Format: 1.8
Date: Tue, 08 Mar 2011 17:19:58 +0100
Source: chromium-browser
Binary: chromium-browser chromium-browser-dbg chromium-browser-l10n chromium-browser-inspector chromium-codecs-ffmpeg chromium-codecs-ffmpeg-dbg chromium-codecs-ffmpeg-extra chromium-codecs-ffmpeg-extra-dbg chromium-codecs-ffmpeg-nonfree chromium-codecs-ffmpeg-nonfree-dbg
Architecture: armel armel_translations
Version: 10.0.648.127~r76697-0ubuntu0.10.04.1
Distribution: lucid-proposed
Urgency: high
Maintainer: Ubuntu/armel Build Daemon <buildd@cushaw.buildd>
Changed-By: Fabien Tassin <fta@ubuntu.com>
Description: 
 chromium-browser - Chromium browser
 chromium-browser-dbg - chromium-browser debug symbols
 chromium-browser-inspector - page inspector for the chromium-browser
 chromium-browser-l10n - chromium-browser language packages
 chromium-codecs-ffmpeg - Free ffmpeg codecs for the Chromium Browser
 chromium-codecs-ffmpeg-dbg - chromium-codecs-ffmpeg debug symbols
 chromium-codecs-ffmpeg-extra - Extra ffmpeg codecs for the Chromium Browser
 chromium-codecs-ffmpeg-extra-dbg - chromium-codecs-ffmpeg-extra debug symbols
 chromium-codecs-ffmpeg-nonfree - dummy upgrade package
 chromium-codecs-ffmpeg-nonfree-dbg - dummy upgrade package
Launchpad-Bugs-Fixed: 194574 731520
Changes: 
 chromium-browser (10.0.648.127~r76697-0ubuntu0.10.04.1) lucid-security; urgency=high
 .
   * New upstream major release from the Stable Channel (LP: #731520)
     It includes:
     - New version of V8 - Crankshaft - which greatly improves javascript
       performance
     - New settings pages that open in a tab, rather than a dialog box
     - Improved security with malware reporting and disabling outdated plugins
       by default
     - Password sync as part of Chrome Sync now enabled by default
     - GPU Accelerated Video
     - Background WebApps
     - webNavigation extension API
     This release also fixes the following security issues:
     + Webkit bugs:
       - [42574] [42765] Low, Possible to navigate or close the top location in
         a sandboxed frame. Credit to sirdarckcat of the Google Security Team.
       - [69628] High, Memory corruption with counter nodes. Credit to Martin
         Barbella.
       - [70027] High, Stale node in box layout. Credit to Martin Barbella.
       - [70336] Medium, Cross-origin error message leak with workers. Credit to
         Daniel Divricean.
       - [70442] High, Use after free with DOM URL handling. Credit to Sergey
         Glazunov.
       - [70779] Medium, Out of bounds read handling unicode ranges. Credit to
         miaubiz.
       - [70885] [71167] Low, Pop-up blocker bypasses. Credit to Chamal de
         Silva.
       - [71763] High, Use-after-free in document script lifetime handling.
         Credit to miaubiz.
       - [72028] High, Stale pointer in table painting. Credit to Martin
         Barbella.
       - [73066] High, Crash with the DataView object. Credit to Sergey
         Glazunov.
       - [73134] High, Bad cast in text rendering. Credit to miaubiz.
       - [73196] High, Stale pointer in WebKit context code. Credit to Sergey
         Glazunov.
       - [73746] High, Stale pointer with SVG cursors. Credit to Sergey
         Glazunov.
       - [74030] High, DOM tree corruption with attribute handling. Credit to
         Sergey Glazunov.
     + Chromium bugs:
       - [49747] Low, Work around an X server bug and crash with long messages.
         Credit to Louis Lang.
       - [66962] Low, Possible browser crash with parallel print()s. Credit to
         Aki Helin of OUSPG.
       - [69187] Medium, Cross-origin error message leak. Credit to Daniel
         Divricean.
       - [70877] High, Same origin policy bypass in v8. Credit to Daniel
         Divricean.
     + v8:
       - [74662] High, Corruption via re-entrancy of RegExp code. Credit to
         Christian Holler.
       - [74675] High, Invalid memory access in v8. Credit to Christian Holler.
     + ffmpeg:
       - [71788] High, Out-of-bounds write in the OGG container. Credit to
         Google Chrome Security Team (SkyLined); plus subsequent independent
         discovery by David Weston of Microsoft and MSVR.
       - [73026] High, Use of corrupt out-of-bounds structure in video code.
         Credit to Tavis Ormandy of the Google Security Team.
     + libxslt:
       - [73716] Low, Leak of heap address in XSLT. Credit to Google Chrome
         Security Team (Chris Evans).
   Packaging changes:
   * Promote Uyghur to the list of supported translations
     - update debian/rules
     - update debian/control
   * Fix the FTBFS on arm by re-adding the lost arm_neon=0, and really set armv7=1
     on maverick and natty
     - update debian/rules
   * Fix the broken symlinks in /usr/share/doc created by CDBS (See LP: #194574)
     - update debian/rules
   * Add libxt-dev to Build-deps needed by ppGoogleNaClPluginChrome
     - update debian/control
   * Fix the Webkit version in about:version (the build system expects the svn
     or git directories to be available at build time)
     - add debian/patches/webkit_rev_parser.patch
     - update debian/patches/series
   * Bump build-depends on libvpx-dev to >= 0.9.5
     - update debian/control
Checksums-Sha1: 
 adf7afe72e885853bbee0374c90b76817c4c519c 19248680 chromium-browser_10.0.648.127~r76697-0ubuntu0.10.04.1_armel.deb
 c7ddd2175b868db653d5c3651a8ca28fe9008426 175456 chromium-browser_10.0.648.127~r76697-0ubuntu0.10.04.1_armel_translations.tar.gz
 8c61808c51d7a123e6433d5835b1f95d52944173 242304612 chromium-browser-dbg_10.0.648.127~r76697-0ubuntu0.10.04.1_armel.deb
 74e25d50be9d61752f7ed0f2646b51265cc1aee4 277964 chromium-codecs-ffmpeg_10.0.648.127~r76697-0ubuntu0.10.04.1_armel.deb
 7f8fd611f2281935e94bbf3639dae83748d2ad1d 599722 chromium-codecs-ffmpeg-dbg_10.0.648.127~r76697-0ubuntu0.10.04.1_armel.deb
 7a393811812faf8cc248a8a5dfdd6f4ca6fc8a11 545114 chromium-codecs-ffmpeg-extra_10.0.648.127~r76697-0ubuntu0.10.04.1_armel.deb
 e2311fbcf2fbba844e95537153401d6db9e31fbd 1190500 chromium-codecs-ffmpeg-extra-dbg_10.0.648.127~r76697-0ubuntu0.10.04.1_armel.deb
Checksums-Sha256: 
 a53729361ace43dad826c79ebbb2db95b95cf48d2fed668f715478595641221d 19248680 chromium-browser_10.0.648.127~r76697-0ubuntu0.10.04.1_armel.deb
 af413882b4286a3337466ddff4e9bc8557cfcbd9eb9ff94e4c78c0036ef940bd 175456 chromium-browser_10.0.648.127~r76697-0ubuntu0.10.04.1_armel_translations.tar.gz
 d6de358c0d35371242fea7db807d411660926492f1025e93239c8a4ddee06cd3 242304612 chromium-browser-dbg_10.0.648.127~r76697-0ubuntu0.10.04.1_armel.deb
 2571db7dc068d396772cefa475b9f72b852fc1952258264d29e2a5f4090cf1b2 277964 chromium-codecs-ffmpeg_10.0.648.127~r76697-0ubuntu0.10.04.1_armel.deb
 ade34dcafe537b0a724d570d74859e479d0dbfeec3ccc0dc34c5ad097912ef82 599722 chromium-codecs-ffmpeg-dbg_10.0.648.127~r76697-0ubuntu0.10.04.1_armel.deb
 0e643341b9f6b9c1ca62616b4806bf27a8e60561a909f1cd0fc2ba8bf1fecb90 545114 chromium-codecs-ffmpeg-extra_10.0.648.127~r76697-0ubuntu0.10.04.1_armel.deb
 401b756ba321dcbef9932938b215075a1477f198ec23c1244777be53d6078beb 1190500 chromium-codecs-ffmpeg-extra-dbg_10.0.648.127~r76697-0ubuntu0.10.04.1_armel.deb
Files: 
 6bca4f20739055bd879e3f27b5414b66 19248680 web optional chromium-browser_10.0.648.127~r76697-0ubuntu0.10.04.1_armel.deb
 25078b94c2c1c549dbafce8d741b46f9 175456 raw-translations - chromium-browser_10.0.648.127~r76697-0ubuntu0.10.04.1_armel_translations.tar.gz
 61e4a02e0ecac0c27a042586a6017b44 242304612 devel optional chromium-browser-dbg_10.0.648.127~r76697-0ubuntu0.10.04.1_armel.deb
 a9d915500029288dfba956e359a1cb20 277964 web optional chromium-codecs-ffmpeg_10.0.648.127~r76697-0ubuntu0.10.04.1_armel.deb
 f6fbc560f1d2ed23a5a418a553cf8aef 599722 debug extra chromium-codecs-ffmpeg-dbg_10.0.648.127~r76697-0ubuntu0.10.04.1_armel.deb
 a698f86a245a4134a3dbe858c3d79385 545114 web optional chromium-codecs-ffmpeg-extra_10.0.648.127~r76697-0ubuntu0.10.04.1_armel.deb
 84251f3b9e13f19e844a97d8b19de230 1190500 debug extra chromium-codecs-ffmpeg-extra-dbg_10.0.648.127~r76697-0ubuntu0.10.04.1_armel.deb