-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Fri, 29 May 2026 11:48:56 -0400 Source: chromium Binary: chromium chromium-common chromium-common-dbgsym chromium-dbgsym chromium-driver chromium-headless-shell chromium-headless-shell-dbgsym chromium-sandbox chromium-sandbox-dbgsym chromium-shell chromium-shell-dbgsym Architecture: armhf Version: 148.0.7778.215-1~deb12u1 Distribution: bookworm-security Urgency: high Maintainer: armhf Build Daemon (arm-ubc-05) Changed-By: Andres Salomon Description: chromium - web browser chromium-common - web browser - common resources used by the chromium packages chromium-driver - web browser - WebDriver support chromium-headless-shell - web browser - old headless shell chromium-sandbox - web browser - setuid security sandbox for chromium chromium-shell - web browser - minimal shell Changes: chromium (148.0.7778.215-1~deb12u1) bookworm-security; urgency=high . [ Andres Salomon ] * New upstream security release. - CVE-2026-9872: Out of bounds write in GPU. Reported by cinzinga. - CVE-2026-9873: Use after free in Network. Reported by cinzinga. - CVE-2026-9874: Use after free in Dawn. Reported by Anonymous. - CVE-2026-9875: Out of bounds read in WebGL. Reported by Anonymous. - CVE-2026-9876: Use after free in WebGL. Reported by happy2me. - CVE-2026-9877: Use after free in ANGLE. Reported by Google. - CVE-2026-9878: Use after free in ANGLE. Reported by Google. - CVE-2026-9879: Out of bounds write in ANGLE. Reported by Google. - CVE-2026-9880: Insufficient validation of untrusted input in WebGL. Reported by Google. - CVE-2026-9881: Use after free in Bluetooth. Reported by Google. - CVE-2026-9882: Integer overflow in ANGLE. Reported by Google. - CVE-2026-9883: Use after free in Base. Reported by Google. - CVE-2026-9884: Use after free in Browser. Reported by Google. - CVE-2026-9885: Insufficient validation of untrusted input in UI. Reported by Google. - CVE-2026-9886: Use after free in Base. Reported by Google. - CVE-2026-9887: Use after free in Proxy. Reported by Google. - CVE-2026-9888: Use after free in WebView. Reported by Google. - CVE-2026-9889: Out of bounds read and write in Dawn. Reported by Google. - CVE-2026-9890: Use after free in XR. Reported by Google. - CVE-2026-9891: Use after free in Extensions. Reported by Google. - CVE-2026-9892: Inappropriate implementation in Skia. Reported by Google. - CVE-2026-9893: Use after free in Skia. Reported by Google. - CVE-2026-9894: Use after free in GPU. Reported by tohafrit. - CVE-2026-9895: Out of bounds read in GPU. Reported by 86ac1f1587b71893ed2ad792cd7dde32. - CVE-2026-9896: Out of bounds write in V8. Reported by 303f06e3. - CVE-2026-9897: Use after free in DOM. Reported by Google. - CVE-2026-9898: Insufficient validation of untrusted input in GPU. Reported by Google. - CVE-2026-9899: Use after free in ANGLE. Reported by Google. - CVE-2026-9900: Out of bounds write in ANGLE. Reported by Google. - CVE-2026-9901: Use after free in ANGLE. Reported by Google. - CVE-2026-9902: Use after free in Accessibility. Reported by Google. - CVE-2026-9903: Insufficient validation of untrusted input in Site Isolation. Reported by Google. - CVE-2026-9904: Use after free in ANGLE. Reported by Google. - CVE-2026-9905: Use after free in Accessibility. Reported by Google. - CVE-2026-9906: Out of bounds write in GPU. Reported by Google. - CVE-2026-9907: Out of bounds read in Dawn. Reported by Google. - CVE-2026-9908: Out of bounds read in ANGLE. Reported by Google. - CVE-2026-9909: Integer overflow in Skia. Reported by Google. - CVE-2026-9910: Out of bounds memory access in ANGLE. Reported by Google. - CVE-2026-9911: Integer overflow in ANGLE. Reported by Google. - CVE-2026-9912: Inappropriate implementation in GPU. Reported by Google. - CVE-2026-9913: Inappropriate implementation in ANGLE. Reported by Google - CVE-2026-9914: Insufficient validation of untrusted input in ANGLE. Reported by Google. - CVE-2026-9915: Heap buffer overflow in ANGLE. Reported by Google. - CVE-2026-9916: Out of bounds write in ANGLE. Reported by Google. - CVE-2026-9917: Uninitialized Use in WebGL. Reported by Google. - CVE-2026-9918: Inappropriate implementation in Tint. Reported by Google. - CVE-2026-9919: Out of bounds read in WebGL. Reported by Google. - CVE-2026-9920: Uninitialized Use in GPU. Reported by Google. - CVE-2026-9921: Uninitialized Use in WebGL. Reported by Google. - CVE-2026-9922: Use after free in GPU. Reported by Google. - CVE-2026-9923: Use after free in Skia. Reported by Google. - CVE-2026-9924: Heap buffer overflow in ANGLE. Reported by Google. - CVE-2026-9925: Use after free in ANGLE. Reported by Google. - CVE-2026-9926: Heap buffer overflow in ANGLE. Reported by Google. - CVE-2026-9927: Use after free in ANGLE. Reported by Google. - CVE-2026-9928: Out of bounds read in ANGLE. Reported by Jeff Muizelaar - Mozilla. - CVE-2026-9929: Inappropriate implementation in WebGL. Reported by Google - CVE-2026-9930: Out of bounds write in Dawn. Reported by Google. - CVE-2026-9931: Use after free in GPU. Reported by Google. - CVE-2026-9932: Use after free in ANGLE. Reported by Google. - CVE-2026-9933: Use after free in Input. Reported by Google. - CVE-2026-9934: Use after free in Aura. Reported by Google. - CVE-2026-9935: Uninitialized Use in ANGLE. Reported by Google. - CVE-2026-9936: Use after free in GFX. Reported by Google. - CVE-2026-9937: Use after free in UI. Reported by Google. - CVE-2026-9938: Inappropriate implementation in V8. Reported by Google. - CVE-2026-9939: Heap buffer overflow in WebCodecs. Reported by Google. - CVE-2026-9940: Heap buffer overflow in ANGLE. Reported by Google. - CVE-2026-9941: Use after free in ANGLE. Reported by Google. - CVE-2026-9942: Uninitialized Use in ANGLE. Reported by Google. - CVE-2026-9943: Out of bounds read in WebGL. Reported by Google. - CVE-2026-9944: Uninitialized Use in ANGLE. Reported by Google. - CVE-2026-9945: Use after free in Media. Reported by Google. - CVE-2026-9946: Use after free in ANGLE. Reported by Google. - CVE-2026-9947: Use after free in XML. Reported by Google. - CVE-2026-9948: Use after free in Views. Reported by Google. - CVE-2026-9949: Use after free in Core. Reported by Google. - CVE-2026-9950: Insufficient validation of untrusted input in iOS. Reported by Google. - CVE-2026-9951: Use after free in UI. Reported by Google. - CVE-2026-9952: Use after free in WebAudio. Reported by Google. - CVE-2026-9953: Out of bounds read in ANGLE. Reported by Google. - CVE-2026-9954: Use after free in TabStrip. Reported by yueliu of Microsoft. - CVE-2026-9955: Inappropriate implementation in iOS. Reported by Google. - CVE-2026-9956: Use after free in iOS. Reported by Google. - CVE-2026-9957: Use after free in PDF. Reported by Google. - CVE-2026-9958: Use after free in PDFium. Reported by Google. - CVE-2026-9959: Race in WebRTC. Reported by Google. - CVE-2026-9960: Integer overflow in PDFium. Reported by Google. - CVE-2026-9961: Use after free in SurfaceCapture. Reported by Google. - CVE-2026-9962: Use after free in WebRTC. Reported by Google. - CVE-2026-9963: Uninitialized Use in iOS. Reported by Google. - CVE-2026-9964: Use after free in Bluetooth. Reported by Google. - CVE-2026-9965: Out of bounds write in ANGLE. Reported by Google. - CVE-2026-9966: Integer overflow in XML. Reported by Google. - CVE-2026-9967: Out of bounds write in GPU. Reported by Google. - CVE-2026-9968: Integer overflow in V8. Reported by Google. - CVE-2026-9969: Insufficient validation of untrusted input in ANGLE. Reported by Google. - CVE-2026-9970: Use after free in WebGL. Reported by TFGC. - CVE-2026-9971: Inappropriate implementation in iOS. Reported by Google. - CVE-2026-9972: Uninitialized Use in Gamepad. Reported by Google. - CVE-2026-9973: Out of bounds write in V8. Reported by amyb of OpenAI. - CVE-2026-9974: Out of bounds write in GPU. Reported by Google. - CVE-2026-9975: Out of bounds read and write in ANGLE. Reported by Google - CVE-2026-9976: Inappropriate implementation in USB. Reported by Google. - CVE-2026-9977: Insufficient validation of untrusted input in WebShare. Reported by Google. - CVE-2026-9978: Use after free in Glic. Reported by Google. - CVE-2026-9979: Insufficient validation of untrusted input in Input. Reported by Google. - CVE-2026-9980: Insufficient validation of untrusted input in Printing. Reported by Google. - CVE-2026-9981: Inappropriate implementation in Skia. Reported by Google. - CVE-2026-9982: Insufficient validation of untrusted input in ANGLE. Reported by Google. - CVE-2026-9983: Type Confusion in Skia. Reported by Google. - CVE-2026-9984: Use after free in UI. Reported by Google. - CVE-2026-9985: Insufficient validation of untrusted input in Media. Reported by Google. - CVE-2026-9986: Insufficient validation of untrusted input in OptimizationGuide. Reported by Google. - CVE-2026-9987: Insufficient validation of untrusted input in WebAppInstalls. Reported by Google. - CVE-2026-9988: Use after free in WebRTC. Reported by Google. - CVE-2026-9989: Inappropriate implementation in Media. Reported by Google - CVE-2026-9990: Use after free in WebAppInstalls. Reported by Google. - CVE-2026-9991: Inappropriate implementation in Media. Reported by Google - CVE-2026-9992: Use after free in Network. Reported by Google. - CVE-2026-9993: Use after free in Views. Reported by Google. - CVE-2026-9994: Use after free in Core. Reported by Google. - CVE-2026-9995: Use after free in WebXR. Reported by Google. - CVE-2026-9996: Out of bounds read in WebRTC. Reported by Google. - CVE-2026-9997: Use after free in Input. Reported by Google. - CVE-2026-9998: Integer overflow in Skia. Reported by Google. - CVE-2026-9999: Inappropriate implementation in ANGLE. Reported by Google - CVE-2026-10000: Use after free in Passwords. Reported by Google. - CVE-2026-10001: Use after free in PerformanceManager. Reported by Google - CVE-2026-10002: Use after free in PDFium. Reported by Google. - CVE-2026-10003: Use after free in Views. Reported by Google. - CVE-2026-10004: Insufficient validation of untrusted input in Passwords. Reported by Google. - CVE-2026-10005: Use after free in WebAppInstalls. Reported by Google. - CVE-2026-10006: Race in WebAudio. Reported by Google. - CVE-2026-10007: Use after free in SVG. Reported by Google. - CVE-2026-10008: Uninitialized Use in GPU. Reported by Google. - CVE-2026-10009: Integer overflow in Skia. Reported by Google. - CVE-2026-10010: Inappropriate implementation in Input. Reported by Google. - CVE-2026-10011: Inappropriate implementation in Skia. Reported by Google - CVE-2026-10012: Use after free in Skia. Reported by Google. - CVE-2026-10013: Use after free in WebCodecs. Reported by Google. - CVE-2026-10014: Use after free in WebMIDI. Reported by Google. - CVE-2026-10015: Integer overflow in WTF. Reported by Google. - CVE-2026-10016: Use after free in DOM. Reported by pwn2addr. - CVE-2026-10017: Out of bounds read in Headless. Reported by c6eed09fc8b174b0f3eebedcceb1e792. - CVE-2026-10018: Integer overflow in ANGLE. Reported by Rahul Raj. - CVE-2026-10019: Integer overflow in ANGLE. Reported by Mufeed VH from Winfunc Research (winfunc.com). - CVE-2026-10020: Insufficient validation of untrusted input in Skia. Reported by Google. - CVE-2026-10021: Insufficient validation of untrusted input in USB. Reported by Google. - CVE-2026-10022: Type Confusion in V8. Reported by ggwhyp. Checksums-Sha1: 700865843c53502ea1f34786bc487265bd332cd8 5754456 chromium-common-dbgsym_148.0.7778.215-1~deb12u1_armhf.deb 25a90deba38be21e5b8f7f7ad76fcc1b4434e55d 25488316 chromium-common_148.0.7778.215-1~deb12u1_armhf.deb 27bf2137c9222d2efa313ee3beae8bda37310aea 35399648 chromium-dbgsym_148.0.7778.215-1~deb12u1_armhf.deb 8236dbc6b3b6de4f168b671899bb9c542216bb7c 7212396 chromium-driver_148.0.7778.215-1~deb12u1_armhf.deb ae25d4d4e84206b6550cc89006b1b8dd6f29ff0e 27512980 chromium-headless-shell-dbgsym_148.0.7778.215-1~deb12u1_armhf.deb ddfde381dfbce36d36c58be01f522c9c7567c225 54436432 chromium-headless-shell_148.0.7778.215-1~deb12u1_armhf.deb 0623ba0de84a24abef5cef303d74401b8d1a50e8 18000 chromium-sandbox-dbgsym_148.0.7778.215-1~deb12u1_armhf.deb c9b7d3f9c8c4b1192aa282992916fec67343e5e0 120832 chromium-sandbox_148.0.7778.215-1~deb12u1_armhf.deb db116456e4e152f7eda05b254b83b80d0572cf49 29896388 chromium-shell-dbgsym_148.0.7778.215-1~deb12u1_armhf.deb fd892e5b78c2efc2b2fb0c8c01b6b4a4a20d01af 59733304 chromium-shell_148.0.7778.215-1~deb12u1_armhf.deb 910984f880b28404ef60f67d6958ee7ebb13cb69 30363 chromium_148.0.7778.215-1~deb12u1_armhf-buildd.buildinfo 7ddfc4b52c68f792ab6b5a5494c05728a1f2c599 71482768 chromium_148.0.7778.215-1~deb12u1_armhf.deb Checksums-Sha256: 94507b7b571633d7e6630a6265ab722ad3c7dcc81d374cbafcdc7d300a095ad2 5754456 chromium-common-dbgsym_148.0.7778.215-1~deb12u1_armhf.deb ecf004a6f3136dcd85713914e3e9166fe24c45ad4c4d13ba7c2a07688e594cba 25488316 chromium-common_148.0.7778.215-1~deb12u1_armhf.deb f47aad038b1a965499bcf08dfc20d88e66013e5d9ec4d3735366443472dc71be 35399648 chromium-dbgsym_148.0.7778.215-1~deb12u1_armhf.deb 047145ab830b8df070d424737c55d96755eeaeb88f6703661e23cecdff7656cc 7212396 chromium-driver_148.0.7778.215-1~deb12u1_armhf.deb 847f3cb9233901feb8b184ed7cf46be9531bab7416262d4708ff0a1ed2b87930 27512980 chromium-headless-shell-dbgsym_148.0.7778.215-1~deb12u1_armhf.deb 49981dd3daded6f59fdd890a396ecfd85b09084d58c4be25c369944d3c002ee4 54436432 chromium-headless-shell_148.0.7778.215-1~deb12u1_armhf.deb d7e21f85b5cf4e2268f9272f3dccfc6816553d0601ffc72a69ef4a05a3675958 18000 chromium-sandbox-dbgsym_148.0.7778.215-1~deb12u1_armhf.deb c1c58cab32c91786e207e7fe5a365185cccc1834d36177bd23b1b4141b14b912 120832 chromium-sandbox_148.0.7778.215-1~deb12u1_armhf.deb f262a1f23aa48bb88d660b180da1973e4360632cabee192b29eb1b5c9cf9c2f9 29896388 chromium-shell-dbgsym_148.0.7778.215-1~deb12u1_armhf.deb ace59b2432d99127361d57a1afca3467f3af5e855783cb66d89fb75af905c2df 59733304 chromium-shell_148.0.7778.215-1~deb12u1_armhf.deb 27d13aae4b96372974aa08968a3af522cec4300850dc9b546c16347de892144d 30363 chromium_148.0.7778.215-1~deb12u1_armhf-buildd.buildinfo 1a6c8676ec955a8b9aed4646dbf09b26fcaaa771546c1ef5fb54659d703c5435 71482768 chromium_148.0.7778.215-1~deb12u1_armhf.deb Files: cb7305ea36112501fdc16d54296c9116 5754456 debug optional chromium-common-dbgsym_148.0.7778.215-1~deb12u1_armhf.deb af23e0055745090fab383ea1435ff492 25488316 web optional chromium-common_148.0.7778.215-1~deb12u1_armhf.deb 3fc24e1f32bba045a81a163756bba4d7 35399648 debug optional chromium-dbgsym_148.0.7778.215-1~deb12u1_armhf.deb 4aa8d9bd435e1633674da2738caa13fe 7212396 web optional chromium-driver_148.0.7778.215-1~deb12u1_armhf.deb 54b7d76659829e16a74b05ebe80337ea 27512980 debug optional chromium-headless-shell-dbgsym_148.0.7778.215-1~deb12u1_armhf.deb 57a0fe4e55134004e062b742c8f1dc01 54436432 web optional chromium-headless-shell_148.0.7778.215-1~deb12u1_armhf.deb 71861c272f1da197ff8bd7fd02af0095 18000 debug optional chromium-sandbox-dbgsym_148.0.7778.215-1~deb12u1_armhf.deb 72fe85631a756f17efda09e2ba4b6ef4 120832 web optional chromium-sandbox_148.0.7778.215-1~deb12u1_armhf.deb 2625643dd24c61c35404aa54977db4d1 29896388 debug optional chromium-shell-dbgsym_148.0.7778.215-1~deb12u1_armhf.deb ecb6cc9724a5d308f6c437dada1a133c 59733304 web optional chromium-shell_148.0.7778.215-1~deb12u1_armhf.deb 1eb45434e28dd93cfe9279a1d0ea279c 30363 web optional chromium_148.0.7778.215-1~deb12u1_armhf-buildd.buildinfo 2c0f539d4ecaab7e4ad7706c0a4d55d3 71482768 web optional chromium_148.0.7778.215-1~deb12u1_armhf.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEE7rv+l3KtZdQea77lnwznazfjXToFAmodZ+0ACgkQnwznazfj XTog9Q/8CcvrYRE2Beu4rTTeSMiBIFpm06ZkFeqhqAERaUlWqNS4Z2m/4QUgSwGT sU95yTX1N78Fd9a7N1ebYUT/kpUuKxs6bDriwP6gMiiDAxoj/v7fM9jNTqGo2S+j MRBkLm6x6wqdYEVQxiFz86vUKWlCt/UwXN4fecniekDTM7XOTB+MnNynhj/DkgeD Dm5zlM2i6Fedb8KU8p7+8Gaofi3dpwb6rqsE4OpcSArL/+ye78e9sPcaNQm3UTnE gY7L3bAdg8c5mNGF2Lz6XeBHzW+uQ5ivCbkFB4FuaxT3iIjx7WdtqoluxG0Bhs21 SrSTcQWPbPuVtiAoptGV7kaaAvG6JEZZp2J7Ya26Rp0+yv3KC4aKQF8YZ0fVv+5f 4tjOqnPT+cjC30okXT21mGgNsAtXIqzWvsEg5Hs497QfnWm7AVE+aJdssFfIO9+2 eoeNdNQ9gYGq9cv3X8pJeDa9nJYlbNTnEkGGedvAOD9Wn/TYo4RRPzMjQZAoJIiD 0varHIxkqd5BlhWQN43r+DFikHg0SOYhWkAp2Gr/CyLR0YNCHEesrY4erhS+q4uV lq4od9PWYv2iEpZ7LE74md+d4YnIIwcziA8+7Jt2yfkIs1KVSU7LcI8pYXRGAsGQ G7JkC1sTzulhFLnjGPzpPKdYiwStz5AsBGDEE+7urJKg+qDbL1A= =oJlZ -----END PGP SIGNATURE-----