-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon, 11 Jan 2021 17:04:13 +0100
Source: chromium
Binary: chromium chromium-common chromium-common-dbgsym chromium-dbgsym chromium-driver chromium-driver-dbgsym chromium-sandbox chromium-sandbox-dbgsym chromium-shell chromium-shell-dbgsym
Architecture: i386
Version: 87.0.4280.141-0.1~deb10u1
Distribution: buster-security
Urgency: high
Maintainer: i386 Build Daemon (x86-grnet-01) <buildd_amd64-x86-grnet-01@buildd.debian.org>
Changed-By: Jan Luca Naumann <j.naumann@fu-berlin.de>
Description:
 chromium   - web browser
 chromium-common - web browser - common resources used by the chromium packages
 chromium-driver - web browser - WebDriver support
 chromium-sandbox - web browser - setuid security sandbox for chromium
 chromium-shell - web browser - minimal shell
Closes: 979135 979520
Changes:
 chromium (87.0.4280.141-0.1~deb10u1) buster-security; urgency=high
 .
   * Non-maintainer upload.
   * New upstream security release (closes: 979520).
     - CVE-2021-21106: Use after free in autofill. Reported by Weipeng Jiang
       @Krace from Codesafe Team of Legendsec at Qi'anxin Group
     - CVE-2021-21107: Use after free in drag and drop. Reported by Leecraso and
       Guang Gong of 360 Alpha Lab
     - CVE-2021-21108: Use after free in media. Reported by Leecraso and Guang
       Gong of 360 Alpha Lab
     - CVE-2021-21109: Use after free in payments. Reported by Rong Jian and
       Guang Gong of 360 Alpha Lab
     - CVE-2021-21110: Use after free in safe browsing. Reported by Anonymous
     - CVE-2021-21111: Insufficient policy enforcement in WebUI. Reported by
       Alesandro Ortiz
     - CVE-2021-21112: Use after free in Blink. Reported by YoungJoo Lee
       @ashuu_lee of Raon Whitehat
     - CVE-2021-21113: Heap buffer overflow in Skia. Reported by tsubmunu
     - CVE-2020-16043: Insufficient data validation in networking. Reported by
       Samy Kamkar, Ben Seri at Armis, Gregory Vishnepolsky at Armis
     - CVE-2021-21114: Use after free in audio. Reported by Man Yue Mo of GitHub
       Security Lab
     - CVE-2020-15995: Out of bounds write in V8. Reported by Bohan Liu
       @P4nda20371774 of Tencent Security Xuanwu Lab
     - CVE-2021-21115: Use after free in safe browsing. Reported by Leecraso and
       Guang Gong of 360 Alpha Lab
     - CVE-2021-21116: Heap buffer overflow in audio. Reported by Alison
       Huffman, Microsoft Browser Vulnerability Research
   * Use desktop gl implementation as default. (closes: 979135)
Checksums-Sha1:
 96108f8edb9dc4733800d1a40b0b87ed690923bc 217916 chromium-common-dbgsym_87.0.4280.141-0.1~deb10u1_i386.deb
 18b39e2df6b629b39cb3c9068108a36dd9b67bae 1359072 chromium-common_87.0.4280.141-0.1~deb10u1_i386.deb
 85f5dfd5ff0b17bb42db18035fb80313b54e9e68 14815920 chromium-dbgsym_87.0.4280.141-0.1~deb10u1_i386.deb
 f0ec8292d90310ad73337af7577a1d2d805d8a7b 3960928 chromium-driver-dbgsym_87.0.4280.141-0.1~deb10u1_i386.deb
 461a982df7a9ea9f43d644a61b02bd2e5617e496 4515672 chromium-driver_87.0.4280.141-0.1~deb10u1_i386.deb
 c64fab8cae01ea578b3e393f304b61680e1f88c6 11080 chromium-sandbox-dbgsym_87.0.4280.141-0.1~deb10u1_i386.deb
 c7560ed92118624b4a7244ad4ec13cee0ef762d8 110260 chromium-sandbox_87.0.4280.141-0.1~deb10u1_i386.deb
 f903a1cbcfafe5ac258b7ff6b1ff334294eb7673 12241068 chromium-shell-dbgsym_87.0.4280.141-0.1~deb10u1_i386.deb
 fec49b1861b51e08975fdfe169548f7811999fbf 38861320 chromium-shell_87.0.4280.141-0.1~deb10u1_i386.deb
 3d55bbfb54ee4d29d2175ef78bbcf4f01af55571 24993 chromium_87.0.4280.141-0.1~deb10u1_i386.buildinfo
 fd69ad0987ad031a0112719a72bfbf277acc4f3b 55702140 chromium_87.0.4280.141-0.1~deb10u1_i386.deb
Checksums-Sha256:
 608f8cdeec4eba9f8f784abacaa7cbab0b36b383f9327373397e8ebc90db31da 217916 chromium-common-dbgsym_87.0.4280.141-0.1~deb10u1_i386.deb
 e18ba3f480c65d1bc25018a9e691f09ca325a53a808be3e47a767225fcd47311 1359072 chromium-common_87.0.4280.141-0.1~deb10u1_i386.deb
 bf13e21fe57e4d321d0bca2a390d365d2059e90e82116f0b116ee1f6cd26e4ba 14815920 chromium-dbgsym_87.0.4280.141-0.1~deb10u1_i386.deb
 1973e7a3a4f4b3844733cc30904b593705d5b80e0464220b1d4dcc23fd424c4f 3960928 chromium-driver-dbgsym_87.0.4280.141-0.1~deb10u1_i386.deb
 7f2599a7abdd4a3811a8e7839863ca2f38392c54899b0a3861970186702ab753 4515672 chromium-driver_87.0.4280.141-0.1~deb10u1_i386.deb
 d011a70a89a24de85b0fe411add6a6f029de949896dc40b76499145ffe2c0a04 11080 chromium-sandbox-dbgsym_87.0.4280.141-0.1~deb10u1_i386.deb
 468322bab186c48e16fba9b777c94e947d52ce7f084f1352075c41f95cab67cd 110260 chromium-sandbox_87.0.4280.141-0.1~deb10u1_i386.deb
 379df04f1089530ad00f3fa53ca2763a133e6686cf4e5bb9e6b4409111b83eff 12241068 chromium-shell-dbgsym_87.0.4280.141-0.1~deb10u1_i386.deb
 f761023426767615bd1fd3e5a08d7c79888a7f9d564e83de3d6235adae7b1b2a 38861320 chromium-shell_87.0.4280.141-0.1~deb10u1_i386.deb
 dd6bae6d5430ded8b53de360b77d7d8f39fdb47041ea296457ecf5b3fa13cc40 24993 chromium_87.0.4280.141-0.1~deb10u1_i386.buildinfo
 b2d642f52e3f3750008dd8a696ac64123486dbefcc76f0fff606ea4ee58860e9 55702140 chromium_87.0.4280.141-0.1~deb10u1_i386.deb
Files:
 30fde474bb679679d53002231cb5d154 217916 debug optional chromium-common-dbgsym_87.0.4280.141-0.1~deb10u1_i386.deb
 f550f50584145c01d5901921c5c9dc3f 1359072 web optional chromium-common_87.0.4280.141-0.1~deb10u1_i386.deb
 af022ffdd6c201d341f78d8069709e3d 14815920 debug optional chromium-dbgsym_87.0.4280.141-0.1~deb10u1_i386.deb
 a668d3f15209e5b3d5ea1a9fdd5a8501 3960928 debug optional chromium-driver-dbgsym_87.0.4280.141-0.1~deb10u1_i386.deb
 cbdfe6aa4d563e18b39a4d64b6b87bd7 4515672 web optional chromium-driver_87.0.4280.141-0.1~deb10u1_i386.deb
 8928205f8894c21ecb2f544b6bd502a8 11080 debug optional chromium-sandbox-dbgsym_87.0.4280.141-0.1~deb10u1_i386.deb
 123634d58f737b2b7c29da8e918f88f3 110260 web optional chromium-sandbox_87.0.4280.141-0.1~deb10u1_i386.deb
 a4354bceb7fed22cd63c490be67a3771 12241068 debug optional chromium-shell-dbgsym_87.0.4280.141-0.1~deb10u1_i386.deb
 bb6ee023ac8e4fb30c43876f08a0ec5f 38861320 web optional chromium-shell_87.0.4280.141-0.1~deb10u1_i386.deb
 fd5697720a330ddf5601af0f3cbb40dc 24993 web optional chromium_87.0.4280.141-0.1~deb10u1_i386.buildinfo
 b352c71efe2649da8498745ea5d33634 55702140 web optional chromium_87.0.4280.141-0.1~deb10u1_i386.deb

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEeShLnnjT5e2dm1q4H4Xht4aLclgFAl/+E9kACgkQH4Xht4aL
clibYg//dHSjQS6fv/oRR+WR9GWc0+BSNY7G+Vi3sttt3Jy0kOgI1WB/Zyl2U5o4
LEfqEU6Ip1wqPunIJHEpDeHZgZq3Cn4A/qDaIlvrZReCYYwJg2KBybAgB3NXg2+J
SR5gvc/0gjlhKb6EFU2U3eftsi4ateq3kELRk7iuq4z0MeDqLzXdB2QKLMQHuoPy
vanMc+YmElwQsEAVkeaKKvaCnOCzgyRe1a9lpkSsDAPrtMehMEW/1WzOMEV42gRt
rKuPfqDH4PmRy2x9dr3mTPuuiA3fRtrlnxjGFeC+m33quwrkJAtUNSvJxdBdUCX/
FigLCNAtIehOYxtDrZw0W+j8beQgn+nFJz2YVr3nbbWZYPjhnkVRwRqjGlJC3qiZ
OFuXWf74r6+h4hlFiKI+X6A4Gavjki2q5C4Q0WfJAI6/ZtVRC0kNL7BnsoPdmdYv
jL3ftMOQZmUt1X899SSZkB1/J8ususe0pGTUsc2kJC4RQsKtr8Y5g1j/zMkE66lT
kRNNFlrWypwizfInTjKDxfLjT6Yjevr31Oq5tmruT4eYfFUEWi48NN9aiI2ErtJx
E/0PMsyv8Q1Ac/hEfMjIgKti7PcTa0TOE/J4PB6dGY6n+tozYTBKHTq1+Tj1cdUM
iTfBYq73aQkTuK3fWgkVe5RJGMMu92TrxGzDdhTkQ3VDkCf+qak=
=y4ht
-----END PGP SIGNATURE-----