-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon, 11 Jan 2021 17:04:13 +0100
Source: chromium
Binary: chromium-l10n
Architecture: all
Version: 87.0.4280.141-0.1~deb10u1
Distribution: buster-security
Urgency: high
Maintainer: all Build Daemon (x86-grnet-02) <buildd_all-x86-grnet-02@buildd.debian.org>
Changed-By: Jan Luca Naumann <j.naumann@fu-berlin.de>
Description:
 chromium-l10n - web browser - language packs
Closes: 979135 979520
Changes:
 chromium (87.0.4280.141-0.1~deb10u1) buster-security; urgency=high
 .
   * Non-maintainer upload.
   * New upstream security release (closes: 979520).
     - CVE-2021-21106: Use after free in autofill. Reported by Weipeng Jiang
       @Krace from Codesafe Team of Legendsec at Qi'anxin Group
     - CVE-2021-21107: Use after free in drag and drop. Reported by Leecraso and
       Guang Gong of 360 Alpha Lab
     - CVE-2021-21108: Use after free in media. Reported by Leecraso and Guang
       Gong of 360 Alpha Lab
     - CVE-2021-21109: Use after free in payments. Reported by Rong Jian and
       Guang Gong of 360 Alpha Lab
     - CVE-2021-21110: Use after free in safe browsing. Reported by Anonymous
     - CVE-2021-21111: Insufficient policy enforcement in WebUI. Reported by
       Alesandro Ortiz
     - CVE-2021-21112: Use after free in Blink. Reported by YoungJoo Lee
       @ashuu_lee of Raon Whitehat
     - CVE-2021-21113: Heap buffer overflow in Skia. Reported by tsubmunu
     - CVE-2020-16043: Insufficient data validation in networking. Reported by
       Samy Kamkar, Ben Seri at Armis, Gregory Vishnepolsky at Armis
     - CVE-2021-21114: Use after free in audio. Reported by Man Yue Mo of GitHub
       Security Lab
     - CVE-2020-15995: Out of bounds write in V8. Reported by Bohan Liu
       @P4nda20371774 of Tencent Security Xuanwu Lab
     - CVE-2021-21115: Use after free in safe browsing. Reported by Leecraso and
       Guang Gong of 360 Alpha Lab
     - CVE-2021-21116: Heap buffer overflow in audio. Reported by Alison
       Huffman, Microsoft Browser Vulnerability Research
   * Use desktop gl implementation as default. (closes: 979135)
Checksums-Sha1:
 0998a9b9343b8febc7db62e6d69a35452683e226 3884036 chromium-l10n_87.0.4280.141-0.1~deb10u1_all.deb
 a999050e4bda1cafc61ae14a10fbe7ae2c28bb91 22070 chromium_87.0.4280.141-0.1~deb10u1_all.buildinfo
Checksums-Sha256:
 7725839d6f4835d6e933adbe4d2fc625eb9c0ae813002090b6a70d4f02e8067f 3884036 chromium-l10n_87.0.4280.141-0.1~deb10u1_all.deb
 4ffc9593373427a8d6762724a26ce8f01b5c1bbf62a0e424bc7d1e32f5e1dd80 22070 chromium_87.0.4280.141-0.1~deb10u1_all.buildinfo
Files:
 8d831ce4768f4654583d492b3cc46dc4 3884036 localization optional chromium-l10n_87.0.4280.141-0.1~deb10u1_all.deb
 3c2723feb2a6e42281e7a4f3016c222e 22070 web optional chromium_87.0.4280.141-0.1~deb10u1_all.buildinfo

-----BEGIN PGP SIGNATURE-----
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=zpxk
-----END PGP SIGNATURE-----