-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 19 Mar 2026 19:35:31 -0400
Source: chromium
Binary: chromium chromium-common chromium-common-dbgsym chromium-dbgsym chromium-driver chromium-headless-shell chromium-headless-shell-dbgsym chromium-sandbox chromium-sandbox-dbgsym chromium-shell chromium-shell-dbgsym
Architecture: i386
Version: 146.0.7680.153-1~deb12u1
Distribution: bookworm-security
Urgency: high
Maintainer: all / amd64 / i386 Build Daemon (x86-conova-01) <buildd_amd64-x86-conova-01@buildd.debian.org>
Changed-By: Andres Salomon <dilinger@debian.org>
Description:
 chromium   - web browser
 chromium-common - web browser - common resources used by the chromium packages
 chromium-driver - web browser - WebDriver support
 chromium-headless-shell - web browser - old headless shell
 chromium-sandbox - web browser - setuid security sandbox for chromium
 chromium-shell - web browser - minimal shell
Closes: 1130569
Changes:
 chromium (146.0.7680.153-1~deb12u1) bookworm-security; urgency=high
 .
   [ Andres Salomon ]
   * New upstream security release.
     - CVE-2026-4439: Out of bounds memory access in WebGL.
       Reported by Goodluck.
     - CVE-2026-4440: Out of bounds read and write in WebGL.
       Reported by c6eed09fc8b174b0f3eebedcceb1e792.
     - CVE-2026-4441: Use after free in Base. Reported by Google.
     - CVE-2026-4442: Heap buffer overflow in CSS. Reported by Syn4pse.
     - CVE-2026-4443: Heap buffer overflow in WebAudio.
       Reported by c6eed09fc8b174b0f3eebedcceb1e792.
     - CVE-2026-4444: Stack buffer overflow in WebRTC.
       Reported by c6eed09fc8b174b0f3eebedcceb1e792.
     - CVE-2026-4445: Use after free in WebRTC.
       Reported by c6eed09fc8b174b0f3eebedcceb1e792.
     - CVE-2026-4446: Use after free in WebRTC.
       Reported by c6eed09fc8b174b0f3eebedcceb1e792.
     - CVE-2026-4447: Inappropriate implementation in V8. Reported by Erge.
     - CVE-2026-4448: Heap buffer overflow in ANGLE.
       Reported by M. Fauzan Wijaya (Gh05t666nero).
     - CVE-2026-4449: Use after free in Blink. Reported by Syn4pse.
     - CVE-2026-4450: Out of bounds write in V8. Reported by qymag1c.
     - CVE-2026-4451: Insufficient validation of untrusted input in
       Navigation. Reported by c6eed09fc8b174b0f3eebedcceb1e792.
     - CVE-2026-4452: Integer overflow in ANGLE. Reported by cinzinga.
     - CVE-2026-4453: Integer overflow in Dawn. Reported by sweetchip.
     - CVE-2026-4454: Use after free in Network.
       Reported by heapracer (@heapracer).
     - CVE-2026-4455: Heap buffer overflow in PDFium.
       Reported by c6eed09fc8b174b0f3eebedcceb1e792.
     - CVE-2026-4456: Use after free in Digital Credentials API.
       Reported by sean wong.
     - CVE-2026-4457: Type Confusion in V8.
       Reported by Zhenpeng (Leo) Lin at depthfirst.
     - CVE-2026-4458: Use after free in Extensions. Reported by Shaheen Fazim.
     - CVE-2026-4459: Out of bounds read and write in WebAudio. Reported by
       Jihyeon Jeong (Compsec Lab, Seoul National University / Research Intern)
     - CVE-2026-4460: Out of bounds read in Skia.
       Reported by c6eed09fc8b174b0f3eebedcceb1e792.
     - CVE-2026-4461: Inappropriate implementation in V8. Reported by Google.
     - CVE-2026-4462: Out of bounds read in Blink.
       Reported by heapracer (@heapracer).
     - CVE-2026-4463: Heap buffer overflow in WebRTC.
       Reported by c6eed09fc8b174b0f3eebedcceb1e792.
     - CVE-2026-4464: Integer overflow in ANGLE. Reported by heesun.
   * d/patches/disable/glic.patch: refresh for upstream tab nudging changes
 .
   [ Jianfeng Liu ]
   * add upstreamed patch of boringssl to fix loong64 build (closes: #1130569)
Checksums-Sha1:
 2e7b14b79d2ad736af4bf4405c5d36966961c9d9 5174244 chromium-common-dbgsym_146.0.7680.153-1~deb12u1_i386.deb
 980457aa101400d1265c84b884a138c9d0101d10 29388724 chromium-common_146.0.7680.153-1~deb12u1_i386.deb
 a2b3fcf1edfe806cfbf205cc168be66905bf6458 35578952 chromium-dbgsym_146.0.7680.153-1~deb12u1_i386.deb
 1fa369911846f9073bed4ac6e24dbd1d1496b50a 7779436 chromium-driver_146.0.7680.153-1~deb12u1_i386.deb
 c8b91786a3eb99bff99cb1ab74a58ec2a4fceb0f 29512792 chromium-headless-shell-dbgsym_146.0.7680.153-1~deb12u1_i386.deb
 f7f6b508097cea1031c1d7628d2b5db750669dc3 58164716 chromium-headless-shell_146.0.7680.153-1~deb12u1_i386.deb
 a2ce5280a9dcb180ab5dbc7ffa348f9a3edce9ae 17824 chromium-sandbox-dbgsym_146.0.7680.153-1~deb12u1_i386.deb
 a0cc0aa93c8ea1039f98c0246dc040d6d2ef0702 113432 chromium-sandbox_146.0.7680.153-1~deb12u1_i386.deb
 9f85a596485f2b04d44fcf35405c5e1a40fbd09b 32286844 chromium-shell-dbgsym_146.0.7680.153-1~deb12u1_i386.deb
 b42eec83a23c81841b48623ece7a7b21c986800e 63395992 chromium-shell_146.0.7680.153-1~deb12u1_i386.deb
 6eef8123c4ea8a954155d393ecdeb6426da7fb5a 30404 chromium_146.0.7680.153-1~deb12u1_i386-buildd.buildinfo
 b54d98dcb237bc34ee8ac80f9e3579232f59b0da 75564732 chromium_146.0.7680.153-1~deb12u1_i386.deb
Checksums-Sha256:
 68ac7da02e2371a0b3453882e5d7e3068253c66ebd957cf4de83abf22369174e 5174244 chromium-common-dbgsym_146.0.7680.153-1~deb12u1_i386.deb
 61157e2efee2e4181bb91de3cf4c8b6dc7bd8b440b873cfdd52d4cd3cc746e4a 29388724 chromium-common_146.0.7680.153-1~deb12u1_i386.deb
 e8003739cd7ca0df64505d0c3060af6b1c9893ab418e006a02f4ede7acefce55 35578952 chromium-dbgsym_146.0.7680.153-1~deb12u1_i386.deb
 4a61d98071ce9a2beb7dd22dcb5ca49d54ddfcfe6c9be8a0196e5bc2e63ff837 7779436 chromium-driver_146.0.7680.153-1~deb12u1_i386.deb
 9271f3221535ceafdfb73fbbe62c99c219851887a61187423b37b8ba65a41088 29512792 chromium-headless-shell-dbgsym_146.0.7680.153-1~deb12u1_i386.deb
 914f3fd1aa728d7c295b1965f62a31ce45ac3cb58ea1bc5e10c0a5f1290cdce7 58164716 chromium-headless-shell_146.0.7680.153-1~deb12u1_i386.deb
 bccceab3dbb344fddfad342cc4404921c967b761d08f647ca184dc310c8e70b7 17824 chromium-sandbox-dbgsym_146.0.7680.153-1~deb12u1_i386.deb
 c80125537687fe60392516778a1a6311886d3b9c07f6d42c9205a34d3d5c2d65 113432 chromium-sandbox_146.0.7680.153-1~deb12u1_i386.deb
 475cfe1e88d64a408e7935863eed4e0588c517de1baaca778baad1e64925964b 32286844 chromium-shell-dbgsym_146.0.7680.153-1~deb12u1_i386.deb
 8f7c4aa4f8639e1b72da4ec3a5589c3335e9bb174ef03375ae860756877b2db1 63395992 chromium-shell_146.0.7680.153-1~deb12u1_i386.deb
 d8754b0cc04ebe7fbabf2919e3f667f8763ef868888f22d2929732484aa88903 30404 chromium_146.0.7680.153-1~deb12u1_i386-buildd.buildinfo
 2ed033908f693ecab1ae4e04e90fcefc8e6a65bd3f2fcd04a49583f9e9b1a703 75564732 chromium_146.0.7680.153-1~deb12u1_i386.deb
Files:
 cae29e29a55bbc1b6bf5a45a58dbeeaa 5174244 debug optional chromium-common-dbgsym_146.0.7680.153-1~deb12u1_i386.deb
 59e9dbce6f2880e4e05e5d2644497fac 29388724 web optional chromium-common_146.0.7680.153-1~deb12u1_i386.deb
 73df8eaa89a19ab56e8c474443d07d5a 35578952 debug optional chromium-dbgsym_146.0.7680.153-1~deb12u1_i386.deb
 423aae35ebefaaea4c8ced25414b0348 7779436 web optional chromium-driver_146.0.7680.153-1~deb12u1_i386.deb
 182a7f6c7b9a846171fbef19150384ed 29512792 debug optional chromium-headless-shell-dbgsym_146.0.7680.153-1~deb12u1_i386.deb
 6b10af0f0043dab174428885d766c265 58164716 web optional chromium-headless-shell_146.0.7680.153-1~deb12u1_i386.deb
 4195fe53b0e34fc663dcb02f01c29edb 17824 debug optional chromium-sandbox-dbgsym_146.0.7680.153-1~deb12u1_i386.deb
 20ebd70605ef42578a4ddad21529be7e 113432 web optional chromium-sandbox_146.0.7680.153-1~deb12u1_i386.deb
 13a5040bb711f82cb2c79c956c49426a 32286844 debug optional chromium-shell-dbgsym_146.0.7680.153-1~deb12u1_i386.deb
 0e96a5ce416e76988e2353d54cdfdb90 63395992 web optional chromium-shell_146.0.7680.153-1~deb12u1_i386.deb
 f1fb332bd84ab4f749f112b53e36762e 30404 web optional chromium_146.0.7680.153-1~deb12u1_i386-buildd.buildinfo
 6be61300850dc214af4b839c9fccaafe 75564732 web optional chromium_146.0.7680.153-1~deb12u1_i386.deb

-----BEGIN PGP SIGNATURE-----
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=O+pu
-----END PGP SIGNATURE-----