deb
Files:
 d7ffdb68c5d979169030c3b5f53ec81c 1090260 debug optional chromium-common-dbgsym_113.0.5672.63-1~deb11u1_amd64.deb
 5e8d648fc683eabc2142f94ddb9b90b6 4984628 web optional chromium-common_113.0.5672.63-1~deb11u1_amd64.deb
 8baa9ccdb37fabf63cdb010541b4aa34 28903032 debug optional chromium-dbgsym_113.0.5672.63-1~deb11u1_amd64.deb
 1a28f8d1f46061152692a2ef95de87d0 5600448 web optional chromium-driver_113.0.5672.63-1~deb11u1_amd64.deb
 c422a3b8d5306cab5acc9b1a2d229a21 12272 debug optional chromium-sandbox-dbgsym_113.0.5672.63-1~deb11u1_amd64.deb
 5638bbea27909184583474086af5d7e4 133164 web optional chromium-sandbox_113.0.5672.63-1~deb11u1_amd64.deb
 3c2e824fe3037da1760500fda6eeacaf 25021056 debug optional chromium-shell-dbgsym_113.0.5672.63-1~deb11u1_amd64.deb
 4398ea870b2c7b648febf19f36e0bc42 48504132 web optional chromium-shell_113.0.5672.63-1~deb11u1_amd64.deb
 d53278a11f87dc1f16bd36471c13a277 25587 web optional chromium_113.0.5672.63-1~deb11u1_amd64-buildd.buildinfo
 43fe41eed35dd03bd0c10c4a5fc6855b 68933920 web optional chromium_113.0.5672.63-1~deb11u1_amd64.deb

-----BEGIN PGP SIGNATURE-----
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=hXGG
-----END PGP SIGNATURE-----