Format: 1.8 Date: Tue, 04 Dec 2018 22:46:10 +0100 Source: chromium-browser Binary: chromium-browser chromium-browser-l10n chromium-codecs-ffmpeg chromium-codecs-ffmpeg-extra chromium-chromedriver Architecture: source Version: 71.0.3578.80-0ubuntu0.18.04.1 Distribution: bionic Urgency: medium Maintainer: Ubuntu Developers Changed-By: Olivier Tilloy Description: chromium-browser - Chromium web browser, open-source version of Chrome chromium-browser-l10n - chromium-browser language packages chromium-chromedriver - WebDriver driver for the Chromium Browser chromium-codecs-ffmpeg - Free ffmpeg codecs for the Chromium Browser chromium-codecs-ffmpeg-extra - Extra ffmpeg codecs for the Chromium Browser Changes: chromium-browser (71.0.3578.80-0ubuntu0.18.04.1) bionic; urgency=medium . * Upstream release: 71.0.3578.80 - CVE-2018-17480: Out of bounds write in V8. - CVE-2018-17481: Use after frees in PDFium. - CVE-2018-18335: Heap buffer overflow in Skia. - CVE-2018-18336: Use after free in PDFium. - CVE-2018-18337: Use after free in Blink. - CVE-2018-18338: Heap buffer overflow in Canvas. - CVE-2018-18339: Use after free in WebAudio. - CVE-2018-18340: Use after free in MediaRecorder. - CVE-2018-18341: Heap buffer overflow in Blink. - CVE-2018-18342: Out of bounds write in V8. - CVE-2018-18343: Use after free in Skia. - CVE-2018-18344: Inappropriate implementation in Extensions. - CVE-2018-18345: Inappropriate implementation in Site Isolation. - CVE-2018-18346: Incorrect security UI in Blink. - CVE-2018-18347: Inappropriate implementation in Navigation. - CVE-2018-18348: Inappropriate implementation in Omnibox. - CVE-2018-18349: Insufficient policy enforcement in Blink. - CVE-2018-18350: Insufficient policy enforcement in Blink. - CVE-2018-18351: Insufficient policy enforcement in Navigation. - CVE-2018-18352: Inappropriate implementation in Media. - CVE-2018-18353: Inappropriate implementation in Network Authentication. - CVE-2018-18354: Insufficient data validation in Shell Integration. - CVE-2018-18355: Insufficient policy enforcement in URL Formatter. - CVE-2018-18356: Use after free in Skia. - CVE-2018-18357: Insufficient policy enforcement in URL Formatter. - CVE-2018-18358: Insufficient policy enforcement in Proxy. - CVE-2018-18359: Out of bounds read in V8. * debian/patches/chromium_useragent.patch: refreshed * debian/patches/configuration-directory.patch: refreshed * debian/patches/disable-sse2: refreshed * debian/patches/fix-extra-arflags.patch: refreshed * debian/patches/gn-bootstrap-remove-sysroot-options.patch: refreshed * debian/patches/gn-no-last-commit-position.patch: refreshed * debian/patches/revert-Xclang-instcombine-lower-dbg-declare.patch: refreshed * debian/patches/search-credit.patch: refreshed * debian/patches/set-rpath-on-chromium-executables.patch: refreshed * debian/patches/suppress-newer-clang-warning-flags.patch: refreshed * debian/patches/title-bar-default-system.patch-v35: refreshed * debian/patches/touch-v35: refreshed * debian/patches/widevine-allow-enable.patch: removed, no longer needed * debian/patches/widevine-other-locations: refreshed * debian/patches/widevine-revision.patch: renamed to debian/patches/widevine-enable-version-string.patch and updated * debian/tests/html5test: update test expectations Checksums-Sha1: 4e2245b1a54648ca40dcba750c3cebdcbf76aee8 2604 chromium-browser_71.0.3578.80-0ubuntu0.18.04.1.dsc 55115e649b4fe13aa5bdd1a3bf6c3008ed823472 2361012 chromium-browser_71.0.3578.80-0ubuntu0.18.04.1.debian.tar.xz 2defc04105406fc303eb85dd40227e7d0a1b07b0 18932 chromium-browser_71.0.3578.80-0ubuntu0.18.04.1_source.buildinfo Checksums-Sha256: 523a9b6f1537669e6689985e23981957778775da27e4155e504c776b6a1f3f5f 2604 chromium-browser_71.0.3578.80-0ubuntu0.18.04.1.dsc aa8bb8fc36d274a9e89d6a876a87ed0d0cb93206add23d4b9ca72b56fb38c466 2361012 chromium-browser_71.0.3578.80-0ubuntu0.18.04.1.debian.tar.xz 0c0b079d6b2c5e5f339de2cf3a9abf6b2d84552254105bfa961779b7eb15c854 18932 chromium-browser_71.0.3578.80-0ubuntu0.18.04.1_source.buildinfo Files: a81596f1276e464dbdb787c4de59b09c 2604 web optional chromium-browser_71.0.3578.80-0ubuntu0.18.04.1.dsc 0b91239c8c8bdbb8d49ecc61fc1becd9 2361012 web optional chromium-browser_71.0.3578.80-0ubuntu0.18.04.1.debian.tar.xz b9cbe9e0f2d28a67d8e6ac01a1d09e70 18932 web optional chromium-browser_71.0.3578.80-0ubuntu0.18.04.1_source.buildinfo