[Pkg-chromium-commit] [pkg-chromium] 02/02: release 53.0.2785.89-1

Michael Gilbert mgilbert at moszumanska.debian.org
Sun Sep 4 23:47:15 UTC 2016 

This is an automated email from the git hooks/post-receive script.

mgilbert pushed a commit to branch master
in repository pkg-chromium.

commit 1d4c9d56cc0f33ce0e4e2e76688a50b3984870ad
Author: Michael Gilbert <mgilbert at debian.org>
Date:   Sun Sep 4 15:17:47 2016 +0000

    release 53.0.2785.89-1
---
 debian/changelog | 31 +++++++++++++++++++++++++++++++
 1 file changed, 31 insertions(+)

diff --git a/debian/changelog b/debian/changelog
index 4162d4c..8e933a4 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,34 @@
+chromium-browser (53.0.2785.89-1) unstable; urgency=medium
+
+  * New upstream stable release:
+    - CVE-2016-5147: Universal XSS in Blink. Credit to anonymous
+    - CVE-2016-5148: Universal XSS in Blink. Credit to anonymous
+    - CVE-2016-5149: Script injection in extensions. Credit to Max Justicz
+    - CVE-2016-5150: Use after free in Blink. Credit to anonymous
+    - CVE-2016-5151: Use after free in PDFium. Credit to anonymous
+    - CVE-2016-5152: Heap overflow in PDFium. Credit to GiWan Go of Stealien
+    - CVE-2016-5153: Use after destruction in Blink. Credit to Atte Kettunen
+    - CVE-2016-5154: Heap overflow in PDFium. Credit to anonymous
+    - CVE-2016-5155: Address bar spoofing. Credit to anonymous
+    - CVE-2016-5156: Use after free in event bindings. Credit to jinmo123
+    - CVE-2016-5157: Heap overflow in PDFium. Credit to anonymous
+    - CVE-2016-5158: Heap overflow in PDFium. Credit to GiWan Go
+    - CVE-2016-5159: Heap overflow in PDFium. Credit to GiWan Go
+    - CVE-2016-5160: Extensions web accessible resources bypass. Credit to
+      @l33terally
+    - CVE-2016-5161: Type confusion in Blink.
+    - CVE-2016-5162: Extensions web accessible resources bypass. Credit to
+      Nicolas Golubovic
+    - CVE-2016-5163: Address bar spoofing. Credit to Rafay Baloch
+    - CVE-2016-5164: Universal XSS using DevTools. Credit to anonymous
+    - CVE-2016-5165: Script injection in DevTools. Credit to Gregory Panakkal
+    - CVE-2016-5166: SMB Relay Attack via Save Page As. Credit to Gregory
+      Panakkal
+    - CVE-2016-5167: Various fixes from internal audits, fuzzing and other
+      initiatives.
+
+ -- Michael Gilbert <mgilbert at debian.org>  Sat, 03 Sep 2016 16:30:44 +0000
+
 chromium-browser (52.0.2743.116-2) unstable; urgency=medium
 
   * Fix syntax error in debian/copyright.

-- 
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/pkg-chromium/pkg-chromium.git

More information about the Pkg-chromium-commit mailing list