[Pkg-chromium-commit] [SCM] Git repository for pkg-chromium branch, master, updated. debian/25.0.1364.152-1-4-ga2d8d34
Michael Gilbert
mgilbert at debian.org
Tue Apr 2 01:12:58 UTC 2013
The following commit has been merged in the master branch:
commit a2d8d342725eaefdb9bdc68c1de3244e9a986a6c
Author: Michael Gilbert <mgilbert at debian.org>
Date: Mon Apr 1 21:12:38 2013 -0400
release 26.0.1410.43-1
diff --git a/debian/changelog b/debian/changelog
index 6e929d0..0ff8371 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,34 @@
+chromium-browser (26.0.1410.43-1) unstable; urgency=medium
+
+ * New stable release:
+ - High CVE-2013-0916: Use-after-free in Web Audio. Credit to Atte Kettunen
+ of OUSPG.
+ - Low CVE-2013-0917: Out-of-bounds read in URL loader. Credit to Google
+ Chrome Security Team (Cris Neckar).
+ - Low CVE-2013-0918: Do not navigate dev tools upon drag and drop. Credit
+ to Vsevolod Vlasov of the Chromium development community.
+ - Medium CVE-2013-0919: Use-after-free with pop-up windows in extensions.
+ Credit to Google Chrome Security Team (Mustafa Emre Acer).
+ - Medium CVE-2013-0920: Use-after-free in extension bookmarks API. Credit
+ to Google Chrome Security Team (Mustafa Emre Acer).
+ - High CVE-2013-0921: Ensure isolated web sites run in their own processes.
+ - Low CVE-2013-0922: Avoid HTTP basic auth brute force attempts. Credit to
+ “t3553r”.
+ - Medium CVE-2013-0923: Memory safety issues in the USB Apps API. Credit to
+ Google Chrome Security Team (Mustafa Emre Acer).
+ - Low CVE-2013-0924: Check an extension’s permissions API usage again file
+ permissions. Credit to Benjamin Kalman of the Chromium development
+ community.
+ - Low CVE-2013-0925: Avoid leaking URLs to extensions without the tabs
+ permissions. Credit to Michael Vrable of Google.
+ - Medium CVE-2013-0926: Avoid pasting active tags in certain situations.
+ Credit to Subho Halder, Aditya Gupta, and Dev Kar of xys3c.
+ * Use embedded libvpx for vp9 support, which chromium now requires.
+ * Add libspeechd-dev build-dependency.
+ * Disable breakpad crash reporting.
+
+ -- Michael Gilbert <mgilbert at debian.org> Sat, 30 Mar 2013 14:44:33 +0000
+
chromium-browser (25.0.1364.160-1) unstable; urgency=high
* New stable security release:
--
Git repository for pkg-chromium
More information about the Pkg-chromium-commit
mailing list