-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Thu, 14 May 2026 16:39:29 -0400 Source: chromium Binary: chromium chromium-common chromium-common-dbgsym chromium-dbgsym chromium-driver chromium-headless-shell chromium-headless-shell-dbgsym chromium-sandbox chromium-sandbox-dbgsym chromium-shell chromium-shell-dbgsym Architecture: armhf Version: 148.0.7778.167-1~deb13u1 Distribution: trixie-security Urgency: high Maintainer: armhf Build Daemon (arm-ubc-01) Changed-By: Andres Salomon Description: chromium - web browser chromium-common - web browser - common resources used by the chromium packages chromium-driver - web browser - WebDriver support chromium-headless-shell - web browser - old headless shell chromium-sandbox - web browser - setuid security sandbox for chromium chromium-shell - web browser - minimal shell Changes: chromium (148.0.7778.167-1~deb13u1) trixie-security; urgency=high . [ Andres Salomon ] * New upstream security release. - CVE-2026-8509: Heap buffer overflow in WebML. Reported by c6eed09fc8b174b0f3eebedcceb1e792. - CVE-2026-8510: Integer overflow in Skia. Reported by q@calif.io. - CVE-2026-8511: Use after free in UI. Reported by Google. - CVE-2026-8512: Use after free in FileSystem. Reported by Google. - CVE-2026-8513: Use after free in Input. Reported by Google. - CVE-2026-8514: Use after free in Aura. Reported by Google. - CVE-2026-8515: Use after free in HID. Reported by Google. - CVE-2026-8516: Insufficient validation of untrusted input in DataTransfer. Reported by Google. - CVE-2026-8517: Object lifecycle issue in WebShare. Reported by Google. - CVE-2026-8518: Use after free in Blink. Reported by Google. - CVE-2026-8519: Integer overflow in ANGLE. Reported by Google. - CVE-2026-8520: Race in Payments. Reported by Google. - CVE-2026-8521: Use after free in Tab Groups. Reported by Google. - CVE-2026-8522: Use after free in Downloads. Reported by Google. - CVE-2026-8523: Use after free in Mojo. Reported by Paul Seekamp / nullenc0de. - CVE-2026-8558: Out of bounds write in Fonts. Reported by Matej Smycka. - CVE-2026-8524: Out of bounds write in WebAudio. Reported by Brendan Dolan-Gavitt, XBOW. - CVE-2026-8525: Heap buffer overflow in ANGLE. Reported by Nathaniel Oh (@calysteon). - CVE-2026-8526: Out of bounds write in WebRTC. Reported by c6eed09fc8b174b0f3eebedcceb1e792. - CVE-2026-8527: Insufficient validation of untrusted input in Downloads. Reported by rachmat.abdul.ro. - CVE-2026-8528: Insufficient validation of untrusted input in SiteIsolation. Reported by Google. - CVE-2026-8529: Heap buffer overflow in Codecs. Reported by Google. - CVE-2026-8530: Use after free in Network. Reported by Google. - CVE-2026-8531: Heap buffer overflow in WebML. Reported by Syn4pse. - CVE-2026-8532: Integer overflow in XML. Reported by Google. - CVE-2026-8533: Use after free in Accessibility. Reported by Google. - CVE-2026-8534: Integer overflow in GPU. Reported by Google. - CVE-2026-8535: Out of bounds read in Media. Reported by Google. - CVE-2026-8536: Insufficient validation of untrusted input in ReadingMode. Reported by Google. - CVE-2026-8537: Insufficient policy enforcement in ViewTransitions. Reported by Google. - CVE-2026-8538: Insufficient validation of untrusted input in GPU. Reported by Google. - CVE-2026-8539: Script injection in SanitizerAPI. Reported by Jungwoo Lee (@physicube) and Wongi Lee (@_qwerty_po). - CVE-2026-8540: Type Confusion in V8. Reported by Google. - CVE-2026-8541: Out of bounds read in UI. Reported by Google. - CVE-2026-8542: Use after free in Core. Reported by Google. - CVE-2026-8543: Out of bounds read in FileSystem. Reported by Google. - CVE-2026-8544: Use after free in Media. Reported by Google. - CVE-2026-8545: Object corruption in Compositing. Reported by Google. - CVE-2026-8546: Out of bounds read in GPU. Reported by Google. - CVE-2026-8547: Insufficient policy enforcement in Passwords. Reported by Google. - CVE-2026-8548: Out of bounds write in Media. Reported by Google. - CVE-2026-8549: Use after free in Media. Reported by Google. - CVE-2026-8550: Use after free in Google Lens. Reported by Google. - CVE-2026-8551: Use after free in Downloads. Reported by Google. - CVE-2026-8552: Heap buffer overflow in GPU. Reported by Google. - CVE-2026-8553: Use after free in GPU. Reported by Google. - CVE-2026-8554: Type Confusion in ANGLE. Reported by Google. - CVE-2026-8555: Use after free in GTK. Reported by Google. - CVE-2026-8556: Inappropriate implementation in ANGLE. Reported by Google - CVE-2026-8557: Use after free in Accessibility. Reported by Google. - CVE-2026-8559: Integer overflow in Internationalization. Reported by Google. - CVE-2026-8560: Heap buffer overflow in SwiftShader. Reported by Cassidy Kim(@cassidy6564). - CVE-2026-8561: Incorrect security UI in Fullscreen. Reported by Wolfgang Ettlinger (aff. Certitude Consulting GmbH) Alexander Hurbean (aff. Certitude Consulting GmbH). - CVE-2026-8562: Side-channel information leakage in Navigation. Reported by Google. - CVE-2026-8563: Insufficient policy enforcement in IFrame Sandbox. Reported by Luan Herrera (@lbherrera_). - CVE-2026-8564: Incorrect security UI in Downloads. Reported by Alesandro Ortiz https://AlesandroOrtiz.com. - CVE-2026-8565: Inappropriate implementation in Downloads. Reported by Farras Givari. - CVE-2026-8566: Insufficient policy enforcement in Payments. Reported by Jorian Woltjer. - CVE-2026-8567: Integer overflow in ANGLE. Reported by cinzinga. - CVE-2026-8568: Insufficient policy enforcement in AI. Reported by Tianyi Hu. - CVE-2026-8569: Out of bounds write in Codecs. Reported by Google. - CVE-2026-8570: Type Confusion in V8. Reported by Google. - CVE-2026-8571: Insufficient policy enforcement in GPU. Reported by Mark Blaszczyk. - CVE-2026-8572: Insufficient policy enforcement in Network. Reported by Google. - CVE-2026-8573: Integer overflow in Codecs. Reported by Google. - CVE-2026-8574: Use after free in Core. Reported by Google. - CVE-2026-8575: Use after free in UI. Reported by Google. - CVE-2026-8576: Inappropriate implementation in CORS. Reported by Google - CVE-2026-8577: Integer overflow in Fonts. Reported by Google. - CVE-2026-8578: Out of bounds read in GPU. Reported by Google. - CVE-2026-8579: Insufficient validation of untrusted input in Skia. Reported by Google. - CVE-2026-8580: Use after free in Mojo. Reported by Google. - CVE-2026-8581: Use after free in GPU. Reported by Google. - CVE-2026-8582: Object lifecycle issue in Dawn. Reported by Google. - CVE-2026-8583: Insufficient policy enforcement in WebXR. Reported by Google. - CVE-2026-8584: Inappropriate implementation in Views. Reported by Google - CVE-2026-8585: Inappropriate implementation in Media. Reported by Google - CVE-2026-8586: Inappropriate implementation in Chromoting. Reported by Google. - CVE-2026-8587: Use after free in Extensions. Reported by zh1x1an1221 of Ant Group Tianqiong Security Lab. * rust-1.85/file_as_c_str.patch: fix build on non-x86 archs, as char* signed-ness is apparently different there versus arm & ppc64 [trixie, bookworm]. Checksums-Sha1: 2846a1f253a51d751a179b0a1b6f7856b39b07ce 5823960 chromium-common-dbgsym_148.0.7778.167-1~deb13u1_armhf.deb 0e1dc9dc41b77ab463a4aa70eac9dd1e50773e23 25458464 chromium-common_148.0.7778.167-1~deb13u1_armhf.deb 05a4ce80c2ad3f12a3b038b74841c2a128e2e671 35425196 chromium-dbgsym_148.0.7778.167-1~deb13u1_armhf.deb 3304f9d07a4672e3fe187452bf07342b2820c506 7211868 chromium-driver_148.0.7778.167-1~deb13u1_armhf.deb 19b45a9056527d8b549be7e876837ebc0c664135 27535336 chromium-headless-shell-dbgsym_148.0.7778.167-1~deb13u1_armhf.deb bf476f0d353468707d2b856405a3899331e38b97 54408960 chromium-headless-shell_148.0.7778.167-1~deb13u1_armhf.deb b9e9affb092288f00e026832409d1b0ff923c353 19260 chromium-sandbox-dbgsym_148.0.7778.167-1~deb13u1_armhf.deb d434902214590143b2237ad71be40473bfc4c921 117508 chromium-sandbox_148.0.7778.167-1~deb13u1_armhf.deb a934ba02adc9deabbff1d338fa8a87d9ba35b30f 29902004 chromium-shell-dbgsym_148.0.7778.167-1~deb13u1_armhf.deb 55993b2bbfe9cd46662cf4541c18c6adf783e77e 59704976 chromium-shell_148.0.7778.167-1~deb13u1_armhf.deb c6553ed0e8299000420030d9a03f518be3e5c949 30424 chromium_148.0.7778.167-1~deb13u1_armhf-buildd.buildinfo 7cc03db49a069861e0b4c86804268660022d70d4 71485220 chromium_148.0.7778.167-1~deb13u1_armhf.deb Checksums-Sha256: e46af2d133f4e487a9d5913963bf237f5ef6488424900e15d68557174796faac 5823960 chromium-common-dbgsym_148.0.7778.167-1~deb13u1_armhf.deb 861f7805deb32cdf27d71a210a7a2125eacadcf747a784d97a55eee1ce27595b 25458464 chromium-common_148.0.7778.167-1~deb13u1_armhf.deb 81e72e297f019421dd07a98f0056bb3be11eacea31f250743d85c1a2cce03a70 35425196 chromium-dbgsym_148.0.7778.167-1~deb13u1_armhf.deb 571c601f468e09ae0a6f81f5bb66067785ca3166a7865c38f95121058cef948a 7211868 chromium-driver_148.0.7778.167-1~deb13u1_armhf.deb e69882ae6c45081cbfb3f533f9c3669cade8e4b50b239808d659165adb3d30f4 27535336 chromium-headless-shell-dbgsym_148.0.7778.167-1~deb13u1_armhf.deb 5c554cd2bbf7f57d73415162ba9d747393a89200f6a63cb65ad7be99929459e9 54408960 chromium-headless-shell_148.0.7778.167-1~deb13u1_armhf.deb 03e81caa42cc98d87e07430a86b0c75c028caf90e33299214a55e426bbaa5989 19260 chromium-sandbox-dbgsym_148.0.7778.167-1~deb13u1_armhf.deb 2d83f6c492860588fb0f2874a0d7d4a5fda21abc476befd8f73143fd51a25724 117508 chromium-sandbox_148.0.7778.167-1~deb13u1_armhf.deb 79ec2840f09c9839ffd0eac2ec71c0fe904dbcb96536dc5bec488576b745bb0c 29902004 chromium-shell-dbgsym_148.0.7778.167-1~deb13u1_armhf.deb 038e80128afa87a0cdec133846dc685c6b3741dad933007cca2444f95ab08e26 59704976 chromium-shell_148.0.7778.167-1~deb13u1_armhf.deb 596ea85fe582989f0e65c5ece65e44cbb99d4a01035a53c8cd20790dad8dce4e 30424 chromium_148.0.7778.167-1~deb13u1_armhf-buildd.buildinfo 6e79ba5ddff416a8be038a6de71feea5213fd07d86134c6bdd4c628c3c547e3e 71485220 chromium_148.0.7778.167-1~deb13u1_armhf.deb Files: 475a9d6951e80a5f77ffb9004d995c11 5823960 debug optional chromium-common-dbgsym_148.0.7778.167-1~deb13u1_armhf.deb 6e5603ff48a8284c6299699fb7d427bf 25458464 web optional chromium-common_148.0.7778.167-1~deb13u1_armhf.deb ebb19384bed6d9c12b1cb710d1015908 35425196 debug optional chromium-dbgsym_148.0.7778.167-1~deb13u1_armhf.deb 8b04e23c49f1a78dd6c19eb084f161e0 7211868 web optional chromium-driver_148.0.7778.167-1~deb13u1_armhf.deb 7bb0ecb88bc5e7ae88029dcfbcc882f3 27535336 debug optional chromium-headless-shell-dbgsym_148.0.7778.167-1~deb13u1_armhf.deb 9ac13694518582fb9058e4ff954867e4 54408960 web optional chromium-headless-shell_148.0.7778.167-1~deb13u1_armhf.deb 863b9194ec3926856a52fd07721851da 19260 debug optional chromium-sandbox-dbgsym_148.0.7778.167-1~deb13u1_armhf.deb 824ca29569508a90e402352bb4265acc 117508 web optional chromium-sandbox_148.0.7778.167-1~deb13u1_armhf.deb b44834c8dade643d9620fb5c19ff448b 29902004 debug optional chromium-shell-dbgsym_148.0.7778.167-1~deb13u1_armhf.deb d47cd8ecb64f02c51eca3321bdefd635 59704976 web optional chromium-shell_148.0.7778.167-1~deb13u1_armhf.deb ba8fa9393c8e123de7c4b21d8d4cf60c 30424 web optional chromium_148.0.7778.167-1~deb13u1_armhf-buildd.buildinfo 9b4046fe5dc13198bfc02086c4276ebb 71485220 web optional chromium_148.0.7778.167-1~deb13u1_armhf.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEE0Ha//LlsGOpbQ/H4xqCFmsOWgoYFAmoHGQcACgkQxqCFmsOW goYogA//RfHuBvM/v9S1FjhbnRSerTTYafGGnhO0QsAX5W/Bln8JIecsmWcGnARw QxlSazvYArcZ6T3RizoKgZa+8DvNEM/V2iOwkhh81Eoz5VCg8YP2PrvRzrSKUkha /al6qUKk4G9sq5pnbYJwsX6+mhmFV12tuKyG1w0/atRFsxlr5sRrrSwXG/OxHQ/m C6JSZT9nDLxxnw17L29wbjv2+5dmld6+8Zii35esXjxxyOMcicJsq5+7g5iWF4IX aNF6n07jtCvliYC7n+LbUNfoFYjITfWd4ElO0MxHqeo3RqPi85HNUspncGs/Cx2w Sp2uXrwQ4FakMYWfb9Uu/nD27v5d+Q6QQmn5mHsPQ6R2LFfDI8E/ijtydmeQKV5K nzXT3yWSu21rNXT5PZkp3hxmmsWuIsPfaG85IAsfce1ccKsY7QYOdyCtitYpu3td 6qc+PdTSSHQp/fs4S79QO8/59wMprYIB1iJTKXPDUHMI6dbyenqCGaoWSe1jI/iI JtudTa0rJ4mU0hpAliyYRATFRw5YxV9IHiODRm4lz9fRnxZSVn3kZwNe77mfj2w/ pTSTWKDPbk5y40/yoQhnP492sqg16f4HJv0JR/JHPyECuNEcQzP0dVjZ0uhgkpBU g1suEUxO3/x8uWtrZsm9jhqNRtsTwjFqkzvZdnCQMCorCXv5o3I= =on2f -----END PGP SIGNATURE-----