Format: 1.8
Date: Fri, 10 May 2013 17:27:45 -0400
Source: chromium-browser
Binary: chromium-browser chromium-browser-dbg chromium-browser-l10n chromium-codecs-ffmpeg chromium-codecs-ffmpeg-dbg chromium-codecs-ffmpeg-extra chromium-codecs-ffmpeg-extra-dbg
Architecture: source
Version: 26.0.1410.63-0ubuntu0.12.04.2
Distribution: precise-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss@lists.ubuntu.com>
Changed-By: Chad MILLER <chad.miller@canonical.com>
Description: 
 chromium-browser - Chromium browser
 chromium-browser-dbg - chromium-browser debug symbols
 chromium-browser-l10n - chromium-browser language packages
 chromium-codecs-ffmpeg - Free ffmpeg codecs for the Chromium Browser
 chromium-codecs-ffmpeg-dbg - chromium-codecs-ffmpeg debug symbols
 chromium-codecs-ffmpeg-extra - Extra ffmpeg codecs for the Chromium Browser
 chromium-codecs-ffmpeg-extra-dbg - chromium-codecs-ffmpeg-extra debug symbols
Launchpad-Bugs-Fixed: 1045986
Changes: 
 chromium-browser (26.0.1410.63-0ubuntu0.12.04.2) precise-security; urgency=low
 .
   * Work arround missing Apparmour feature. Set environment explicitly
     to disallow breaking out of apparmor protection. (LP: #1045986)
   * Use more system libraries, libxml, libjpeg, bzip2, libxslt, flac,
     libevent, protobuf, speex, xdg_utils, yasm, but not a few others -- in
     particular,
       - libpng causes render hangs,
       - sqlite causes link failures.
     Updating debian/rules, and dropping the removed ones from debian/control .
   * debian/rules:
     - Use actual original upstream tarball.  No SVN snapshots, no gclient.
     - Rip out compiler-targeting.  All versions should work.
     - Always use sandbox.  It shouldn't be an option.  Nothing works without it
       any more.
   * Drop build-dep on subversion.  Not required with pristing orig.tar
     get-original-source.
   * Simpify debian/rules and use the built-in parameter for telling GYP config
     to include debug symbols.
   * Include upstream patch debian/patches/ld-memory-32bit.patch that makes
     32 bit machines more likely to use BDF linker and include parameters
     that make it more memory efficient.
   * GCC doesn't allow -Wno-format with hardening -Werror=format-security .
     Add debian/patches/format-flag.patch .
   * Since we're Depending on xdg-settings, don't try to install one from
     upstream.  Change debian/chromium-browser.install .
   * Invert sense of a quantal+ test so that we don't have to track things
     forever.  Name things we know about, instead of things that don't exist
     yet.  Update debian/rules .
   * Drop old unused sizes of icons to install from debian/rules .
   * Always default chromium to using the system title bar.  Add
     debian/patches/title-bar-default-system.patch .
   * Add a lp:app-install-data-ubuntu flag that names the package.  Update
     debian/chromium-browser.desktop .
   * Remove full path from freedesktop default-apps file.  Update
     debian/chromium-browser.xml .
 .
 chromium-browser (26.0.1410.63-0ubuntu0.12.04.1) precise-security; urgency=low
 .
   [Chris Coulson]
   * Make it possible to build armv7 without neon optimizations
     - update debian/patches/arm-neon.patch
   * Don't assume that arm linux builds are cross-builds
     - add debian/patches/dont-assume-cross-compile-on-arm.patch
     - update debian/patches/series
 .
   [Chad MILLER]
   * debian/chromium-browser.desktop: No absolute path to executable.  Use PATH
     from environment.  LP:1008741
   * Make the "clean" rule behave better. Test differently for src/obj/ and
     never involve the upstream Makefile.  Update debian/rules .
   * Don't over-clean. The makefiles generated by GYP are fine to include in
     orig tarball.
   * Use Google API keys in Ubuntu, as approved by Paweł Hajdan @ Google.
   * New stable version 26.0.1410.63.  No CVEs to report.
   * New stable version 26.0.1410.43:
     - CVE-2013-0916: Use-after-free in Web Audio.
     - CVE-2013-0917: Out-of-bounds read in URL loader.
     - CVE-2013-0918: Do not navigate dev tools upon drag and drop.
     - CVE-2013-0919: Use-after-free with pop-up windows in extensions.
     - CVE-2013-0920: Use-after-free in extension bookmarks API.
     - CVE-2013-0921: Ensure isolated web sites run in their own processes.
     - CVE-2013-0922: Avoid HTTP basic auth brute force attempts.
     - CVE-2013-0923: Memory safety issues in the USB Apps API.
     - CVE-2013-0924: Check an extension’s permissions API usage again file
       permissions.
     - CVE-2013-0925: Avoid leaking URLs to extensions without the tabs
       permissions.
     - CVE-2013-0926: Avoid pasting active tags in certain situations.
   * debian/patches/arm-crypto.patch .  Drop patch.  Unnecessary now.
   * Always use verbose building.  Update debian/rules .
   * Always use sandbox.  It shouldn't be an option.  Nothing works without it
     any more. Update debian/rules .
   * Always use extra debugging "-g" flag.  Update debian/rules .
   * Try to be more multiarch aware. Update debian/control .
   * Drop many lintian overrides.  Update debian/source/lintian-overrides .
   * Include autotoools-dev in build-deps so that cdbs will update autoconf
     helper files in source automatically.  Update debian/control .
   * Update standards version to 3.9.4 in debian/control .
   * When executable is split into libraries, strip debug symbols from
     enormous libraries even in dbg packages.  This affects webkit only,
     in actuality.  Update debian/rules .
   * Clean up some "tar" usage in debian/rules .
   * Don't include hardening on armhf.  Update debian/rules .
   * Drop extraneous no-circular-check in debian/rules GYP run.
   * Work around a SIGBUS on ARM. Added
     debian/patches/safe-browsing-sigbus.patch
   * Insert multilib info directly into nss runtime library loading. Update
     debian/rules .
   * Enable NEON support for hard-float ARM.  Actual use should be a
     runtime check, or is a bug.
Checksums-Sha1: 
 bcd4bb93f89158c8f8ae4825851805847288dfd0 2978 chromium-browser_26.0.1410.63-0ubuntu0.12.04.2.dsc
 fe859dd923a08bc13608d6db58cc33950e863e6b 219032 chromium-browser_26.0.1410.63-0ubuntu0.12.04.2.debian.tar.gz
Checksums-Sha256: 
 6f7bd8d7730cccd68503c908c89a303f32b87f6caee8ee31aba633334ba00287 2978 chromium-browser_26.0.1410.63-0ubuntu0.12.04.2.dsc
 8c4f92bc2074aabaf559fc1740496c37e674fefaacf7531ee124537f6091f74b 219032 chromium-browser_26.0.1410.63-0ubuntu0.12.04.2.debian.tar.gz
Files: 
 9b3f32f75df5ca38627203713705fc81 2978 web optional chromium-browser_26.0.1410.63-0ubuntu0.12.04.2.dsc
 82a6a78f9feac4f3535cc34e6458b88c 219032 web optional chromium-browser_26.0.1410.63-0ubuntu0.12.04.2.debian.tar.gz
Original-Maintainer: Micah Gersten <micahg@ubuntu.com>, Fabien Tassin <fta@ubuntu.com>