[ubuntu/wily-proposed] chromium-browser 43.0.2357.81-0ubuntu1.1179 (Accepted)
Chad MILLER
chad.miller at canonical.com
Tue Jun 9 14:46:24 UTC 2015
chromium-browser (43.0.2357.81-0ubuntu1.1179) wily; urgency=medium
* Upstream release 43.0.2357.81.
- "Icons not displaying properly on Linux" (LP: #1449063)
* Upstream release 43.0.2357.65:
- CVE-2015-1252: Sandbox escape in Chrome.
- CVE-2015-1253: Cross-origin bypass in DOM.
- CVE-2015-1254: Cross-origin bypass in Editing.
- CVE-2015-1255: Use-after-free in WebAudio.
- CVE-2015-1256: Use-after-free in SVG.
- CVE-2015-1251: Use-after-free in Speech.
- CVE-2015-1257: Container-overflow in SVG.
- CVE-2015-1258: Negative-size parameter in Libvpx.
- CVE-2015-1259: Uninitialized value in PDFium.
- CVE-2015-1260: Use-after-free in WebRTC.
- CVE-2015-1261: URL bar spoofing.
- CVE-2015-1262: Uninitialized value in Blink.
- CVE-2015-1263: Insecure download of spellcheck dictionary.
- CVE-2015-1264: Cross-site scripting in bookmarks.
- CVE-2015-1265: Various fixes from internal audits, fuzzing and other
initiatives.
- Multiple vulnerabilities in V8 fixed at the tip of the 4.3 branch
(currently 4.3.61.21).
* debian/patches/display-scaling-report-hardware-info: removed, unnecessary.
* debian/patches/coordinate-space-map: removed, unnecessary.
* debian/patches/enable_vaapi_on_linux.diff: Temporarily disable patch until
ARM works.
* debian/chromium-browser.sh.in: Add --verbose to get logging info.
* debian/patches/{notifications-nicer,mir-support}: disable unnecessary
patches.
* debian/control, debian/chromium-browser.sh.in: Prompt nothing about
Flash plugin. Send Help clicks to Wiki instead.
Date: Mon, 01 Jun 2015 15:29:04 -0400
Changed-By: Chad MILLER <chad.miller at canonical.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Signed-By: Chris Coulson <chris.coulson at canonical.com>
https://launchpad.net/ubuntu/+source/chromium-browser/43.0.2357.81-0ubuntu1.1179
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Mon, 01 Jun 2015 15:29:04 -0400
Source: chromium-browser
Binary: chromium-browser chromium-browser-dbg chromium-browser-l10n chromium-codecs-ffmpeg chromium-codecs-ffmpeg-dbg chromium-codecs-ffmpeg-extra chromium-codecs-ffmpeg-extra-dbg chromium-chromedriver chromium-chromedriver-dbg
Architecture: source
Version: 43.0.2357.81-0ubuntu1.1179
Distribution: wily
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Chad MILLER <chad.miller at canonical.com>
Description:
chromium-browser - Chromium web browser, open-source version of Chrome
chromium-browser-dbg - chromium-browser debug symbols
chromium-browser-l10n - chromium-browser language packages
chromium-chromedriver - WebDriver driver for the Chromium Browser
chromium-chromedriver-dbg - chromium-chromedriver debug symbols
chromium-codecs-ffmpeg - Free ffmpeg codecs for the Chromium Browser
chromium-codecs-ffmpeg-dbg - chromium-codecs-ffmpeg debug symbols
chromium-codecs-ffmpeg-extra - Extra ffmpeg codecs for the Chromium Browser
chromium-codecs-ffmpeg-extra-dbg - chromium-codecs-ffmpeg-extra debug symbols
Launchpad-Bugs-Fixed: 1449063
Changes:
chromium-browser (43.0.2357.81-0ubuntu1.1179) wily; urgency=medium
.
* Upstream release 43.0.2357.81.
- "Icons not displaying properly on Linux" (LP: #1449063)
* Upstream release 43.0.2357.65:
- CVE-2015-1252: Sandbox escape in Chrome.
- CVE-2015-1253: Cross-origin bypass in DOM.
- CVE-2015-1254: Cross-origin bypass in Editing.
- CVE-2015-1255: Use-after-free in WebAudio.
- CVE-2015-1256: Use-after-free in SVG.
- CVE-2015-1251: Use-after-free in Speech.
- CVE-2015-1257: Container-overflow in SVG.
- CVE-2015-1258: Negative-size parameter in Libvpx.
- CVE-2015-1259: Uninitialized value in PDFium.
- CVE-2015-1260: Use-after-free in WebRTC.
- CVE-2015-1261: URL bar spoofing.
- CVE-2015-1262: Uninitialized value in Blink.
- CVE-2015-1263: Insecure download of spellcheck dictionary.
- CVE-2015-1264: Cross-site scripting in bookmarks.
- CVE-2015-1265: Various fixes from internal audits, fuzzing and other
initiatives.
- Multiple vulnerabilities in V8 fixed at the tip of the 4.3 branch
(currently 4.3.61.21).
* debian/patches/display-scaling-report-hardware-info: removed, unnecessary.
* debian/patches/coordinate-space-map: removed, unnecessary.
* debian/patches/enable_vaapi_on_linux.diff: Temporarily disable patch until
ARM works.
* debian/chromium-browser.sh.in: Add --verbose to get logging info.
* debian/patches/{notifications-nicer,mir-support}: disable unnecessary
patches.
* debian/control, debian/chromium-browser.sh.in: Prompt nothing about
Flash plugin. Send Help clicks to Wiki instead.
Checksums-Sha1:
fbc59f68b286d1ee477439f5619c02dc393111c1 2904 chromium-browser_43.0.2357.81-0ubuntu1.1179.dsc
02659c663203130d3636b381e11f17d880d4d7f1 477704 chromium-browser_43.0.2357.81-0ubuntu1.1179.debian.tar.xz
Checksums-Sha256:
8e54ff4e9db1c02657fae4ce04a49155dbda86e02485159905e3908b97b763c3 2904 chromium-browser_43.0.2357.81-0ubuntu1.1179.dsc
2523690bc8968f174c7a082e604509b1f625bd9009ab766d62e90756dd7f5600 477704 chromium-browser_43.0.2357.81-0ubuntu1.1179.debian.tar.xz
Files:
693660b2b3d1fceef32a8f7100e13eff 2904 web optional chromium-browser_43.0.2357.81-0ubuntu1.1179.dsc
861949f1c46cbcdd48ceed51901e8fb5 477704 web optional chromium-browser_43.0.2357.81-0ubuntu1.1179.debian.tar.xz
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
iQEcBAEBAgAGBQJVdvu2AAoJEGEfvezVlG4PMpwH/2Q5pqsIIInWcVQRLtsDpyc2
mpbA7Yvs9YOeHFBa9mPV/27r2aa1me+W2pmg7dvOIihsAZ1QMusRpbqroqeVV0gU
ffH1M63esZ1eJz5l0efL5z1zYkP4YKYOnFXaiHsXqDtPiVECwZLBzt73PU0rYjTe
dC7qMCi40xUfpY1A6q+SVXdBseTk3xIawM/djSgXtjY8qOdbNPrHef67VFzEns6N
NKStIVY9pIh6QK9DY0sgpI9bJP76RPUPfH2sX4eOj6foOpkX/v8//Xq1wtQxGj5u
eErw3gsKZ9pykSW6K8YMP31RNHfcS3jhKctrOZIoen7N/rcFiYNcl05kBHURC5E=
=A4au
-----END PGP SIGNATURE-----
More information about the Wily-changes
mailing list