Format: 1.8
Date: Thu, 02 Sep 2010 17:03:41 +0200
Source: chromium-browser
Binary: chromium-browser chromium-browser-dbg chromium-browser-l10n chromium-browser-inspector
Architecture: armel armel_translations
Version: 6.0.472.53~r57914-0ubuntu0.10.04.1
Distribution: lucid
Urgency: low
Maintainer: Ubuntu/armel Build Daemon <buildd@hawthorn.buildd>
Changed-By: Fabien Tassin <fta@ubuntu.com>
Description: 
 chromium-browser - Chromium browser
 chromium-browser-dbg - chromium-browser debug symbols
 chromium-browser-inspector - page inspector for the chromium-browser
 chromium-browser-l10n - chromium-browser language packages
Launchpad-Bugs-Fixed: 628924
Changes: 
 chromium-browser (6.0.472.53~r57914-0ubuntu0.10.04.1) lucid-security; urgency=low
 .
   * New upstream release from the Stable Channel (LP: #628924)
     This release fixes the following security issues:
     - [34414] Low, Pop-up blocker bypass with blank frame target. Credit to
       Google Chrome Security Team (Inferno) and “ironfist99”.
     - [37201] Medium, URL bar visual spoofing with homographic sequences.
       Credit to Chris Weber of Casaba Security.
     - [41654] Medium, Apply more restrictions on setting clipboard content.
       Credit to Brook Novak.
     - [45659] High, Stale pointer with SVG filters. Credit to Tavis Ormandy of
       the Google Security Team.
     - [45876] Medium, Possible installed extension enumeration. Credit to
       Lostmon.
     - [46750] [51846] Low, Browser NULL crash with WebSockets. Credit to Google
       Chrome Security Team (SkyLined), Google Chrome Security Team (Justin Schuh)
       and Keith Campbell.
     - [50386] High, Use-after-free in Notifications presenter. Credit to Sergey
       Glazunov.
     - [50839] High, Notification permissions memory corruption. Credit to
       Michal Zalewski of the Google Security Team and Google Chrome Security
       Team (SkyLined).
     - [51630] [51739] High, Integer errors in WebSockets. Credit to Keith
       Campbell and Google Chrome Security Team (Cris Neckar).
     - [51653] High, Memory corruption with counter nodes. Credit to kuzzcc.
     - [51727] Low, Avoid storing excessive autocomplete entries. Credit to
       Google Chrome Security Team (Inferno).
     - [52443] High, Stale pointer in focus handling. Credit to VUPEN
       Vulnerability Research Team (VUPEN-SR-2010-249).
     - [52682] High, Sandbox parameter deserialization error. Credit to Ashutosh
       Mehra and Vineet Batra of the Adobe Reader Sandbox Team.
     - [53001] Medium, Cross-origin image theft. Credit to Isaac Dawson.
   * Enable all codecs for HTML5 in Chromium, depending on which ffmpeg sumo lib
     is installed, the set of usable codecs (at runtime) will still vary.
     This is now done by setting proprietary_codecs=1 so we can drop our patch
     - update debian/rules
     - drop debian/patches/html5_video_mimetypes.patch
     - update debian/patches/series
   * Bump the Dependencies on chromium-codecs-ffmpeg to >= 0.6, needed for the new API
     - update debian/control
   * Add "libcups2-dev | libcupsys2-dev" (the latter for Hardy) to Build-Depends.
     This is needed for Cloud Printing
     - update debian/control
   * Add libppapi_tests.so and linker.lock to INSTALL_EXCLUDE_FILES and
     DumpRenderTree_resources/ to INSTALL_EXCLUDE_DIRS
     - update debian/rules
   * Install resources.pak in the main deb, and remove all resources/ accordingly
     - update debian/chromium-browser.install
   * Add libgnome-keyring-dev to Build-Depends. This is needed for the GNOME
     Keyring and KWallet integration. See http://crbug.com/12351
     - update debian/control
   * Ship empty policy dirs (for now) in /etc/chromium-browser/policies
     - update debian/rules
     - update debian/chromium-browser.dirs
   * Bump build-deps for gyp to >= 0.1~svn837
     - update debian/control
   * Drop the icedtea6-plugin workaround, it's no longer needed and it may cause
     troubles when the default xulrunner contains older nss/nspr libs
     - update debian/chromium-browser.sh.in
Checksums-Sha1: 
 d3c9e16437850581b63dd89ecbe8a4185584385b 16552594 chromium-browser_6.0.472.53~r57914-0ubuntu0.10.04.1_armel.deb
 9e175a725b49c22be7cc7f94542a1dd10132f0bd 17444 chromium-browser_6.0.472.53~r57914-0ubuntu0.10.04.1_armel_translations.tar.gz
 764aac4f3b3a9ce84c78dee79f012d4231941e7a 183400390 chromium-browser-dbg_6.0.472.53~r57914-0ubuntu0.10.04.1_armel.deb
Checksums-Sha256: 
 4644cd55c28462d0779c100077e60929d249b90c6da6792012adab9bbcfa1de0 16552594 chromium-browser_6.0.472.53~r57914-0ubuntu0.10.04.1_armel.deb
 919c914772ca6cce102b3f9698756e1a86aea0901afb4db2eed95b4f6be59484 17444 chromium-browser_6.0.472.53~r57914-0ubuntu0.10.04.1_armel_translations.tar.gz
 f88fe33f5e85da885fed239cc192dbef2442a7a17cc19bd39ae833385f951f52 183400390 chromium-browser-dbg_6.0.472.53~r57914-0ubuntu0.10.04.1_armel.deb
Files: 
 93e25c76a06826a012bebebb42d27c47 16552594 web optional chromium-browser_6.0.472.53~r57914-0ubuntu0.10.04.1_armel.deb
 8286b6ff22e2f41989b6344f556e4302 17444 raw-translations - chromium-browser_6.0.472.53~r57914-0ubuntu0.10.04.1_armel_translations.tar.gz
 a470b7fc6e2c1f5ece234a9f30990368 183400390 devel optional chromium-browser-dbg_6.0.472.53~r57914-0ubuntu0.10.04.1_armel.deb