-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 29 Oct 2025 13:44:37 -0400
Source: chromium
Binary: chromium chromium-common chromium-common-dbgsym chromium-dbgsym chromium-driver chromium-headless-shell chromium-headless-shell-dbgsym chromium-sandbox chromium-sandbox-dbgsym chromium-shell chromium-shell-dbgsym
Architecture: arm64
Version: 142.0.7444.59-1~deb12u1
Distribution: bookworm-security
Urgency: high
Maintainer: arm Build Daemon (arm-ubc-02) <buildd_arm64-arm-ubc-02@buildd.debian.org>
Changed-By: Andres Salomon <dilinger@debian.org>
Description:
 chromium   - web browser
 chromium-common - web browser - common resources used by the chromium packages
 chromium-driver - web browser - WebDriver support
 chromium-headless-shell - web browser - old headless shell
 chromium-sandbox - web browser - setuid security sandbox for chromium
 chromium-shell - web browser - minimal shell
Changes:
 chromium (142.0.7444.59-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream stable release.
     - CVE-2025-12428: Type Confusion in V8.
       Reported by Man Yue Mo of GitHub Security Lab.
     - CVE-2025-12429: Inappropriate implementation in V8.
       Reported by Aorui Zhang.
     - CVE-2025-12430: Object lifecycle issue in Media.
       Reported by round.about.
     - CVE-2025-12431: Inappropriate implementation in Extensions.
       Reported by Alesandro Ortiz.
     - CVE-2025-12432: Race in V8. Reported by Google Big Sleep.
     - CVE-2025-12433: Inappropriate implementation in V8.
       Reported by Google Big Sleep.
     - CVE-2025-12036: Inappropriate implementation in V8.
       Reported by Google Big Sleep.
     - CVE-2025-12434: Race in Storage. Reported by Lijo A.T.
     - CVE-2025-12435: Incorrect security UI in Omnibox. Reported by Hafiizh.
     - CVE-2025-12436: Policy bypass in Extensions.
       Reported by Luan Herrera (@lbherrera_).
     - CVE-2025-12437: Use after free in PageInfo. Reported by Umar Farooq.
     - CVE-2025-12438: Use after free in Ozone.
       Reported by Wei Yuan of MoyunSec VLab.
     - CVE-2025-12439: Inappropriate implementation in App-Bound Encryption.
       Reported by Ari Novick.
     - CVE-2025-12440: Inappropriate implementation in Autofill.
       Reported by Khalil Zhani.
     - CVE-2025-12441: Out of bounds read in V8. Reported by Google Big Sleep.
     - CVE-2025-12443: Out of bounds read in WebXR. Reported by Aisle Research
     - CVE-2025-12444: Incorrect security UI in Fullscreen UI.
       Reported by syrf.
     - CVE-2025-12445: Policy bypass in Extensions. Reported by Thomas Greiner
     - CVE-2025-12446: Incorrect security UI in SplitView. Reported by Hafiizh
     - CVE-2025-12447: Incorrect security UI in Omnibox.
       Reported by Khalil Zhani.
   * d/patches:
     - disable/android.patch: drop part of patch related to md5sum tool.
     - disable/catapult.patch: refresh.
     - bookworm/clang19.patch: also drop uninit-const-pointer and
       unnecessary-virtual-specifier warnings.
     - ungoogled/disable-privacy-sandbox.patch: sync from upstream.
     - i386/support-i386.patch: refresh.
     - trixie/rust-sanitize.patch: add a workaround for older rustc.
     - fixes/chromium-142-iwyu-field-form-data.patch: pull in build fix
       from gentoo.
     - trixie/rust-no-alloc-shim.patch: add another missing symbol that's
       provided by newer versions of rust.
     - bookworm/gn-path-exists2.patch: add another workaround for lack of
       path_exists() in older gn.
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - third_party/0001-third-party-hwy-wrong-include.patch: Drop due to
       upstream fixes
     - ppc64le/third_party/0002-regenerate-xnn-buildgn.patch: Regenerate from
       upstream sources
     - core/add-ppc64-architecture-to-extensions.diff: Refresh for upstream
       changes
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - third_party/0001-third-party-hwy-wrong-include.patch: Drop due to
       upstream fixes
     - ppc64le/third_party/0002-regenerate-xnn-buildgn.patch: Regenerate from
       upstream sources
     - core/add-ppc64-architecture-to-extensions.diff: Refresh for upstream
       changes
Checksums-Sha1:
 a202bdc50f34b36f0e33010d24d41a3f1f342587 6168716 chromium-common-dbgsym_142.0.7444.59-1~deb12u1_arm64.deb
 149fb0e64129de227dd92279760f9e9a2a76bfc0 27643064 chromium-common_142.0.7444.59-1~deb12u1_arm64.deb
 98b641f840b06e05ba1e44d2a298120574c32e61 34526048 chromium-dbgsym_142.0.7444.59-1~deb12u1_arm64.deb
 5ef5ff32e0dc399f1dca42bd78a31782f548e19a 6385420 chromium-driver_142.0.7444.59-1~deb12u1_arm64.deb
 d9e040970395018f2b2be2708ed40a81d4e8dcaf 28048776 chromium-headless-shell-dbgsym_142.0.7444.59-1~deb12u1_arm64.deb
 e5a59e6f893e0cac2551475fc7be24457f626919 48064188 chromium-headless-shell_142.0.7444.59-1~deb12u1_arm64.deb
 112615d66549a8f46f49b3370785333ee5ebfbfb 20648 chromium-sandbox-dbgsym_142.0.7444.59-1~deb12u1_arm64.deb
 2e9c7dee6a20185dbed9ff68929628ccf1915065 108576 chromium-sandbox_142.0.7444.59-1~deb12u1_arm64.deb
 0e350d1d8a45397d20956035a798b19b45f88d6a 30338796 chromium-shell-dbgsym_142.0.7444.59-1~deb12u1_arm64.deb
 248efef75c3dc6549210a9deb89100f484b226d1 52400084 chromium-shell_142.0.7444.59-1~deb12u1_arm64.deb
 6d0750cc06ef9a9a348f82b72d95cc2100444e3d 30281 chromium_142.0.7444.59-1~deb12u1_arm64-buildd.buildinfo
 c9b80bbc072dbcb80bf44003e3637aaf588a0a5a 61533324 chromium_142.0.7444.59-1~deb12u1_arm64.deb
Checksums-Sha256:
 ebefcb4bef313dc3deee6a3739fcf512129b1e5a5cec3d3af45809f08ed7cb5a 6168716 chromium-common-dbgsym_142.0.7444.59-1~deb12u1_arm64.deb
 646003848c96ff5f461662e7bd423638f7f099f4a1cc45d42a93e6b90cda12c5 27643064 chromium-common_142.0.7444.59-1~deb12u1_arm64.deb
 4a0c46345104d57dfcf15a80f78630ecfb6979bc448c22ee7397b7ffa4c440af 34526048 chromium-dbgsym_142.0.7444.59-1~deb12u1_arm64.deb
 3107b3c24649eb7f768ba74d145c798351c0c340001e30fedba605a2a9e86222 6385420 chromium-driver_142.0.7444.59-1~deb12u1_arm64.deb
 04b4a38d8f1c9f4efc8714df0f1a8f7d4e18be666ebdbdc44c891285f2a306b3 28048776 chromium-headless-shell-dbgsym_142.0.7444.59-1~deb12u1_arm64.deb
 0d0d2017be206f9c74e27fbae9d9ad5d25727d535a9732187aa3cb975f43f07f 48064188 chromium-headless-shell_142.0.7444.59-1~deb12u1_arm64.deb
 ace4021e48a51e3b0780cbe604de71e161415dad5d84b6efe882f556133de742 20648 chromium-sandbox-dbgsym_142.0.7444.59-1~deb12u1_arm64.deb
 cf38261603fd0dfa8d939f2163d8b86bb8ac00f375c0ce9ff23e8925fb330b66 108576 chromium-sandbox_142.0.7444.59-1~deb12u1_arm64.deb
 0a66a8d98b32f45730234a5db9ca169b774a532cdb858eff9cbe3406072fc3c5 30338796 chromium-shell-dbgsym_142.0.7444.59-1~deb12u1_arm64.deb
 aeab1d3d263d0b4522439ad6de70f0414e65bf5d0f64515c8a795351874e3c71 52400084 chromium-shell_142.0.7444.59-1~deb12u1_arm64.deb
 267a416e4072e9a73db9532e54e62112851f62420c307fd4859df08dae4c43f3 30281 chromium_142.0.7444.59-1~deb12u1_arm64-buildd.buildinfo
 26192345877a8c020d2d255bc48fce61a101ba625f0e0c275ca88567d6c8fcbe 61533324 chromium_142.0.7444.59-1~deb12u1_arm64.deb
Files:
 3951ccccacd9324329e3508c541d8e95 6168716 debug optional chromium-common-dbgsym_142.0.7444.59-1~deb12u1_arm64.deb
 73e3cbdc661b4bd5e362c648afb87e79 27643064 web optional chromium-common_142.0.7444.59-1~deb12u1_arm64.deb
 1ed1332f6ee0f46edf364ce8046178ac 34526048 debug optional chromium-dbgsym_142.0.7444.59-1~deb12u1_arm64.deb
 bf8bccd79c578e89a6e5d5b78b6c693c 6385420 web optional chromium-driver_142.0.7444.59-1~deb12u1_arm64.deb
 36554db1fed86507bdfdb27bc7405850 28048776 debug optional chromium-headless-shell-dbgsym_142.0.7444.59-1~deb12u1_arm64.deb
 ee3af3eb952486320258ffe59ddef6c0 48064188 web optional chromium-headless-shell_142.0.7444.59-1~deb12u1_arm64.deb
 abe2dbeb96ceafa59b1becef6c1b4787 20648 debug optional chromium-sandbox-dbgsym_142.0.7444.59-1~deb12u1_arm64.deb
 a59bdfe5de47721c7f65c5a4068dea52 108576 web optional chromium-sandbox_142.0.7444.59-1~deb12u1_arm64.deb
 042f754cb0750558dd7f6dddaedf2037 30338796 debug optional chromium-shell-dbgsym_142.0.7444.59-1~deb12u1_arm64.deb
 91dbb88f9a689cecb63989775f8fd3b8 52400084 web optional chromium-shell_142.0.7444.59-1~deb12u1_arm64.deb
 d71ec68aeda0976f202eda6415c5464a 30281 web optional chromium_142.0.7444.59-1~deb12u1_arm64-buildd.buildinfo
 3626d03d0f1d541e8e384a7c19a44aa9 61533324 web optional chromium_142.0.7444.59-1~deb12u1_arm64.deb

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEbIns2iWsAAdAqh2MS/ZIXkV8oLAFAmkDklQACgkQS/ZIXkV8
oLBsARAAt31oSBWn4l7tZWRU2NfxOvjuMQPlQcA7kXHOaLzXkV7bUyQDB5TVuEpp
PA9tSOdD5ZeP8IE4ZfxjxrLvr5cJMtImIJhJPkVu1/HmHDEtdRfLb50UTg8Kfe9S
rFaYUd53shA33jk1f452LK3xZH09OokzL8GAikEpSHpRC0Yrh3yvJRJTL/4VY/gN
+ueunu7biUH5kQkWJVs5QaNsxmD4iPY/n3OIJlQIZaACHdyTP2eJlZowlCfek1FK
8E3BbVPREQjCqblM/W7HGZeS+taslkgIwg37+APULXixZYYkzbta3trho+77g1l5
qSQDYtUw/rv0uTWXngUMi7IbnY6NoQb+QPAa8lKHZlf+pT5nBXchV7yMMrlU+vEy
2gaepHtVCWVhBXLAZWK3gCYaBjv2qMigyPiigTyoWQeIifaIfTlksPnr1TwrlH8s
u68vYbfgoFupLrgS05tQ0J91djMrtLvJTFWVXAKLkqk5LzAXOG+yn09YFXfsCA1D
OIRFZE/BKdPQ6cS7eDfNkX+P0pK4F17BJH1hL3546mn/If1pwudkoUG9XNq4nMP9
VpvVfLmVthSDHTBXFIkTjb886nz1iio+IU4uaZEgD7qhHZdIneqypEY0nhBpokm0
6Ra9uAj5g7TaYaIUlSNs9Paj7SnNLDQT3+h8MGUbX5ALo9yzduk=
=FrVQ
-----END PGP SIGNATURE-----