-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 29 Oct 2025 13:44:37 -0400
Source: chromium
Binary: chromium chromium-common chromium-common-dbgsym chromium-dbgsym chromium-driver chromium-headless-shell chromium-headless-shell-dbgsym chromium-sandbox chromium-sandbox-dbgsym chromium-shell chromium-shell-dbgsym
Architecture: i386
Version: 142.0.7444.59-1~deb12u1
Distribution: bookworm-security
Urgency: high
Maintainer: all / amd64 / i386 Build Daemon (x86-conova-02) <buildd_amd64-x86-conova-02@buildd.debian.org>
Changed-By: Andres Salomon <dilinger@debian.org>
Description:
 chromium   - web browser
 chromium-common - web browser - common resources used by the chromium packages
 chromium-driver - web browser - WebDriver support
 chromium-headless-shell - web browser - old headless shell
 chromium-sandbox - web browser - setuid security sandbox for chromium
 chromium-shell - web browser - minimal shell
Changes:
 chromium (142.0.7444.59-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream stable release.
     - CVE-2025-12428: Type Confusion in V8.
       Reported by Man Yue Mo of GitHub Security Lab.
     - CVE-2025-12429: Inappropriate implementation in V8.
       Reported by Aorui Zhang.
     - CVE-2025-12430: Object lifecycle issue in Media.
       Reported by round.about.
     - CVE-2025-12431: Inappropriate implementation in Extensions.
       Reported by Alesandro Ortiz.
     - CVE-2025-12432: Race in V8. Reported by Google Big Sleep.
     - CVE-2025-12433: Inappropriate implementation in V8.
       Reported by Google Big Sleep.
     - CVE-2025-12036: Inappropriate implementation in V8.
       Reported by Google Big Sleep.
     - CVE-2025-12434: Race in Storage. Reported by Lijo A.T.
     - CVE-2025-12435: Incorrect security UI in Omnibox. Reported by Hafiizh.
     - CVE-2025-12436: Policy bypass in Extensions.
       Reported by Luan Herrera (@lbherrera_).
     - CVE-2025-12437: Use after free in PageInfo. Reported by Umar Farooq.
     - CVE-2025-12438: Use after free in Ozone.
       Reported by Wei Yuan of MoyunSec VLab.
     - CVE-2025-12439: Inappropriate implementation in App-Bound Encryption.
       Reported by Ari Novick.
     - CVE-2025-12440: Inappropriate implementation in Autofill.
       Reported by Khalil Zhani.
     - CVE-2025-12441: Out of bounds read in V8. Reported by Google Big Sleep.
     - CVE-2025-12443: Out of bounds read in WebXR. Reported by Aisle Research
     - CVE-2025-12444: Incorrect security UI in Fullscreen UI.
       Reported by syrf.
     - CVE-2025-12445: Policy bypass in Extensions. Reported by Thomas Greiner
     - CVE-2025-12446: Incorrect security UI in SplitView. Reported by Hafiizh
     - CVE-2025-12447: Incorrect security UI in Omnibox.
       Reported by Khalil Zhani.
   * d/patches:
     - disable/android.patch: drop part of patch related to md5sum tool.
     - disable/catapult.patch: refresh.
     - bookworm/clang19.patch: also drop uninit-const-pointer and
       unnecessary-virtual-specifier warnings.
     - ungoogled/disable-privacy-sandbox.patch: sync from upstream.
     - i386/support-i386.patch: refresh.
     - trixie/rust-sanitize.patch: add a workaround for older rustc.
     - fixes/chromium-142-iwyu-field-form-data.patch: pull in build fix
       from gentoo.
     - trixie/rust-no-alloc-shim.patch: add another missing symbol that's
       provided by newer versions of rust.
     - bookworm/gn-path-exists2.patch: add another workaround for lack of
       path_exists() in older gn.
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - third_party/0001-third-party-hwy-wrong-include.patch: Drop due to
       upstream fixes
     - ppc64le/third_party/0002-regenerate-xnn-buildgn.patch: Regenerate from
       upstream sources
     - core/add-ppc64-architecture-to-extensions.diff: Refresh for upstream
       changes
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - third_party/0001-third-party-hwy-wrong-include.patch: Drop due to
       upstream fixes
     - ppc64le/third_party/0002-regenerate-xnn-buildgn.patch: Regenerate from
       upstream sources
     - core/add-ppc64-architecture-to-extensions.diff: Refresh for upstream
       changes
Checksums-Sha1:
 6b00173cd2d4a28c893e87652e3667b9605ed707 5122472 chromium-common-dbgsym_142.0.7444.59-1~deb12u1_i386.deb
 32fe57bf2b2e7579d56379d70c435f4df430b0b3 22706924 chromium-common_142.0.7444.59-1~deb12u1_i386.deb
 882f330ad2b9666bbbc3c1d4522d826e497f6765 34080136 chromium-dbgsym_142.0.7444.59-1~deb12u1_i386.deb
 53d27e786833b62763c10560bc2ed44ec1c257a3 7439788 chromium-driver_142.0.7444.59-1~deb12u1_i386.deb
 2476fc8296534d6cdac0b066fc9a0a6e84070d25 28237288 chromium-headless-shell-dbgsym_142.0.7444.59-1~deb12u1_i386.deb
 6aff0cb0252d60d97cda43d839f88861d80ed1fa 55585840 chromium-headless-shell_142.0.7444.59-1~deb12u1_i386.deb
 15699ac2039ced970d5e12b61148c03d9e1213b2 18080 chromium-sandbox-dbgsym_142.0.7444.59-1~deb12u1_i386.deb
 7919c99f7d494503f43dcdaa25d497204390f01d 107728 chromium-sandbox_142.0.7444.59-1~deb12u1_i386.deb
 ccb911b82973ca1f558efab0d9cf6bce31d48b8e 31010344 chromium-shell-dbgsym_142.0.7444.59-1~deb12u1_i386.deb
 7e9675fb9cea5b259a77889eb590b3270ef8ba09 60740528 chromium-shell_142.0.7444.59-1~deb12u1_i386.deb
 af8aa763477800e4403e3ca55d4a5755fd7ad908 30298 chromium_142.0.7444.59-1~deb12u1_i386-buildd.buildinfo
 f718b2a52229db8bac3aec8854bf0cbca5b6efb6 72354072 chromium_142.0.7444.59-1~deb12u1_i386.deb
Checksums-Sha256:
 210b663ec504816cdd0ad61f993ce7eed3d4ca4e125b923e99eb7221e09e5e1e 5122472 chromium-common-dbgsym_142.0.7444.59-1~deb12u1_i386.deb
 0afdf1001ba0f111a3e3e29465b93926368646673c7dbe37d1bb683fcbc94b1e 22706924 chromium-common_142.0.7444.59-1~deb12u1_i386.deb
 5ddf8a747a6f8d86c81032f9c99ec5e86d07d9994bc162a22762286d0fb2b4c2 34080136 chromium-dbgsym_142.0.7444.59-1~deb12u1_i386.deb
 2b1c0bbfc005bcea2c38725c0d7987c616841735660dc6cf2fe02d717a23f1cd 7439788 chromium-driver_142.0.7444.59-1~deb12u1_i386.deb
 c104f414601b8d3beb1334f01d1299155817a73181bb3fec36a45a7741cfaf18 28237288 chromium-headless-shell-dbgsym_142.0.7444.59-1~deb12u1_i386.deb
 20b3d79567b1591211ae985d32e11a458aeef1b7bbcf829b08704d33f611e57e 55585840 chromium-headless-shell_142.0.7444.59-1~deb12u1_i386.deb
 d097dd6cb7313d3bf7d982f739bbaa5604b06d48ceb6cf2fe0f83d36d11ec31f 18080 chromium-sandbox-dbgsym_142.0.7444.59-1~deb12u1_i386.deb
 6d7c5a0784d54fcf99fd3c7f4f6349a17aec27dec554f88860ae2d2e9736c9a6 107728 chromium-sandbox_142.0.7444.59-1~deb12u1_i386.deb
 0940ee86c2d5e5c7ef2430d511232968abe06989093f45aaa48a7572765d99b0 31010344 chromium-shell-dbgsym_142.0.7444.59-1~deb12u1_i386.deb
 44aa31737521bd770117585e3cb1a5ec3ed0f9e2e4745bfba6c08d40ab2c1cb5 60740528 chromium-shell_142.0.7444.59-1~deb12u1_i386.deb
 0f81bf876d150e25b128f35abe0549c2813b0780cb961aacb3b53bfaaa88ca7a 30298 chromium_142.0.7444.59-1~deb12u1_i386-buildd.buildinfo
 131d7fc229821378e570f4eea25772eed0dffc341ad3374be40b5e2a1a72ac92 72354072 chromium_142.0.7444.59-1~deb12u1_i386.deb
Files:
 253473b6696dfcd870d787526ebdfab8 5122472 debug optional chromium-common-dbgsym_142.0.7444.59-1~deb12u1_i386.deb
 32119916a92a7c70a04e63708cc5b77a 22706924 web optional chromium-common_142.0.7444.59-1~deb12u1_i386.deb
 49bcf93ddbb53eb261f559e3a9338739 34080136 debug optional chromium-dbgsym_142.0.7444.59-1~deb12u1_i386.deb
 a4024e75601f4c8a28330abc8cffc84a 7439788 web optional chromium-driver_142.0.7444.59-1~deb12u1_i386.deb
 e8757ae2fc891cbe8de2427e3c85ca7c 28237288 debug optional chromium-headless-shell-dbgsym_142.0.7444.59-1~deb12u1_i386.deb
 2f846d55f5d47e804dd7bdd2a3fe5f6a 55585840 web optional chromium-headless-shell_142.0.7444.59-1~deb12u1_i386.deb
 08577ffbdb8c9b1b73c8a10e4dd2e082 18080 debug optional chromium-sandbox-dbgsym_142.0.7444.59-1~deb12u1_i386.deb
 7b74b8e7b0e621f8efeec6478f48ed74 107728 web optional chromium-sandbox_142.0.7444.59-1~deb12u1_i386.deb
 24de4d5f1e1a0a5b42284db78508df38 31010344 debug optional chromium-shell-dbgsym_142.0.7444.59-1~deb12u1_i386.deb
 a47b6ead3c819eae8f2976bed090e941 60740528 web optional chromium-shell_142.0.7444.59-1~deb12u1_i386.deb
 9b37ae7454a698d14cc3a094b221a685 30298 web optional chromium_142.0.7444.59-1~deb12u1_i386-buildd.buildinfo
 5e9c7bc33390034362638c6f14d3c902 72354072 web optional chromium_142.0.7444.59-1~deb12u1_i386.deb

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEErwLLVsiCiGZggzpHJuP6X4A0XeIFAmkDmM8ACgkQJuP6X4A0
XeIS4Q//cm5kBpiXXH1phJ/7mISDetyLRbB3pnu4lABXXPem4zTLBZa5F6gnOAcY
vl3MZdq+qV7dP+UTBBR/e/07BjdgIK+PLWmt5WBKllwp6RlMpacspUS3hg1N1VIc
ktfs+CyqyTrdenCtHUvDYeWiHbGLUf2pe7SNakW/9LQuJlKrpZTXvSRSjrb1wfqf
T+BoA1mghUAGInTwoRNMZ2ZwAdWa5fv7hlMjwFdp4ppRlXI7PgHiIdW2Hor6Rble
SmudlTv4ra37kt1sN6i4hOy7W4KcZJtYR6PLQQLM1upYTqi1e6cLbx2EywUqMyuy
K9nisDSO69n7DK6+O6zai2f4dz8TvdozGzBLPgOzhFsVLK7WQQmjXhCa5l8Na9JC
QZKFsVqZeIO5EdtnR/kuWw6++oxGnF+Zr+zSAZSTFBrDG48Ie7bGi/Mr4XT8FHQR
N9jcLI8XpCsGP80mSZOFr+dQ+0P8ShYdD1LUnIZpNiaRKst6XzJXA3LPDuHzPI5Z
AVftpkDR4v9K5C9vNJdBJ1PFN9DZh+NyxbQn4zeJZohHp7zFw2UhyyNeI11F1+Fz
KgE4ps4CYYxR/Nrf7/w4FmvMWdXwmok9+0LJrZoESEXqVddAoerqoy7ub6Txr8a3
2LgbjkAnrF5QN0aRceqaa9Nv8RQBEM2VBy5wrSyZg920l+SnY6A=
=yZe+
-----END PGP SIGNATURE-----