-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Thu, 29 Aug 2024 01:10:43 -0400 Source: chromium Binary: chromium-l10n Architecture: all Version: 128.0.6613.113-1~deb12u1 Distribution: bookworm-security Urgency: high Maintainer: all Build Daemon (x86-csail-02) Changed-By: Andres Salomon Description: chromium-l10n - web browser - language packs Changes: chromium (128.0.6613.113-1~deb12u1) bookworm-security; urgency=high . [ Andres Salomon ] * New upstream security release. - CVE-2024-7969: Type Confusion in V8. Reported by CFF of Topsec Alpha Team. - CVE-2024-8193: Heap buffer overflow in Skia. Reported by Renan Rios (@hyhy_100). - CVE-2024-8194: Type Confusion in V8. Reported by Seunghyun Lee (@0x10n). - CVE-2024-8198: Heap buffer overflow in Skia. Reported by Renan Rios (@hyhy_100). * d/control: - Bump rustc-web build-dep up to >= 1.74. * d/patches: - bookworm/rust-downgrade-osstr-users.patch: drop, now that we have a newer rust in bookworm. - bookworm/crabbyav1f.patch: drop, no longer needed w/ new rust. - bookworm/rust-no-thin-lto.patch: drop, we can now enable thinlto w/ new rust. - fixes/clang-rust-target.patch: add, needed for thinlto in rust. - ppc64le/fixes/fix-different-data-layouts.patch: add, needed for mismatch between newer rust and older clang. Checksums-Sha1: 07dc62fe8b725fd82bc2e9c91f3f1d5cfdb1afd5 7558764 chromium-l10n_128.0.6613.113-1~deb12u1_all.deb b04b618d8b3822b962e924938b5ae5016b5c71ee 22137 chromium_128.0.6613.113-1~deb12u1_all-buildd.buildinfo Checksums-Sha256: 48f73dda9ae6965d2431d16ae048513f7821af9c0c30c33efad5e4fb175426d9 7558764 chromium-l10n_128.0.6613.113-1~deb12u1_all.deb 207dd758c3db41435dd0f46676a6b6e963cf9ff17daf6b78e2b4bdda9fc9b1f9 22137 chromium_128.0.6613.113-1~deb12u1_all-buildd.buildinfo Files: 70007d9e5281671f9fd0e2a995ad7317 7558764 localization optional chromium-l10n_128.0.6613.113-1~deb12u1_all.deb 72d69433f0f3fb9506330b2566c0e1c2 22137 web optional chromium_128.0.6613.113-1~deb12u1_all-buildd.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEzcbx6nIE/ydHa1FFigL77i1GSVkFAmbQ6f8ACgkQigL77i1G SVmxsxAAleoPaeyavluH8eeIuUBSLR8K9+jcXmbfFjWHSfH54RxJAEGq6/AtLB0U +l48Ye6q14LKo7US5CMzb5pmyInl2ucWPJfPdOSSMz5+CPU1Kf+AsULSBnS113jX rDC7L/+BtzfN/gXVVICAaO9GJRw9J0ERkQu3EkJz9/YvHXCDLGdRbHsxpaIIp1yO u5iIAyeZ6bLCbxFkG8aiSilOjsIwyLZYLqWStvGXIE3+t5GmF6XsnOIS5iYaSdxk cNSNukuSQXbPvIzm1aNL2Jz/IqYPtqu00v09mWak03JSu7LT6u8x5dR5Fp3OxesH AB/CESKNNCrOcSOSLl1huEUdl2nbYICAKcHp2TAy+ccsFvnDQa9uD8jnOkAWqIGm Hwh40XuojPJIW4glNoGCywTr0h/NpfXpfplL/ivBnJcpdltv3xv7SXJ6bgUHo2ZP 0ETuNRBzVehgKp1Cgmsl2k1lrrMWDBPNs1TtZcTpgmhTpswmrCqmEQbaXY5yaoG3 xkS4x33MfovCp+dYTJREtUPUPLJk9B6AzMjpOfORKDuuWGoWYY9XrxAV537USaWL ArYUBPh3vetYh0SpkYVkZlpceo+llDjodZfQ/WrUDw5S7J5vVJlyYH7tAweiFLpK pF2k4753ZgAuo8NUzk0neroRDSwO6G/ejKp+TYbgVI+z+TEA2XE= =Z1R2 -----END PGP SIGNATURE-----