-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 16 May 2024 18:55:41 -0400
Source: chromium
Binary: chromium-l10n
Architecture: all
Version: 125.0.6422.60-1~deb12u1
Distribution: bookworm-security
Urgency: high
Maintainer: all Build Daemon (x86-csail-02) <buildd_all-x86-csail-02@buildd.debian.org>
Changed-By: Andres Salomon <dilinger@debian.org>
Description:
 chromium-l10n - web browser - language packs
Changes:
 chromium (125.0.6422.60-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream stable release.
     - CVE-2024-4947: Type Confusion in V8. Reported by Vasily
       Berdnikov (@vaber_b) and Boris Larin (@oct0xor) of Kaspersky.
     - CVE-2024-4948: Use after free in Dawn. Reported by wgslfuzz.
     - CVE-2024-4949: Use after free in V8.
       Reported by Ganjiang Zhou(@refrain_areu) of ChaMd5-H1 team.
     - CVE-2024-4950: Inappropriate implementation in Downloads.
       Reported by Shaheen Fazim.
   * d/copyright: fix instrumented_libs deletion; upstream renamed it.
   * d/scripts/unbundle: bundle new requirement absl_crc (which is
     unavailable in bookworm).
   * d/patches:
     - upstream/uint-includes.patch: drop,merged upstream.
     - upstream/fps-optional.patch: drop, merged upstream.
     - upstream/span-optional.patch: drop, merged upstream.
     - upstream/extractor-bitset.patch: drop, merged upstream.
     - upstream/atomic.patch: drop, merged upstream.
     - upstream/webgpu-optional.patch: drop, merged upstream.
     - disable/catapult.patch: refresh.
     - i386/angle-lockfree.patch: drop, I _think_ it's no longer needed.
     - upstream/ruy-include.patch: add header build fix.
     - upstream/vulkan-include.patch: add header build fix.
     - upstream/mojo-bindings-include.patch: add header build fix.
     - upstream/appservice-include.patch: add header build fix.
     - upstream/no-vector-consts.patch: add build fix; gnu libstdc++
       doesn't allow const types inside vectors.
     - upstream/lens-include.patch: add header build fix.
     - bookworm/nvt2.patch: drop (replace with a better non-revert patch).
     - bookworm/v8-wrappable.patch: add nvt2.patch build fix replacement
       that just defines a single struct member.
     - upstream/ninja.patch: add build fix for failure triggered by
       ninja-1.12.
     - fixes/bad-font-gc00000.patch: add formatting patch revert to make
       other patches easier to apply.
     - fixes/bad-font-gc2.patch: add a build failure fix & refresh.
     - fixes/bad-font-gc11.patch: add a build failure fix & refresh.
     - bookworm/bubble-contents.patch: refresh.
     - bookworm/omnibox-constexpr.patch: add constexpr -> const build fix.
     - upstream/tabstrip-include.patch: add header build fix.
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - third_party/0001-Add-PPC64-support-for-boringssl.patch: Modify for
       upstream changes
     - third_party/0002-Add-PPC64-generated-files-for-boringssl.patch: Add
       pregenerated configuration for ppc64el support in BoringSSL
     - third_party/0002-third-party-boringssl-add-generated-files.patch:
       Rename to third_party/0002-Add-PPC64-generated-files-for-boringssl.patch
     - workarounds/HACK-debian-clang-disable-skia-musttail.patch: Refresh
       for upstream changes
     - third_party/skia-vsx-instructions.patch: Refresh for upstream changes
     - ffmpeg/0001-Add-support-for-ppc64.patch: Refresh for upstream changes
Checksums-Sha1:
 3835583508302a13d9e3cd261d4bc1e7a7a2d0d2 7165884 chromium-l10n_125.0.6422.60-1~deb12u1_all.deb
 c8a6a9f9f2342f8af79587f49eb5c5e51d171e27 21991 chromium_125.0.6422.60-1~deb12u1_all-buildd.buildinfo
Checksums-Sha256:
 99f96d68b08701e49c59620fe6c35bddd29994b47da2ede82a052733e14604ec 7165884 chromium-l10n_125.0.6422.60-1~deb12u1_all.deb
 82cfb041e7f2c4551895ddda52902be32d6f665761d90c672c5fcb4cec63a734 21991 chromium_125.0.6422.60-1~deb12u1_all-buildd.buildinfo
Files:
 9866983b4c5870eb29c0913ceec5b42f 7165884 localization optional chromium-l10n_125.0.6422.60-1~deb12u1_all.deb
 ac6ed1c7f4acca4cab995e6dd275d849 21991 web optional chromium_125.0.6422.60-1~deb12u1_all-buildd.buildinfo

-----BEGIN PGP SIGNATURE-----
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=zU8y
-----END PGP SIGNATURE-----