Ubuntu
chromium-browser package

chromium-browser 25.0.1364.160-0ubuntu0.10.04.1 source package in Ubuntu

Changelog

chromium-browser (25.0.1364.160-0ubuntu0.10.04.1) lucid-security; urgency=low

  * Disable lintian warnings about outdated autoconf files in source tree.
  * New stable version 25.0.1364.160:
    - CVE-2013-0912: Type confusion in WebKit.
  * New stable version 25.0.1364.152:
    - CVE-2013-0902: Use-after-free in frame loader.
    - CVE-2013-0903: Use-after-free in browser navigation handling.
    - CVE-2013-0904: Memory corruption in Web Audio.
    - CVE-2013-0905: Use-after-free with SVG animations.
    - CVE-2013-0906: Memory corruption in Indexed DB.
    - CVE-2013-0907: Race condition in media thread handling.
    - CVE-2013-0908: Incorrect handling of bindings for extension processes.
    - CVE-2013-0909: Referer leakage with XSS Auditor.
    - CVE-2013-0910: Mediate renderer -> browser plug-in loads more strictly.
    - CVE-2013-0911: Possible path traversal in database handling.
  * New stable version 25.0.1364.97:
    - CVE-2013-0879: Memory corruption with web audio node.
    - CVE-2013-0880: Use-after-free in database handling.
    - CVE-2013-0881: Bad read in Matroska handling.
    - CVE-2013-0882: Bad memory access with excessive SVG parameters.
    - CVE-2013-0883: Bad read in Skia.
    - CVE-2013-0885: Too many API permissions granted to web store.
    - CVE-2013-0887: Developer tools process has too many permissions and
      places too much trust in the connected server.
    - CVE-2013-0888: Out-of-bounds read in Skia.
    - CVE-2013-0889: Tighten user gesture check for dangerous file downloads.
    - CVE-2013-0890: Memory safety issues across the IPC layer.
    - CVE-2013-0891: Integer overflow in blob handling.
    - CVE-2013-0892: Lower severity issues across the IPC layer.
    - CVE-2013-0893: Race condition in media handling.
    - CVE-2013-0894: Buffer overflow in vorbis decoding.
    - CVE-2013-0895: Incorrect path handling in file copying.
    - CVE-2013-0896: Memory management issues in plug-in message handling.
    - CVE-2013-0897: Off-by-one read in PDF.
    - CVE-2013-0898: Use-after-free in URL handling.
    - CVE-2013-0899: Integer overflow in Opus handling.
    - CVE-2013-0900: Race condition in ICU.
  * New stable version 24.0.1312.52:
    - CVE-2012-5145: Use-after-free in SVG layout.
    - CVE-2012-5146: Same origin policy bypass with malformed URL.
    - CVE-2012-5147: Use-after-free in DOM handling.
    - CVE-2012-5148: Missing filename sanitization in hyphenation support.
    - CVE-2012-5149: Integer overflow in audio IPC handling.
    - CVE-2012-5150: Use-after-free when seeking video.
    - CVE-2012-5151: Integer overflow in PDF JavaScript.
    - CVE-2012-5152: Out-of-bounds read when seeking video.
    - CVE-2012-5153: Out-of-bounds stack access in v8.
    - CVE-2012-5156: Use-after-free in PDF fields.
    - CVE-2012-5157: Out-of-bounds reads in PDF image handling.
    - CVE-2013-0828: Bad cast in PDF root handling.
    - CVE-2013-0829: Corruption of database metadata leading to incorrect file
      access.
    - CVE-2013-0830: Missing NUL termination in IPC.
    - CVE-2013-0831: Possible path traversal from extension process.
    - CVE-2013-0832: Use-after-free with printing.
    - CVE-2013-0833: Out-of-bounds read with printing.
    - CVE-2013-0834: Out-of-bounds read with glyph handling.
    - CVE-2013-0835: Browser crash with geolocation.
    - CVE-2013-0836: Crash in v8 garbage collection.
    - CVE-2013-0837: Crash in extension tab handling.
    - CVE-2013-0838: Tighten permissions on shared memory segments.
  * Add libpci-dev to build-deps.
  * debian/patches/ffmpeg-gyp-config.
    - Renamed from debian/patches/gyp-config-root
    - Write includes for more targets in ffmpeg building.
  * debian/patches/arm-crypto.patch
    - Added patch to distinguish normal ARM and hard-float ARM in crypto
      NSS inclusion.
  * Put GOOG search credit in a patch so we know when it fails.  Also
    add credit to the other search idioms for GOOG.
    because releases can have any number of updates.
  * debian/rules:
    - Adopt some ARM build conditions from Debian.
    - Clean up. Stop matching Ubuntu versions outside of Ubuntu environments.
      Match patterns instead of whole words
    - Write REMOVED files in correct place.
    - Remove all generated in-tree makefiles at clean and get-source time.
    - Move all file-removal lines in get-source inside the condition
      for stripping files out of the source.
    - Hack in a "clean" rule that implements what src/Makefile should.
 -- Chad MILLER <email address hidden>   Fri, 08 Mar 2013 09:50:59 -0500

Upload details

Uploaded by:
Chad Miller
Sponsored by:
Jamie Strandboge
Uploaded to:
Lucid
Original maintainer:
Fabien Tassin
Architectures:
i386 amd64 all
Section:
web
Urgency:
Low Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Builds

Lucid: [FULLYBUILT] amd64 [FULLYBUILT] i386

Downloads

File Size SHA-256 Checksum
chromium-browser_25.0.1364.160.orig.tar.xz 327.5 MiB af9f46716eecb92a3618d283cfcf617886f521b2291713c053ad7319f313f207
chromium-browser_25.0.1364.160-0ubuntu0.10.04.1.debian.tar.gz 213.3 KiB bd3b6ce51dc3f6566b8742ee112ef091765bc0d3210af358cb3fe2923c994ee5
chromium-browser_25.0.1364.160-0ubuntu0.10.04.1.dsc 2.7 KiB c14ec73aa6f822f6a8cbf7821be21af02b070b6287a42044655c2fb580c05eea

View changes file

Binary packages built by this source

chromium-browser: No summary available for chromium-browser in ubuntu lucid.

No description available for chromium-browser in ubuntu lucid.

chromium-browser-dbg: No summary available for chromium-browser-dbg in ubuntu lucid.

No description available for chromium-browser-dbg in ubuntu lucid.

chromium-browser-inspector: No summary available for chromium-browser-inspector in ubuntu lucid.

No description available for chromium-browser-inspector in ubuntu lucid.

chromium-browser-l10n: No summary available for chromium-browser-l10n in ubuntu lucid.

No description available for chromium-browser-l10n in ubuntu lucid.

chromium-codecs-ffmpeg: No summary available for chromium-codecs-ffmpeg in ubuntu lucid.

No description available for chromium-codecs-ffmpeg in ubuntu lucid.

chromium-codecs-ffmpeg-dbg: No summary available for chromium-codecs-ffmpeg-dbg in ubuntu lucid.

No description available for chromium-codecs-ffmpeg-dbg in ubuntu lucid.

chromium-codecs-ffmpeg-extra: No summary available for chromium-codecs-ffmpeg-extra in ubuntu lucid.

No description available for chromium-codecs-ffmpeg-extra in ubuntu lucid.

chromium-codecs-ffmpeg-extra-dbg: No summary available for chromium-codecs-ffmpeg-extra-dbg in ubuntu lucid.

No description available for chromium-codecs-ffmpeg-extra-dbg in ubuntu lucid.