-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon, 11 Jan 2021 17:04:13 +0100
Source: chromium
Binary: chromium chromium-common chromium-common-dbgsym chromium-dbgsym chromium-driver chromium-driver-dbgsym chromium-sandbox chromium-sandbox-dbgsym chromium-shell chromium-shell-dbgsym
Architecture: arm64
Version: 87.0.4280.141-0.1~deb10u1
Distribution: buster-security
Urgency: high
Maintainer: arm Build Daemon (arm-ubc-03) <buildd_arm64-arm-ubc-03@buildd.debian.org>
Changed-By: Jan Luca Naumann <j.naumann@fu-berlin.de>
Description:
 chromium   - web browser
 chromium-common - web browser - common resources used by the chromium packages
 chromium-driver - web browser - WebDriver support
 chromium-sandbox - web browser - setuid security sandbox for chromium
 chromium-shell - web browser - minimal shell
Closes: 979135 979520
Changes:
 chromium (87.0.4280.141-0.1~deb10u1) buster-security; urgency=high
 .
   * Non-maintainer upload.
   * New upstream security release (closes: 979520).
     - CVE-2021-21106: Use after free in autofill. Reported by Weipeng Jiang
       @Krace from Codesafe Team of Legendsec at Qi'anxin Group
     - CVE-2021-21107: Use after free in drag and drop. Reported by Leecraso and
       Guang Gong of 360 Alpha Lab
     - CVE-2021-21108: Use after free in media. Reported by Leecraso and Guang
       Gong of 360 Alpha Lab
     - CVE-2021-21109: Use after free in payments. Reported by Rong Jian and
       Guang Gong of 360 Alpha Lab
     - CVE-2021-21110: Use after free in safe browsing. Reported by Anonymous
     - CVE-2021-21111: Insufficient policy enforcement in WebUI. Reported by
       Alesandro Ortiz
     - CVE-2021-21112: Use after free in Blink. Reported by YoungJoo Lee
       @ashuu_lee of Raon Whitehat
     - CVE-2021-21113: Heap buffer overflow in Skia. Reported by tsubmunu
     - CVE-2020-16043: Insufficient data validation in networking. Reported by
       Samy Kamkar, Ben Seri at Armis, Gregory Vishnepolsky at Armis
     - CVE-2021-21114: Use after free in audio. Reported by Man Yue Mo of GitHub
       Security Lab
     - CVE-2020-15995: Out of bounds write in V8. Reported by Bohan Liu
       @P4nda20371774 of Tencent Security Xuanwu Lab
     - CVE-2021-21115: Use after free in safe browsing. Reported by Leecraso and
       Guang Gong of 360 Alpha Lab
     - CVE-2021-21116: Heap buffer overflow in audio. Reported by Alison
       Huffman, Microsoft Browser Vulnerability Research
   * Use desktop gl implementation as default. (closes: 979135)
Checksums-Sha1:
 865f830891776c49374ef3bc5529117f09e21031 264684 chromium-common-dbgsym_87.0.4280.141-0.1~deb10u1_arm64.deb
 7edc00632ee192f4bc57035603da2c5e22c23845 1235688 chromium-common_87.0.4280.141-0.1~deb10u1_arm64.deb
 380077646b913ed43966b439ac587396241a839c 16512932 chromium-dbgsym_87.0.4280.141-0.1~deb10u1_arm64.deb
 787b62248a2b7fc508035cca2fd56ea9880b19b3 3203956 chromium-driver-dbgsym_87.0.4280.141-0.1~deb10u1_arm64.deb
 a76d35778a2b76e6ec4463e994f3fd8d4f576e67 3927692 chromium-driver_87.0.4280.141-0.1~deb10u1_arm64.deb
 1ff1ada3ee4731540c2bcacc20fbd3e39952acc4 11440 chromium-sandbox-dbgsym_87.0.4280.141-0.1~deb10u1_arm64.deb
 ae166a5e31c59bb81a2814e492bd87d0c66ce340 110164 chromium-sandbox_87.0.4280.141-0.1~deb10u1_arm64.deb
 0e89bc9bed043f70a743ea6d1048e07e86d9feaa 13315964 chromium-shell-dbgsym_87.0.4280.141-0.1~deb10u1_arm64.deb
 84019ef1b7d59df4f5ea0dde41cd623635529c31 33492560 chromium-shell_87.0.4280.141-0.1~deb10u1_arm64.deb
 861b34c23bc0d854f63c4b9c57dbeab262a091e7 24864 chromium_87.0.4280.141-0.1~deb10u1_arm64-buildd.buildinfo
 80d355cad0d89a43f1d0839c5413b2bc75b345bb 48317900 chromium_87.0.4280.141-0.1~deb10u1_arm64.deb
Checksums-Sha256:
 e9638434e2765745ce4236526b3128500e295075583d299f7d7e00aeb55cc176 264684 chromium-common-dbgsym_87.0.4280.141-0.1~deb10u1_arm64.deb
 9c0e855476e2cfc82596551d7ff04dcbb6165da0645ee6c7701a8aca85347c52 1235688 chromium-common_87.0.4280.141-0.1~deb10u1_arm64.deb
 caabbc987d17c74b6cd5d0401762bc1db652e20b3c16834a3e111b839b60bcf3 16512932 chromium-dbgsym_87.0.4280.141-0.1~deb10u1_arm64.deb
 a9a8dbdc58cb8fb96ef011428798ee3f2851b53774a095aaa45a482af03dac0b 3203956 chromium-driver-dbgsym_87.0.4280.141-0.1~deb10u1_arm64.deb
 d43d48ea707bbb382d00231bf3f23f0769f85f018b804c576001b528a377c5ce 3927692 chromium-driver_87.0.4280.141-0.1~deb10u1_arm64.deb
 ece333b76630ea2f243818350cdf6f52e04b8b3be786808823805a4dbcbb7788 11440 chromium-sandbox-dbgsym_87.0.4280.141-0.1~deb10u1_arm64.deb
 41b6a5154acb5d30b313227ef3d00ba887ff9c83fd1805306694cce9a820ea2a 110164 chromium-sandbox_87.0.4280.141-0.1~deb10u1_arm64.deb
 2a6a0bee8e0d3888f8e44ab021ae4c420dd2fb75418bad0f796a1699fd4bcbfb 13315964 chromium-shell-dbgsym_87.0.4280.141-0.1~deb10u1_arm64.deb
 7bc11bf748aaf0a7e02b3b03b4f8434357f29443fcf1b5dd09cb7c548827845b 33492560 chromium-shell_87.0.4280.141-0.1~deb10u1_arm64.deb
 fe2caccb82d1e2428ab6130549b566e5eb58d6d0b49f8a095560c6811cf39e2e 24864 chromium_87.0.4280.141-0.1~deb10u1_arm64-buildd.buildinfo
 426e960b02c4396e8e4b3212a490d3ea00cd26cb30d79d15a7ebac68e6e2607f 48317900 chromium_87.0.4280.141-0.1~deb10u1_arm64.deb
Files:
 530c780f08a551c7d0fa219703fbc666 264684 debug optional chromium-common-dbgsym_87.0.4280.141-0.1~deb10u1_arm64.deb
 7f99920f2f94ff70dfe5d8991017ee5f 1235688 web optional chromium-common_87.0.4280.141-0.1~deb10u1_arm64.deb
 aeb08438cdf6718a03d0e08e38990760 16512932 debug optional chromium-dbgsym_87.0.4280.141-0.1~deb10u1_arm64.deb
 393d1c42b694d2c7a1ac40885b3b3917 3203956 debug optional chromium-driver-dbgsym_87.0.4280.141-0.1~deb10u1_arm64.deb
 de3f4494f899c5b8004253b3957a5f3e 3927692 web optional chromium-driver_87.0.4280.141-0.1~deb10u1_arm64.deb
 9092f4efa3b938b5fa95b38f78b07890 11440 debug optional chromium-sandbox-dbgsym_87.0.4280.141-0.1~deb10u1_arm64.deb
 588c7261ec4bfe92de5c3e60898849e0 110164 web optional chromium-sandbox_87.0.4280.141-0.1~deb10u1_arm64.deb
 666a847913104c47044d77d2dcfb23e5 13315964 debug optional chromium-shell-dbgsym_87.0.4280.141-0.1~deb10u1_arm64.deb
 5946f64316a0431d1ac921de48f4a153 33492560 web optional chromium-shell_87.0.4280.141-0.1~deb10u1_arm64.deb
 f29888d9fe9ea6d9f2188fa661e6a163 24864 web optional chromium_87.0.4280.141-0.1~deb10u1_arm64-buildd.buildinfo
 5397afb2b74f36d8227c62b741fd2d45 48317900 web optional chromium_87.0.4280.141-0.1~deb10u1_arm64.deb

-----BEGIN PGP SIGNATURE-----
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=LgiE
-----END PGP SIGNATURE-----