-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 29 Oct 2025 13:44:37 -0400
Source: chromium
Binary: chromium chromium-common chromium-common-dbgsym chromium-dbgsym chromium-driver chromium-headless-shell chromium-headless-shell-dbgsym chromium-sandbox chromium-sandbox-dbgsym chromium-shell chromium-shell-dbgsym
Architecture: amd64
Version: 142.0.7444.59-1~deb12u1
Distribution: bookworm-security
Urgency: high
Maintainer: amd64 / i386 Build Daemon (x86-ubc-01) <buildd_amd64-x86-ubc-01@buildd.debian.org>
Changed-By: Andres Salomon <dilinger@debian.org>
Description:
 chromium   - web browser
 chromium-common - web browser - common resources used by the chromium packages
 chromium-driver - web browser - WebDriver support
 chromium-headless-shell - web browser - old headless shell
 chromium-sandbox - web browser - setuid security sandbox for chromium
 chromium-shell - web browser - minimal shell
Changes:
 chromium (142.0.7444.59-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream stable release.
     - CVE-2025-12428: Type Confusion in V8.
       Reported by Man Yue Mo of GitHub Security Lab.
     - CVE-2025-12429: Inappropriate implementation in V8.
       Reported by Aorui Zhang.
     - CVE-2025-12430: Object lifecycle issue in Media.
       Reported by round.about.
     - CVE-2025-12431: Inappropriate implementation in Extensions.
       Reported by Alesandro Ortiz.
     - CVE-2025-12432: Race in V8. Reported by Google Big Sleep.
     - CVE-2025-12433: Inappropriate implementation in V8.
       Reported by Google Big Sleep.
     - CVE-2025-12036: Inappropriate implementation in V8.
       Reported by Google Big Sleep.
     - CVE-2025-12434: Race in Storage. Reported by Lijo A.T.
     - CVE-2025-12435: Incorrect security UI in Omnibox. Reported by Hafiizh.
     - CVE-2025-12436: Policy bypass in Extensions.
       Reported by Luan Herrera (@lbherrera_).
     - CVE-2025-12437: Use after free in PageInfo. Reported by Umar Farooq.
     - CVE-2025-12438: Use after free in Ozone.
       Reported by Wei Yuan of MoyunSec VLab.
     - CVE-2025-12439: Inappropriate implementation in App-Bound Encryption.
       Reported by Ari Novick.
     - CVE-2025-12440: Inappropriate implementation in Autofill.
       Reported by Khalil Zhani.
     - CVE-2025-12441: Out of bounds read in V8. Reported by Google Big Sleep.
     - CVE-2025-12443: Out of bounds read in WebXR. Reported by Aisle Research
     - CVE-2025-12444: Incorrect security UI in Fullscreen UI.
       Reported by syrf.
     - CVE-2025-12445: Policy bypass in Extensions. Reported by Thomas Greiner
     - CVE-2025-12446: Incorrect security UI in SplitView. Reported by Hafiizh
     - CVE-2025-12447: Incorrect security UI in Omnibox.
       Reported by Khalil Zhani.
   * d/patches:
     - disable/android.patch: drop part of patch related to md5sum tool.
     - disable/catapult.patch: refresh.
     - bookworm/clang19.patch: also drop uninit-const-pointer and
       unnecessary-virtual-specifier warnings.
     - ungoogled/disable-privacy-sandbox.patch: sync from upstream.
     - i386/support-i386.patch: refresh.
     - trixie/rust-sanitize.patch: add a workaround for older rustc.
     - fixes/chromium-142-iwyu-field-form-data.patch: pull in build fix
       from gentoo.
     - trixie/rust-no-alloc-shim.patch: add another missing symbol that's
       provided by newer versions of rust.
     - bookworm/gn-path-exists2.patch: add another workaround for lack of
       path_exists() in older gn.
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - third_party/0001-third-party-hwy-wrong-include.patch: Drop due to
       upstream fixes
     - ppc64le/third_party/0002-regenerate-xnn-buildgn.patch: Regenerate from
       upstream sources
     - core/add-ppc64-architecture-to-extensions.diff: Refresh for upstream
       changes
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - third_party/0001-third-party-hwy-wrong-include.patch: Drop due to
       upstream fixes
     - ppc64le/third_party/0002-regenerate-xnn-buildgn.patch: Regenerate from
       upstream sources
     - core/add-ppc64-architecture-to-extensions.diff: Refresh for upstream
       changes
Checksums-Sha1:
 51b01ba8676d2ae2ab24f6d8a160a9074f1b1bf5 5305400 chromium-common-dbgsym_142.0.7444.59-1~deb12u1_amd64.deb
 e049be8cf3d9caace701fc129be8dba8cdc6418e 22628528 chromium-common_142.0.7444.59-1~deb12u1_amd64.deb
 b6715053d37d2fc448ac547d44cb29e1e3083691 33805596 chromium-dbgsym_142.0.7444.59-1~deb12u1_amd64.deb
 8c0ee10d6c9af31ed82e0d1592a6ca460d93e836 7130704 chromium-driver_142.0.7444.59-1~deb12u1_amd64.deb
 20d5e0ac23128577006492b886aafec665dcee0e 27994392 chromium-headless-shell-dbgsym_142.0.7444.59-1~deb12u1_amd64.deb
 ef2a0f5a354af33cf926822e919924ebc58844d1 54486552 chromium-headless-shell_142.0.7444.59-1~deb12u1_amd64.deb
 dfa643d76acd4740b3f113b2e4aadf67bbdaf16d 19376 chromium-sandbox-dbgsym_142.0.7444.59-1~deb12u1_amd64.deb
 0a7852b333908fc936af0c58cfb12e16cc1a04d6 107920 chromium-sandbox_142.0.7444.59-1~deb12u1_amd64.deb
 05709a5f2b538d35b648c05a108e32785863fcdc 30773592 chromium-shell-dbgsym_142.0.7444.59-1~deb12u1_amd64.deb
 785b3fedf0c8c39dae464098d95562c2a7186e39 59607060 chromium-shell_142.0.7444.59-1~deb12u1_amd64.deb
 38b75d8239ab8d199e51036b6ac6f184cf8c74ff 30316 chromium_142.0.7444.59-1~deb12u1_amd64-buildd.buildinfo
 a20edfa0348b18134668567fd85d766ff64a9c7d 70706500 chromium_142.0.7444.59-1~deb12u1_amd64.deb
Checksums-Sha256:
 fa046241c02efc11cbd2f8181747b85e909b163c2705ac73bb1068c20ae76321 5305400 chromium-common-dbgsym_142.0.7444.59-1~deb12u1_amd64.deb
 2bfe2dc3873438076512efd6fc971c9736ef2ad49d9b4b919a23c5e0f431de3e 22628528 chromium-common_142.0.7444.59-1~deb12u1_amd64.deb
 36fbbdb5f3481838d06456cceabe64bf84faaae884ccb46b808aa11e512ba3f0 33805596 chromium-dbgsym_142.0.7444.59-1~deb12u1_amd64.deb
 8276d2174b898845bf6a46c4e1a1bb7036a3dab29691b0522c08a26bb51566cc 7130704 chromium-driver_142.0.7444.59-1~deb12u1_amd64.deb
 f7d2fdb02ca24f45491f60efab6aaf86dc2ac2f32ec3169eb33a6f4555de3b75 27994392 chromium-headless-shell-dbgsym_142.0.7444.59-1~deb12u1_amd64.deb
 2f475b08efbe8c699de7b6d581190c7e57abccf83ffe38d8b26604d2e7981b8a 54486552 chromium-headless-shell_142.0.7444.59-1~deb12u1_amd64.deb
 7bc477657aea111a555e9d7bf34e2ce2b6517e6ac22a9017ff817dd9430a4c3f 19376 chromium-sandbox-dbgsym_142.0.7444.59-1~deb12u1_amd64.deb
 1d5f3588edafb10b3c8e13cba643051b387f164766526ca8edf84ba5c148c6f7 107920 chromium-sandbox_142.0.7444.59-1~deb12u1_amd64.deb
 46c10870136b9a739f390b9930de3760a547b4c8433e664ff97a002ee6f6fedd 30773592 chromium-shell-dbgsym_142.0.7444.59-1~deb12u1_amd64.deb
 6d31e57a32c8f8ee35c71fd9b025480870716bdd41a2ba3822b6c8aeea9dfb1c 59607060 chromium-shell_142.0.7444.59-1~deb12u1_amd64.deb
 2682b97e9efec2384089ddcd256f27f9da722e14bbb9e60e399f5b29692e0762 30316 chromium_142.0.7444.59-1~deb12u1_amd64-buildd.buildinfo
 3b1f5a5474b812f6f1c1eb3fc5e51f7dd4ded9b8191f5bb97196d37ce9cad6b7 70706500 chromium_142.0.7444.59-1~deb12u1_amd64.deb
Files:
 6473d17f7385e525d708ff22ac600316 5305400 debug optional chromium-common-dbgsym_142.0.7444.59-1~deb12u1_amd64.deb
 d789a5345dcf6a26eb9695f6294f1019 22628528 web optional chromium-common_142.0.7444.59-1~deb12u1_amd64.deb
 3f97574c581b4bacf23a8944fea7a4d4 33805596 debug optional chromium-dbgsym_142.0.7444.59-1~deb12u1_amd64.deb
 dde6275ef286a9c0c1f14c492505506a 7130704 web optional chromium-driver_142.0.7444.59-1~deb12u1_amd64.deb
 f070fb8bd1617d3b9995fd86c5f024fc 27994392 debug optional chromium-headless-shell-dbgsym_142.0.7444.59-1~deb12u1_amd64.deb
 7b0b04be5b113c6eafbd7d2ad7af47e6 54486552 web optional chromium-headless-shell_142.0.7444.59-1~deb12u1_amd64.deb
 db1b09f486ae408ffefeee1608b06944 19376 debug optional chromium-sandbox-dbgsym_142.0.7444.59-1~deb12u1_amd64.deb
 e87957fef33523e51874c7428755886d 107920 web optional chromium-sandbox_142.0.7444.59-1~deb12u1_amd64.deb
 05d23de627bc920392e1cbe854de1c9d 30773592 debug optional chromium-shell-dbgsym_142.0.7444.59-1~deb12u1_amd64.deb
 db408cd4eb03783f533c87fccfb38e69 59607060 web optional chromium-shell_142.0.7444.59-1~deb12u1_amd64.deb
 b946367715b9afee671ae8c2654c504a 30316 web optional chromium_142.0.7444.59-1~deb12u1_amd64-buildd.buildinfo
 3e7d29a6522a79626d371cca9bfce98a 70706500 web optional chromium_142.0.7444.59-1~deb12u1_amd64.deb

-----BEGIN PGP SIGNATURE-----
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=/2E/
-----END PGP SIGNATURE-----