-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Fri, 06 Dec 2013 16:56:44 +0000 Source: chromium-browser Binary: chromium-browser chromium-browser-dbg chromium-browser-l10n chromium-browser-inspector chromium chromium-dbg chromium-l10n chromium-inspector Architecture: i386 Version: 31.0.1650.63-1~deb7u1 Distribution: wheezy-security Urgency: high Maintainer: amd64 / i386 Build Daemon (brahms) Changed-By: Michael Gilbert Description: chromium - Google's open source chromium web browser chromium-browser - Chromium browser - transitional dummy package chromium-browser-dbg - chromium-browser debug symbols transitional dummy package chromium-browser-inspector - page inspector for the chromium-browser - transitional dummy pack chromium-browser-l10n - chromium-browser language packages - transitional dummy package chromium-dbg - Debugging symbols for the chromium web browser chromium-inspector - page inspector for the chromium browser chromium-l10n - chromium-browser language packages Changes: chromium-browser (31.0.1650.63-1~deb7u1) stable-security; urgency=high . * New upstream stable release: - Medium CVE-2013-6634: Session fixation in sync related to 302 redirects. Credit to Andrey Labunets. - High CVE-2013-6635: Use-after-free in editing. Credit to cloudfuzzer. - Medium CVE-2013-6636: Address bar spoofing related to modal dialogs. Credit to Bas Venis. - CVE-2013-6637: Various fixes from internal audits, fuzzing and other initiatives. - Medium CVE-2013-6638: Buffer overflow in v8. This issue was fixed in v8 version 3.22.24.7. Credit to Jakob Kummerow of the Chromium project. - High CVE-2013-6639: Out of bounds write in v8. This issue was fixed in v8 version 3.22.24.7. Credit to Jakob Kummerow of the Chromium project. - Medium CVE-2013-6640: Out of bounds read in v8. This issue was fixed in v8 version 3.22.24.7. Credit to Jakob Kummerow of the Chromium project. Checksums-Sha1: 71bf7000485835ecf8ce5c89c701b4705ba1628b 47766660 chromium_31.0.1650.63-1~deb7u1_i386.deb a1421902ac9f2445b8c3d43b870e05d663d817ff 487969524 chromium-dbg_31.0.1650.63-1~deb7u1_i386.deb Checksums-Sha256: 6b65f97c8f5d23ac29a6f632bd08b268239946604b817f98f4ece758aa157dea 47766660 chromium_31.0.1650.63-1~deb7u1_i386.deb 57c452c082f78e0e6542408655249f53f906a0c1c5e277f8dbd85aa69eec46e4 487969524 chromium-dbg_31.0.1650.63-1~deb7u1_i386.deb Files: 335b9e056d0040200bb6c81b1d7c8b00 47766660 web optional chromium_31.0.1650.63-1~deb7u1_i386.deb b46355068b217d68170a9beed99edd84 487969524 debug extra chromium-dbg_31.0.1650.63-1~deb7u1_i386.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQIcBAEBCAAGBQJSo8XDAAoJEK1hQZE4PeNyBaQP/172bO+SlFc+gHVJ2aciA7UM Fx+UJG6PKWdhJ5dh10Cnu80AUBEvCLqYRdOd5edZiirfnOvCoZI+rPKLR9B2VWO4 VjwYdsRLHWtzN1n4PIOGmoxp2+XxsYjPFb0dEhavluSfQHWuPyZtUlNTDRagx0uD XpF8oCrzRM5ci25sdafRNNODMNcFXzy4sh9GaQtBOxWqciLjhz0DEg9qgtuP1Efs A50NljZBr+gI89jQD4QbeVaHq+kymCP4NN+CNTn/hvfAdWcxa+ka6HueshiErpPE FN/KwMVHoxotw2WvWH69Kuq4JK5O5Vj+Y2J9TsR0WpSEKY2XF2d2jh8TOeGtvd3y OgynBiOh90Vl/26rQo8m/GBgM2RVRd61Y6nxrRv5b1/xMT3f/fzrH4CbZSrlDBh/ elXMloIG1PZlepy0KxL3/8QaqxfKNujx7kIHES3ED2qCNu36f4+/ddgEUSGylEmg 2M5/v+lLG/govxaKWTv6TH1NJr5iuztZAk6uJFH+ZRgdmJ7yBu3JunMCG5NlhTOg 5IchZH4ys6LlwOuGidgBtR9Vaotrka0cxWZDrz1vNvc7AD+wNw0FFr02pRjp0PHs 6lPdHogw0q7fNX6VaPjmBDc2SA9zdjk9HhO/pl0H1Rl6sGIpc/8cTb9DGA/xMpUq 1+DWaxbFt6kmDcGK/g7u =luwZ -----END PGP SIGNATURE-----