-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Tue, 05 Aug 2025 17:48:13 -0400 Source: chromium Binary: chromium-l10n Architecture: all Version: 139.0.7258.66-1~deb12u1 Distribution: bookworm-security Urgency: high Maintainer: all Build Daemon (x86-csail-02) Changed-By: Andres Salomon Description: chromium-l10n - web browser - language packs Changes: chromium (139.0.7258.66-1~deb12u1) bookworm-security; urgency=high . * New upstream stable release. - CVE-2025-8576: Use after free in Extensions. Reported by asnine. - CVE-2025-8577: Inappropriate implementation in Picture In Picture. Reported by Umar Farooq. - CVE-2025-8578: Use after free in Cast. Reported by Fayez. - CVE-2025-8579: Inappropriate implementation in Gemini Live in Chrome. Reported by Alesandro Ortiz. - CVE-2025-8580: Inappropriate implementation in Filesystems. Reported by Huuuuu. - CVE-2025-8581: Inappropriate implementation in Extensions. Reported by Vincent Dragnea. - CVE-2025-8582: Insufficient validation of untrusted input in DOM. Reported by Anonymous. - CVE-2025-8583: Inappropriate implementation in Permissions. Reported by Shaheen Fazim. * d/copyright: delete third_party/enterprise_companion, as it includes a binary. * d/control: - Replace elfutils build-dep with llvm-19 for switch to llvm-strip. - Update rustc-web build-dep to >= 1.84. * d/rules: - drop enable_nacl=false; upstream removed NaCL. - set enable_enterprise_companion=false. - disable Gemini AI (enable_glic=false). * d/patches: - disable/catapult.patch: refresh. - disable/buildtools-libc.patch: refresh. - system/eu-strip.patch: drop, upstream switched to llvm-strip. - bookworm/gn-revert-path-exists.patch: refresh & drop unused part. - ungoogled/disable-privacy-sandbox.patch: refresh. - fixes/bindgen.patch: rename to bookworm/bindgen.patch, since trixie now has a newer bindgen. - bookworm/gn-absl.patch: refresh. - bookworm/rust-is-none-or.patch: drop, thanks to newer rustc-web. - bookworm/rust-unstable-features.patch: drop - newer rustc-web. - bookworm/bubble-contents.patch: drop, no longer needed. . [ Timothy Pearson ] * d/patches/ppc64le: - sandbox/0001-sandbox-linux-Update-syscall-helpers-lists-for-ppc64.patch: Refresh for upstream changes - sandbox/0009-sandbox-updates-138.patch: Properly handle IPC and send syscalls - third_party/0001-add-xnn-ppc64el-support.patch: Refresh for upstream changes - third_party/0002-regenerate-xnn-buildgn.patch: Regenerate from upstream sources - third_party/skia-vsx-instructions.patch: Refresh for upstream changes - fixes/fix-partition-alloc-compile.patch: Refresh for upstream changes Checksums-Sha1: e267540e599bafec7757b6dbb2cbfdc9003cbb01 8347696 chromium-l10n_139.0.7258.66-1~deb12u1_all.deb 3faf404899a4d4c9321eda25a38aaf676a80368b 26790 chromium_139.0.7258.66-1~deb12u1_all-buildd.buildinfo Checksums-Sha256: 149d251d1d100508566022387712336a4399078dd232a06c4f612d07598fff41 8347696 chromium-l10n_139.0.7258.66-1~deb12u1_all.deb ed49c2e01f63f4e4e1d3c87f2a5b6ffafb4f9581956251ad31f5e962d8573955 26790 chromium_139.0.7258.66-1~deb12u1_all-buildd.buildinfo Files: 30c04fa8af51a635dbbe6154cf07fa91 8347696 localization optional chromium-l10n_139.0.7258.66-1~deb12u1_all.deb 1c5bc06ce4ff023460fffcdb1825466d 26790 web optional chromium_139.0.7258.66-1~deb12u1_all-buildd.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEELusn8jY95Sf7obGlx30Wh8LXl/YFAmiTVP4ACgkQx30Wh8LX l/YX8g/+JXMmn7bX0jVXNpNJoAYh+mbnm4a/6cvMDsAex79TR250EhZ+WgeqJNvw 9ziMhYfXO6Mup0Mzz415+VZFl6Viik7/kOgn43XYlozE7BCfg6EKZQybHP+omORA ti5PUJ6G3cCxos14zWnfnUZrmr/pysoiwgdqaBaPoywsgr4FUKR0C0bdtnWn7T28 p2ZVSTyMHgpAllQ41Uhn5XXNK/8SXagD6Qox9dfP1Ku3sVuAb9kzeTBgrAGDo0CP /zCMGIM32/bbnl0StgLiLlSfRsjBArt1w1v93WsyBrctpXPbU1f+HDpFaH5OMxl9 2ah07j7hv4RI018EelGAfChGK3sTUzvZq06wgslV1745e3Y9eVBJaKlGedOFUmsD NLHlNOaa+NXP6dicDp2CwEa93uhTE1WhyFdpPUu8IcZxZ8zSA2B0qMp3R68PZutW sFy0LlpWWcoySxV0v4FDQ7LiwjGdGXIMFsce+vYZ7Ti0GHgPQ7O7vJ//2YduMNLx ceWHx4ZcUcbayCc25uxovYFfASvjP+J12FzyRV/T+M8xn9zIbI5Yb2xoCeqcT5g7 kabeLKI8N4NUGiwfpOB2SVXQfHySJg820fIY6mgapEuCFGXm1GvepvNyQxSzY+n4 ht6oT1Z5j3jIWpfP3UWzBlSZ0oIRzxTjneXXfhJd2Z6/9l3DTyY= =LLIl -----END PGP SIGNATURE-----