Format: 1.8
Date: Fri, 13 Jan 2012 06:36:18 +0100
Source: chromium-browser
Binary: chromium-browser chromium-browser-dbg chromium-browser-l10n chromium-codecs-ffmpeg chromium-codecs-ffmpeg-dbg chromium-codecs-ffmpeg-extra chromium-codecs-ffmpeg-extra-dbg
Architecture: all i386
Version: 16.0.912.75~r116452-0ubuntu0.11.10.1
Distribution: oneiric
Urgency: low
Maintainer: Ubuntu/i386 Build Daemon <buildd@palmer.buildd>
Changed-By: Micah Gersten <micahg@ubuntu.com>
Description: 
 chromium-browser - Chromium browser
 chromium-browser-dbg - chromium-browser debug symbols
 chromium-browser-l10n - chromium-browser language packages
 chromium-codecs-ffmpeg - Free ffmpeg codecs for the Chromium Browser
 chromium-codecs-ffmpeg-dbg - chromium-codecs-ffmpeg debug symbols
 chromium-codecs-ffmpeg-extra - Extra ffmpeg codecs for the Chromium Browser
 chromium-codecs-ffmpeg-extra-dbg - chromium-codecs-ffmpeg-extra debug symbols
Launchpad-Bugs-Fixed: 889711 914648
Changes: 
 chromium-browser (16.0.912.75~r116452-0ubuntu0.11.10.1) oneiric-security; urgency=low
 .
   * New upstream release from the Stable Channel (LP: #914648, #889711)
     This release fixes the following security issues:
     - [106672] High CVE-2011-3921: Use-after-free in animation frames. Credit to
       Boris Zbarsky of Mozilla.
     - [107128] High CVE-2011-3919: Heap-buffer-overflow in libxml. Credit to
       Jüri Aedla.
     - [108006] High CVE-2011-3922: Stack-buffer-overflow in glyph handling.
       Credit to Google Chrome Security Team (Cris Neckar).
 .
     This upload also includes the following security fixes from 16.0.912.63:
     - [81753] Medium CVE-2011-3903: Out-of-bounds read in regex matching. Credit
       to David Holloway of the Chromium development community.
     - [95465] Low CVE-2011-3905: Out-of-bounds reads in libxml. Credit to Google
       Chrome Security Team (Inferno).
     - [98809] Medium CVE-2011-3906: Out-of-bounds read in PDF parser. Credit to
       Aki Helin of OUSPG.
     - [99016] High CVE-2011-3907: URL bar spoofing with view-source. Credit to
       Luka Treiber of ACROS Security.
     - [100863] Low CVE-2011-3908: Out-of-bounds read in SVG parsing. Credit to
       Aki Helin of OUSPG.
     - [101010] Medium CVE-2011-3909: [64-bit only] Memory corruption in CSS
       property array. Credit to Google Chrome Security Team (scarybeasts) and
       Chu.
     - [101494] Medium CVE-2011-3910: Out-of-bounds read in YUV video frame
       handling. Credit to Google Chrome Security Team (Cris Neckar).
     - [101779] Medium CVE-2011-3911: Out-of-bounds read in PDF. Credit to Google
       Chrome Security Team (scarybeasts) and Robert Swiecki of the Google
       Security Team.
     - [102359] High CVE-2011-3912: Use-after-free in SVG filters. Credit to
       Arthur Gerkis.
     - [103921] High CVE-2011-3913: Use-after-free in Range handling. Credit to
       Arthur Gerkis.
     - [104011] High CVE-2011-3914: Out-of-bounds write in v8 i18n handling.
       Credit to Sławomir Błażek.
     - [104529] High CVE-2011-3915: Buffer overflow in PDF font handling. Credit
       to Atte Kettunen of OUSPG.
     - [104959] Medium CVE-2011-3916: Out-of-bounds reads in PDF cross
       references. Credit to Atte Kettunen of OUSPG.
     - [105162] Medium CVE-2011-3917: Stack-buffer-overflow in FileWatcher.
       Credit to Google Chrome Security Team (Marty Barbella).
     - [107258] High CVE-2011-3904: Use-after-free in bidi handling. Credit to
       Google Chrome Security Team (Inferno) and miaubiz.
 .
     This upload also includes the following security fixes from 15.0.874.121:
     - [103259] High CVE-2011-3900: Out-of-bounds write in v8. Credit to
       Christian Holler.
 .
     This upload also includes the following security fixes from 15.0.874.120:
     - [100465] High CVE-2011-3892: Double free in Theora decoder. Credit to Aki
       Helin of OUSPG.
     - [100492] [100543] Medium CVE-2011-3893: Out of bounds reads in MKV and
       Vorbis media handlers. Credit to Aki Helin of OUSPG.
     - [101172] High CVE-2011-3894: Memory corruption regression in VP8 decoding.
       Credit to Andrew Scherkus of the Chromium development community.
     - [101458] High CVE-2011-3895: Heap overflow in Vorbis decoder. Credit to
       Aki Helin of OUSPG.
     - [101624] High CVE-2011-3896: Buffer overflow in shader variable mapping.
       Credit to Ken “strcpy” Russell of the Chromium development community.
     - [102242] High CVE-2011-3897: Use-after-free in editing. Credit to pa_kt
       reported through ZDI (ZDI-CAN-1416).
 .
   [ Brandon Snider <brandonsnider@ubuntu.com> ]
   * Refresh patch
     - update debian/patches/chromium_useragent.patch.in
Checksums-Sha1: 
 c2184d5a8b07c0b3b3817f1b82be3c0915ac8635 2111554 chromium-browser-l10n_16.0.912.75~r116452-0ubuntu0.11.10.1_all.deb
 7df78de364ade22494753ed3437aeb5efd03c60b 19577840 chromium-browser_16.0.912.75~r116452-0ubuntu0.11.10.1_i386.deb
 0b78c22f90d8e0720e2356e942a7160ca90fc50f 2791300 chromium-browser-dbg_16.0.912.75~r116452-0ubuntu0.11.10.1_i386.deb
 00315081aa12af228078771a7f55b3e334608bc6 401534 chromium-codecs-ffmpeg_16.0.912.75~r116452-0ubuntu0.11.10.1_i386.deb
 9a0753a3b1faaf2dac71d688a2a8c65465d48f49 682494 chromium-codecs-ffmpeg-dbg_16.0.912.75~r116452-0ubuntu0.11.10.1_i386.deb
 c6cb1ff257f8263026f50e40dd1dba600f88f477 652128 chromium-codecs-ffmpeg-extra_16.0.912.75~r116452-0ubuntu0.11.10.1_i386.deb
 5d610a7e21b29e356c5b3d96376b28d789294667 1192154 chromium-codecs-ffmpeg-extra-dbg_16.0.912.75~r116452-0ubuntu0.11.10.1_i386.deb
Checksums-Sha256: 
 7150cc83b07170c5186b21697cfb2350630bda79e2d8dc9278dbb7dd3fc2963c 2111554 chromium-browser-l10n_16.0.912.75~r116452-0ubuntu0.11.10.1_all.deb
 5d374f0a7a04f5428f05823a22975a1479428c9ea616a6260c784d892ee13f6c 19577840 chromium-browser_16.0.912.75~r116452-0ubuntu0.11.10.1_i386.deb
 985ba7f28b3e53ba47ee86be55d4459a9259927d7384ecc13e5cf99c216dbcfb 2791300 chromium-browser-dbg_16.0.912.75~r116452-0ubuntu0.11.10.1_i386.deb
 d38595bc59a7f5465d381ba080f14ace475c11fb56cabb2c9c3ccb7522ea03e6 401534 chromium-codecs-ffmpeg_16.0.912.75~r116452-0ubuntu0.11.10.1_i386.deb
 9359d63423f15e3d6cd829f59dda92c7011adeba5150764f9bac7a9fe6aca61a 682494 chromium-codecs-ffmpeg-dbg_16.0.912.75~r116452-0ubuntu0.11.10.1_i386.deb
 77ba13a1e71254adf16bda3200a52c10ac9ec9f404bc3bcd032f715046dc45fb 652128 chromium-codecs-ffmpeg-extra_16.0.912.75~r116452-0ubuntu0.11.10.1_i386.deb
 6556e081e6b63f46b7a768d699052fd6719e6a3ecc7bc0a28d0dacf2f6facf3c 1192154 chromium-codecs-ffmpeg-extra-dbg_16.0.912.75~r116452-0ubuntu0.11.10.1_i386.deb
Files: 
 0e26ebddd31354643c4d92a8c2d4ca29 2111554 web optional chromium-browser-l10n_16.0.912.75~r116452-0ubuntu0.11.10.1_all.deb
 52d738d6319034c134d5610b1c9dde9a 19577840 web optional chromium-browser_16.0.912.75~r116452-0ubuntu0.11.10.1_i386.deb
 1bfedc111561f13cb93c51a5ca9c0009 2791300 devel optional chromium-browser-dbg_16.0.912.75~r116452-0ubuntu0.11.10.1_i386.deb
 7fa00b74d65436e1f50061da218fa453 401534 web optional chromium-codecs-ffmpeg_16.0.912.75~r116452-0ubuntu0.11.10.1_i386.deb
 b14693fc307d302934f158fc3ddb3bb7 682494 debug extra chromium-codecs-ffmpeg-dbg_16.0.912.75~r116452-0ubuntu0.11.10.1_i386.deb
 5d48e1d6f4e72b6f088f227bf2c9be5f 652128 web optional chromium-codecs-ffmpeg-extra_16.0.912.75~r116452-0ubuntu0.11.10.1_i386.deb
 a24a2dc9cec90e741896c9238019ef02 1192154 debug extra chromium-codecs-ffmpeg-extra-dbg_16.0.912.75~r116452-0ubuntu0.11.10.1_i386.deb