This bug was fixed in the package chromium-browser - 23.0.1271.97-0ubuntu0.12.10.1 --------------- chromium-browser (23.0.1271.97-0ubuntu0.12.10.1) quantal-security; urgency=low * Omit resources/extension/demo files from any packaging verification because they're unwanted. * debian/chromium-driver.install: install chromedriver * Update README.source to include some of these changes. * Set new URL for channel-release info in rules file. * debian/patches/chromium_useragent.patch.in renamed to drop ".in", OS "Ubuntu" hardcoded with no compilation-release name, and patch refreshed to follow new location of source. Also remove it from the list of ephemeral files that "clean" rule removes. * In debian/rules, use "-delete" flag on find instead of "-exec rm {} \;", to be safer and faster. * Make most patches follow a common format (no timestamps or Index lines), to avoid future churn. * Write the "REMOVED" list files to the root of the orig tarball, instead of inside the src/ directory, where they could collide. * Fix dpkg-source warning: Clean up python cached bytecode files. * Also don't include python bytecode or cache files in orig tarball, and clean then up on "clean" rule. * Fix dpkg-source warning: Remove autoconf cache. * Fix lintian warning: fta and micahg to XSBC-Original-Maintainer. * Fix lintian error not-binnmuable-all-depends-any. * Override lintian complaints ancient-autotools-helper-file and unused-build-dependency-on-cdbs. * Drop "lzma" from build dependencies. * Set default binary and source package compression to xz. If building for Ubuntu 10.04, then make binary's compression to bzip2. * List explicit architectures that Chromium supports, instead of "any". Cr {arm ia32 x64} map into Debian {armhf armel i386 amd64}. * debian/patches/arm-neon.patch added to get ARM w/o Neon support. (LP: #1084852) * In debian/rules, avoid creating invalid subst expression in sed of DEBIAN* vars into files. * Note localization in package description for support for ast, bs, en-AU, eo, hy, ia, ka, ku, kw, ms. * No longer include Launchpad-generated translations. Disable patch grd_parse_fix.patch . * Set default binary and source package compression to xz. If building for Ubuntu 10.04, then make binary's compression to bzip2. * No longer expect unpacked tarball to contain "build-tree". * Fix build warning about missing debian/source/format. Set to "3.0 (quilt)". * Remove unnecessary glib-header-single-entry.patch . * Manually set DEB_{BUILD,HOST}_ARCH when not already set, like when the executing program is not dpkg-buildpackage. * Make rules file generate LASTCHANGE file at new location. * Change get-sources command to kill script when it fails to disable gyp-chromium run from DEPS. Never fail silently again. * Add patches/struct-siginfo.patch to work around source bug in dereferencing internal stuct instead of public type. * Refresh patches from lp:unity-chromium-extension . * Make all patches follow a common format, to avoid future churn. No timestamps, a/b parent, sorted, no index. * New upstream version 23.0.1271.97 - CVE-2012-5139: Use-after-free with visibility events. - CVE-2012-5140: Use-after-free in URL loader. - CVE-2012-5141: Limit Chromoting client plug-in instantiation. - CVE-2012-5142: Crash in history navigation. - CVE-2012-5143: Integer overflow in PPAPI image buffers. - CVE-2012-5144: Stack corruption in AAC decoding. * New upstream version 23.0.1271.95 - CVE-2012-5138: Incorrect file path handling. - CVE-2012-5137: Use-after-free in media source handling. * New upstream version 23.0.1271.91 - CVE-2012-5133: Use-after-free in SVG filters. - CVE-2012-5130: Out-of-bounds read in Skia. - CVE-2012-5132: Browser crash with chunked encoding. - CVE-2012-5134: Buffer underflow in libxml. - CVE-2012-5135: Use-after-free with printing. - CVE-2012-5136: Bad cast in input element handling. * Includes CVE fixes for 23.0.1271.64 - CVE-2012-5127: Integer overflow leading to out-of-bounds read in WebP handling. - CVE-2012-5120: Out-of-bounds array access in v8. - CVE-2012-5116: Use-after-free in SVG filter handling. - CVE-2012-5121: Use-after-free in video layout. - CVE-2012-5117: Inappropriate load of SVG subresource in img context. - CVE-2012-5119: Race condition in Pepper buffer handling. - CVE-2012-5122: Bad cast in input handling. - CVE-2012-5123: Out-of-bounds reads in Skia. - CVE-2012-5124: Memory corruption in texture handling. - CVE-2012-5125: Use-after-free in extension tab handling. - CVE-2012-5126: Use-after-free in plug-in placeholder handling. - CVE-2012-5128: Bad write in v8. -- Chad Miller