-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 29 Oct 2025 13:44:37 -0400
Source: chromium
Binary: chromium chromium-common chromium-common-dbgsym chromium-dbgsym chromium-driver chromium-headless-shell chromium-headless-shell-dbgsym chromium-sandbox chromium-sandbox-dbgsym chromium-shell chromium-shell-dbgsym
Architecture: amd64
Version: 142.0.7444.59-1~deb13u1
Distribution: trixie-security
Urgency: high
Maintainer: all / amd64 / i386 Build Daemon (x86-conova-01) <buildd_amd64-x86-conova-01@buildd.debian.org>
Changed-By: Andres Salomon <dilinger@debian.org>
Description:
 chromium   - web browser
 chromium-common - web browser - common resources used by the chromium packages
 chromium-driver - web browser - WebDriver support
 chromium-headless-shell - web browser - old headless shell
 chromium-sandbox - web browser - setuid security sandbox for chromium
 chromium-shell - web browser - minimal shell
Changes:
 chromium (142.0.7444.59-1~deb13u1) trixie-security; urgency=high
 .
   * New upstream stable release.
     - CVE-2025-12428: Type Confusion in V8.
       Reported by Man Yue Mo of GitHub Security Lab.
     - CVE-2025-12429: Inappropriate implementation in V8.
       Reported by Aorui Zhang.
     - CVE-2025-12430: Object lifecycle issue in Media.
       Reported by round.about.
     - CVE-2025-12431: Inappropriate implementation in Extensions.
       Reported by Alesandro Ortiz.
     - CVE-2025-12432: Race in V8. Reported by Google Big Sleep.
     - CVE-2025-12433: Inappropriate implementation in V8.
       Reported by Google Big Sleep.
     - CVE-2025-12036: Inappropriate implementation in V8.
       Reported by Google Big Sleep.
     - CVE-2025-12434: Race in Storage. Reported by Lijo A.T.
     - CVE-2025-12435: Incorrect security UI in Omnibox. Reported by Hafiizh.
     - CVE-2025-12436: Policy bypass in Extensions.
       Reported by Luan Herrera (@lbherrera_).
     - CVE-2025-12437: Use after free in PageInfo. Reported by Umar Farooq.
     - CVE-2025-12438: Use after free in Ozone.
       Reported by Wei Yuan of MoyunSec VLab.
     - CVE-2025-12439: Inappropriate implementation in App-Bound Encryption.
       Reported by Ari Novick.
     - CVE-2025-12440: Inappropriate implementation in Autofill.
       Reported by Khalil Zhani.
     - CVE-2025-12441: Out of bounds read in V8. Reported by Google Big Sleep.
     - CVE-2025-12443: Out of bounds read in WebXR. Reported by Aisle Research
     - CVE-2025-12444: Incorrect security UI in Fullscreen UI.
       Reported by syrf.
     - CVE-2025-12445: Policy bypass in Extensions. Reported by Thomas Greiner
     - CVE-2025-12446: Incorrect security UI in SplitView. Reported by Hafiizh
     - CVE-2025-12447: Incorrect security UI in Omnibox.
       Reported by Khalil Zhani.
   * d/patches:
     - disable/android.patch: drop part of patch related to md5sum tool.
     - disable/catapult.patch: refresh.
     - bookworm/clang19.patch: also drop uninit-const-pointer and
       unnecessary-virtual-specifier warnings.
     - ungoogled/disable-privacy-sandbox.patch: sync from upstream.
     - i386/support-i386.patch: refresh.
     - trixie/rust-sanitize.patch: add a workaround for older rustc.
     - fixes/chromium-142-iwyu-field-form-data.patch: pull in build fix
       from gentoo.
     - trixie/rust-no-alloc-shim.patch: add another missing symbol that's
       provided by newer versions of rust.
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - third_party/0001-third-party-hwy-wrong-include.patch: Drop due to
       upstream fixes
     - ppc64le/third_party/0002-regenerate-xnn-buildgn.patch: Regenerate from
       upstream sources
     - core/add-ppc64-architecture-to-extensions.diff: Refresh for upstream
       changes
Checksums-Sha1:
 5fba1431f841aa344f08b16e25bba313c70c64f4 5034796 chromium-common-dbgsym_142.0.7444.59-1~deb13u1_amd64.deb
 28252f7b3381a895656906e0bc25508ce2c9bff7 22641224 chromium-common_142.0.7444.59-1~deb13u1_amd64.deb
 25c00d380841e9edf9b63669b91fb7b17748598e 31416384 chromium-dbgsym_142.0.7444.59-1~deb13u1_amd64.deb
 eeb95efd1fff8cdca2fe465ab953b02cc07612c2 7076528 chromium-driver_142.0.7444.59-1~deb13u1_amd64.deb
 37e8695577291058e69eb93a003e2ec6e979ed08 26664668 chromium-headless-shell-dbgsym_142.0.7444.59-1~deb13u1_amd64.deb
 a9249fee3feb16bee74b572bc907c86a9c6419c2 59599608 chromium-headless-shell_142.0.7444.59-1~deb13u1_amd64.deb
 94cb44b85176fa555a78e8beb0369d59caddf499 20176 chromium-sandbox-dbgsym_142.0.7444.59-1~deb13u1_amd64.deb
 adf7534ec45fcc69a9e6a953afac079215bd55c9 105776 chromium-sandbox_142.0.7444.59-1~deb13u1_amd64.deb
 60b61a75ce27c36ce1f283cf0de03fd544e4e5e8 28241096 chromium-shell-dbgsym_142.0.7444.59-1~deb13u1_amd64.deb
 e0f9eb10b3c2d1200e45d3557463c16c47101537 58655652 chromium-shell_142.0.7444.59-1~deb13u1_amd64.deb
 14b1d333b3e4d8fc4f41a97e9ede6f14e970b1d9 30084 chromium_142.0.7444.59-1~deb13u1_amd64-buildd.buildinfo
 579418ee5aaae434627511a22c55f6feafae2425 80084840 chromium_142.0.7444.59-1~deb13u1_amd64.deb
Checksums-Sha256:
 198d327a7fdfdb63007049a4564401dff4e9cada65cb203062d874bdc68aeb73 5034796 chromium-common-dbgsym_142.0.7444.59-1~deb13u1_amd64.deb
 fd6776b52f360c16983417b7a3269434146c09aa2b57c094f91af308383d430f 22641224 chromium-common_142.0.7444.59-1~deb13u1_amd64.deb
 7a1dcb2ad87f1c4558b2301c938b17a4316a3aa7db9689aeea799f9310a491ff 31416384 chromium-dbgsym_142.0.7444.59-1~deb13u1_amd64.deb
 7dc1b7fc1d99340caaf2ec5901ca68337fd00c6884383d7f0111a4de26901529 7076528 chromium-driver_142.0.7444.59-1~deb13u1_amd64.deb
 55a94f660a2b78b52dcbe105aaf832d7fb76bb55bf4bf606a4d0f9963987b574 26664668 chromium-headless-shell-dbgsym_142.0.7444.59-1~deb13u1_amd64.deb
 214c45848f916e45f01b4a7606ce6b54acef96d5f33d5663c73f8bf3ad0d1fbe 59599608 chromium-headless-shell_142.0.7444.59-1~deb13u1_amd64.deb
 c99ce9139cb8424d6c6366c87a7ec00554cf259f50a78cc8a35059112fcd9cf2 20176 chromium-sandbox-dbgsym_142.0.7444.59-1~deb13u1_amd64.deb
 c2c4f599d3d07adb4a7de4a5d1c19c0107aa6c300a00447292d067fab11de778 105776 chromium-sandbox_142.0.7444.59-1~deb13u1_amd64.deb
 b929be3b59c2989f66173060bbc5641fe3a2a2100395e3e70863edd6fe380752 28241096 chromium-shell-dbgsym_142.0.7444.59-1~deb13u1_amd64.deb
 e48b597c294aac6963364f435fe343bf7e9c3dc2822edbf8ce659a50894752af 58655652 chromium-shell_142.0.7444.59-1~deb13u1_amd64.deb
 d7704d3731bd458652cf3a95dc6c8155fd3a692c06573ca1dcfa5dc899e7d5a0 30084 chromium_142.0.7444.59-1~deb13u1_amd64-buildd.buildinfo
 bd9b1ca95e3f977dde66c41e8efa6a194f521a1e3b22ffeb6bbe49b3319bf394 80084840 chromium_142.0.7444.59-1~deb13u1_amd64.deb
Files:
 1321fcdda5edeb669c2d603774c2d8db 5034796 debug optional chromium-common-dbgsym_142.0.7444.59-1~deb13u1_amd64.deb
 424b76d959f331ee39a55fe6b13cf1fc 22641224 web optional chromium-common_142.0.7444.59-1~deb13u1_amd64.deb
 bae6fa46539bee55d8932d5b687f62bc 31416384 debug optional chromium-dbgsym_142.0.7444.59-1~deb13u1_amd64.deb
 725ebb21ef720211e1783eae38a78ee8 7076528 web optional chromium-driver_142.0.7444.59-1~deb13u1_amd64.deb
 b007b1932231ceb7e1362560337f54cd 26664668 debug optional chromium-headless-shell-dbgsym_142.0.7444.59-1~deb13u1_amd64.deb
 5850d5fd504b103c3685946cc5fac096 59599608 web optional chromium-headless-shell_142.0.7444.59-1~deb13u1_amd64.deb
 2b050d56fe4aa87664e6c037da082e45 20176 debug optional chromium-sandbox-dbgsym_142.0.7444.59-1~deb13u1_amd64.deb
 248fd02e1cb3c54d98bd43ffb1398f2f 105776 web optional chromium-sandbox_142.0.7444.59-1~deb13u1_amd64.deb
 2099a002d4039038cac1673003a5b293 28241096 debug optional chromium-shell-dbgsym_142.0.7444.59-1~deb13u1_amd64.deb
 60ac20f9738ddf9f64ac1323e5e8c3b0 58655652 web optional chromium-shell_142.0.7444.59-1~deb13u1_amd64.deb
 08fdb4769788f9d70e35b2449e553e17 30084 web optional chromium_142.0.7444.59-1~deb13u1_amd64-buildd.buildinfo
 0130b8300e9e3245f9f4cd7845f41fdf 80084840 web optional chromium_142.0.7444.59-1~deb13u1_amd64.deb

-----BEGIN PGP SIGNATURE-----
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=SZOx
-----END PGP SIGNATURE-----