chromium-browser 25.0.1364.160-0ubuntu0.12.04.1 source package in Ubuntu
Changelog
chromium-browser (25.0.1364.160-0ubuntu0.12.04.1) precise-security; urgency=low * Disable lintian warnings about outdated autoconf files in source tree. * New stable version 25.0.1364.160: - CVE-2013-0912: Type confusion in WebKit. * New stable version 25.0.1364.152: - CVE-2013-0902: Use-after-free in frame loader. - CVE-2013-0903: Use-after-free in browser navigation handling. - CVE-2013-0904: Memory corruption in Web Audio. - CVE-2013-0905: Use-after-free with SVG animations. - CVE-2013-0906: Memory corruption in Indexed DB. - CVE-2013-0907: Race condition in media thread handling. - CVE-2013-0908: Incorrect handling of bindings for extension processes. - CVE-2013-0909: Referer leakage with XSS Auditor. - CVE-2013-0910: Mediate renderer -> browser plug-in loads more strictly. - CVE-2013-0911: Possible path traversal in database handling. * New stable version 25.0.1364.97: - CVE-2013-0879: Memory corruption with web audio node. - CVE-2013-0880: Use-after-free in database handling. - CVE-2013-0881: Bad read in Matroska handling. - CVE-2013-0882: Bad memory access with excessive SVG parameters. - CVE-2013-0883: Bad read in Skia. - CVE-2013-0885: Too many API permissions granted to web store. - CVE-2013-0887: Developer tools process has too many permissions and places too much trust in the connected server. - CVE-2013-0888: Out-of-bounds read in Skia. - CVE-2013-0889: Tighten user gesture check for dangerous file downloads. - CVE-2013-0890: Memory safety issues across the IPC layer. - CVE-2013-0891: Integer overflow in blob handling. - CVE-2013-0892: Lower severity issues across the IPC layer. - CVE-2013-0893: Race condition in media handling. - CVE-2013-0894: Buffer overflow in vorbis decoding. - CVE-2013-0895: Incorrect path handling in file copying. - CVE-2013-0896: Memory management issues in plug-in message handling. - CVE-2013-0897: Off-by-one read in PDF. - CVE-2013-0898: Use-after-free in URL handling. - CVE-2013-0899: Integer overflow in Opus handling. - CVE-2013-0900: Race condition in ICU. * New stable version 24.0.1312.52: - CVE-2012-5145: Use-after-free in SVG layout. - CVE-2012-5146: Same origin policy bypass with malformed URL. - CVE-2012-5147: Use-after-free in DOM handling. - CVE-2012-5148: Missing filename sanitization in hyphenation support. - CVE-2012-5149: Integer overflow in audio IPC handling. - CVE-2012-5150: Use-after-free when seeking video. - CVE-2012-5151: Integer overflow in PDF JavaScript. - CVE-2012-5152: Out-of-bounds read when seeking video. - CVE-2012-5153: Out-of-bounds stack access in v8. - CVE-2012-5156: Use-after-free in PDF fields. - CVE-2012-5157: Out-of-bounds reads in PDF image handling. - CVE-2013-0828: Bad cast in PDF root handling. - CVE-2013-0829: Corruption of database metadata leading to incorrect file access. - CVE-2013-0830: Missing NUL termination in IPC. - CVE-2013-0831: Possible path traversal from extension process. - CVE-2013-0832: Use-after-free with printing. - CVE-2013-0833: Out-of-bounds read with printing. - CVE-2013-0834: Out-of-bounds read with glyph handling. - CVE-2013-0835: Browser crash with geolocation. - CVE-2013-0836: Crash in v8 garbage collection. - CVE-2013-0837: Crash in extension tab handling. - CVE-2013-0838: Tighten permissions on shared memory segments. * Add libpci-dev to build-deps. * debian/patches/ffmpeg-gyp-config. - Renamed from debian/patches/gyp-config-root - Write includes for more targets in ffmpeg building. * debian/patches/arm-crypto.patch - Added patch to distinguish normal ARM and hard-float ARM in crypto NSS inclusion. * Put GOOG search credit in a patch so we know when it fails. Also add credit to the other search idioms for GOOG. because releases can have any number of updates. * debian/rules: - Adopt some ARM build conditions from Debian. - Clean up. Stop matching Ubuntu versions outside of Ubuntu environments. Match patterns instead of whole words - Write REMOVED files in correct place. - Remove all generated in-tree makefiles at clean and get-source time. - Move all file-removal lines in get-source inside the condition for stripping files out of the source. - Hack in a "clean" rule that implements what src/Makefile should. -- Chad MILLER <email address hidden> Fri, 08 Mar 2013 09:50:59 -0500
Upload details
- Uploaded by:
- Chad Miller
- Sponsored by:
- Jamie Strandboge
- Uploaded to:
- Precise
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any all
- Section:
- web
- Urgency:
- Low Urgency
See full publishing history Publishing
Series | Published | Component | Section |
---|
Downloads
File | Size | SHA-256 Checksum |
---|---|---|
chromium-browser_25.0.1364.160.orig.tar.xz | 327.5 MiB | af9f46716eecb92a3618d283cfcf617886f521b2291713c053ad7319f313f207 |
chromium-browser_25.0.1364.160-0ubuntu0.12.04.1.debian.tar.gz | 211.7 KiB | b2ad25a7ab52f3032204fa9626f4afb3261ffda1b8d305d8c9a849a807f5f7d9 |
chromium-browser_25.0.1364.160-0ubuntu0.12.04.1.dsc | 3.2 KiB | f92a52d2e803e829a9723f3fee2f84f5768d85daa8b24d95bfde33fe2f68a56d |
Available diffs
Binary packages built by this source
- chromium-browser: Chromium browser
Chromium is an open-source browser project that aims to build a safer, faster,
and more stable way for all Internet users to experience the web.
.
Chromium serves as a base for Google Chrome, which is Chromium rebranded (name
and logo) with very few additions such as usage tracking and an auto-updater
system.
.
This package contains the Chromium browser
- chromium-browser-dbg: chromium-browser debug symbols
Debug symbols for the Chromium browser
- chromium-browser-l10n: chromium-browser language packages
Chromium is an open-source browser project that aims to build a safer, faster,
and more stable way for all Internet users to experience the web.
.
This package contains language packages for 65 languages:
am, ar, ast, bg, bn, bs, ca, ca@valencia, cs, da, de, el, en-AU, en-GB, eo,
es-419, es, et, eu, fa, fil, fi, fr, gl, gu, he, hi, hr, hu, hy, ia, id, it,
ja, ka, kn, ko, ku, kw, lt, lv, ml, mr, ms, nb, nl, pl, pt-BR, pt-PT, ro, ru,
sk, sl, sr, sv, sw, ta, te, th, tr, ug, uk, vi, zh-CN, zh-TW
- chromium-codecs-ffmpeg: Free ffmpeg codecs for the Chromium Browser
Chromium is an open-source browser project that aims to build a safer, faster,
and more stable way for all Internet users to experience the web.
.
This package contains the multi-threaded ffmpeg codecs needed for the HTML5
<audio> and <video> tags. Only the free ogg, vorbis and theora codecs are
included. See chromium-codecs- ffmpeg- extra for additionnal codecs
- chromium-codecs-ffmpeg-dbg: chromium-codecs-ffmpeg debug symbols
Debug symbols for the free ffmpeg-mt codecs
- chromium-codecs-ffmpeg-extra: Extra ffmpeg codecs for the Chromium Browser
Chromium is an open-source browser project that aims to build a safer, faster,
and more stable way for all Internet users to experience the web.
.
This package contains the multi-threaded ffmpeg codecs needed for the HTML5
<audio> and <video> tags. In addition to the patent-free ogg, vorbis and
theora codecs, aac/ac3/mpeg4audio/ h264/mov/ mp3 are also included. See
chromium-codecs- ffmpeg if you prefer only the patent-free codecs
- chromium-codecs-ffmpeg-extra-dbg: chromium-codecs-ffmpeg-extra debug symbols
Debug symbols for the extra ffmpeg-mt codecs