← Back to branch summary

~cmiller/chromium-browser/ppa-chromium-browser.quantal.stable

~cmiller/chromium-browser/ppa-chromium-browser.quantal.stable

« back to all changes in this revision

Viewing changes to debian/changelog

Committer: Chad Miller
Date: 2013-06-01 13:14:41 UTC
mfrom: (792.2.61 p-raring)
Revision ID: chad.miller@canonical.com-20130601131441-5ub35gyqd2m2noz0

* New stable release 27.0.1453.93:
  - CVE-2013-2837: Use-after-free in SVG.
  - CVE-2013-2838: Out-of-bounds read in v8.
  - CVE-2013-2839: Bad cast in clipboard handling.
  - CVE-2013-2840: Use-after-free in media loader.
  - CVE-2013-2841: Use-after-free in Pepper resource handling.
  - CVE-2013-2842: Use-after-free in widget handling.
  - CVE-2013-2843: Use-after-free in speech handling.
  - CVE-2013-2844: Use-after-free in style resolution.
  - CVE-2013-2845: Memory safety issues in Web Audio.
  - CVE-2013-2846: Use-after-free in media loader.
  - CVE-2013-2847: Use-after-free race condition with workers.
  - CVE-2013-2848: Possible data extraction with XSS Auditor.
  - CVE-2013-2849: Possible XSS with drag+drop or copy+paste.
* Drop unneeded patches,
  safe-browsing-sigbus.patch
  dont-assume-cross-compile-on-arm.patch
  struct-siginfo.patch
  ld-memory-32bit.patch
* Update webapps patches.
* Update arm-neon patch, format-flag patch, search-credit patch,
  title-bar-system-default patch.
* Make get-orig-source nicer.  Package tarball contents from upstream
  correctly.
* Update webapps patches.

files modified:
debian/changelog

debian/patches/1-infobars.patch

debian/patches/2-get-domain-tld.patch

debian/patches/3-chrome-xid.patch

debian/patches/4-chromeless-window-launch-option.patch

debian/patches/5-desktop-integration-settings.patch

debian/patches/6-passwordless-install-support.patch

debian/patches/7-npapi-permission-not-defaults-to-unauthorized.patch

debian/patches/arm-neon.patch

debian/patches/arm.patch

debian/patches/format-flag.patch

debian/patches/search-credit.patch

debian/patches/series

debian/patches/title-bar-default-system.patch

debian/rules

Show diffs side-by-side

added added

removed removed

debian/changelog

1

chromium-browser (27.0.1453.93-0ubuntu1.12.10.1) UNRELEASED; urgency=low

2

3

* New stable release 27.0.1453.93:

4

- CVE-2013-2837: Use-after-free in SVG.

5

- CVE-2013-2838: Out-of-bounds read in v8.

6

- CVE-2013-2839: Bad cast in clipboard handling.

7

- CVE-2013-2840: Use-after-free in media loader.

8

- CVE-2013-2841: Use-after-free in Pepper resource handling.

9

- CVE-2013-2842: Use-after-free in widget handling.

10

- CVE-2013-2843: Use-after-free in speech handling.

11

- CVE-2013-2844: Use-after-free in style resolution.

12

- CVE-2013-2845: Memory safety issues in Web Audio.

13

- CVE-2013-2846: Use-after-free in media loader.

14

- CVE-2013-2847: Use-after-free race condition with workers.

15

- CVE-2013-2848: Possible data extraction with XSS Auditor.

16

- CVE-2013-2849: Possible XSS with drag+drop or copy+paste.

17

* Drop unneeded patches,

18

safe-browsing-sigbus.patch

19

dont-assume-cross-compile-on-arm.patch

20

struct-siginfo.patch

21

ld-memory-32bit.patch

22

* Update webapps patches.

23

* Update arm-neon patch, format-flag patch, search-credit patch,

24

title-bar-system-default patch.

25

* Make get-orig-source nicer. Package tarball contents from upstream

26

correctly.

27

* Update webapps patches.

28

29

-- Chad MILLER <chad.miller@canonical.com> Tue, 21 May 2013 18:39:37 -0400

30

1

31

chromium-browser (26.0.1410.63-0ubuntu0.12.10.3) quantal-security; urgency=low

2

32

3

33

* Work around SEGV on ARMHF that's caused by tcmalloc.

Older »