Change log for chromium-browser package in Ubuntu
| 76 → 150 of 614 results | First • Previous • Next • Last |
chromium-browser (79.0.3945.130-0ubuntu0.16.04.1) xenial; urgency=medium
* Upstream release: 79.0.3945.130
- CVE-2020-6378: Use-after-free in speech recognizer.
- CVE-2020-6379: Use-after-free in speech recognizer.
- CVE-2020-6380: Extension message verification error.
* debian/control: remove libgnome-keyring-dev build dependency (LP: #1828192)
* debian/rules: build with use_gnome_keyring=false
* debian/known_gn_gen_args-*: change use_gnome_keyring build flag to false
-- Olivier Tilloy <email address hidden> Mon, 27 Jan 2020 17:44:47 +0100
Available diffs
- diff from 79.0.3945.79-0ubuntu0.16.04.1 to 79.0.3945.130-0ubuntu0.16.04.1 (pending)
- diff from 79.0.3945.117-0ubuntu0.16.04.1 to 79.0.3945.130-0ubuntu0.16.04.1 (pending)
chromium-browser (79.0.3945.79-0ubuntu0.19.10.2) eoan; urgency=medium * New release to fix the upgrade path from 19.04 to 19.10 (LP: #1858500)
Available diffs
chromium-browser (79.0.3945.79-0ubuntu1) focal; urgency=medium * New upstream release: 79.0.3945.79 -- Olivier Tilloy <email address hidden> Fri, 13 Dec 2019 12:47:23 +0100
Available diffs
chromium-browser (79.0.3945.79-0ubuntu0.19.04.3) disco; urgency=medium * debian/patches/add-missing-vector-include.patch: added -- Olivier Tilloy <email address hidden> Wed, 11 Dec 2019 21:19:41 +0100
Available diffs
- diff from 78.0.3904.108-0ubuntu0.19.04.1 to 79.0.3945.79-0ubuntu0.19.04.3 (pending)
- diff from 79.0.3945.79-0ubuntu0.19.04.2 to 79.0.3945.79-0ubuntu0.19.04.3 (pending)
chromium-browser (79.0.3945.79-0ubuntu0.18.04.1) bionic; urgency=medium
* Upstream release: 79.0.3945.79
- CVE-2019-13725: Use after free in Bluetooth.
- CVE-2019-13726: Heap buffer overflow in password manager.
- CVE-2019-13727: Insufficient policy enforcement in WebSockets.
- CVE-2019-13728: Out of bounds write in V8.
- CVE-2019-13729: Use after free in WebSockets.
- CVE-2019-13730: Type Confusion in V8.
- CVE-2019-13732: Use after free in WebAudio.
- CVE-2019-13734: Out of bounds write in SQLite.
- CVE-2019-13735: Out of bounds write in V8.
- CVE-2019-13764: Type Confusion in V8.
- CVE-2019-13736: Integer overflow in PDFium.
- CVE-2019-13737: Insufficient policy enforcement in autocomplete.
- CVE-2019-13738: Insufficient policy enforcement in navigation.
- CVE-2019-13739: Incorrect security UI in Omnibox.
- CVE-2019-13740: Incorrect security UI in sharing.
- CVE-2019-13741: Insufficient validation of untrusted input in Blink.
- CVE-2019-13742: Incorrect security UI in Omnibox.
- CVE-2019-13743: Incorrect security UI in external protocol handling.
- CVE-2019-13744: Insufficient policy enforcement in cookies.
- CVE-2019-13745: Insufficient policy enforcement in audio.
- CVE-2019-13746: Insufficient policy enforcement in Omnibox.
- CVE-2019-13747: Uninitialized Use in rendering.
- CVE-2019-13748: Insufficient policy enforcement in developer tools.
- CVE-2019-13749: Incorrect security UI in Omnibox.
- CVE-2019-13750: Insufficient data validation in SQLite.
- CVE-2019-13751: Uninitialized Use in SQLite.
- CVE-2019-13752: Out of bounds read in SQLite.
- CVE-2019-13753: Out of bounds read in SQLite.
- CVE-2019-13754: Insufficient policy enforcement in extensions.
- CVE-2019-13755: Insufficient policy enforcement in extensions.
- CVE-2019-13756: Incorrect security UI in printing.
- CVE-2019-13757: Incorrect security UI in Omnibox.
- CVE-2019-13758: Insufficient policy enforcement in navigation.
- CVE-2019-13759: Incorrect security UI in interstitials.
- CVE-2019-13761: Incorrect security UI in Omnibox.
- CVE-2019-13762: Insufficient policy enforcement in downloads.
- CVE-2019-13763: Insufficient policy enforcement in payments.
* debian/patches/chromium_useragent.patch: refreshed
* debian/patches/configuration-directory.patch: refreshed
* debian/patches/default-allocator: refreshed
* debian/patches/disable-sse2: refreshed
* debian/patches/fix-extra-arflags.patch: refreshed
* debian/patches/set-rpath-on-chromium-executables.patch: refreshed
* debian/patches/suppress-newer-clang-warning-flags.patch: refreshed
* debian/patches/title-bar-default-system.patch-v35: refreshed
* debian/patches/touch-v35: refreshed
* debian/patches/widevine-enable-version-string.patch: updated
* debian/patches/widevine-other-locations: updated
-- Olivier Tilloy <email address hidden> Wed, 11 Dec 2019 10:17:07 +0100
Available diffs
- diff from 78.0.3904.108-0ubuntu0.18.04.1 to 79.0.3945.79-0ubuntu0.18.04.1 (pending)
chromium-browser (79.0.3945.79-0ubuntu0.16.04.1) xenial; urgency=medium
* Upstream release: 79.0.3945.79
- CVE-2019-13725: Use after free in Bluetooth.
- CVE-2019-13726: Heap buffer overflow in password manager.
- CVE-2019-13727: Insufficient policy enforcement in WebSockets.
- CVE-2019-13728: Out of bounds write in V8.
- CVE-2019-13729: Use after free in WebSockets.
- CVE-2019-13730: Type Confusion in V8.
- CVE-2019-13732: Use after free in WebAudio.
- CVE-2019-13734: Out of bounds write in SQLite.
- CVE-2019-13735: Out of bounds write in V8.
- CVE-2019-13764: Type Confusion in V8.
- CVE-2019-13736: Integer overflow in PDFium.
- CVE-2019-13737: Insufficient policy enforcement in autocomplete.
- CVE-2019-13738: Insufficient policy enforcement in navigation.
- CVE-2019-13739: Incorrect security UI in Omnibox.
- CVE-2019-13740: Incorrect security UI in sharing.
- CVE-2019-13741: Insufficient validation of untrusted input in Blink.
- CVE-2019-13742: Incorrect security UI in Omnibox.
- CVE-2019-13743: Incorrect security UI in external protocol handling.
- CVE-2019-13744: Insufficient policy enforcement in cookies.
- CVE-2019-13745: Insufficient policy enforcement in audio.
- CVE-2019-13746: Insufficient policy enforcement in Omnibox.
- CVE-2019-13747: Uninitialized Use in rendering.
- CVE-2019-13748: Insufficient policy enforcement in developer tools.
- CVE-2019-13749: Incorrect security UI in Omnibox.
- CVE-2019-13750: Insufficient data validation in SQLite.
- CVE-2019-13751: Uninitialized Use in SQLite.
- CVE-2019-13752: Out of bounds read in SQLite.
- CVE-2019-13753: Out of bounds read in SQLite.
- CVE-2019-13754: Insufficient policy enforcement in extensions.
- CVE-2019-13755: Insufficient policy enforcement in extensions.
- CVE-2019-13756: Incorrect security UI in printing.
- CVE-2019-13757: Incorrect security UI in Omnibox.
- CVE-2019-13758: Insufficient policy enforcement in navigation.
- CVE-2019-13759: Incorrect security UI in interstitials.
- CVE-2019-13761: Incorrect security UI in Omnibox.
- CVE-2019-13762: Insufficient policy enforcement in downloads.
- CVE-2019-13763: Insufficient policy enforcement in payments.
* debian/patches/chromium_useragent.patch: refreshed
* debian/patches/configuration-directory.patch: refreshed
* debian/patches/default-allocator: refreshed
* debian/patches/disable-sse2: refreshed
* debian/patches/fix-extra-arflags.patch: refreshed
* debian/patches/gn-experimental-string_view.patch: added
* debian/patches/relax-ninja-version-requirement.patch: refreshed
* debian/patches/set-rpath-on-chromium-executables.patch: refreshed
* debian/patches/suppress-newer-clang-warning-flags.patch: refreshed
* debian/patches/title-bar-default-system.patch-v35: refreshed
* debian/patches/touch-v35: refreshed
* debian/patches/widevine-enable-version-string.patch: updated
* debian/patches/widevine-other-locations: updated
-- Olivier Tilloy <email address hidden> Wed, 11 Dec 2019 07:37:22 +0100
Available diffs
- diff from 78.0.3904.108-0ubuntu0.16.04.1 to 79.0.3945.79-0ubuntu0.16.04.1 (pending)
chromium-browser (78.0.3904.108-0ubuntu1) focal; urgency=medium
* New upstream release: 78.0.3904.108
* chromium-browser: fix syntax error when xdg-settings returns an empty
string for default-web-browser (LP: #1853574)
-- Olivier Tilloy <email address hidden> Fri, 22 Nov 2019 16:30:05 +0100
Available diffs
chromium-browser (78.0.3904.108-0ubuntu0.19.04.1) disco; urgency=medium * Upstream release: 78.0.3904.108 (LP: #1853149) - CVE-2019-13723: Use-after-free in Bluetooth. - CVE-2019-13724: Out-of-bounds access in Bluetooth. -- Olivier Tilloy <email address hidden> Tue, 19 Nov 2019 16:35:43 +0100
Available diffs
- diff from 78.0.3904.97-0ubuntu0.19.04.1 to 78.0.3904.108-0ubuntu0.19.04.1 (pending)
chromium-browser (78.0.3904.108-0ubuntu0.18.04.1) bionic; urgency=medium * Upstream release: 78.0.3904.108 (LP: #1853149) - CVE-2019-13723: Use-after-free in Bluetooth. - CVE-2019-13724: Out-of-bounds access in Bluetooth. -- Olivier Tilloy <email address hidden> Tue, 19 Nov 2019 16:31:49 +0100
Available diffs
- diff from 78.0.3904.97-0ubuntu0.18.04.1 to 78.0.3904.108-0ubuntu0.18.04.1 (pending)
chromium-browser (78.0.3904.108-0ubuntu0.16.04.1) xenial; urgency=medium * Upstream release: 78.0.3904.108 (LP: #1853149) - CVE-2019-13723: Use-after-free in Bluetooth. - CVE-2019-13724: Out-of-bounds access in Bluetooth. * debian/patches/suppress-newer-clang-warning-flags.patch: refreshed -- Olivier Tilloy <email address hidden> Tue, 19 Nov 2019 16:05:09 +0100
Available diffs
- diff from 78.0.3904.97-0ubuntu0.16.04.1 to 78.0.3904.108-0ubuntu0.16.04.1 (pending)
chromium-browser (78.0.3904.97-0ubuntu0.19.04.1) disco; urgency=medium * Upstream release: 78.0.3904.97 -- Olivier Tilloy <email address hidden> Thu, 07 Nov 2019 07:03:18 +0100
Available diffs
- diff from 78.0.3904.70-0ubuntu0.19.04.4 to 78.0.3904.97-0ubuntu0.19.04.1 (pending)
- diff from 78.0.3904.87-0ubuntu0.19.04.1 to 78.0.3904.97-0ubuntu0.19.04.1 (pending)
chromium-browser (78.0.3904.97-0ubuntu0.18.04.1) bionic; urgency=medium * Upstream release: 78.0.3904.97 -- Olivier Tilloy <email address hidden> Thu, 07 Nov 2019 06:44:09 +0100
Available diffs
- diff from 78.0.3904.70-0ubuntu0.18.04.2 to 78.0.3904.97-0ubuntu0.18.04.1 (pending)
- diff from 78.0.3904.87-0ubuntu0.18.04.1 to 78.0.3904.97-0ubuntu0.18.04.1 (pending)
chromium-browser (78.0.3904.97-0ubuntu0.16.04.1) xenial; urgency=medium * Upstream release: 78.0.3904.97 -- Olivier Tilloy <email address hidden> Thu, 07 Nov 2019 06:21:49 +0100
Available diffs
- diff from 78.0.3904.70-0ubuntu0.16.04.2 to 78.0.3904.97-0ubuntu0.16.04.1 (pending)
- diff from 78.0.3904.87-0ubuntu0.16.04.1 to 78.0.3904.97-0ubuntu0.16.04.1 (pending)
chromium-browser (78.0.3904.70-0ubuntu0.19.04.4) disco; urgency=medium * debian/patches/widevine-other-locations: updated -- Olivier Tilloy <email address hidden> Fri, 01 Nov 2019 10:24:33 +0100
Available diffs
- diff from 76.0.3809.100-0ubuntu0.19.04.1 to 78.0.3904.70-0ubuntu0.19.04.4 (pending)
- diff from 78.0.3904.70-0ubuntu0.19.04.3 to 78.0.3904.70-0ubuntu0.19.04.4 (pending)
chromium-browser (78.0.3904.70-0ubuntu0.18.04.2) bionic; urgency=medium * debian/patches/widevine-other-locations: updated -- Olivier Tilloy <email address hidden> Fri, 01 Nov 2019 10:09:29 +0100
Available diffs
- diff from 77.0.3865.90-0ubuntu0.18.04.1 to 78.0.3904.70-0ubuntu0.18.04.2 (pending)
- diff from 78.0.3904.70-0ubuntu0.18.04.1 to 78.0.3904.70-0ubuntu0.18.04.2 (pending)
chromium-browser (78.0.3904.70-0ubuntu0.16.04.2) xenial; urgency=medium * debian/patches/widevine-other-locations: updated -- Olivier Tilloy <email address hidden> Thu, 31 Oct 2019 11:46:51 +0100
Available diffs
- diff from 77.0.3865.90-0ubuntu0.16.04.1 to 78.0.3904.70-0ubuntu0.16.04.2 (pending)
- diff from 78.0.3904.70-0ubuntu0.16.04.1 to 78.0.3904.70-0ubuntu0.16.04.2 (pending)
chromium-browser (78.0.3904.70-0ubuntu1) focal; urgency=medium
* New upstream release: 78.0.3904.70
* debian/apport/chromium-browser.py: add the output of
"snap changes --abs-time chromium" to bugs reported by apport
-- Olivier Tilloy <email address hidden> Fri, 25 Oct 2019 16:25:01 +0200
Available diffs
chromium-browser (77.0.3865.120-0ubuntu2) focal; urgency=medium
* debian/chromium-browser.preinst: revert a previous change which was causing
upgrades from disco to eoan to install the snap but not connect the
password-manager-service interface (LP: #1849160)
* debian/control: update Vcs-Bzr URL to point to the branch for 20.04
(codename the Focal Fossa)
-- Olivier Tilloy <email address hidden> Tue, 22 Oct 2019 16:20:34 +0200
Available diffs
chromium-browser (77.0.3865.120-0ubuntu1.19.10.1) eoan; urgency=medium
* debian/chromium-browser.preinst: revert a previous change which was causing
upgrades from disco to eoan to install the snap but not connect the
password-manager-service interface (LP: #1849160)
-- Olivier Tilloy <email address hidden> Tue, 22 Oct 2019 16:23:55 +0200
Available diffs
| Superseded in focal-release |
| Obsolete in eoan-release |
| Deleted in eoan-proposed (Reason: moved to Release) |
chromium-browser (77.0.3865.120-0ubuntu1~snap1) eoan; urgency=medium
* chromium-browser:
- avoid printing spurious warnings if the gsettings schemas do not exist
- make the wrapper script rename the desktop file in MATE and in KDE Plasma
-- Olivier Tilloy <email address hidden> Tue, 15 Oct 2019 14:53:09 +0200
Available diffs
chromium-browser (77.0.3865.90-0ubuntu0.18.04.1) bionic; urgency=medium
* Upstream release: 77.0.3865.90
- CVE-2019-13685: Use-after-free in UI.
- CVE-2019-13688: Use-after-free in media.
- CVE-2019-13687: Use-after-free in media.
- CVE-2019-13686: Use-after-free in offline pages.
-- Olivier Tilloy <email address hidden> Fri, 20 Sep 2019 11:35:45 +0200
Available diffs
- diff from 76.0.3809.100-0ubuntu0.18.04.1 to 77.0.3865.90-0ubuntu0.18.04.1 (pending)
- diff from 77.0.3865.75-0ubuntu0.18.04.1 to 77.0.3865.90-0ubuntu0.18.04.1 (pending)
chromium-browser (77.0.3865.90-0ubuntu0.16.04.1) xenial; urgency=medium
* Upstream release: 77.0.3865.90
- CVE-2019-13685: Use-after-free in UI.
- CVE-2019-13688: Use-after-free in media.
- CVE-2019-13687: Use-after-free in media.
- CVE-2019-13686: Use-after-free in offline pages.
-- Olivier Tilloy <email address hidden> Fri, 20 Sep 2019 11:33:49 +0200
Available diffs
- diff from 76.0.3809.100-0ubuntu0.16.04.1 to 77.0.3865.90-0ubuntu0.16.04.1 (pending)
- diff from 77.0.3865.75-0ubuntu0.16.04.1 to 77.0.3865.90-0ubuntu0.16.04.1 (pending)
chromium-browser (76.0.3809.100-0ubuntu1~snap1) eoan; urgency=medium
* debian/chromium-browser.preinst: handle gracefully a failure to connect the
password-manager-service (LP: #1838821)
-- Olivier Tilloy <email address hidden> Tue, 13 Aug 2019 12:32:48 +0200
Available diffs
chromium-browser (76.0.3809.100-0ubuntu0.19.04.1) disco; urgency=medium
* Upstream release: 76.0.3809.100
- CVE-2019-5868: Use-after-free in PDFium ExecuteFieldAction.
- CVE-2019-5867: Out-of-bounds read in V8.
-- Olivier Tilloy <email address hidden> Sat, 10 Aug 2019 15:55:11 +0200
Available diffs
- diff from 76.0.3809.87-0ubuntu0.19.04.1 to 76.0.3809.100-0ubuntu0.19.04.1 (pending)
chromium-browser (76.0.3809.100-0ubuntu0.16.04.1) xenial; urgency=medium
* Upstream release: 76.0.3809.100
- CVE-2019-5868: Use-after-free in PDFium ExecuteFieldAction.
- CVE-2019-5867: Out-of-bounds read in V8.
-- Olivier Tilloy <email address hidden> Sat, 10 Aug 2019 15:49:36 +0200
Available diffs
- diff from 76.0.3809.87-0ubuntu0.16.04.1 to 76.0.3809.100-0ubuntu0.16.04.1 (pending)
chromium-browser (76.0.3809.100-0ubuntu0.18.04.1) bionic; urgency=medium
* Upstream release: 76.0.3809.100
- CVE-2019-5868: Use-after-free in PDFium ExecuteFieldAction.
- CVE-2019-5867: Out-of-bounds read in V8.
-- Olivier Tilloy <email address hidden> Sat, 10 Aug 2019 15:44:51 +0200
Available diffs
- diff from 76.0.3809.87-0ubuntu0.18.04.1 to 76.0.3809.100-0ubuntu0.18.04.1 (pending)
chromium-browser (76.0.3809.87-0ubuntu1~snap1) eoan; urgency=medium
* debian/chromium-browser.desktop: remove the MimeType entry to avoid the
wrapper being listed as an application able to handle web links in
gnome-control-center (LP: #1838628)
-- Olivier Tilloy <email address hidden> Thu, 01 Aug 2019 16:20:53 +0200
Available diffs
chromium-browser (76.0.3809.87-0ubuntu0.19.04.1) disco; urgency=medium
* Upstream release: 76.0.3809.87
- CVE-2019-5850: Use-after-free in offline page fetcher.
- CVE-2019-5860: Use-after-free in PDFium.
- CVE-2019-5853: Memory corruption in regexp length check.
- CVE-2019-5851: Use-after-poison in offline audio context.
- CVE-2019-5859: res: URIs can load alternative browsers.
- CVE-2019-5856: Insufficient checks on filesystem: URI permissions.
- CVE-2019-5863: Use-after-free in WebUSB on Windows.
- CVE-2019-5855: Integer overflow in PDFium.
- CVE-2019-5865: Site isolation bypass from compromised renderer.
- CVE-2019-5858: Insufficient filtering of Open URL service parameters.
- CVE-2019-5864: Insufficient port filtering in CORS for extensions.
- CVE-2019-5862: AppCache not robust to compromised renderers.
- CVE-2019-5861: Click location incorrectly checked.
- CVE-2019-5857: Comparison of -0 and null yields crash.
- CVE-2019-5854: Integer overflow in PDFium text rendering.
- CVE-2019-5852: Object leak of utility functions.
* debian/patches/chromium_useragent.patch: refreshed
* debian/patches/disable-sse2: refreshed
* debian/patches/fix-extra-arflags.patch: refreshed
* debian/patches/fix-ffmpeg-ia32-build.patch: removed, no longer needed
* debian/patches/fix-libstdc++-build-aeed4d1.patch: removed, no longer needed
* debian/patches/pffft-no-neon.patch: removed, no longer needed
* debian/patches/set-rpath-on-chromium-executables.patch: refreshed
* debian/patches/skia-undef-HWCAP_CRC32.patch: refreshed
* debian/patches/upstream-fix-blink-build-iterators.patch: added
-- Olivier Tilloy <email address hidden> Tue, 30 Jul 2019 22:41:19 +0200
Available diffs
- diff from 75.0.3770.142-0ubuntu0.19.04.1 to 76.0.3809.87-0ubuntu0.19.04.1 (pending)
chromium-browser (76.0.3809.87-0ubuntu0.18.04.1) bionic; urgency=medium
* Upstream release: 76.0.3809.87
- CVE-2019-5850: Use-after-free in offline page fetcher.
- CVE-2019-5860: Use-after-free in PDFium.
- CVE-2019-5853: Memory corruption in regexp length check.
- CVE-2019-5851: Use-after-poison in offline audio context.
- CVE-2019-5859: res: URIs can load alternative browsers.
- CVE-2019-5856: Insufficient checks on filesystem: URI permissions.
- CVE-2019-5863: Use-after-free in WebUSB on Windows.
- CVE-2019-5855: Integer overflow in PDFium.
- CVE-2019-5865: Site isolation bypass from compromised renderer.
- CVE-2019-5858: Insufficient filtering of Open URL service parameters.
- CVE-2019-5864: Insufficient port filtering in CORS for extensions.
- CVE-2019-5862: AppCache not robust to compromised renderers.
- CVE-2019-5861: Click location incorrectly checked.
- CVE-2019-5857: Comparison of -0 and null yields crash.
- CVE-2019-5854: Integer overflow in PDFium text rendering.
- CVE-2019-5852: Object leak of utility functions.
* debian/patches/chromium_useragent.patch: refreshed
* debian/patches/disable-sse2: refreshed
* debian/patches/fix-extra-arflags.patch: refreshed
* debian/patches/fix-ffmpeg-ia32-build.patch: removed, no longer needed
* debian/patches/pffft-no-neon.patch: removed, no longer needed
* debian/patches/set-rpath-on-chromium-executables.patch: refreshed
* debian/patches/skia-undef-HWCAP_CRC32.patch: refreshed
* debian/patches/upstream-fix-blink-build-iterators.patch: added
-- Olivier Tilloy <email address hidden> Tue, 30 Jul 2019 22:25:08 +0200
Available diffs
- diff from 74.0.3729.169-0ubuntu0.18.04.1 to 76.0.3809.87-0ubuntu0.18.04.1 (pending)
- diff from 75.0.3770.142-0ubuntu0.18.04.1 to 76.0.3809.87-0ubuntu0.18.04.1 (pending)
chromium-browser (76.0.3809.87-0ubuntu0.16.04.1) xenial; urgency=medium
* Upstream release: 76.0.3809.87
- CVE-2019-5850: Use-after-free in offline page fetcher.
- CVE-2019-5860: Use-after-free in PDFium.
- CVE-2019-5853: Memory corruption in regexp length check.
- CVE-2019-5851: Use-after-poison in offline audio context.
- CVE-2019-5859: res: URIs can load alternative browsers.
- CVE-2019-5856: Insufficient checks on filesystem: URI permissions.
- CVE-2019-5863: Use-after-free in WebUSB on Windows.
- CVE-2019-5855: Integer overflow in PDFium.
- CVE-2019-5865: Site isolation bypass from compromised renderer.
- CVE-2019-5858: Insufficient filtering of Open URL service parameters.
- CVE-2019-5864: Insufficient port filtering in CORS for extensions.
- CVE-2019-5862: AppCache not robust to compromised renderers.
- CVE-2019-5861: Click location incorrectly checked.
- CVE-2019-5857: Comparison of -0 and null yields crash.
- CVE-2019-5854: Integer overflow in PDFium text rendering.
- CVE-2019-5852: Object leak of utility functions.
* debian/patches/chromium_useragent.patch: refreshed
* debian/patches/closure-compiler-java-no-client-vm.patch: refreshed
* debian/patches/disable-sse2: refreshed
* debian/patches/fix-extra-arflags.patch: refreshed
* debian/patches/fix-ffmpeg-ia32-build.patch: removed, no longer needed
* debian/patches/pffft-no-neon.patch: removed, no longer needed
* debian/patches/set-rpath-on-chromium-executables.patch: refreshed
* debian/patches/skia-undef-HWCAP_CRC32.patch: refreshed
* debian/patches/suppress-newer-clang-warning-flags.patch: updated
* debian/patches/upstream-fix-blink-build-iterators.patch: added
-- Olivier Tilloy <email address hidden> Tue, 30 Jul 2019 21:04:42 +0200
Available diffs
- diff from 74.0.3729.169-0ubuntu0.16.04.1 to 76.0.3809.87-0ubuntu0.16.04.1 (pending)
- diff from 75.0.3770.142-0ubuntu0.16.04.1 to 76.0.3809.87-0ubuntu0.16.04.1 (pending)
chromium-browser (75.0.3770.142-0ubuntu1~snap1) eoan; urgency=medium
* debian/apport/chromium-browser.py: update hook to call 'snap connections'
instead of the deprecated 'snap interfaces'
* debian/chromium-browser.preinst: connect the password-manager-service
interface for package upgrades only (LP: #1836616)
-- Olivier Tilloy <email address hidden> Wed, 24 Jul 2019 14:21:16 +0200
Available diffs
chromium-browser (75.0.3770.142-0ubuntu0.19.04.1) disco; urgency=medium * Upstream release: 75.0.3770.142 -- Olivier Tilloy <email address hidden> Tue, 16 Jul 2019 22:11:56 +0200
Available diffs
- diff from 75.0.3770.90-0ubuntu0.19.04.1 to 75.0.3770.142-0ubuntu0.19.04.1 (pending)
- diff from 75.0.3770.100-0ubuntu0.19.04.1 to 75.0.3770.142-0ubuntu0.19.04.1 (pending)
chromium-browser (75.0.3770.142-0ubuntu0.18.04.1) bionic; urgency=medium
* Upstream release: 75.0.3770.142
* debian/control: bump the clang and llvm build dependencies to version 8
which was recently backported to bionic
* debian/rules: build gn with clang 8
* debian/patches/suppress-newer-clang-warning-flags.patch: removed, no longer
needed
* debian/patches/use-clang-versioned.patch: updated
-- Olivier Tilloy <email address hidden> Tue, 16 Jul 2019 16:47:32 +0200
Available diffs
- diff from 75.0.3770.90-0ubuntu0.18.04.1 to 75.0.3770.142-0ubuntu0.18.04.1 (pending)
- diff from 75.0.3770.100-0ubuntu0.18.04.1 to 75.0.3770.142-0ubuntu0.18.04.1 (pending)
chromium-browser (75.0.3770.90-0ubuntu0.19.04.1) disco; urgency=medium * Upstream release: 75.0.3770.90 -- Olivier Tilloy <email address hidden> Thu, 13 Jun 2019 22:26:14 +0200
Available diffs
- diff from 74.0.3729.169-0ubuntu0.19.04.1 to 75.0.3770.90-0ubuntu0.19.04.1 (pending)
- diff from 75.0.3770.80-0ubuntu0.19.04.2 to 75.0.3770.90-0ubuntu0.19.04.1 (pending)
chromium-browser (75.0.3770.90-0ubuntu0.18.10.1) cosmic; urgency=medium * Upstream release: 75.0.3770.90 -- Olivier Tilloy <email address hidden> Thu, 13 Jun 2019 22:22:40 +0200
Available diffs
- diff from 74.0.3729.169-0ubuntu0.18.10.1 to 75.0.3770.90-0ubuntu0.18.10.1 (pending)
- diff from 75.0.3770.80-0ubuntu0.18.10.1 to 75.0.3770.90-0ubuntu0.18.10.1 (pending)
chromium-browser (75.0.3770.90-0ubuntu0.18.04.1) bionic; urgency=medium * Upstream release: 75.0.3770.90 -- Olivier Tilloy <email address hidden> Thu, 13 Jun 2019 22:21:27 +0200
Available diffs
- diff from 74.0.3729.169-0ubuntu0.18.04.1 to 75.0.3770.90-0ubuntu0.18.04.1 (pending)
- diff from 75.0.3770.80-0ubuntu0.18.04.1 to 75.0.3770.90-0ubuntu0.18.04.1 (pending)
chromium-browser (75.0.3770.80-0ubuntu1~snap2) eoan; urgency=medium * Make the wrapper script update the default web browser if needed -- Olivier Tilloy <email address hidden> Wed, 12 Jun 2019 12:49:09 +0200
Available diffs
chromium-browser (75.0.3770.80-0ubuntu1~snap1) eoan; urgency=medium
* Upstream release: 75.0.3770.80
- CVE-2019-5828: Use after free in ServiceWorker.
- CVE-2019-5829: Use after free in Download Manager.
- CVE-2019-5830: Incorrectly credentialed requests in CORS.
- CVE-2019-5831: Incorrect map processing in V8.
- CVE-2019-5832: Incorrect CORS handling in XHR.
- CVE-2019-5833: Inconsistent security UI placement.
- CVE-2019-5834: URL spoof in Omnibox on iOS.
- CVE-2019-5835: Out of bounds read in Swiftshader.
- CVE-2019-5836: Heap buffer overflow in Angle.
- CVE-2019-5837: Cross-origin resources size disclosure in Appcache.
- CVE-2019-5838: Overly permissive tab access in Extensions.
- CVE-2019-5839: Incorrect handling of certain code points in Blink.
- CVE-2019-5840: Popup blocker bypass.
* Install the chromium snap in place of the debian packages, and make the
wrapper script rename the desktop file in well-known desktop launchers
(currently GNOME Shell and Unity)
-- Olivier Tilloy <email address hidden> Wed, 12 Jun 2019 09:57:03 +0200
Available diffs
- diff from 74.0.3729.169-0ubuntu2 to 75.0.3770.80-0ubuntu1~snap1 (pending)
chromium-browser (74.0.3729.169-0ubuntu0.16.04.1) xenial; urgency=medium
* Upstream release: 74.0.3729.169
* debian/patches/revert-gn-4960.patch: added
* debian/patches/revert-gn-4980.patch: added
* debian/tests/data/HTML5test/index.html: mock whichbrowser.net to remove
external test dependency
-- Olivier Tilloy <email address hidden> Wed, 22 May 2019 12:35:00 +0200
Available diffs
- diff from 73.0.3683.86-0ubuntu0.16.04.1 to 74.0.3729.169-0ubuntu0.16.04.1 (pending)
- diff from 74.0.3729.157-0ubuntu0.16.04.1 to 74.0.3729.169-0ubuntu0.16.04.1 (pending)
chromium-browser (74.0.3729.169-0ubuntu0.18.04.1) bionic; urgency=medium
* Upstream release: 74.0.3729.169
* debian/patches/revert-gn-4960.patch: added
* debian/patches/revert-gn-4980.patch: added
* debian/tests/data/HTML5test/index.html: mock whichbrowser.net to remove
external test dependency
-- Olivier Tilloy <email address hidden> Wed, 22 May 2019 12:30:43 +0200
Available diffs
- diff from 73.0.3683.86-0ubuntu0.18.04.1 to 74.0.3729.169-0ubuntu0.18.04.1 (pending)
- diff from 74.0.3729.157-0ubuntu0.18.04.1 to 74.0.3729.169-0ubuntu0.18.04.1 (pending)
chromium-browser (74.0.3729.169-0ubuntu0.18.10.1) cosmic; urgency=medium
* Upstream release: 74.0.3729.169
* debian/patches/revert-gn-4960.patch: added
* debian/patches/revert-gn-4980.patch: added
* debian/tests/data/HTML5test/index.html: mock whichbrowser.net to remove
external test dependency
-- Olivier Tilloy <email address hidden> Wed, 22 May 2019 10:36:38 +0200
Available diffs
- diff from 73.0.3683.86-0ubuntu0.18.10.1 to 74.0.3729.169-0ubuntu0.18.10.1 (pending)
- diff from 74.0.3729.157-0ubuntu0.18.10.1 to 74.0.3729.169-0ubuntu0.18.10.1 (pending)
chromium-browser (74.0.3729.169-0ubuntu0.19.04.1) disco; urgency=medium
* Upstream release: 74.0.3729.169
* debian/patches/revert-gn-4960.patch: added
* debian/patches/revert-gn-4980.patch: added
* debian/tests/data/HTML5test/index.html: mock whichbrowser.net to remove
external test dependency
-- Olivier Tilloy <email address hidden> Wed, 22 May 2019 10:15:40 +0200
Available diffs
- diff from 74.0.3729.157-0ubuntu0.19.04.1 to 74.0.3729.169-0ubuntu0.19.04.1 (pending)
chromium-browser (74.0.3729.169-0ubuntu2) eoan; urgency=medium * debian/patches/revert-gn-4960.patch: added * debian/patches/revert-gn-4980.patch: added -- Olivier Tilloy <email address hidden> Wed, 22 May 2019 10:12:13 +0200
Available diffs
- diff from 74.0.3729.157-0ubuntu1 to 74.0.3729.169-0ubuntu2 (pending)
- diff from 74.0.3729.169-0ubuntu1 to 74.0.3729.169-0ubuntu2 (pending)
| Superseded in eoan-proposed |
chromium-browser (74.0.3729.169-0ubuntu1) eoan; urgency=medium
* Upstream release: 74.0.3729.169
* debian/tests/data/HTML5test/index.html: mock whichbrowser.net to remove
external test dependency
-- Olivier Tilloy <email address hidden> Wed, 22 May 2019 08:35:30 +0200
Available diffs
- diff from 74.0.3729.157-0ubuntu1 to 74.0.3729.169-0ubuntu1 (pending)
chromium-browser (74.0.3729.157-0ubuntu1) eoan; urgency=medium * Upstream release: 74.0.3729.157 -- Olivier Tilloy <email address hidden> Tue, 14 May 2019 22:48:28 +0200
Available diffs
- diff from 74.0.3729.131-0ubuntu2 to 74.0.3729.157-0ubuntu1 (pending)
chromium-browser (74.0.3729.131-0ubuntu2) eoan; urgency=medium * debian/control: remove libgnome-keyring-dev build dependency (LP: #1828192) * debian/rules: build with use_gnome_keyring=false * debian/known_gn_gen_args-*: change use_gnome_keyring build flag to false -- Olivier Tilloy <email address hidden> Wed, 08 May 2019 12:15:30 +0200
Available diffs
- diff from 74.0.3729.131-0ubuntu1 to 74.0.3729.131-0ubuntu2 (pending)
chromium-browser (74.0.3729.131-0ubuntu1) eoan; urgency=medium
* Upstream release: 74.0.3729.131
- CVE-2019-5824: Parameter passing error in media player.
-- Olivier Tilloy <email address hidden> Wed, 01 May 2019 08:27:06 +0200
Available diffs
- diff from 74.0.3729.108-0ubuntu1 to 74.0.3729.131-0ubuntu1 (pending)
- diff from 74.0.3729.108-0ubuntu2 to 74.0.3729.131-0ubuntu1 (pending)
| Superseded in eoan-proposed |
chromium-browser (74.0.3729.108-0ubuntu2) eoan; urgency=medium
* debian/patches/flashplayer-syscall-restrictions-update.patch: added
(LP: #1825497)
-- Olivier Tilloy <email address hidden> Tue, 30 Apr 2019 09:50:17 +0200
Available diffs
- diff from 74.0.3729.108-0ubuntu1 to 74.0.3729.108-0ubuntu2 (pending)
chromium-browser (74.0.3729.108-0ubuntu1) eoan; urgency=medium
* Bump version number for the new development release
(Ubuntu 19.10, the Eoan EANIMAL)
* debian/control: update Vcs-Bzr field
* debian/patches/fix-extra-arflags.patch: updated
-- Olivier Tilloy <email address hidden> Thu, 25 Apr 2019 12:43:58 +0200
Available diffs
- diff from 73.0.3683.103-0ubuntu1 to 74.0.3729.108-0ubuntu1 (pending)
| Superseded in eoan-release |
| Obsolete in disco-release |
| Deleted in disco-proposed (Reason: moved to release) |
chromium-browser (73.0.3683.103-0ubuntu1) disco; urgency=medium
* Upstream release: 73.0.3683.103
* debian/patches/gn-add-missing-arm-impl-files.patch: removed, no longer
needed
-- Olivier Tilloy <email address hidden> Fri, 05 Apr 2019 07:12:20 +0200
Available diffs
- diff from 73.0.3683.86-0ubuntu1 to 73.0.3683.103-0ubuntu1 (pending)
chromium-browser (73.0.3683.86-0ubuntu0.16.04.1) xenial; urgency=medium * Upstream release: 73.0.3683.86 -- Olivier Tilloy <email address hidden> Thu, 21 Mar 2019 09:32:01 +0100
Available diffs
- diff from 73.0.3683.75-0ubuntu0.16.04.1 to 73.0.3683.86-0ubuntu0.16.04.1 (pending)
chromium-browser (73.0.3683.86-0ubuntu0.18.04.1) bionic; urgency=medium * Upstream release: 73.0.3683.86 -- Olivier Tilloy <email address hidden> Thu, 21 Mar 2019 09:21:24 +0100
Available diffs
- diff from 73.0.3683.75-0ubuntu0.18.04.1 to 73.0.3683.86-0ubuntu0.18.04.1 (pending)
chromium-browser (73.0.3683.86-0ubuntu0.18.10.1) cosmic; urgency=medium * Upstream release: 73.0.3683.86 -- Olivier Tilloy <email address hidden> Thu, 21 Mar 2019 09:17:57 +0100
Available diffs
- diff from 73.0.3683.75-0ubuntu0.18.10.1 to 73.0.3683.86-0ubuntu0.18.10.1 (pending)
chromium-browser (73.0.3683.86-0ubuntu1) disco; urgency=medium * Upstream release: 73.0.3683.86 -- Olivier Tilloy <email address hidden> Thu, 21 Mar 2019 06:22:46 +0100
Available diffs
- diff from 73.0.3683.75-0ubuntu3 to 73.0.3683.86-0ubuntu1 (pending)
chromium-browser (73.0.3683.75-0ubuntu3) disco; urgency=medium * debian/patches/fix-build-with-libstdc++.patch: added -- Olivier Tilloy <email address hidden> Wed, 13 Mar 2019 21:12:47 +0100
Available diffs
- diff from 72.0.3626.121-0ubuntu1 to 73.0.3683.75-0ubuntu3 (pending)
- diff from 73.0.3683.75-0ubuntu2 to 73.0.3683.75-0ubuntu3 (pending)
| Superseded in disco-proposed |
chromium-browser (73.0.3683.75-0ubuntu2) disco; urgency=medium * debian/patches/fix-sqrtf-missing-definition.patch: added -- Olivier Tilloy <email address hidden> Wed, 13 Mar 2019 09:47:23 +0100
Available diffs
- diff from 73.0.3683.75-0ubuntu1 to 73.0.3683.75-0ubuntu2 (pending)
chromium-browser (73.0.3683.75-0ubuntu0.16.04.1) xenial; urgency=medium
* Upstream release: 73.0.3683.75
- CVE-2019-5787: Use after free in Canvas.
- CVE-2019-5788: Use after free in FileAPI.
- CVE-2019-5789: Use after free in WebMIDI.
- CVE-2019-5790: Heap buffer overflow in V8.
- CVE-2019-5791: Type confusion in V8.
- CVE-2019-5792: Integer overflow in PDFium.
- CVE-2019-5793: Excessive permissions for private API in Extensions.
- CVE-2019-5794: Security UI spoofing.
- CVE-2019-5795: Integer overflow in PDFium.
- CVE-2019-5796: Race condition in Extensions.
- CVE-2019-5797: Race condition in DOMStorage.
- CVE-2019-5798: Out of bounds read in Skia.
- CVE-2019-5799: CSP bypass with blob URL.
- CVE-2019-5800: CSP bypass with blob URL.
- CVE-2019-5801: Incorrect Omnibox display on iOS.
- CVE-2019-5802: Security UI spoofing.
- CVE-2019-5803: CSP bypass with Javascript URLs'.
- CVE-2019-5804: Command line command injection on Windows.
* debian/patches/additional-search-engines.patch: removed, no longer needed
* debian/patches/closure-compiler-java-no-client-vm.patch: refreshed
* debian/patches/configuration-directory.patch: refreshed
* debian/patches/constexpr-errors-with-old-clang.patch: added
* debian/patches/disable-sse2: refreshed
* debian/patches/fix-extra-arflags.patch: refreshed
* debian/patches/fix-ffmpeg-ia32-build.patch: refreshed
* debian/patches/fix-ptrace-header-include.patch: added
* debian/patches/gn-no-last-commit-position.patch: refreshed
* debian/patches/no-new-ninja-flag.patch: refreshed
* debian/patches/revert-Xclang-instcombine-lower-dbg-declare.patch: refreshed
* debian/patches/search-credit.patch: updated
* debian/patches/set-rpath-on-chromium-executables.patch: refreshed
* debian/patches/suppress-newer-clang-warning-flags.patch: updated
* debian/patches/title-bar-default-system.patch-v35: refreshed
* debian/patches/use-clang-versioned.patch: refreshed
* debian/patches/widevine-enable-version-string.patch: refreshed
-- Olivier Tilloy <email address hidden> Tue, 12 Mar 2019 22:11:59 +0100
Available diffs
- diff from 72.0.3626.121-0ubuntu0.16.04.1 to 73.0.3683.75-0ubuntu0.16.04.1 (pending)
chromium-browser (73.0.3683.75-0ubuntu0.18.04.1) bionic; urgency=medium
* Upstream release: 73.0.3683.75
- CVE-2019-5787: Use after free in Canvas.
- CVE-2019-5788: Use after free in FileAPI.
- CVE-2019-5789: Use after free in WebMIDI.
- CVE-2019-5790: Heap buffer overflow in V8.
- CVE-2019-5791: Type confusion in V8.
- CVE-2019-5792: Integer overflow in PDFium.
- CVE-2019-5793: Excessive permissions for private API in Extensions.
- CVE-2019-5794: Security UI spoofing.
- CVE-2019-5795: Integer overflow in PDFium.
- CVE-2019-5796: Race condition in Extensions.
- CVE-2019-5797: Race condition in DOMStorage.
- CVE-2019-5798: Out of bounds read in Skia.
- CVE-2019-5799: CSP bypass with blob URL.
- CVE-2019-5800: CSP bypass with blob URL.
- CVE-2019-5801: Incorrect Omnibox display on iOS.
- CVE-2019-5802: Security UI spoofing.
- CVE-2019-5803: CSP bypass with Javascript URLs'.
- CVE-2019-5804: Command line command injection on Windows.
* debian/control: bump the clang and llvm build dependencies to version 7
which was recently backported to bionic
* debian/rules: build gn with clang 7
* debian/patches/additional-search-engines.patch: removed, no longer needed
* debian/patches/configuration-directory.patch: refreshed
* debian/patches/disable-sse2: refreshed
* debian/patches/fix-extra-arflags.patch: refreshed
* debian/patches/fix-ffmpeg-ia32-build.patch: refreshed
* debian/patches/gn-no-last-commit-position.patch: refreshed
* debian/patches/revert-Xclang-instcombine-lower-dbg-declare.patch: refreshed
* debian/patches/search-credit.patch: updated
* debian/patches/set-rpath-on-chromium-executables.patch: refreshed
* debian/patches/suppress-newer-clang-warning-flags.patch: updated
* debian/patches/title-bar-default-system.patch-v35: refreshed
* debian/patches/use-clang-versioned.patch: added
* debian/patches/widevine-enable-version-string.patch: refreshed
-- Olivier Tilloy <email address hidden> Tue, 12 Mar 2019 21:59:12 +0100
Available diffs
- diff from 72.0.3626.121-0ubuntu0.18.04.1 to 73.0.3683.75-0ubuntu0.18.04.1 (pending)
chromium-browser (73.0.3683.75-0ubuntu0.18.10.1) cosmic; urgency=medium
* Upstream release: 73.0.3683.75
- CVE-2019-5787: Use after free in Canvas.
- CVE-2019-5788: Use after free in FileAPI.
- CVE-2019-5789: Use after free in WebMIDI.
- CVE-2019-5790: Heap buffer overflow in V8.
- CVE-2019-5791: Type confusion in V8.
- CVE-2019-5792: Integer overflow in PDFium.
- CVE-2019-5793: Excessive permissions for private API in Extensions.
- CVE-2019-5794: Security UI spoofing.
- CVE-2019-5795: Integer overflow in PDFium.
- CVE-2019-5796: Race condition in Extensions.
- CVE-2019-5797: Race condition in DOMStorage.
- CVE-2019-5798: Out of bounds read in Skia.
- CVE-2019-5799: CSP bypass with blob URL.
- CVE-2019-5800: CSP bypass with blob URL.
- CVE-2019-5801: Incorrect Omnibox display on iOS.
- CVE-2019-5802: Security UI spoofing.
- CVE-2019-5803: CSP bypass with Javascript URLs'.
- CVE-2019-5804: Command line command injection on Windows.
* debian/patches/additional-search-engines.patch: removed, no longer needed
* debian/patches/configuration-directory.patch: refreshed
* debian/patches/disable-sse2: refreshed
* debian/patches/fix-extra-arflags.patch: refreshed
* debian/patches/fix-ffmpeg-ia32-build.patch: refreshed
* debian/patches/gn-no-last-commit-position.patch: refreshed
* debian/patches/revert-Xclang-instcombine-lower-dbg-declare.patch: refreshed
* debian/patches/search-credit.patch: updated
* debian/patches/set-rpath-on-chromium-executables.patch: refreshed
* debian/patches/suppress-newer-clang-warning-flags.patch: added
* debian/patches/title-bar-default-system.patch-v35: refreshed
* debian/patches/widevine-enable-version-string.patch: refreshed
-- Olivier Tilloy <email address hidden> Tue, 12 Mar 2019 21:46:04 +0100
Available diffs
- diff from 72.0.3626.121-0ubuntu0.18.10.1 to 73.0.3683.75-0ubuntu0.18.10.1 (pending)
| Superseded in disco-proposed |
chromium-browser (73.0.3683.75-0ubuntu1) disco; urgency=medium
* Upstream release: 73.0.3683.75
- CVE-2019-5787: Use after free in Canvas.
- CVE-2019-5788: Use after free in FileAPI.
- CVE-2019-5789: Use after free in WebMIDI.
- CVE-2019-5790: Heap buffer overflow in V8.
- CVE-2019-5791: Type confusion in V8.
- CVE-2019-5792: Integer overflow in PDFium.
- CVE-2019-5793: Excessive permissions for private API in Extensions.
- CVE-2019-5794: Security UI spoofing.
- CVE-2019-5795: Integer overflow in PDFium.
- CVE-2019-5796: Race condition in Extensions.
- CVE-2019-5797: Race condition in DOMStorage.
- CVE-2019-5798: Out of bounds read in Skia.
- CVE-2019-5799: CSP bypass with blob URL.
- CVE-2019-5800: CSP bypass with blob URL.
- CVE-2019-5801: Incorrect Omnibox display on iOS.
- CVE-2019-5802: Security UI spoofing.
- CVE-2019-5803: CSP bypass with Javascript URLs'.
- CVE-2019-5804: Command line command injection on Windows.
* debian/patches/add-missing-cstring-include.patch: removed, no longer needed
* debian/patches/additional-search-engines.patch: removed, no longer needed
* debian/patches/configuration-directory.patch: refreshed
* debian/patches/disable-sse2: refreshed
* debian/patches/fix-extra-arflags.patch: refreshed
* debian/patches/fix-ffmpeg-ia32-build.patch: refreshed
* debian/patches/gn-no-last-commit-position.patch: refreshed
* debian/patches/revert-Xclang-instcombine-lower-dbg-declare.patch: refreshed
* debian/patches/search-credit.patch: updated
* debian/patches/set-rpath-on-chromium-executables.patch: refreshed
* debian/patches/title-bar-default-system.patch-v35: refreshed
* debian/patches/widevine-enable-version-string.patch: refreshed
-- Olivier Tilloy <email address hidden> Tue, 12 Mar 2019 21:37:28 +0100
Available diffs
- diff from 72.0.3626.121-0ubuntu1 to 73.0.3683.75-0ubuntu1 (pending)
chromium-browser (72.0.3626.121-0ubuntu0.16.04.1) xenial; urgency=medium
* Upstream release: 72.0.3626.121
- CVE-2019-5786: Use-after-free in FileReader
* debian/patches/gn-fix-link-pthread.patch: removed, no longer needed
-- Olivier Tilloy <email address hidden> Tue, 05 Mar 2019 16:34:54 +0100
Available diffs
- diff from 72.0.3626.119-0ubuntu0.16.04.1 to 72.0.3626.121-0ubuntu0.16.04.1 (pending)
chromium-browser (72.0.3626.121-0ubuntu0.18.04.1) bionic; urgency=medium
* Upstream release: 72.0.3626.121
- CVE-2019-5786: Use-after-free in FileReader
* debian/patches/gn-fix-link-pthread.patch: removed, no longer needed
-- Olivier Tilloy <email address hidden> Tue, 05 Mar 2019 16:21:41 +0100
Available diffs
- diff from 72.0.3626.119-0ubuntu0.18.04.1 to 72.0.3626.121-0ubuntu0.18.04.1 (pending)
chromium-browser (72.0.3626.121-0ubuntu0.18.10.1) cosmic; urgency=medium
* Upstream release: 72.0.3626.121
- CVE-2019-5786: Use-after-free in FileReader
* debian/patches/gn-fix-link-pthread.patch: removed, no longer needed
-- Olivier Tilloy <email address hidden> Tue, 05 Mar 2019 16:04:35 +0100
Available diffs
- diff from 72.0.3626.119-0ubuntu0.18.10.1 to 72.0.3626.121-0ubuntu0.18.10.1 (pending)
chromium-browser (72.0.3626.121-0ubuntu1) disco; urgency=medium
* Upstream release: 72.0.3626.121
- CVE-2019-5786: Use-after-free in FileReader
* debian/patches/gn-fix-link-pthread.patch: removed, no longer needed
-- Olivier Tilloy <email address hidden> Sat, 02 Mar 2019 11:43:06 +0100
Available diffs
- diff from 72.0.3626.96-0ubuntu1 to 72.0.3626.121-0ubuntu1 (pending)
- diff from 72.0.3626.119-0ubuntu3 to 72.0.3626.121-0ubuntu1 (pending)
chromium-browser (72.0.3626.119-0ubuntu0.16.04.1) xenial; urgency=medium * Upstream release: 72.0.3626.119 * debian/patches/gn-fix-link-pthread.patch: added -- Olivier Tilloy <email address hidden> Mon, 25 Feb 2019 17:05:46 +0100
Available diffs
- diff from 71.0.3578.98-0ubuntu0.16.04.1 to 72.0.3626.119-0ubuntu0.16.04.1 (pending)
- diff from 72.0.3626.109-0ubuntu0.16.04.1 to 72.0.3626.119-0ubuntu0.16.04.1 (pending)
| Superseded in disco-proposed |
chromium-browser (72.0.3626.119-0ubuntu3) disco; urgency=medium * debian/patches/add-missing-limits-include.patch: added -- Olivier Tilloy <email address hidden> Mon, 25 Feb 2019 17:02:21 +0100
Available diffs
- diff from 72.0.3626.119-0ubuntu2 to 72.0.3626.119-0ubuntu3 (pending)
chromium-browser (72.0.3626.119-0ubuntu0.18.04.1) bionic; urgency=medium * Upstream release: 72.0.3626.119 * debian/patches/gn-fix-link-pthread.patch: added -- Olivier Tilloy <email address hidden> Mon, 25 Feb 2019 15:56:06 +0100
Available diffs
- diff from 71.0.3578.98-0ubuntu0.18.04.1 to 72.0.3626.119-0ubuntu0.18.04.1 (pending)
- diff from 72.0.3626.109-0ubuntu0.18.04.1 to 72.0.3626.119-0ubuntu0.18.04.1 (pending)
chromium-browser (72.0.3626.119-0ubuntu0.18.10.1) cosmic; urgency=medium * Upstream release: 72.0.3626.119 * debian/patches/gn-fix-link-pthread.patch: added -- Olivier Tilloy <email address hidden> Mon, 25 Feb 2019 12:00:37 +0100
Available diffs
- diff from 71.0.3578.98-0ubuntu0.18.10.1 to 72.0.3626.119-0ubuntu0.18.10.1 (pending)
- diff from 72.0.3626.109-0ubuntu0.18.10.2 to 72.0.3626.119-0ubuntu0.18.10.1 (pending)
| Superseded in disco-proposed |
chromium-browser (72.0.3626.119-0ubuntu2) disco; urgency=medium * debian/patches/gn-fix-link-pthread.patch: added -- Olivier Tilloy <email address hidden> Mon, 25 Feb 2019 11:55:50 +0100
Available diffs
- diff from 72.0.3626.119-0ubuntu1 to 72.0.3626.119-0ubuntu2 (pending)
| Superseded in disco-proposed |
chromium-browser (72.0.3626.119-0ubuntu1) disco; urgency=medium * Upstream release: 72.0.3626.119 * debian/patches/add-missing-cstring-include.patch: added -- Olivier Tilloy <email address hidden> Mon, 25 Feb 2019 10:55:09 +0100
Available diffs
- diff from 72.0.3626.109-0ubuntu2 to 72.0.3626.119-0ubuntu1 (pending)
| Superseded in disco-proposed |
chromium-browser (72.0.3626.109-0ubuntu2) disco; urgency=medium
* debian/rules: build with use_custom_libcxx=false because the custom libc++
embedded in chromium 72's tarball is too old for the version of clang in
disco (8.0.0 RC2, see
http://lists.llvm.org/pipermail/llvm-dev/2019-February/130174.html)
-- Olivier Tilloy <email address hidden> Thu, 21 Feb 2019 16:10:40 +0100
Available diffs
- diff from 72.0.3626.109-0ubuntu1 to 72.0.3626.109-0ubuntu2 (pending)
| Superseded in disco-proposed |
chromium-browser (72.0.3626.109-0ubuntu1) disco; urgency=medium
* Upstream release: 72.0.3626.109
* debian/rules:
- restore old keepalive snippet to prevent builds from timing out during
the link phase (this happens often enough on armhf, Launchpad builders
have an inactivity timeout of 150 minutes)
- install the chromedriver executable in /usr/bin, where python{,3}-selenium
and other packages expect it by default (LP: #1667208)
* debian/control: make chromium-chromedriver provide "chromium-driver"
* debian/chromium-chromedriver.{dirs,install}: removed, no longer needed
* debian/tests/{chromium-version,html5test}: remove custom driver path
-- Olivier Tilloy <email address hidden> Thu, 21 Feb 2019 11:20:52 +0100
Available diffs
- diff from 72.0.3626.96-0ubuntu1 to 72.0.3626.109-0ubuntu1 (pending)
chromium-browser (72.0.3626.96-0ubuntu1) disco; urgency=medium
* Upstream release: 72.0.3626.96
- CVE-2019-5784: Inappropriate implementation in V8.
* debian/patches/gn-do-not-build-with-icf.patch: removed, no longer needed
-- Olivier Tilloy <email address hidden> Fri, 08 Feb 2019 16:45:43 +0100
Available diffs
- diff from 72.0.3626.81-0ubuntu1 to 72.0.3626.96-0ubuntu1 (pending)
chromium-browser (72.0.3626.81-0ubuntu1) disco; urgency=medium
* Upstream release: 72.0.3626.81
- CVE-2019-5754: Inappropriate implementation in QUIC Networking.
- CVE-2019-5782: Inappropriate implementation in V8.
- CVE-2019-5755: Inappropriate implementation in V8.
- CVE-2019-5756: Use after free in PDFium.
- CVE-2019-5757: Type Confusion in SVG.
- CVE-2019-5758: Use after free in Blink.
- CVE-2019-5759: Use after free in HTML select elements.
- CVE-2019-5760: Use after free in WebRTC.
- CVE-2019-5761: Use after free in SwiftShader.
- CVE-2019-5762: Use after free in PDFium.
- CVE-2019-5763: Insufficient validation of untrusted input in V8.
- CVE-2019-5764: Use after free in WebRTC.
- CVE-2019-5765: Insufficient policy enforcement in the browser.
- CVE-2019-5766: Insufficient policy enforcement in Canvas.
- CVE-2019-5767: Incorrect security UI in WebAPKs.
- CVE-2019-5768: Insufficient policy enforcement in DevTools.
- CVE-2019-5769: Insufficient validation of untrusted input in Blink.
- CVE-2019-5770: Heap buffer overflow in WebGL.
- CVE-2019-5771: Heap buffer overflow in SwiftShader.
- CVE-2019-5772: Use after free in PDFium.
- CVE-2019-5773: Insufficient data validation in IndexedDB.
- CVE-2019-5774: Insufficient validation of untrusted input in SafeBrowsing.
- CVE-2019-5775: Insufficient policy enforcement in Omnibox.
- CVE-2019-5776: Insufficient policy enforcement in Omnibox.
- CVE-2019-5777: Insufficient policy enforcement in Omnibox.
- CVE-2019-5778: Insufficient policy enforcement in Extensions.
- CVE-2019-5779: Insufficient policy enforcement in ServiceWorker.
- CVE-2019-5780: Insufficient policy enforcement.
- CVE-2019-5781: Insufficient policy enforcement in Omnibox.
* debian/control: add default-jre-headless as a build dependency
(needed to compile the new lite JS mojom bindings)
* debian/patches/additional-search-engines.patch: refreshed
* debian/patches/chromium_useragent.patch: refreshed
* debian/patches/configuration-directory.patch: refreshed
* debian/patches/disable-sse2: refreshed
* debian/patches/fix-extra-arflags.patch: refreshed
* debian/patches/fix-ffmpeg-ia32-build.patch: refreshed
* debian/patches/gn-bootstrap-remove-sysroot-options.patch: removed, no longer
needed
* debian/patches/gn-do-not-build-with-icf.patch: added
* debian/patches/gn-no-last-commit-position.patch: refreshed
* debian/patches/revert-Xclang-instcombine-lower-dbg-declare.patch: refreshed
* debian/patches/set-rpath-on-chromium-executables.patch: refreshed
* debian/patches/suppress-newer-clang-warning-flags.patch: removed, no longer
needed
* debian/patches/swiftshader-gl-entry-trampoline.patch: removed, no longer
needed
* debian/patches/title-bar-default-system.patch-v35: refreshed
* debian/patches/widevine-other-locations: refreshed
* debian/tests/html5test: update test expectations
-- Olivier Tilloy <email address hidden> Wed, 30 Jan 2019 10:53:04 +0100
Available diffs
- diff from 71.0.3578.98-0ubuntu1 to 72.0.3626.81-0ubuntu1 (pending)
chromium-browser (71.0.3578.98-0ubuntu0.16.04.1) xenial; urgency=medium
* Upstream release: 71.0.3578.98
- CVE-2018-17481: Use after free in PDFium.
-- Olivier Tilloy <email address hidden> Thu, 13 Dec 2018 12:56:41 +0100
Available diffs
- diff from 71.0.3578.80-0ubuntu0.16.04.1 to 71.0.3578.98-0ubuntu0.16.04.1 (pending)
| 76 → 150 of 614 results | First • Previous • Next • Last |
