-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 15 Apr 2025 22:12:30 -0400
Source: chromium
Binary: chromium chromium-common chromium-common-dbgsym chromium-dbgsym chromium-driver chromium-headless-shell chromium-headless-shell-dbgsym chromium-sandbox chromium-sandbox-dbgsym chromium-shell chromium-shell-dbgsym
Architecture: armhf
Version: 135.0.7049.95-1~deb12u1
Distribution: bookworm-security
Urgency: high
Maintainer: arm Build Daemon (arm-conova-04) <buildd_arm64-arm-conova-04@buildd.debian.org>
Changed-By: Andres Salomon <dilinger@debian.org>
Description:
 chromium   - web browser
 chromium-common - web browser - common resources used by the chromium packages
 chromium-driver - web browser - WebDriver support
 chromium-headless-shell - web browser - old headless shell
 chromium-sandbox - web browser - setuid security sandbox for chromium
 chromium-shell - web browser - minimal shell
Closes: 1103226
Changes:
 chromium (135.0.7049.95-1~deb12u1) bookworm-security; urgency=high
 .
   [ Andres Salomon ]
   * New upstream security release.
     - CVE-2025-3619: Heap buffer overflow in Codecs. Reported by Elias Hohl.
     - CVE-2025-3620: Use after free in USB. Reported by @retsew0x01.
 .
   [ Daniel Richard G. ]
   * d/copyright, d/patches/system/rapidjson.patch: Slightly narrow the scope
     of the bundled RapidJSON deletion, and rework this patch so that it does
     not require the deletion in order to apply. This allows applying the
     debianization directly to the unrepackaged upstream tarball source.
   * d/patches/system/gperf.patch: Import (self-authored) upstream patch to
     prevent build breakage due to changes in gperf 3.2 generated code
     (closes: #1103226).
   * d/rules: Add new check-version rule to validate the package version.
     Also squelch error messages due to absent clang and rustc executables.
   * d/rules: Download Gentoo's upstream source tarball straight from GitHub.
Checksums-Sha1:
 65a6310b76ed25cb9bfb7fb2b1e85a1e0e8d618c 5112680 chromium-common-dbgsym_135.0.7049.95-1~deb12u1_armhf.deb
 34f264de8ca8548c7f3257b106db96dce230d516 20259828 chromium-common_135.0.7049.95-1~deb12u1_armhf.deb
 e1d4e95aa75ec5bf469d8afa04f52d9806bb4178 32197104 chromium-dbgsym_135.0.7049.95-1~deb12u1_armhf.deb
 7984b0a72b057546019c041c45c216ca304a0c92 7323272 chromium-driver_135.0.7049.95-1~deb12u1_armhf.deb
 c1bea013f7319e935c75f599c85f05896d44c974 25590584 chromium-headless-shell-dbgsym_135.0.7049.95-1~deb12u1_armhf.deb
 b6faa547d19598332f408839544e179e2c755ac3 48758780 chromium-headless-shell_135.0.7049.95-1~deb12u1_armhf.deb
 967a8a39b8641437fd5a11c808ca2db7ef2957f4 12692 chromium-sandbox-dbgsym_135.0.7049.95-1~deb12u1_armhf.deb
 bec671f718438c5efecc96bf0ccebba508055892 101836 chromium-sandbox_135.0.7049.95-1~deb12u1_armhf.deb
 9c9f00776feaa2326e9c856d40587470cadbff12 26110176 chromium-shell-dbgsym_135.0.7049.95-1~deb12u1_armhf.deb
 17cdeeeb6287209d7b762b33b89b52c879b2b599 50662964 chromium-shell_135.0.7049.95-1~deb12u1_armhf.deb
 6e147a9c482ca7a6d13c157f8d8514b228bd4b61 30212 chromium_135.0.7049.95-1~deb12u1_armhf-buildd.buildinfo
 d151996ff2b649a84e7666977b17f39de719c548 63109556 chromium_135.0.7049.95-1~deb12u1_armhf.deb
Checksums-Sha256:
 01dd296c01ab0b212ba58a6645de1d72c5202e495391182668ed128318361886 5112680 chromium-common-dbgsym_135.0.7049.95-1~deb12u1_armhf.deb
 ba32c2501a3def3592a9419c4a3bee5ac2db350c69b9d35097897dda401249e1 20259828 chromium-common_135.0.7049.95-1~deb12u1_armhf.deb
 907fc081a4cc6ece820512396ca88f7466c86aa25bd6927c47cdc588a8652ae9 32197104 chromium-dbgsym_135.0.7049.95-1~deb12u1_armhf.deb
 f89fa1aba4e3d9bbea8dbe3842f62e4fe7ae002ed3acbbb16a16fea627fa7e7b 7323272 chromium-driver_135.0.7049.95-1~deb12u1_armhf.deb
 a7095c83fc04b5e9fb265acc7e058f06a96faef59463de5febd0291288bdb1c4 25590584 chromium-headless-shell-dbgsym_135.0.7049.95-1~deb12u1_armhf.deb
 80c34856c18f3c28b16402336f4beddf31a906daf428732e58772f3a0ce98349 48758780 chromium-headless-shell_135.0.7049.95-1~deb12u1_armhf.deb
 6666dffe715138b24f315cf5bdbbb000779f7340dc818643d379323457446dba 12692 chromium-sandbox-dbgsym_135.0.7049.95-1~deb12u1_armhf.deb
 1f438607933d3067ec697b153e2b6eae9f8929b8b39bc3bc5ae12cf8bcd50838 101836 chromium-sandbox_135.0.7049.95-1~deb12u1_armhf.deb
 5cdb4e60c695f99d99a223566ed273c89875295e9b1b150448ed8046f8748253 26110176 chromium-shell-dbgsym_135.0.7049.95-1~deb12u1_armhf.deb
 51aaf8d14d30a869b8b10967c88a9430dbe30252fa6fd24642b588ed88060fe4 50662964 chromium-shell_135.0.7049.95-1~deb12u1_armhf.deb
 9f2b4391ea48091b5460489aec8c36b5b0f7307eddb1c2ce94fe63a4141d2553 30212 chromium_135.0.7049.95-1~deb12u1_armhf-buildd.buildinfo
 37286fb72d24b02b786cdd146310483614ab4437e046746a66df69ee687a8767 63109556 chromium_135.0.7049.95-1~deb12u1_armhf.deb
Files:
 447564fd2f1259b6973d654022d0174e 5112680 debug optional chromium-common-dbgsym_135.0.7049.95-1~deb12u1_armhf.deb
 2abb28c09fa53fb8d1df8560fdb96444 20259828 web optional chromium-common_135.0.7049.95-1~deb12u1_armhf.deb
 3f29bc0d0717d2094af2f54cc55ed72e 32197104 debug optional chromium-dbgsym_135.0.7049.95-1~deb12u1_armhf.deb
 f6160abad658de3dbaa4e61f9a22a214 7323272 web optional chromium-driver_135.0.7049.95-1~deb12u1_armhf.deb
 ed0b767ccd8ee27243b205c6fa894088 25590584 debug optional chromium-headless-shell-dbgsym_135.0.7049.95-1~deb12u1_armhf.deb
 8ab1e1760c83d4aa4f5bab380ed619d6 48758780 web optional chromium-headless-shell_135.0.7049.95-1~deb12u1_armhf.deb
 e3e57e070ac28f6aa71c39e47eb265a6 12692 debug optional chromium-sandbox-dbgsym_135.0.7049.95-1~deb12u1_armhf.deb
 99773196ef0d170fb243ef7d10d496d9 101836 web optional chromium-sandbox_135.0.7049.95-1~deb12u1_armhf.deb
 5e12bbdab702f1c8baa36b3a4212c687 26110176 debug optional chromium-shell-dbgsym_135.0.7049.95-1~deb12u1_armhf.deb
 77113325f19dfe2b5275565b1ad287ce 50662964 web optional chromium-shell_135.0.7049.95-1~deb12u1_armhf.deb
 3a730f894e380128ffaf8dd8b89756dc 30212 web optional chromium_135.0.7049.95-1~deb12u1_armhf-buildd.buildinfo
 cb60e68c8db36526de74def528a2dc15 63109556 web optional chromium_135.0.7049.95-1~deb12u1_armhf.deb

-----BEGIN PGP SIGNATURE-----
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=a4fJ
-----END PGP SIGNATURE-----