-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Tue, 14 Jul 2026 23:16:33 -0400 Source: chromium Binary: chromium-l10n Architecture: all Version: 150.0.7871.124-1~deb13u1 Distribution: trixie-security Urgency: high Maintainer: all / amd64 / i386 Build Daemon (x86-conova-02) Changed-By: Andres Salomon Description: chromium-l10n - web browser - language packs Changes: chromium (150.0.7871.124-1~deb13u1) trixie-security; urgency=high . [ Andres Salomon ] * New upstream security release. - CVE-2026-15764: Use after free in Ozone. Reported by Google. - CVE-2026-15765: Use after free in Ozone. Reported by Google. - CVE-2026-15766: Uninitialized Use in Skia. Reported by Google. - CVE-2026-15767: Heap buffer overflow in libyuv. Reported by Google. - CVE-2026-15768: Insufficient policy enforcement in HTML-in-Canvas. Reported by Google. - CVE-2026-15769: Insufficient validation of untrusted input in Linux Toolkit Theming. Reported by Google. - CVE-2026-15770: Uninitialized Use in V8. Reported by Google. - CVE-2026-15771: Insufficient validation of untrusted input in Media. Reported by Google. - CVE-2026-15772: Use after free in GPU. Reported by Google. - CVE-2026-15773: Use after free in Core. Reported by xinchaotian of Microsoft. - CVE-2026-15774: Use after free in Skia. Reported by Google. - CVE-2026-15775: Insufficient policy enforcement in V8. Reported by wang1r923096443@gmail.com. - CVE-2026-15776: Type Confusion in V8. Reported by Salvatore Gulizia (nickname: Serotav). - CVE-2026-15777: Use after free in UI. Reported by Google. - CVE-2026-15778: Insufficient validation of untrusted input in Navigation. Reported by Google. * d/patches/upstream/libyuv-loongarch-fix-row_lsx.cc-and-row_lasx.cc.patch: drop, merged upstream. Checksums-Sha1: 9bd8f899cf0afae57ccbb47e993ac44de52cd7ae 8843772 chromium-l10n_150.0.7871.124-1~deb13u1_all.deb 5d3107cedaeb91130cc5951a59f7b6cc80968976 27427 chromium_150.0.7871.124-1~deb13u1_all-buildd.buildinfo Checksums-Sha256: b5d7d68c88850279e72e840088588759dccd0fc3c5e0f7ebb745886c40f63959 8843772 chromium-l10n_150.0.7871.124-1~deb13u1_all.deb 5732db47f5feeeb5a5e5ff8156f11b38bbb9820d952f1bc048ea5a58ae6d8e80 27427 chromium_150.0.7871.124-1~deb13u1_all-buildd.buildinfo Files: a63e63a3931ff87cbffb25dd5c4968bc 8843772 localization optional chromium-l10n_150.0.7871.124-1~deb13u1_all.deb 2389a48e27c89d39f25864c9ccd77a71 27427 web optional chromium_150.0.7871.124-1~deb13u1_all-buildd.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEE+i/sCsF3puL4e7qIGNGWmfrqILEFAmpX1M4ACgkQGNGWmfrq ILGv/A//Tf3UozKM8VaCG5qgprLhj3MnKXJ1ifZsgGXltqEKQ6d+4sliCf6mpWqX d3xtcE7UkJYR/mi9lDYzPbAJNi6DhGXAyoT98gUBLRfXqBx5e7zojab7ZkBnkDZY 8Tfr0Xn5zuC1PkK9jDNeAPFTivqqT6F/DmcHuMhNWwKBHp8+YmFJlgncYb7bPL3U OMmu2kcyv0Yyt478EGC6IL7MceycaB2WwrcS3/QuKkf8921scNEHG1BJtz4obQhT 9osuuQ2AfIkAA5TVsXBD9X1YLTd2YY5p815XpKtMyuJj3UGGksDvvvbC5K/wXDe+ DSRhEO4ixw904DeMFHCpNsTXDBniNpbimZRS+lTWOiyGTjnQfrIy/nglhSbMY0cK ljqYgCLhISiPsb7rIv46euk2eBWe6IpVkW+qpc9bbZM9wcZ+r1PvKeUmztsHL8VT 6lYpZAlAVwkjlhedI0VimxhSxHoQvHmvXJSr/3EiSTQfyszjgo/MmGguGJFFzzMj inuLmbIMdQdlaVxi88dydHhJTPC4zGy/g5s/8uRY/5Ac2qDkx3aoSfQslSzftO6L DyzILJLER64ZdYybNkQkcqRxI9gsit+7IGj2jUUFzf/BXMvSxV1moAHKVx7JBMNA S6kR6fXoYKqmgco+f675Fg/vWFdDo3gQQfLgWd+ZBHKxvW+cYL8= =FJ6r -----END PGP SIGNATURE-----