Package "chromium-codecs-ffmpeg-extra"

  chromium-browser (103.0.5060.134-0ubuntu0.18.04.1) bionic; urgency=medium

  * Upstream release: 103.0.5060.134
    - CVE-2022-2477 : Use after free in Guest View.
    - CVE-2022-2478 : Use after free in PDF.
    - CVE-2022-2479 : Insufficient validation of untrusted input in File.
    - CVE-2022-2480 : Use after free in Service Worker API.
    - CVE-2022-2481: Use after free in Views.
    - CVE-2022-2163: Use after free in Cast UI and Toolbar.

 -- Olivier Tilloy <email address hidden> Wed, 20 Jul 2022 07:09:27 +0200

  chromium-browser (101.0.4951.64-0ubuntu0.18.04.1) bionic; urgency=medium

  * Upstream release: 101.0.4951.64
    - CVE-2022-1633: Use after free in Sharesheet.
    - CVE-2022-1634: Use after free in Browser UI.
    - CVE-2022-1635: Use after free in Permission Prompts.
    - CVE-2022-1636: Use after free in Performance APIs.
    - CVE-2022-1637: Inappropriate implementation in Web Contents.
    - CVE-2022-1638: Heap buffer overflow in V8 Internationalization.
    - CVE-2022-1639: Use after free in ANGLE.
    - CVE-2022-1640: Use after free in Sharing.
    - CVE-2022-1641: Use after free in Web UI Diagnostics.

 -- Olivier Tilloy <email address hidden> Wed, 11 May 2022 09:49:30 +0200

  chromium-browser (100.0.4896.127-0ubuntu0.18.04.1) bionic; urgency=medium

  * Upstream release: 100.0.4896.127
    - CVE-2022-1364: Type Confusion in V8.

 -- Olivier Tilloy <email address hidden> Fri, 15 Apr 2022 09:07:28 +0200

  chromium-browser (99.0.4844.84-0ubuntu0.18.04.1) bionic; urgency=medium

  * Upstream release: 99.0.4844.84
    - CVE-2022-1096: Type Confusion in V8.

 -- Olivier Tilloy <email address hidden> Sat, 26 Mar 2022 14:32:42 +0100

  chromium-browser (99.0.4844.51-0ubuntu0.18.04.1) bionic; urgency=medium

  * Upstream release: 99.0.4844.51
    - CVE-2022-0789: Heap buffer overflow in ANGLE.
    - CVE-2022-0790: Use after free in Cast UI.
    - CVE-2022-0791: Use after free in Omnibox.
    - CVE-2022-0792: Out of bounds read in ANGLE.
    - CVE-2022-0793: Use after free in Views.
    - CVE-2022-0794: Use after free in WebShare.
    - CVE-2022-0795: Type Confusion in Blink Layout.
    - CVE-2022-0796: Use after free in Media.
    - CVE-2022-0797: Out of bounds memory access in Mojo.
    - CVE-2022-0798: Use after free in MediaStream.
    - CVE-2022-0799: Insufficient policy enforcement in Installer.
    - CVE-2022-0800: Heap buffer overflow in Cast UI.
    - CVE-2022-0801: Inappropriate implementation in HTML parser.
    - CVE-2022-0802: Inappropriate implementation in Full screen mode.
    - CVE-2022-0803: Inappropriate implementation in Permissions.
    - CVE-2022-0804: Inappropriate implementation in Full screen mode.
    - CVE-2022-0805: Use after free in Browser Switcher.
    - CVE-2022-0806: Data leak in Canvas.
    - CVE-2022-0807: Inappropriate implementation in Autofill.
    - CVE-2022-0808: Use after free in Chrome OS Shell.
    - CVE-2022-0809: Out of bounds memory access in WebXR.
  * debian/rules: exclude unnecessary build artifacts (LP: #1961565)
  * debian/patches/arm64-no-pointer-authentication.patch: added
  * debian/patches/build-with-old-libva-missing-defines.patch: refreshed
  * debian/patches/build-with-old-libva-no-av1.patch: refreshed
  * debian/patches/configuration-directory.patch: refreshed
  * debian/patches/define__libc_malloc.patch: updated
  * debian/patches/gn-no-std-equal_to.patch: added
  * debian/patches/libaom-armhf-build-cpudetect.patch: refreshed
  * debian/patches/revert-sequence-checker-capability-name.patch: refreshed
  * debian/patches/search-credit.patch: refreshed
  * debian/patches/set-rpath-on-chromium-executables.patch: refreshed
  * debian/patches/suppress-newer-clang-warning-flags.patch: refreshed
  * debian/patches/use-clang-versioned.patch: refreshed
  * debian/patches/widevine-enable-version-string.patch: refreshed

 -- Olivier Tilloy <email address hidden> Tue, 01 Mar 2022 21:43:44 +0100