chromium-browser 17.0.963.56~r121963-1 source package in Debian


chromium-browser (17.0.963.56~r121963-1) unstable; urgency=high

  [ Michael Gilbert ]
  * [5c3bb1e] remove duplicate dependency on libgconf2-dev
  * [a978400] exclude .git directories from upstream tarball
  * [d29d859] add descriptions to patches
  * [52af88b] update debian/copyright field to adhere to latest DEP5 specification
  * [f3b7ba9] update patches for chromium 17
  * [4634823] install content_resources.pak
  * [e7883c9] depend on libv8 >= 3.7
  * [dd4fe7d] use pulseaudio

  [ Giuseppe Iuculano ]
  * [826649a] Fix FTBFS on armel and added armhf.
    Thanks to Riku Voipio (Closes: #632119)
  * [e9ac7ab] Link against system vpx (Closes: #642760)
  * [b88a849] Remove ardcoded dependency on libvpx0 (Closes: #660159)
  * [9dec8df] Updated patches
  * New stable release:
    - Medium CVE-2011-3016: Read-after-free with counter nodes.
      Credit to miaubiz.
    - High CVE-2011-3017: Possible use-after-free in database
      handling. Credit to miaubiz.
    - High CVE-2011-3018: Heap overflow in path rendering. Credit
      to Aki Helin of OUSPG.
    - High CVE-2011-3019: Heap buffer overflow in MKV handling. Credit to
      Google Chrome Security Team (scarybeasts) and Mateusz Jurczyk / Gynvael
      Coldwind of the Google Security Team.
    - Medium CVE-2011-3020: Native client validator error. Credit to Nick
      Bray of the Chromium development community.
    - High CVE-2011-3021: Use-after-free in subframe loading.
      Credit to Arthur Gerkis.
    - Medium CVE-2011-3022: Inappropriate use of http for translation
      script. Credit to Google Chrome Security Team (Jorge Obes).
    - Medium CVE-2011-3023: Use-after-free with drag and drop.
      Credit to pa_kt.
    - Low CVE-2011-3024: Browser crash with empty x509 certificate. Credit
      to chrometot.
    - Medium CVE-2011-3025: Out-of-bounds read in h.264 parsing.
      Credit to Sławomir Błażek.
    - High CVE-2011-3026: Integer overflow / truncation in libpng.
      Credit to Jüri Aedla.
    - High CVE-2011-3027: Bad cast in column handling. Credit to
    - Low CVE-2011-3953: Avoid clipboard monitoring after paste event.
      Credit to Daniel Cheng of the Chromium development community.
    - Low CVE-2011-3954: Crash with excessive database usage. Credit to
      Collin Payne.
    - High CVE-2011-3955: Crash aborting an IndexDB transaction. Credit to
      David Grogan of the Chromium development community.
    - Low CVE-2011-3956: Incorrect handling of sandboxed origins inside
      extensions. Credit to Devdatta Akhawe, UC Berkeley.
    - High CVE-2011-3958: Bad casts with column spans. Credit to
    - High CVE-2011-3959: Buffer overflow in locale handling.
      Credit to Aki Helin of OUSPG.
    - Medium CVE-2011-3960: Out-of-bounds read in audio decoding.
      Credit to Aki Helin of OUSPG.
    - Critical CVE-2011-3961: Race condition after crash of utility
      process. Credit to Shawn Goertzen.
    - Medium CVE-2011-3962: Out-of-bounds read in path clipping.
      Credit to Aki Helin of OUSPG.
    - Low CVE-2011-3964: URL bar confusion after drag + drop. Credit to
      Code Audit Labs of
    - Low CVE-2011-3965: Crash in signature check. Credit to Sławomir
    - High CVE-2011-3966: Use-after-free in stylesheet error
      handling. Credit to Aki Helin of OUSPG.
    - Low CVE-2011-3967: Crash with unusual certificate. Credit to Ben
    - High CVE-2011-3968: Use-after-free in CSS handling. Credit to
      Arthur Gerkis.
    - High CVE-2011-3969: Use-after-free in SVG layout. Credit to
      Arthur Gerkis.
    - Medium CVE-2011-3970: Out-of-bounds read in libxslt. Credit to
      Aki Helin of OUSPG.
    - High CVE-2011-3971: Use-after-free with mousemove events.
      Credit to Arthur Gerkis.
    - Medium CVE-2011-3972: Out-of-bounds read in shader translator. Credit
      to Google Chrome Security Team (Inferno).

 -- Giuseppe Iuculano <email address hidden>  Sun, 19 Feb 2012 20:29:17 +0100

Upload details

Uploaded by:
Debian Chromium Maintainers
Uploaded to:
Original maintainer:
Debian Chromium Maintainers
all i386 amd64 armel armhf
Very Urgent

See full publishing history Publishing

Series Pocket Published Component Section



File Size SHA-256 Checksum
chromium-browser_17.0.963.56~r121963-1.dsc 2.9 KiB d646814f65d48009108afa869a75d4891b2dbd28f1e6a161051c9c9e32058588
chromium-browser_17.0.963.56~r121963.orig.tar.bz2 329.2 MiB fa62474c876d535d3efdc4f700c4e0000be6bd0b96cedc9e0cb6a1ef084c7732
chromium-browser_17.0.963.56~r121963-1.debian.tar.gz 236.0 KiB c29e4d1dce79537720845a76ab5958e06d31dd30539d0f9fd13cbb798084f088

No changes file available.

Binary packages built by this source