chromium-browser (33.0.1750.152-0ubuntu0.12.04.1~pkg879.1) precise-security; urgency=medium
* Release to stage at ppa:canonical-chromium-builds/stage
chromium-browser (33.0.1750.152-0ubuntu0.12.04.1) precise-security; urgency=low
* debian/rules: Enable high-DPI. Enable touch support. May not work on all devices yet.
* debian/rules, debian/chromium-browser.sh.in: If lib dir contains a dir
matching our version, then use version dir as the new lib dir. This
is an attempto to mitigate version upgrade hangs.
* debian/rules: Move log-removal into the section for "release" builds only.
* Upstream release 33.0.1750.152:
- CVE-2014-1713: Code execution outside sandbox. Use-after-free in Blink
bindings.
- CVE-2014-1714: Code execution outside sandbox. Windows clipboard
vulnerability.
- CVE-2014-1705: Code execution outside sandbox. Memory corruption in V8.
- CVE-2014-1715: Code execution outside sandbox. Directory traversal issue.
* Upstream release 33.0.1750.149:
- CVE-2014-1700: Use-after-free in speech.
- CVE-2014-1701: UXSS in events.
- CVE-2014-1702: Use-after-free in web database.
- CVE-2014-1703: Potential sandbox escape due to a use-after-free in web
sockets.
- CVE-2014-1704: Multiple vulnerabilities in V8 fixed in version
3.23.17.18.
* Upstream release 33.0.1750.115.
* Upstream release 33.0.1750.146.
- CVE-2013-6663: Use-after-free in svg images.
- CVE-2013-6664: Use-after-free in speech recognition.
- CVE-2013-6665: Heap buffer overflow in software rendering.
- CVE-2013-6666: Chrome allows requests in flash header request.
- CVE-2013-6667: Various fixes from internal audits, fuzzing and other
initiatives.
- CVE-2013-6668: Multiple vulnerabilities in V8 fixed in version
3.24.35.10.
* Add a token to get search credit at Baidu.
* debian/rules, debian/control: Switch to using ninja instead of make to
build. Switch from CDBS to dh. Remove many old hacks.
* debian/patches/disable_gn.patch: disable broken GN before build. Temporary
hack.
* debian/chromium-browser.{postinst,prerm}, add debhelper token.
* debian/rules: Split compare function into arch-dep and arch-indep versions,
since they check different things.
* debian/rules: Use actual upstream orig tarball.
* debian/control: build-dep on coreutils so we can print the checksums, too.
chromium-browser (33.0.1750.146-0ubuntu0.12.04.1) precise-security; urgency=low
* Upstream release 33.0.1750.115.
* Upstream release 33.0.1750.146.
- CVE-2013-6663: Use-after-free in svg images.
- CVE-2013-6664: Use-after-free in speech recognition.
- CVE-2013-6665: Heap buffer overflow in software rendering.
- CVE-2013-6666: Chrome allows requests in flash header request.
- CVE-2013-6667: Various fixes from internal audits, fuzzing and other
initiatives.
- CVE-2013-6668: Multiple vulnerabilities in V8 fixed in version
3.24.35.10.
* Add a token to get search credit at Baidu.
* debian/rules, debian/control: Switch from CDBS to dh. Remove many old
hacks.
* debian/patches/disable_gn.patch: disable broken GN before build. Temporary
hack.
* debian/chromium-browser.{postinst,prerm}, add debhelper token.
* debian/rules: Split compare function into arch-dep and arch-indep versions,
since they check different things.
* debian/rules: Use actual upstream orig tarball.
* debian/control: build-dep on coreutils so we can print the checksums, too.
chromium-browser (32.0.1700.107-0ubuntu0.12.04.1) precise-security; urgency=low
* Upstream release 32.0.1700.107.
Date: 2014-03-16 01:07:12.925849+00:00
Changed-By: Chad Miller <chad.miller at canonical.com>
Signed-By: Chris Coulson <chris.coulson at canonical.com>
https://launchpad.net/ubuntu/precise/+source/chromium-browser/33.0.1750.152-0ubuntu0.12.04.1~pkg879.1
-------------- next part --------------
Sorry, changesfile not available.