-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 29 Oct 2025 13:44:37 -0400
Source: chromium
Binary: chromium chromium-common chromium-common-dbgsym chromium-dbgsym chromium-driver chromium-headless-shell chromium-headless-shell-dbgsym chromium-sandbox chromium-sandbox-dbgsym chromium-shell chromium-shell-dbgsym
Architecture: ppc64el
Version: 142.0.7444.59-1~deb12u1
Distribution: bookworm-security
Urgency: high
Maintainer: ppc64el Build Daemon (ppc64el-osuosl-02) <buildd_ppc64el-ppc64el-osuosl-02@buildd.debian.org>
Changed-By: Andres Salomon <dilinger@debian.org>
Description:
 chromium   - web browser
 chromium-common - web browser - common resources used by the chromium packages
 chromium-driver - web browser - WebDriver support
 chromium-headless-shell - web browser - old headless shell
 chromium-sandbox - web browser - setuid security sandbox for chromium
 chromium-shell - web browser - minimal shell
Changes:
 chromium (142.0.7444.59-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream stable release.
     - CVE-2025-12428: Type Confusion in V8.
       Reported by Man Yue Mo of GitHub Security Lab.
     - CVE-2025-12429: Inappropriate implementation in V8.
       Reported by Aorui Zhang.
     - CVE-2025-12430: Object lifecycle issue in Media.
       Reported by round.about.
     - CVE-2025-12431: Inappropriate implementation in Extensions.
       Reported by Alesandro Ortiz.
     - CVE-2025-12432: Race in V8. Reported by Google Big Sleep.
     - CVE-2025-12433: Inappropriate implementation in V8.
       Reported by Google Big Sleep.
     - CVE-2025-12036: Inappropriate implementation in V8.
       Reported by Google Big Sleep.
     - CVE-2025-12434: Race in Storage. Reported by Lijo A.T.
     - CVE-2025-12435: Incorrect security UI in Omnibox. Reported by Hafiizh.
     - CVE-2025-12436: Policy bypass in Extensions.
       Reported by Luan Herrera (@lbherrera_).
     - CVE-2025-12437: Use after free in PageInfo. Reported by Umar Farooq.
     - CVE-2025-12438: Use after free in Ozone.
       Reported by Wei Yuan of MoyunSec VLab.
     - CVE-2025-12439: Inappropriate implementation in App-Bound Encryption.
       Reported by Ari Novick.
     - CVE-2025-12440: Inappropriate implementation in Autofill.
       Reported by Khalil Zhani.
     - CVE-2025-12441: Out of bounds read in V8. Reported by Google Big Sleep.
     - CVE-2025-12443: Out of bounds read in WebXR. Reported by Aisle Research
     - CVE-2025-12444: Incorrect security UI in Fullscreen UI.
       Reported by syrf.
     - CVE-2025-12445: Policy bypass in Extensions. Reported by Thomas Greiner
     - CVE-2025-12446: Incorrect security UI in SplitView. Reported by Hafiizh
     - CVE-2025-12447: Incorrect security UI in Omnibox.
       Reported by Khalil Zhani.
   * d/patches:
     - disable/android.patch: drop part of patch related to md5sum tool.
     - disable/catapult.patch: refresh.
     - bookworm/clang19.patch: also drop uninit-const-pointer and
       unnecessary-virtual-specifier warnings.
     - ungoogled/disable-privacy-sandbox.patch: sync from upstream.
     - i386/support-i386.patch: refresh.
     - trixie/rust-sanitize.patch: add a workaround for older rustc.
     - fixes/chromium-142-iwyu-field-form-data.patch: pull in build fix
       from gentoo.
     - trixie/rust-no-alloc-shim.patch: add another missing symbol that's
       provided by newer versions of rust.
     - bookworm/gn-path-exists2.patch: add another workaround for lack of
       path_exists() in older gn.
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - third_party/0001-third-party-hwy-wrong-include.patch: Drop due to
       upstream fixes
     - ppc64le/third_party/0002-regenerate-xnn-buildgn.patch: Regenerate from
       upstream sources
     - core/add-ppc64-architecture-to-extensions.diff: Refresh for upstream
       changes
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - third_party/0001-third-party-hwy-wrong-include.patch: Drop due to
       upstream fixes
     - ppc64le/third_party/0002-regenerate-xnn-buildgn.patch: Regenerate from
       upstream sources
     - core/add-ppc64-architecture-to-extensions.diff: Refresh for upstream
       changes
Checksums-Sha1:
 413dff3f6f6db98612694f01df4db0aff898da66 5923356 chromium-common-dbgsym_142.0.7444.59-1~deb12u1_ppc64el.deb
 6a21d6b44b8faea54c9f93aa34584eeb53cbf875 29724240 chromium-common_142.0.7444.59-1~deb12u1_ppc64el.deb
 01d437b7b967bea02bebc55dd5ac91693ab42206 30194564 chromium-dbgsym_142.0.7444.59-1~deb12u1_ppc64el.deb
 15675a47af2bdd716dbf12dbb32d80930d455cd4 7327300 chromium-driver_142.0.7444.59-1~deb12u1_ppc64el.deb
 024240cce20ba901ec8df197b00e0809c892e579 24094076 chromium-headless-shell-dbgsym_142.0.7444.59-1~deb12u1_ppc64el.deb
 560cec66dba590c4c2dca7780263892051142100 53400084 chromium-headless-shell_142.0.7444.59-1~deb12u1_ppc64el.deb
 32c727eb22bbc6c1a47a530d4ac2ff5fdf844c0e 19344 chromium-sandbox-dbgsym_142.0.7444.59-1~deb12u1_ppc64el.deb
 b6799ee3dc14cd28c9d05df17ef059ab79331add 108020 chromium-sandbox_142.0.7444.59-1~deb12u1_ppc64el.deb
 2ebd7506d198016559d77cef23a2b07f4af72cc1 26183800 chromium-shell-dbgsym_142.0.7444.59-1~deb12u1_ppc64el.deb
 368ffed5f5ddec6ef4edb67d95166c5125385f67 58304548 chromium-shell_142.0.7444.59-1~deb12u1_ppc64el.deb
 336f47127c2c5c08e65b1ca67f3a1310d5530026 30243 chromium_142.0.7444.59-1~deb12u1_ppc64el-buildd.buildinfo
 831834a2b85b8bccda47c77a32efb4dbfe38946b 70017692 chromium_142.0.7444.59-1~deb12u1_ppc64el.deb
Checksums-Sha256:
 8ad1b1cc89a6a5dbd4886ec141d153622e46e184103fc550ebbf4f81cccee462 5923356 chromium-common-dbgsym_142.0.7444.59-1~deb12u1_ppc64el.deb
 670f74f9f7c0f68d48c6dbf3b1f61f32d729ed03589c85a7fa5eaf3d230ece3c 29724240 chromium-common_142.0.7444.59-1~deb12u1_ppc64el.deb
 f8576ed6c7001e1fb0bfae08bd1c3f8cac959970c98ce7d9c2c186d0e44ea9ba 30194564 chromium-dbgsym_142.0.7444.59-1~deb12u1_ppc64el.deb
 5b3c23f29403068fffce17730fd4fdeb0263440f344570f0590c5ee88e210df0 7327300 chromium-driver_142.0.7444.59-1~deb12u1_ppc64el.deb
 0eb9ff5821c4b282089301832affc7466c81931a98137057ccd80496c028dceb 24094076 chromium-headless-shell-dbgsym_142.0.7444.59-1~deb12u1_ppc64el.deb
 20a3736a7d2c91a8a7dc6d1eb3f2716ed15944049a562a1ad477f7e40c2fe4e3 53400084 chromium-headless-shell_142.0.7444.59-1~deb12u1_ppc64el.deb
 97174596a16ef6e0c3679269aca15c17985e229d62dfdf97cedc542771601248 19344 chromium-sandbox-dbgsym_142.0.7444.59-1~deb12u1_ppc64el.deb
 8e5857b6b219d18bb0d538ba23846ec4f2abde25500627696b0ef515692e3b7e 108020 chromium-sandbox_142.0.7444.59-1~deb12u1_ppc64el.deb
 214f1cc827df6b50ab0b173bc9deb793611d6280ddd9151712634c1b04cc0726 26183800 chromium-shell-dbgsym_142.0.7444.59-1~deb12u1_ppc64el.deb
 93b044872adba3c08ab51576ac81b6d8b2d86d9dc493367940ae8d3e62b9a873 58304548 chromium-shell_142.0.7444.59-1~deb12u1_ppc64el.deb
 992ec09d3366c55c5f15a7fa9fb5cd7467cb8a8835b5bd7f3a71891d2a234331 30243 chromium_142.0.7444.59-1~deb12u1_ppc64el-buildd.buildinfo
 eb99e4d8d3a667bbcc6e6e7769a0b9d82104749c4729f5e0069176c1d0430481 70017692 chromium_142.0.7444.59-1~deb12u1_ppc64el.deb
Files:
 a65c8967a6d4f2a1656a236191f13666 5923356 debug optional chromium-common-dbgsym_142.0.7444.59-1~deb12u1_ppc64el.deb
 bf823eb98afe3099d23ff8fc6c4b4a3f 29724240 web optional chromium-common_142.0.7444.59-1~deb12u1_ppc64el.deb
 c488d50c1e370b791e655eeaa9d25dab 30194564 debug optional chromium-dbgsym_142.0.7444.59-1~deb12u1_ppc64el.deb
 79aa59ff0a7ed6ecb179efc3a6c88085 7327300 web optional chromium-driver_142.0.7444.59-1~deb12u1_ppc64el.deb
 8551ac06353dd8c824be1b77ae6eb0e7 24094076 debug optional chromium-headless-shell-dbgsym_142.0.7444.59-1~deb12u1_ppc64el.deb
 52373502417e9ba932058a602f1f09e4 53400084 web optional chromium-headless-shell_142.0.7444.59-1~deb12u1_ppc64el.deb
 fb30616be74938e2a2a39471b9e3b383 19344 debug optional chromium-sandbox-dbgsym_142.0.7444.59-1~deb12u1_ppc64el.deb
 8ca7c0bbd91ab9556920b4dee0fd9724 108020 web optional chromium-sandbox_142.0.7444.59-1~deb12u1_ppc64el.deb
 7b829a01e8e0ee22e086cae6ab9dc10c 26183800 debug optional chromium-shell-dbgsym_142.0.7444.59-1~deb12u1_ppc64el.deb
 99a1c3e691708f544c365eab27b79422 58304548 web optional chromium-shell_142.0.7444.59-1~deb12u1_ppc64el.deb
 c62e0c3aa1dc8564145ec8ffafa00720 30243 web optional chromium_142.0.7444.59-1~deb12u1_ppc64el-buildd.buildinfo
 71378ad483c8b9a08ea65b86d911664d 70017692 web optional chromium_142.0.7444.59-1~deb12u1_ppc64el.deb

-----BEGIN PGP SIGNATURE-----
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=guRx
-----END PGP SIGNATURE-----