[Pkg-chromium-commit] [pkg-chromium] 03/03: release 56.0.2924.76-1
Michael Gilbert
mgilbert at moszumanska.debian.org
Thu Feb 2 00:40:49 UTC 2017
This is an automated email from the git hooks/post-receive script.
mgilbert pushed a commit to branch master
in repository pkg-chromium.
commit fd7d2cc548f8289a59e2bfe3eec3152aa7a0cde7
Author: Michael Gilbert <mgilbert at debian.org>
Date: Sun Jan 29 18:40:49 2017 +0000
release 56.0.2924.76-1
---
debian/changelog | 30 ++++++++++++++++++++++++++++++
debian/control | 1 +
debian/copyright | 1 +
3 files changed, 32 insertions(+)
diff --git a/debian/changelog b/debian/changelog
index d10514c..7c2988c 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,33 @@
+chromium-browser (56.0.2924.76-1) experimental; urgency=medium
+
+ * New upstream stable release:
+ - CVE-2017-5007: Universal XSS in Blink. Credit to Mariusz Mlynski
+ - CVE-2017-5006: Universal XSS in Blink. Credit to Mariusz Mlynski
+ - CVE-2017-5008: Universal XSS in Blink. Credit to Mariusz Mlynski
+ - CVE-2017-5010: Universal XSS in Blink. Credit to Mariusz Mlynski
+ - CVE-2017-5011: Unauthorised file access in Devtools. Credit to Khalil
+ Zhani
+ - CVE-2017-5009: Out of bounds memory access in WebRTC. Credit to Sean
+ Stanek and Chip Bradford
+ - CVE-2017-5012: Heap overflow in V8. Credit to Gergely Nagy
+ - CVE-2017-5013: Address spoofing in Omnibox. Credit to Haosheng Wang
+ - CVE-2017-5014: Heap overflow in Skia. Credit to sweetchip
+ - CVE-2017-5015: Address spoofing in Omnibox. Credit to Armin Razmdjou
+ - CVE-2017-5019: Use after free in Renderer. Credit to Wadih Matar
+ - CVE-2017-5016: UI spoofing in Blink. Credit to Haosheng Wang
+ - CVE-2017-5017: Uninitialised memory access in webm video. Credit to
+ danberm
+ - CVE-2017-5018: Universal XSS in chrome://apps. Credit to Rob Wu
+ - CVE-2017-5020: Universal XSS in chrome://downloads. Credit to Rob Wu
+ - CVE-2017-5021: Use after free in Extensions. Credit to Rob Wu
+ - CVE-2017-5022: Bypass of Content Security Policy in Blink. Credit to
+ PKAV Team.
+ - CVE-2017-5023: Type confusion in metrics. Credit to the UK's National
+ Cyber Security Centre (NCSC)
+ - CVE-2017-5026: UI spoofing. Credit to Ronni Skansing
+
+ -- Michael Gilbert <mgilbert at debian.org> Thu, 26 Jan 2017 01:42:21 +0000
+
chromium-browser (55.0.2883.75-6) unstable; urgency=medium
* Organize patches.
diff --git a/debian/control b/debian/control
index 1c9cea8..5972fa4 100644
--- a/debian/control
+++ b/debian/control
@@ -53,6 +53,7 @@ Build-Depends:
libsrtp-dev,
libjpeg-dev,
libxml2-dev,
+ libgtk-3-dev,
libgtk2.0-dev,
libxslt1-dev,
libpulse-dev,
diff --git a/debian/copyright b/debian/copyright
index 3f175c7..d699c97 100644
--- a/debian/copyright
+++ b/debian/copyright
@@ -19,6 +19,7 @@ Files-Excluded:
third_party/flot/*.js
third_party/yasm/source
third_party/skia/platform_tools
+ third_party/skia/resources/icc_profiles/srgb_lab_pcs.icc
third_party/webgl/src/sdk
third_party/webgl/src/other
third_party/expat/files
--
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/pkg-chromium/pkg-chromium.git
More information about the Pkg-chromium-commit
mailing list