-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 19 Mar 2026 19:35:31 -0400
Source: chromium
Binary: chromium chromium-common chromium-common-dbgsym chromium-dbgsym chromium-driver chromium-headless-shell chromium-headless-shell-dbgsym chromium-sandbox chromium-sandbox-dbgsym chromium-shell chromium-shell-dbgsym
Architecture: armhf
Version: 146.0.7680.153-1~deb12u1
Distribution: bookworm-security
Urgency: high
Maintainer: arm Build Daemon (arm-conova-01) <buildd_arm64-arm-conova-01@buildd.debian.org>
Changed-By: Andres Salomon <dilinger@debian.org>
Description:
 chromium   - web browser
 chromium-common - web browser - common resources used by the chromium packages
 chromium-driver - web browser - WebDriver support
 chromium-headless-shell - web browser - old headless shell
 chromium-sandbox - web browser - setuid security sandbox for chromium
 chromium-shell - web browser - minimal shell
Closes: 1130569
Changes:
 chromium (146.0.7680.153-1~deb12u1) bookworm-security; urgency=high
 .
   [ Andres Salomon ]
   * New upstream security release.
     - CVE-2026-4439: Out of bounds memory access in WebGL.
       Reported by Goodluck.
     - CVE-2026-4440: Out of bounds read and write in WebGL.
       Reported by c6eed09fc8b174b0f3eebedcceb1e792.
     - CVE-2026-4441: Use after free in Base. Reported by Google.
     - CVE-2026-4442: Heap buffer overflow in CSS. Reported by Syn4pse.
     - CVE-2026-4443: Heap buffer overflow in WebAudio.
       Reported by c6eed09fc8b174b0f3eebedcceb1e792.
     - CVE-2026-4444: Stack buffer overflow in WebRTC.
       Reported by c6eed09fc8b174b0f3eebedcceb1e792.
     - CVE-2026-4445: Use after free in WebRTC.
       Reported by c6eed09fc8b174b0f3eebedcceb1e792.
     - CVE-2026-4446: Use after free in WebRTC.
       Reported by c6eed09fc8b174b0f3eebedcceb1e792.
     - CVE-2026-4447: Inappropriate implementation in V8. Reported by Erge.
     - CVE-2026-4448: Heap buffer overflow in ANGLE.
       Reported by M. Fauzan Wijaya (Gh05t666nero).
     - CVE-2026-4449: Use after free in Blink. Reported by Syn4pse.
     - CVE-2026-4450: Out of bounds write in V8. Reported by qymag1c.
     - CVE-2026-4451: Insufficient validation of untrusted input in
       Navigation. Reported by c6eed09fc8b174b0f3eebedcceb1e792.
     - CVE-2026-4452: Integer overflow in ANGLE. Reported by cinzinga.
     - CVE-2026-4453: Integer overflow in Dawn. Reported by sweetchip.
     - CVE-2026-4454: Use after free in Network.
       Reported by heapracer (@heapracer).
     - CVE-2026-4455: Heap buffer overflow in PDFium.
       Reported by c6eed09fc8b174b0f3eebedcceb1e792.
     - CVE-2026-4456: Use after free in Digital Credentials API.
       Reported by sean wong.
     - CVE-2026-4457: Type Confusion in V8.
       Reported by Zhenpeng (Leo) Lin at depthfirst.
     - CVE-2026-4458: Use after free in Extensions. Reported by Shaheen Fazim.
     - CVE-2026-4459: Out of bounds read and write in WebAudio. Reported by
       Jihyeon Jeong (Compsec Lab, Seoul National University / Research Intern)
     - CVE-2026-4460: Out of bounds read in Skia.
       Reported by c6eed09fc8b174b0f3eebedcceb1e792.
     - CVE-2026-4461: Inappropriate implementation in V8. Reported by Google.
     - CVE-2026-4462: Out of bounds read in Blink.
       Reported by heapracer (@heapracer).
     - CVE-2026-4463: Heap buffer overflow in WebRTC.
       Reported by c6eed09fc8b174b0f3eebedcceb1e792.
     - CVE-2026-4464: Integer overflow in ANGLE. Reported by heesun.
   * d/patches/disable/glic.patch: refresh for upstream tab nudging changes
 .
   [ Jianfeng Liu ]
   * add upstreamed patch of boringssl to fix loong64 build (closes: #1130569)
Checksums-Sha1:
 c1e86c5fc4b970d85d3463caaf20e4f068c8471f 5576652 chromium-common-dbgsym_146.0.7680.153-1~deb12u1_armhf.deb
 333220b8cc1e2dc691b77f0ae8815829a3091d17 29178396 chromium-common_146.0.7680.153-1~deb12u1_armhf.deb
 f90e85409ffe7e27cfd9044ca7504897dd0f7af6 34871016 chromium-dbgsym_146.0.7680.153-1~deb12u1_armhf.deb
 70322fa4a9d7e9c869b19063ba3a7ea8afec7bfb 7100648 chromium-driver_146.0.7680.153-1~deb12u1_armhf.deb
 67e29e646c7b84a7cc967e128886c98cf09c624b 27323872 chromium-headless-shell-dbgsym_146.0.7680.153-1~deb12u1_armhf.deb
 d79e78d2fdad007e2316fd42f81c9629275fe50d 53499588 chromium-headless-shell_146.0.7680.153-1~deb12u1_armhf.deb
 506aa2df6f711fe633dd9e567263a2c4fe88265b 18000 chromium-sandbox-dbgsym_146.0.7680.153-1~deb12u1_armhf.deb
 dbbdb1cfc4e6b03c4e709394a537ef3f4e830154 113160 chromium-sandbox_146.0.7680.153-1~deb12u1_armhf.deb
 969d98f6315dd2cbf7b170cd4467c8062baa5ea2 29631252 chromium-shell-dbgsym_146.0.7680.153-1~deb12u1_armhf.deb
 55aeaf414b5a3539b795deea6d477f83a71d7d1a 58426824 chromium-shell_146.0.7680.153-1~deb12u1_armhf.deb
 8934a8561a49616692e3fb3eca66eb3bbb5e85d9 30297 chromium_146.0.7680.153-1~deb12u1_armhf-buildd.buildinfo
 72d28c5b83570c5539e3d9d409a9873ae41421e1 69767148 chromium_146.0.7680.153-1~deb12u1_armhf.deb
Checksums-Sha256:
 58a0177980cd8e4770a1960e29f69220b72f238790ae6422fc455f74fb274186 5576652 chromium-common-dbgsym_146.0.7680.153-1~deb12u1_armhf.deb
 07c3c1ffeadcbbd9880fdf779464020f0915f9c1446e54ec82db71a8247803d1 29178396 chromium-common_146.0.7680.153-1~deb12u1_armhf.deb
 ab2129b6974d4d64d6b292b324e509638ee3bd59ee954729c86634f7260dbe7c 34871016 chromium-dbgsym_146.0.7680.153-1~deb12u1_armhf.deb
 5c6b6e431d6cea2bdb1b93c80a43c450a404351911cea2d7ee308a5cb2ba68e9 7100648 chromium-driver_146.0.7680.153-1~deb12u1_armhf.deb
 62bfd7260146b979f1e58da1b57e12a8fcf0781d137ec947adaec786e4b849f7 27323872 chromium-headless-shell-dbgsym_146.0.7680.153-1~deb12u1_armhf.deb
 b7a1560943249a86183d9d44e9a1c77cb131eda5ebb7fe54c027cd3b6c90bf56 53499588 chromium-headless-shell_146.0.7680.153-1~deb12u1_armhf.deb
 6e04866f00451173630ed864fa46c9c97077843277b9cac7f64a53eacd8b5394 18000 chromium-sandbox-dbgsym_146.0.7680.153-1~deb12u1_armhf.deb
 cbaeddef842dfed60c2b73b44da666b8e7ae0a9d94131e42c400dd96adbd8eb2 113160 chromium-sandbox_146.0.7680.153-1~deb12u1_armhf.deb
 f66a4bfcd502b463410e959bcbca50301fb1548b8a74c36b1dbedf5cffbc580a 29631252 chromium-shell-dbgsym_146.0.7680.153-1~deb12u1_armhf.deb
 29f7f1dd07b309fe944ce569ece90b57d7b2c0cd4c741e8a5addbe8684de7310 58426824 chromium-shell_146.0.7680.153-1~deb12u1_armhf.deb
 9feb48d5959db41a7c34322a89c6944bea2a1eecff40ec5a5453a65c54c1c283 30297 chromium_146.0.7680.153-1~deb12u1_armhf-buildd.buildinfo
 e0491de3219d2d8ca6f2ca99455c53265ded99c028532440b84d046ec6ecbefb 69767148 chromium_146.0.7680.153-1~deb12u1_armhf.deb
Files:
 bf2cf615f203269c77c020b612e7d3ba 5576652 debug optional chromium-common-dbgsym_146.0.7680.153-1~deb12u1_armhf.deb
 367d8ee26b3082c7c25881e5e7fd18f4 29178396 web optional chromium-common_146.0.7680.153-1~deb12u1_armhf.deb
 bb76b237f47a69294fdf982baeea8d52 34871016 debug optional chromium-dbgsym_146.0.7680.153-1~deb12u1_armhf.deb
 0a85ed85af4e30a7bb296d83912dbef8 7100648 web optional chromium-driver_146.0.7680.153-1~deb12u1_armhf.deb
 e908c3f92d6b73a7ae655cb1235e6be5 27323872 debug optional chromium-headless-shell-dbgsym_146.0.7680.153-1~deb12u1_armhf.deb
 b4515b5b87cb4ce1931c5e86dd2b5b45 53499588 web optional chromium-headless-shell_146.0.7680.153-1~deb12u1_armhf.deb
 14c2f11eba10333c4f1f1656545c09cb 18000 debug optional chromium-sandbox-dbgsym_146.0.7680.153-1~deb12u1_armhf.deb
 5f009a91cb901f593eada2fadbebb625 113160 web optional chromium-sandbox_146.0.7680.153-1~deb12u1_armhf.deb
 dd49d0f9aebf50697f1d3b1b03395b7a 29631252 debug optional chromium-shell-dbgsym_146.0.7680.153-1~deb12u1_armhf.deb
 16eafa8e89bac242889eada8d3195ef2 58426824 web optional chromium-shell_146.0.7680.153-1~deb12u1_armhf.deb
 78d83e517b38666cafd8d9fa6c191f82 30297 web optional chromium_146.0.7680.153-1~deb12u1_armhf-buildd.buildinfo
 147b685b87219a368654035c5a80b680 69767148 web optional chromium_146.0.7680.153-1~deb12u1_armhf.deb

-----BEGIN PGP SIGNATURE-----
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=WcLV
-----END PGP SIGNATURE-----