-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Tue, 05 Aug 2025 17:48:13 -0400 Source: chromium Binary: chromium chromium-common chromium-common-dbgsym chromium-dbgsym chromium-driver chromium-headless-shell chromium-headless-shell-dbgsym chromium-sandbox chromium-sandbox-dbgsym chromium-shell chromium-shell-dbgsym Architecture: ppc64el Version: 139.0.7258.66-1~deb12u1 Distribution: bookworm-security Urgency: high Maintainer: ppc64el Build Daemon (ppc64el-conova-02) Changed-By: Andres Salomon Description: chromium - web browser chromium-common - web browser - common resources used by the chromium packages chromium-driver - web browser - WebDriver support chromium-headless-shell - web browser - old headless shell chromium-sandbox - web browser - setuid security sandbox for chromium chromium-shell - web browser - minimal shell Changes: chromium (139.0.7258.66-1~deb12u1) bookworm-security; urgency=high . * New upstream stable release. - CVE-2025-8576: Use after free in Extensions. Reported by asnine. - CVE-2025-8577: Inappropriate implementation in Picture In Picture. Reported by Umar Farooq. - CVE-2025-8578: Use after free in Cast. Reported by Fayez. - CVE-2025-8579: Inappropriate implementation in Gemini Live in Chrome. Reported by Alesandro Ortiz. - CVE-2025-8580: Inappropriate implementation in Filesystems. Reported by Huuuuu. - CVE-2025-8581: Inappropriate implementation in Extensions. Reported by Vincent Dragnea. - CVE-2025-8582: Insufficient validation of untrusted input in DOM. Reported by Anonymous. - CVE-2025-8583: Inappropriate implementation in Permissions. Reported by Shaheen Fazim. * d/copyright: delete third_party/enterprise_companion, as it includes a binary. * d/control: - Replace elfutils build-dep with llvm-19 for switch to llvm-strip. - Update rustc-web build-dep to >= 1.84. * d/rules: - drop enable_nacl=false; upstream removed NaCL. - set enable_enterprise_companion=false. - disable Gemini AI (enable_glic=false). * d/patches: - disable/catapult.patch: refresh. - disable/buildtools-libc.patch: refresh. - system/eu-strip.patch: drop, upstream switched to llvm-strip. - bookworm/gn-revert-path-exists.patch: refresh & drop unused part. - ungoogled/disable-privacy-sandbox.patch: refresh. - fixes/bindgen.patch: rename to bookworm/bindgen.patch, since trixie now has a newer bindgen. - bookworm/gn-absl.patch: refresh. - bookworm/rust-is-none-or.patch: drop, thanks to newer rustc-web. - bookworm/rust-unstable-features.patch: drop - newer rustc-web. - bookworm/bubble-contents.patch: drop, no longer needed. . [ Timothy Pearson ] * d/patches/ppc64le: - sandbox/0001-sandbox-linux-Update-syscall-helpers-lists-for-ppc64.patch: Refresh for upstream changes - sandbox/0009-sandbox-updates-138.patch: Properly handle IPC and send syscalls - third_party/0001-add-xnn-ppc64el-support.patch: Refresh for upstream changes - third_party/0002-regenerate-xnn-buildgn.patch: Regenerate from upstream sources - third_party/skia-vsx-instructions.patch: Refresh for upstream changes - fixes/fix-partition-alloc-compile.patch: Refresh for upstream changes Checksums-Sha1: cfdb4b9a19095e0fb4cda7ab4b8748204163bc10 5857404 chromium-common-dbgsym_139.0.7258.66-1~deb12u1_ppc64el.deb 771ebaae77c2cbfa6f3443bfe01e2865dadb0c0b 29195496 chromium-common_139.0.7258.66-1~deb12u1_ppc64el.deb 5ca5bd02ed41b83db7414b7f5ecbf6011e65912c 29797444 chromium-dbgsym_139.0.7258.66-1~deb12u1_ppc64el.deb 9c557c1a847d50e6c62d7c0278daeb5c051d2868 8127388 chromium-driver_139.0.7258.66-1~deb12u1_ppc64el.deb bc42b097b23da56aeb5f25b6aeab8da74775e02d 24025284 chromium-headless-shell-dbgsym_139.0.7258.66-1~deb12u1_ppc64el.deb c21b6fcf8b1479a09509067366468ac0199eac9e 53911504 chromium-headless-shell_139.0.7258.66-1~deb12u1_ppc64el.deb db1499efd05eb4e00189a1a32b1b781e887efd5f 19356 chromium-sandbox-dbgsym_139.0.7258.66-1~deb12u1_ppc64el.deb a388d2387ae15411b5e62200aa1c0550f7eea01e 106140 chromium-sandbox_139.0.7258.66-1~deb12u1_ppc64el.deb 774feb5085996192b3eca86fb452154b4202575c 26052756 chromium-shell-dbgsym_139.0.7258.66-1~deb12u1_ppc64el.deb 98439fc680a824d8efa906b78215f8fec3e59dfa 58625712 chromium-shell_139.0.7258.66-1~deb12u1_ppc64el.deb 8794e03ff7bc9b758f0f8ccd874ba8ba5999e8eb 30197 chromium_139.0.7258.66-1~deb12u1_ppc64el-buildd.buildinfo 67e2556952e3ff1a1d342c09da1177598d8eb12f 69603540 chromium_139.0.7258.66-1~deb12u1_ppc64el.deb Checksums-Sha256: 0863c49f09626ad7ac9eb0e038eb4fa2b2f034ca63c3d8dc658f0335513d0339 5857404 chromium-common-dbgsym_139.0.7258.66-1~deb12u1_ppc64el.deb da32c8882817b0f2287867d6c15dab58b77f64a554e533420b53a057541eba39 29195496 chromium-common_139.0.7258.66-1~deb12u1_ppc64el.deb 401d60b4a8565cc7211409ca35699f140d66b3eb7dc1e038c8389fd6059f22ab 29797444 chromium-dbgsym_139.0.7258.66-1~deb12u1_ppc64el.deb a969e4763016bf02dfceb5badf67283bd9cc97cf234dfca92020cd7d4b1ddf94 8127388 chromium-driver_139.0.7258.66-1~deb12u1_ppc64el.deb 3c42aada21b5c0e4b01aea873ed3a6f14f4f4e9934ffb0b8c4bab23c8291d515 24025284 chromium-headless-shell-dbgsym_139.0.7258.66-1~deb12u1_ppc64el.deb eae1d377bad22dd8ed8bfb2cf86a3f6cce920b2b8c20ddf1c736b2f24d9cb9b2 53911504 chromium-headless-shell_139.0.7258.66-1~deb12u1_ppc64el.deb 3030f0f2381aa69b868f1e4a47438481958644560fd23a22192d0068d388e574 19356 chromium-sandbox-dbgsym_139.0.7258.66-1~deb12u1_ppc64el.deb 4b2d8c1e6d82fd97af49d59b86ee45703c4dcce43a2757e924587633d4d4a77f 106140 chromium-sandbox_139.0.7258.66-1~deb12u1_ppc64el.deb ad2658add6d8dbb5b5007f8ef0ba9abefab6ef64102af89fd6a46ad1a347e869 26052756 chromium-shell-dbgsym_139.0.7258.66-1~deb12u1_ppc64el.deb 793a53cf7aa1bcb60cf9d2890a130f368f2ff10d864e6689df790bc65381c285 58625712 chromium-shell_139.0.7258.66-1~deb12u1_ppc64el.deb 18c368ca27b4ed6b07dc8981f577dcd444e93a525357b3f529abbd10b6df1d44 30197 chromium_139.0.7258.66-1~deb12u1_ppc64el-buildd.buildinfo 29224c509c24d0cfc04b9fa5e7970bfcd750f929fe73b1e6d4d7c5113903ab27 69603540 chromium_139.0.7258.66-1~deb12u1_ppc64el.deb Files: c8edfcab4d0d0bdf437dc4516d7a79f3 5857404 debug optional chromium-common-dbgsym_139.0.7258.66-1~deb12u1_ppc64el.deb 8b54ba210b8c3609a4ed20edc6002dea 29195496 web optional chromium-common_139.0.7258.66-1~deb12u1_ppc64el.deb d57d734f6438c41e523c7e6a87069dac 29797444 debug optional chromium-dbgsym_139.0.7258.66-1~deb12u1_ppc64el.deb 8ebb99e2514e7becc14fcefce4f9e70e 8127388 web optional chromium-driver_139.0.7258.66-1~deb12u1_ppc64el.deb 7d894e33bf552ed2bafe028aa9471e82 24025284 debug optional chromium-headless-shell-dbgsym_139.0.7258.66-1~deb12u1_ppc64el.deb a6bfb60a3fcc61e42ed2758ca8e0b084 53911504 web optional chromium-headless-shell_139.0.7258.66-1~deb12u1_ppc64el.deb 36a11bc47cafa28f5f17216f13645bdc 19356 debug optional chromium-sandbox-dbgsym_139.0.7258.66-1~deb12u1_ppc64el.deb 2a9a1a8d77838573e5e161c82e79e13d 106140 web optional chromium-sandbox_139.0.7258.66-1~deb12u1_ppc64el.deb cb9bd70b2f68a080715de2c031031026 26052756 debug optional chromium-shell-dbgsym_139.0.7258.66-1~deb12u1_ppc64el.deb 7f3a4f3b041137923361e68ebdb9f737 58625712 web optional chromium-shell_139.0.7258.66-1~deb12u1_ppc64el.deb 2fd557cbe408d9453b86c8926a198bea 30197 web optional chromium_139.0.7258.66-1~deb12u1_ppc64el-buildd.buildinfo 8b2087a627ed798b1a96f8ff9d9efa25 69603540 web optional chromium_139.0.7258.66-1~deb12u1_ppc64el.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEZAv/jpGRqS40qyb11oy1TpxF0ZAFAmiTeF8ACgkQ1oy1TpxF 0ZARwQ//VWh+LglZ6B4rQ0MTtD/4APuQlcfFzYRo8qX1kPx6vm0TEo31UNBrdlgO T3HPKUTYwZMFSEW7xGLw9FbT0IgRzA/ff1AQmJW9lq6j+yd1cwXsHpr7U/X/w6as 1TEp0Ghf26cdzznqteIWgxg+sc7n1igffUACloIKDUmKql7FbsQFqhl1oZgU2MGR GGVwde1xIeJSchyvw9DcYLciCZGxJlp8Ll7r2v+HA0aHYtO9btWeujh7u/AqoXW9 EQolxGIT3a0MmNaO5DwyZi16ffVz3NnevOc2KlwKQTHCKbbj+I8p8HUD0g+RMXCw MhQ0NF0E+yHO2DMdTvzBxY7tNwRGCcYf8pFUr0WciozqiZvcwzTkvsbzt5ybkIKG ub14x205vRfRPmscxVzSs2/v7CDBjCZvHZ1FCh/yGanME37OE2cmnjUk8Kob3LT4 6PsO9obWKtJm9sNPAci5rsrHLyOnzwMb+AGReQs277OF3MeA0qeSJCo3q7VWB2Na QbPYGjOFLf8RBJdobOJFRxbFjmj0qNSPKqQzeFz0Krn/lci8233Pl5ELFjYKXGpy KnBj2+yG1W1X/UqftUwXjy4HJqLQLRaSS5B3vRDxm2Z6A+Gd3meJA392JxKgPlIg +vQo0TFDxjeV0zjh8yc421xnGtMihLSjKt02dHEEVXZflWPJKWA= =Sijp -----END PGP SIGNATURE-----