[ubuntu/wily-proposed] chromium-browser 45.0.2454.85-0ubuntu1.1198 (Accepted)

Tue Sep 22 17:27:38 UTC 2015

chromium-browser (45.0.2454.85-0ubuntu1.1198) wily; urgency=medium

  * Upstream release 45.0.2454.85:
    - CVE-2015-1291: Cross-origin bypass in DOM.
    - CVE-2015-1292: Cross-origin bypass in ServiceWorker.
    - CVE-2015-1293: Cross-origin bypass in DOM.
    - CVE-2015-1294: Use-after-free in Skia.
    - CVE-2015-1295: Use-after-free in Printing.
    - CVE-2015-1296: Character spoofing in omnibox.
    - CVE-2015-1297: Permission scoping error in WebRequest.
    - CVE-2015-1298: URL validation error in extensions.
    - CVE-2015-1299: Use-after-free in Blink.
    - CVE-2015-1300: Information leak in Blink.
    - CVE-2015-1301: Various fixes from internal audits, fuzzing and other
      initiatives.
  * debian/patches/search-credit.patch: Don't add GET param if search URL
    doesn't already use them. (LP: #1490237)
  * debian/source/lintian-overrides: Ignore new binaries in orig tar.
  * debian/patches/disable-sse2: SSE exclusion is smarter now. Re-include.

Date: Mon, 14 Sep 2015 20:11:00 -0400
Changed-By: Chad MILLER <chad.miller at canonical.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Signed-By: Chris Coulson <chris.coulson at canonical.com>
https://launchpad.net/ubuntu/+source/chromium-browser/45.0.2454.85-0ubuntu1.1198
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Mon, 14 Sep 2015 20:11:00 -0400
Source: chromium-browser
Binary: chromium-browser chromium-browser-dbg chromium-browser-l10n chromium-codecs-ffmpeg chromium-codecs-ffmpeg-dbg chromium-codecs-ffmpeg-extra chromium-codecs-ffmpeg-extra-dbg chromium-chromedriver chromium-chromedriver-dbg
Architecture: source
Version: 45.0.2454.85-0ubuntu1.1198
Distribution: wily
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Chad MILLER <chad.miller at canonical.com>
Description:
 chromium-browser - Chromium web browser, open-source version of Chrome
 chromium-browser-dbg - chromium-browser debug symbols
 chromium-browser-l10n - chromium-browser language packages
 chromium-chromedriver - WebDriver driver for the Chromium Browser
 chromium-chromedriver-dbg - chromium-chromedriver debug symbols
 chromium-codecs-ffmpeg - Free ffmpeg codecs for the Chromium Browser
 chromium-codecs-ffmpeg-dbg - chromium-codecs-ffmpeg debug symbols
 chromium-codecs-ffmpeg-extra - Extra ffmpeg codecs for the Chromium Browser
 chromium-codecs-ffmpeg-extra-dbg - chromium-codecs-ffmpeg-extra debug symbols
Launchpad-Bugs-Fixed: 1490237
Changes:
 chromium-browser (45.0.2454.85-0ubuntu1.1198) wily; urgency=medium
 .
   * Upstream release 45.0.2454.85:
     - CVE-2015-1291: Cross-origin bypass in DOM.
     - CVE-2015-1292: Cross-origin bypass in ServiceWorker.
     - CVE-2015-1293: Cross-origin bypass in DOM.
     - CVE-2015-1294: Use-after-free in Skia.
     - CVE-2015-1295: Use-after-free in Printing.
     - CVE-2015-1296: Character spoofing in omnibox.
     - CVE-2015-1297: Permission scoping error in WebRequest.
     - CVE-2015-1298: URL validation error in extensions.
     - CVE-2015-1299: Use-after-free in Blink.
     - CVE-2015-1300: Information leak in Blink.
     - CVE-2015-1301: Various fixes from internal audits, fuzzing and other
       initiatives.
   * debian/patches/search-credit.patch: Don't add GET param if search URL
     doesn't already use them. (LP: #1490237)
   * debian/source/lintian-overrides: Ignore new binaries in orig tar.
   * debian/patches/disable-sse2: SSE exclusion is smarter now. Re-include.
Checksums-Sha1:
 cc44cd90a09b277421ced065d9ddb5f8288bf4bc 2904 chromium-browser_45.0.2454.85-0ubuntu1.1198.dsc
 90f4643b6fe6ef4c4283ad54b18ce81a97bb4866 321222028 chromium-browser_45.0.2454.85.orig.tar.xz
 d23b7b6cd0424c913c1a6d138fd6fecfcb24bfc4 478156 chromium-browser_45.0.2454.85-0ubuntu1.1198.debian.tar.xz
Checksums-Sha256:
 aa1d3c804267f8db4aa0c4db2224df11f9da026cde7f08f1aa8fdcb591101e10 2904 chromium-browser_45.0.2454.85-0ubuntu1.1198.dsc
 3e8c03a5a6ea4cc35017404a58687ca18207eed70781bad7f2d7d70610934c91 321222028 chromium-browser_45.0.2454.85.orig.tar.xz
 14ca3749ce0e422db08c34c384953a728c96b5f7cef7c6e35d027c4f5bc27fd1 478156 chromium-browser_45.0.2454.85-0ubuntu1.1198.debian.tar.xz
Files:
 06ba99ec40e4839e6509c7c8a8938596 2904 web optional chromium-browser_45.0.2454.85-0ubuntu1.1198.dsc
 fa430c3694ea64da5f26c9bbb0059021 321222028 web optional chromium-browser_45.0.2454.85.orig.tar.xz
 cf0d740e9c71e28e5db531e903018be1 478156 web optional chromium-browser_45.0.2454.85-0ubuntu1.1198.debian.tar.xz

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1

iQEcBAEBAgAGBQJWAY22AAoJEGEfvezVlG4PmIkH/iLr1nDYIsGl5Ya1NyiNreQW
RF78qVnVQqD5A4wQMLtzkn92OlZ4WDjwuuSKm4siv/89ceYXdOufsE4/VqVqUkn9
hgnqVZq3cZTR4WlvNYWNgd2mIfAIilv66hhRjJW9GmpoYaLfbW/+DnTqs1mH9+O0
GDtsg+SpcjY1B5CItoOEK3a2NX8N13qmuT+DcZZofU1iQBfqPwmJLAGTzRcDnw2n
W/qU6blh7i7AxIAxvYBS8EkN4x5/Ahx5yX0yPNxDNgThuzpy56MXEu/9qsUtAU5U
k1eGpA5PkmcS6/3AG1b5aBycbxGIssfq5FpCSYpV+Pf35wrGPBMnlMkfn+gQ/ug=
=WEo4
-----END PGP SIGNATURE-----