-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 19 Mar 2026 19:35:31 -0400
Source: chromium
Binary: chromium chromium-common chromium-common-dbgsym chromium-dbgsym chromium-driver chromium-headless-shell chromium-headless-shell-dbgsym chromium-sandbox chromium-sandbox-dbgsym chromium-shell chromium-shell-dbgsym
Architecture: amd64
Version: 146.0.7680.153-1~deb12u1
Distribution: bookworm-security
Urgency: high
Maintainer: amd64 / i386 Build Daemon (x86-csail-01) <buildd_amd64-x86-csail-01@buildd.debian.org>
Changed-By: Andres Salomon <dilinger@debian.org>
Description:
 chromium   - web browser
 chromium-common - web browser - common resources used by the chromium packages
 chromium-driver - web browser - WebDriver support
 chromium-headless-shell - web browser - old headless shell
 chromium-sandbox - web browser - setuid security sandbox for chromium
 chromium-shell - web browser - minimal shell
Closes: 1130569
Changes:
 chromium (146.0.7680.153-1~deb12u1) bookworm-security; urgency=high
 .
   [ Andres Salomon ]
   * New upstream security release.
     - CVE-2026-4439: Out of bounds memory access in WebGL.
       Reported by Goodluck.
     - CVE-2026-4440: Out of bounds read and write in WebGL.
       Reported by c6eed09fc8b174b0f3eebedcceb1e792.
     - CVE-2026-4441: Use after free in Base. Reported by Google.
     - CVE-2026-4442: Heap buffer overflow in CSS. Reported by Syn4pse.
     - CVE-2026-4443: Heap buffer overflow in WebAudio.
       Reported by c6eed09fc8b174b0f3eebedcceb1e792.
     - CVE-2026-4444: Stack buffer overflow in WebRTC.
       Reported by c6eed09fc8b174b0f3eebedcceb1e792.
     - CVE-2026-4445: Use after free in WebRTC.
       Reported by c6eed09fc8b174b0f3eebedcceb1e792.
     - CVE-2026-4446: Use after free in WebRTC.
       Reported by c6eed09fc8b174b0f3eebedcceb1e792.
     - CVE-2026-4447: Inappropriate implementation in V8. Reported by Erge.
     - CVE-2026-4448: Heap buffer overflow in ANGLE.
       Reported by M. Fauzan Wijaya (Gh05t666nero).
     - CVE-2026-4449: Use after free in Blink. Reported by Syn4pse.
     - CVE-2026-4450: Out of bounds write in V8. Reported by qymag1c.
     - CVE-2026-4451: Insufficient validation of untrusted input in
       Navigation. Reported by c6eed09fc8b174b0f3eebedcceb1e792.
     - CVE-2026-4452: Integer overflow in ANGLE. Reported by cinzinga.
     - CVE-2026-4453: Integer overflow in Dawn. Reported by sweetchip.
     - CVE-2026-4454: Use after free in Network.
       Reported by heapracer (@heapracer).
     - CVE-2026-4455: Heap buffer overflow in PDFium.
       Reported by c6eed09fc8b174b0f3eebedcceb1e792.
     - CVE-2026-4456: Use after free in Digital Credentials API.
       Reported by sean wong.
     - CVE-2026-4457: Type Confusion in V8.
       Reported by Zhenpeng (Leo) Lin at depthfirst.
     - CVE-2026-4458: Use after free in Extensions. Reported by Shaheen Fazim.
     - CVE-2026-4459: Out of bounds read and write in WebAudio. Reported by
       Jihyeon Jeong (Compsec Lab, Seoul National University / Research Intern)
     - CVE-2026-4460: Out of bounds read in Skia.
       Reported by c6eed09fc8b174b0f3eebedcceb1e792.
     - CVE-2026-4461: Inappropriate implementation in V8. Reported by Google.
     - CVE-2026-4462: Out of bounds read in Blink.
       Reported by heapracer (@heapracer).
     - CVE-2026-4463: Heap buffer overflow in WebRTC.
       Reported by c6eed09fc8b174b0f3eebedcceb1e792.
     - CVE-2026-4464: Integer overflow in ANGLE. Reported by heesun.
   * d/patches/disable/glic.patch: refresh for upstream tab nudging changes
 .
   [ Jianfeng Liu ]
   * add upstreamed patch of boringssl to fix loong64 build (closes: #1130569)
Checksums-Sha1:
 7ab537e3904e84a450fa29ab3579f660fd381552 5369384 chromium-common-dbgsym_146.0.7680.153-1~deb12u1_amd64.deb
 2c3052dd57f0460ad26923b7649547cef553dc9c 29243080 chromium-common_146.0.7680.153-1~deb12u1_amd64.deb
 6a2fb72216f4b47208b9fe52bd8c9fa339ef5612 35358232 chromium-dbgsym_146.0.7680.153-1~deb12u1_amd64.deb
 a5d090eeaa590dabdad1ccf024b6732bcf3bcd3c 7444204 chromium-driver_146.0.7680.153-1~deb12u1_amd64.deb
 89d9e0bb6d45c9497828d98de4c726c4e266ad60 29335712 chromium-headless-shell-dbgsym_146.0.7680.153-1~deb12u1_amd64.deb
 c32029448aaafb7c54ca97c6febfa2feed9c965b 56577180 chromium-headless-shell_146.0.7680.153-1~deb12u1_amd64.deb
 cc72c8317bc217ee6338aa5ec22d0a27ac75a9c6 19292 chromium-sandbox-dbgsym_146.0.7680.153-1~deb12u1_amd64.deb
 aaa5e89b7b9b6707e5eb9273dbf1ecc235e2ebab 113488 chromium-sandbox_146.0.7680.153-1~deb12u1_amd64.deb
 2f937cf432e087d85793362e6564f8f4c02e2bdd 32113656 chromium-shell-dbgsym_146.0.7680.153-1~deb12u1_amd64.deb
 ac58a292684c219c998c8f46befac73ff59f4cbb 61623908 chromium-shell_146.0.7680.153-1~deb12u1_amd64.deb
 3d56943a72b124dd26f8e547c2ecc8c9429ab27b 30422 chromium_146.0.7680.153-1~deb12u1_amd64-buildd.buildinfo
 b4e31aa82b55c7dc458b72b148de38f994fc3452 72985324 chromium_146.0.7680.153-1~deb12u1_amd64.deb
Checksums-Sha256:
 6f313333ae0c4f8e2ab6ff2b5eda092c81e0b4cb9028924d01eb07c4cc3e3320 5369384 chromium-common-dbgsym_146.0.7680.153-1~deb12u1_amd64.deb
 faf8cefcfbfd29389b847f25e8bf013adb4ec6519f9bac476a9de0487276eb2b 29243080 chromium-common_146.0.7680.153-1~deb12u1_amd64.deb
 2f8b8ded3e78f134b34c1a3daa9162c89128c3a27b6e1ce2cd303372b7f26590 35358232 chromium-dbgsym_146.0.7680.153-1~deb12u1_amd64.deb
 e8d4b2c08204e777d8252aae3ace9b8c4b41dff6722026808bd0def592b83372 7444204 chromium-driver_146.0.7680.153-1~deb12u1_amd64.deb
 a9c018501fed565f3024f8e5b2d614969734cd37af673d20b7233c6f2e2c0e27 29335712 chromium-headless-shell-dbgsym_146.0.7680.153-1~deb12u1_amd64.deb
 fb9205834c6d82c1a252ff09392a7b5546a93a1e947365fc3689b2805482fa84 56577180 chromium-headless-shell_146.0.7680.153-1~deb12u1_amd64.deb
 62673b10f5e27d3c516342f059af2809a2690fbc1af53d1658f148117193bb4b 19292 chromium-sandbox-dbgsym_146.0.7680.153-1~deb12u1_amd64.deb
 c380276c2032e2ce6e6212745caa822d289d2c162cca0989a818069fdf2cbce1 113488 chromium-sandbox_146.0.7680.153-1~deb12u1_amd64.deb
 2dff1a50f00cc6a0ffa592acb39fcd40a67a07a0d16942b61a0b3b9f5dbd473e 32113656 chromium-shell-dbgsym_146.0.7680.153-1~deb12u1_amd64.deb
 f35fbc4809392145c162ff6b149ccc074470b1226cd8bb3fd7c0388edd119bc6 61623908 chromium-shell_146.0.7680.153-1~deb12u1_amd64.deb
 73b4dd42bf12d8a333deb9fc896d9e4ff6c46f33ad67eba84364a72960206aba 30422 chromium_146.0.7680.153-1~deb12u1_amd64-buildd.buildinfo
 470168c13fad9ac43a525e1fd4f251e52bf6dd4d25e273aaec45ae45deadaa95 72985324 chromium_146.0.7680.153-1~deb12u1_amd64.deb
Files:
 07f5288e091ebabdead3899b6c1d2d4c 5369384 debug optional chromium-common-dbgsym_146.0.7680.153-1~deb12u1_amd64.deb
 e0434a0ce713227bda079333dae48cd9 29243080 web optional chromium-common_146.0.7680.153-1~deb12u1_amd64.deb
 ead03f6ae272f19f3a64ecd4bbc58a66 35358232 debug optional chromium-dbgsym_146.0.7680.153-1~deb12u1_amd64.deb
 439a509f3bc6ab352a1c4840a7e4aa06 7444204 web optional chromium-driver_146.0.7680.153-1~deb12u1_amd64.deb
 43e0b6ab055b8a2e005f94fcebf305d7 29335712 debug optional chromium-headless-shell-dbgsym_146.0.7680.153-1~deb12u1_amd64.deb
 ad8b229f90ce7f013a730a796071b2ea 56577180 web optional chromium-headless-shell_146.0.7680.153-1~deb12u1_amd64.deb
 10c7a2eeab5ad2ff77a2d550329bb0c1 19292 debug optional chromium-sandbox-dbgsym_146.0.7680.153-1~deb12u1_amd64.deb
 a952bf1fd5d0aafe19be25306bff50a9 113488 web optional chromium-sandbox_146.0.7680.153-1~deb12u1_amd64.deb
 7fa1f49035374f054c03d15476ad74af 32113656 debug optional chromium-shell-dbgsym_146.0.7680.153-1~deb12u1_amd64.deb
 71a5c74d027c0ff268cb0134ba4efacc 61623908 web optional chromium-shell_146.0.7680.153-1~deb12u1_amd64.deb
 204dd6a226101d8c2950e8d455d7d033 30422 web optional chromium_146.0.7680.153-1~deb12u1_amd64-buildd.buildinfo
 d98e0a19e440f9410ebf87e1b49bd51f 72985324 web optional chromium_146.0.7680.153-1~deb12u1_amd64.deb

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEBDWXQb2umOtH4DRpYg9P9sm2dfEFAmm9dlYACgkQYg9P9sm2
dfFGQA//Uo9UWa6OIC4sz50XJoD7VEdRPzkBuFhyKN8W613S94e2QnkdodKc2J78
NaxvwBedj02WdEEZRnFwSMVMK3BCepl4/m9aX5wXxJ/31fwx6J+Ifdp7bSVzIERI
Z8Bwazm2uOOFzNWatIlYbkJ4O82fuLtIesqIjJPnwHBrghwJqcvJTFtU2Ka72Lmu
MngULwS3R1Z3k1OZbIs88tq/1IqhYERlelwb+2aK/FufNEW+HbGTc3MRGtq/O9LA
on+4SBUwj9pWOj2zKOlcfTdTh+NQX1B9GuliijC46Mr7L00qn20WUUoBRE5vPXek
yESM2qvt3ggFj3o76DBEsVAT1vazUNCIetG2s4JJgDDBuE5DVai/jxK0GDiR76CA
bdU4v6rShhF+IIC4y2S3D2wMN6EKEJ/9xKJGWFFedkk6VZrkwvZBE7bHchhBtlsY
Br3SMRNbudOlmyfwvi7D9jpUHpuKao2lmJCrTEjSIusqfBSQXSAOBCdbL8xHDR/c
mN2PUVFqTaI9P14sjSVaDNMjPfSK4GHM76WlZblEcxVckVUnIXI243jN8bQGH183
vgu/JRA5uK/FbQMrtUpdAaq+6zy8Elf6Ak9KUFmwCyjn4f06UL5d3jXcakXLuGNK
EERkRhxE/l8wvUTTziUOutN+EUe48pqsYzP7Mlj+6loQ0sc14z4=
=QDl2
-----END PGP SIGNATURE-----