-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 29 May 2026 11:48:56 -0400
Source: chromium
Binary: chromium chromium-common chromium-common-dbgsym chromium-dbgsym chromium-driver chromium-headless-shell chromium-headless-shell-dbgsym chromium-sandbox chromium-sandbox-dbgsym chromium-shell chromium-shell-dbgsym
Architecture: amd64
Version: 148.0.7778.215-1~deb13u1
Distribution: trixie-security
Urgency: high
Maintainer: amd64 / i386 Build Daemon (x86-csail-01) <buildd_amd64-x86-csail-01@buildd.debian.org>
Changed-By: Andres Salomon <dilinger@debian.org>
Description:
 chromium   - web browser
 chromium-common - web browser - common resources used by the chromium packages
 chromium-driver - web browser - WebDriver support
 chromium-headless-shell - web browser - old headless shell
 chromium-sandbox - web browser - setuid security sandbox for chromium
 chromium-shell - web browser - minimal shell
Changes:
 chromium (148.0.7778.215-1~deb13u1) trixie-security; urgency=high
 .
   [ Andres Salomon ]
   * New upstream security release.
     - CVE-2026-9872: Out of bounds write in GPU. Reported by cinzinga.
     - CVE-2026-9873: Use after free in Network. Reported by cinzinga.
     - CVE-2026-9874: Use after free in Dawn. Reported by Anonymous.
     - CVE-2026-9875: Out of bounds read in WebGL. Reported by Anonymous.
     - CVE-2026-9876: Use after free in WebGL. Reported by happy2me.
     - CVE-2026-9877: Use after free in ANGLE. Reported by Google.
     - CVE-2026-9878: Use after free in ANGLE. Reported by Google.
     - CVE-2026-9879: Out of bounds write in ANGLE. Reported by Google.
     - CVE-2026-9880: Insufficient validation of untrusted input in WebGL.
       Reported by Google.
     - CVE-2026-9881: Use after free in Bluetooth. Reported by Google.
     - CVE-2026-9882: Integer overflow in ANGLE. Reported by Google.
     - CVE-2026-9883: Use after free in Base. Reported by Google.
     - CVE-2026-9884: Use after free in Browser. Reported by Google.
     - CVE-2026-9885: Insufficient validation of untrusted input in UI.
       Reported by Google.
     - CVE-2026-9886: Use after free in Base. Reported by Google.
     - CVE-2026-9887: Use after free in Proxy. Reported by Google.
     - CVE-2026-9888: Use after free in WebView. Reported by Google.
     - CVE-2026-9889: Out of bounds read and write in Dawn. Reported by Google.
     - CVE-2026-9890: Use after free in XR. Reported by Google.
     - CVE-2026-9891: Use after free in Extensions. Reported by Google.
     - CVE-2026-9892: Inappropriate implementation in Skia. Reported by Google.
     - CVE-2026-9893: Use after free in Skia. Reported by Google.
     - CVE-2026-9894: Use after free in GPU. Reported by tohafrit.
     - CVE-2026-9895: Out of bounds read in GPU.
       Reported by 86ac1f1587b71893ed2ad792cd7dde32.
     - CVE-2026-9896: Out of bounds write in V8. Reported by 303f06e3.
     - CVE-2026-9897: Use after free in DOM. Reported by Google.
     - CVE-2026-9898: Insufficient validation of untrusted input in GPU.
       Reported by Google.
     - CVE-2026-9899: Use after free in ANGLE. Reported by Google.
     - CVE-2026-9900: Out of bounds write in ANGLE. Reported by Google.
     - CVE-2026-9901: Use after free in ANGLE. Reported by Google.
     - CVE-2026-9902: Use after free in Accessibility. Reported by Google.
     - CVE-2026-9903: Insufficient validation of untrusted input in
       Site Isolation. Reported by Google.
     - CVE-2026-9904: Use after free in ANGLE. Reported by Google.
     - CVE-2026-9905: Use after free in Accessibility. Reported by Google.
     - CVE-2026-9906: Out of bounds write in GPU. Reported by Google.
     - CVE-2026-9907: Out of bounds read in Dawn. Reported by Google.
     - CVE-2026-9908: Out of bounds read in ANGLE. Reported by Google.
     - CVE-2026-9909: Integer overflow in Skia. Reported by Google.
     - CVE-2026-9910: Out of bounds memory access in ANGLE. Reported by Google.
     - CVE-2026-9911: Integer overflow in ANGLE. Reported by Google.
     - CVE-2026-9912: Inappropriate implementation in GPU. Reported by Google.
     - CVE-2026-9913: Inappropriate implementation in ANGLE. Reported by Google
     - CVE-2026-9914: Insufficient validation of untrusted input in ANGLE.
       Reported by Google.
     - CVE-2026-9915: Heap buffer overflow in ANGLE. Reported by Google.
     - CVE-2026-9916: Out of bounds write in ANGLE. Reported by Google.
     - CVE-2026-9917: Uninitialized Use in WebGL. Reported by Google.
     - CVE-2026-9918: Inappropriate implementation in Tint. Reported by Google.
     - CVE-2026-9919: Out of bounds read in WebGL. Reported by Google.
     - CVE-2026-9920: Uninitialized Use in GPU. Reported by Google.
     - CVE-2026-9921: Uninitialized Use in WebGL. Reported by Google.
     - CVE-2026-9922: Use after free in GPU. Reported by Google.
     - CVE-2026-9923: Use after free in Skia. Reported by Google.
     - CVE-2026-9924: Heap buffer overflow in ANGLE. Reported by Google.
     - CVE-2026-9925: Use after free in ANGLE. Reported by Google.
     - CVE-2026-9926: Heap buffer overflow in ANGLE. Reported by Google.
     - CVE-2026-9927: Use after free in ANGLE. Reported by Google.
     - CVE-2026-9928: Out of bounds read in ANGLE.
       Reported by Jeff Muizelaar - Mozilla.
     - CVE-2026-9929: Inappropriate implementation in WebGL. Reported by Google
     - CVE-2026-9930: Out of bounds write in Dawn. Reported by Google.
     - CVE-2026-9931: Use after free in GPU. Reported by Google.
     - CVE-2026-9932: Use after free in ANGLE. Reported by Google.
     - CVE-2026-9933: Use after free in Input. Reported by Google.
     - CVE-2026-9934: Use after free in Aura. Reported by Google.
     - CVE-2026-9935: Uninitialized Use in ANGLE. Reported by Google.
     - CVE-2026-9936: Use after free in GFX. Reported by Google.
     - CVE-2026-9937: Use after free in UI. Reported by Google.
     - CVE-2026-9938: Inappropriate implementation in V8. Reported by Google.
     - CVE-2026-9939: Heap buffer overflow in WebCodecs. Reported by Google.
     - CVE-2026-9940: Heap buffer overflow in ANGLE. Reported by Google.
     - CVE-2026-9941: Use after free in ANGLE. Reported by Google.
     - CVE-2026-9942: Uninitialized Use in ANGLE. Reported by Google.
     - CVE-2026-9943: Out of bounds read in WebGL. Reported by Google.
     - CVE-2026-9944: Uninitialized Use in ANGLE. Reported by Google.
     - CVE-2026-9945: Use after free in Media. Reported by Google.
     - CVE-2026-9946: Use after free in ANGLE. Reported by Google.
     - CVE-2026-9947: Use after free in XML. Reported by Google.
     - CVE-2026-9948: Use after free in Views. Reported by Google.
     - CVE-2026-9949: Use after free in Core. Reported by Google.
     - CVE-2026-9950: Insufficient validation of untrusted input in iOS.
       Reported by Google.
     - CVE-2026-9951: Use after free in UI. Reported by Google.
     - CVE-2026-9952: Use after free in WebAudio. Reported by Google.
     - CVE-2026-9953: Out of bounds read in ANGLE. Reported by Google.
     - CVE-2026-9954: Use after free in TabStrip.
       Reported by yueliu of Microsoft.
     - CVE-2026-9955: Inappropriate implementation in iOS. Reported by Google.
     - CVE-2026-9956: Use after free in iOS. Reported by Google.
     - CVE-2026-9957: Use after free in PDF. Reported by Google.
     - CVE-2026-9958: Use after free in PDFium. Reported by Google.
     - CVE-2026-9959: Race in WebRTC. Reported by Google.
     - CVE-2026-9960: Integer overflow in PDFium. Reported by Google.
     - CVE-2026-9961: Use after free in SurfaceCapture. Reported by Google.
     - CVE-2026-9962: Use after free in WebRTC. Reported by Google.
     - CVE-2026-9963: Uninitialized Use in iOS. Reported by Google.
     - CVE-2026-9964: Use after free in Bluetooth. Reported by Google.
     - CVE-2026-9965: Out of bounds write in ANGLE. Reported by Google.
     - CVE-2026-9966: Integer overflow in XML. Reported by Google.
     - CVE-2026-9967: Out of bounds write in GPU. Reported by Google.
     - CVE-2026-9968: Integer overflow in V8. Reported by Google.
     - CVE-2026-9969: Insufficient validation of untrusted input in ANGLE.
       Reported by Google.
     - CVE-2026-9970: Use after free in WebGL. Reported by TFGC.
     - CVE-2026-9971: Inappropriate implementation in iOS. Reported by Google.
     - CVE-2026-9972: Uninitialized Use in Gamepad. Reported by Google.
     - CVE-2026-9973: Out of bounds write in V8. Reported by amyb of OpenAI.
     - CVE-2026-9974: Out of bounds write in GPU. Reported by Google.
     - CVE-2026-9975: Out of bounds read and write in ANGLE. Reported by Google
     - CVE-2026-9976: Inappropriate implementation in USB. Reported by Google.
     - CVE-2026-9977: Insufficient validation of untrusted input in WebShare.
       Reported by Google.
     - CVE-2026-9978: Use after free in Glic. Reported by Google.
     - CVE-2026-9979: Insufficient validation of untrusted input in Input.
       Reported by Google.
     - CVE-2026-9980: Insufficient validation of untrusted input in Printing.
       Reported by Google.
     - CVE-2026-9981: Inappropriate implementation in Skia. Reported by Google.
     - CVE-2026-9982: Insufficient validation of untrusted input in ANGLE.
       Reported by Google.
     - CVE-2026-9983: Type Confusion in Skia. Reported by Google.
     - CVE-2026-9984: Use after free in UI. Reported by Google.
     - CVE-2026-9985: Insufficient validation of untrusted input in Media.
       Reported by Google.
     - CVE-2026-9986: Insufficient validation of untrusted input in
       OptimizationGuide. Reported by Google.
     - CVE-2026-9987: Insufficient validation of untrusted input in
       WebAppInstalls. Reported by Google.
     - CVE-2026-9988: Use after free in WebRTC. Reported by Google.
     - CVE-2026-9989: Inappropriate implementation in Media. Reported by Google
     - CVE-2026-9990: Use after free in WebAppInstalls. Reported by Google.
     - CVE-2026-9991: Inappropriate implementation in Media. Reported by Google
     - CVE-2026-9992: Use after free in Network. Reported by Google.
     - CVE-2026-9993: Use after free in Views. Reported by Google.
     - CVE-2026-9994: Use after free in Core. Reported by Google.
     - CVE-2026-9995: Use after free in WebXR. Reported by Google.
     - CVE-2026-9996: Out of bounds read in WebRTC. Reported by Google.
     - CVE-2026-9997: Use after free in Input. Reported by Google.
     - CVE-2026-9998: Integer overflow in Skia. Reported by Google.
     - CVE-2026-9999: Inappropriate implementation in ANGLE. Reported by Google
     - CVE-2026-10000: Use after free in Passwords. Reported by Google.
     - CVE-2026-10001: Use after free in PerformanceManager. Reported by Google
     - CVE-2026-10002: Use after free in PDFium. Reported by Google.
     - CVE-2026-10003: Use after free in Views. Reported by Google.
     - CVE-2026-10004: Insufficient validation of untrusted input in Passwords.
       Reported by Google.
     - CVE-2026-10005: Use after free in WebAppInstalls. Reported by Google.
     - CVE-2026-10006: Race in WebAudio. Reported by Google.
     - CVE-2026-10007: Use after free in SVG. Reported by Google.
     - CVE-2026-10008: Uninitialized Use in GPU. Reported by Google.
     - CVE-2026-10009: Integer overflow in Skia. Reported by Google.
     - CVE-2026-10010: Inappropriate implementation in Input.
       Reported by Google.
     - CVE-2026-10011: Inappropriate implementation in Skia. Reported by Google
     - CVE-2026-10012: Use after free in Skia. Reported by Google.
     - CVE-2026-10013: Use after free in WebCodecs. Reported by Google.
     - CVE-2026-10014: Use after free in WebMIDI. Reported by Google.
     - CVE-2026-10015: Integer overflow in WTF. Reported by Google.
     - CVE-2026-10016: Use after free in DOM. Reported by pwn2addr.
     - CVE-2026-10017: Out of bounds read in Headless.
       Reported by c6eed09fc8b174b0f3eebedcceb1e792.
     - CVE-2026-10018: Integer overflow in ANGLE. Reported by Rahul Raj.
     - CVE-2026-10019: Integer overflow in ANGLE.
       Reported by Mufeed VH from Winfunc Research (winfunc.com).
     - CVE-2026-10020: Insufficient validation of untrusted input in Skia.
       Reported by Google.
     - CVE-2026-10021: Insufficient validation of untrusted input in USB.
       Reported by Google.
     - CVE-2026-10022: Type Confusion in V8. Reported by ggwhyp.
Checksums-Sha1:
 1ac97be7785e85bfeb512744d83b33dbdb16b988 5213048 chromium-common-dbgsym_148.0.7778.215-1~deb13u1_amd64.deb
 203abc6129fe4f7166d1003c2cfccfc17fc38762 25715172 chromium-common_148.0.7778.215-1~deb13u1_amd64.deb
 e2c95d20d4394357730fb8db277345311f4478a4 33253308 chromium-dbgsym_148.0.7778.215-1~deb13u1_amd64.deb
 50ed9bdb61fd301d652cfde6c8879853d6d7d5e7 7524556 chromium-driver_148.0.7778.215-1~deb13u1_amd64.deb
 3bbefe599421735480eb8d9c7970da5a1627ef71 28141124 chromium-headless-shell-dbgsym_148.0.7778.215-1~deb13u1_amd64.deb
 24c551e13cd77dada78c14534cf1d23d5c2ff86f 62895232 chromium-headless-shell_148.0.7778.215-1~deb13u1_amd64.deb
 6b4d286430fbff1291a388a7bef0dde3703585c7 20216 chromium-sandbox-dbgsym_148.0.7778.215-1~deb13u1_amd64.deb
 c0d468ebc8b40f7351df23e0c26f5dffbddc52d5 119156 chromium-sandbox_148.0.7778.215-1~deb13u1_amd64.deb
 d5795ddcc5eb188e6432054d28ee0099d064485a 29720956 chromium-shell-dbgsym_148.0.7778.215-1~deb13u1_amd64.deb
 83d12e52829764db583629c6d7cabdd520b9111c 62466628 chromium-shell_148.0.7778.215-1~deb13u1_amd64.deb
 1712c05eb3bb3051098c179669ee102632352afd 30680 chromium_148.0.7778.215-1~deb13u1_amd64-buildd.buildinfo
 ec311b78e91d88e07a836bcc030dea161a27d076 85213688 chromium_148.0.7778.215-1~deb13u1_amd64.deb
Checksums-Sha256:
 ad453f27fbf7302cc2fa33f2984c55609d897aaa5d5fd9d59771969418f9181f 5213048 chromium-common-dbgsym_148.0.7778.215-1~deb13u1_amd64.deb
 5be9fce332d9a1d6c516246e734ccef24f2d734fcb28d4e115c5123804a0300f 25715172 chromium-common_148.0.7778.215-1~deb13u1_amd64.deb
 6de405e829fac7f22d0c3cd60861b3a40b5dc15e7a2c36c4d962e80a9061e6ce 33253308 chromium-dbgsym_148.0.7778.215-1~deb13u1_amd64.deb
 923228838d76b01798144d8a5414961a012d68ac795af1edc30f23b05233fe5d 7524556 chromium-driver_148.0.7778.215-1~deb13u1_amd64.deb
 d848d7ee4fae1626034c7d412e639c713e84e1e59ef989fea9462a7d65ba9ab6 28141124 chromium-headless-shell-dbgsym_148.0.7778.215-1~deb13u1_amd64.deb
 3c61fa857c73c7b0a0245f80510271c0f571e53bdecaea38708a6c710a9b54f8 62895232 chromium-headless-shell_148.0.7778.215-1~deb13u1_amd64.deb
 97c75d88a97c8854ee1a87eb603b4680e095c642a43b17f2323aae05eaa38959 20216 chromium-sandbox-dbgsym_148.0.7778.215-1~deb13u1_amd64.deb
 9bbf6da12b0236e3ce8b361fb57a329af4b51b333d4c95d9242024188ee98e8c 119156 chromium-sandbox_148.0.7778.215-1~deb13u1_amd64.deb
 d1abe7e30b6328ed09e7e43a78272ba3d934665a0ca010c4603be65926c8f841 29720956 chromium-shell-dbgsym_148.0.7778.215-1~deb13u1_amd64.deb
 86b037d215578ef0c66b9103010fe4fade3b1b69f48ccd798f52801b32e2b1ec 62466628 chromium-shell_148.0.7778.215-1~deb13u1_amd64.deb
 53b0a034184c5c87cd57c32f4b789f901d72cb3829b4e108b9261c902a28a6aa 30680 chromium_148.0.7778.215-1~deb13u1_amd64-buildd.buildinfo
 5e4741577ba2c03c6f9481531897ac8137c64ed5b584525a8706c84241ec9d97 85213688 chromium_148.0.7778.215-1~deb13u1_amd64.deb
Files:
 1b4c7174e3a9b3a5207cb3832cf240b7 5213048 debug optional chromium-common-dbgsym_148.0.7778.215-1~deb13u1_amd64.deb
 9548b0aa05622c3eb2f679b92281b208 25715172 web optional chromium-common_148.0.7778.215-1~deb13u1_amd64.deb
 448b7615dcaed271d0f1b488eaa17882 33253308 debug optional chromium-dbgsym_148.0.7778.215-1~deb13u1_amd64.deb
 6adf1986134de4c30f9eecbd46a24a4c 7524556 web optional chromium-driver_148.0.7778.215-1~deb13u1_amd64.deb
 aa6ad8b295dc863a9720212c5aa34003 28141124 debug optional chromium-headless-shell-dbgsym_148.0.7778.215-1~deb13u1_amd64.deb
 665f3b13adc547be1eecc163e0d7918a 62895232 web optional chromium-headless-shell_148.0.7778.215-1~deb13u1_amd64.deb
 7dcf3212316ea241b868161b237339c6 20216 debug optional chromium-sandbox-dbgsym_148.0.7778.215-1~deb13u1_amd64.deb
 eea5268feb6657b66bb51093be1a288a 119156 web optional chromium-sandbox_148.0.7778.215-1~deb13u1_amd64.deb
 e4335321258ac6da5ff23f1e4dff00a3 29720956 debug optional chromium-shell-dbgsym_148.0.7778.215-1~deb13u1_amd64.deb
 4c5ca6a2714cd90ecc34968e455a4512 62466628 web optional chromium-shell_148.0.7778.215-1~deb13u1_amd64.deb
 5520644bab3960bae1fd06eae2e3761c 30680 web optional chromium_148.0.7778.215-1~deb13u1_amd64-buildd.buildinfo
 ace4f2be525c4e55b4e9ceddcef48bba 85213688 web optional chromium_148.0.7778.215-1~deb13u1_amd64.deb

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEBDWXQb2umOtH4DRpYg9P9sm2dfEFAmocU48ACgkQYg9P9sm2
dfF2iw//ZjQEasHEjvSCtAV3d8KAk2598UzUCrQjBRmelGbFKxnNNxwKVIbXtTGg
xzYKrDasb4eKUe7ZHaG+PQxQueTF7a41TqMFujr2h8CfUbIGPVSHDjs7SPctBoQF
4nt8iEY3IZ9T2/tTlWA9fG0m4Xjj76Dnv16h8xkS5xop6oK6gNR7xm1wHyvSEF2P
WHGnHFOSPCcbIEiFhurNyTQpgcMUVGgHmaTlS9/L8XvRlJdxRK6QaPZsRzZLK7Mb
tJZ7K5qL8lZTQVAElqx1cAFU10pYq3wWoimlxPAHJFGoNZWf7lczCYFOAYgJflSB
t3b0xOIxVZfo4M0zrG1PZqzqoOZj7yOIK3JTOKwQgwY6lnyE15VFrGaFaYXSBc8f
nYFVic5mn5/ctQsYaxtr9ihk/wTJAhOjg1EfysHuXAbxClZcrFjvumvekHP3aQQh
5fKt5DtrFikrQSpDCDVMbxZjcYYlaJn1mwviHTyIqrAIn3ZJ9cM9oJOzllmzPyCK
Ns67/ZkFWyoMIESxp3D8Ls/SFRc8NRy5rUsmN/ahn1uhQTgzcZc7XZTz0gZJNLS7
9G50lbrJU0/k88qQnJIiRB2Z19tcpxS1Gfp9gQkBTHseRN0Io/EQ3VMfFWOvlcGF
++o55fmF6kJ1bUYJSZ+5q3lThsL5A8YpGVjyDQ7BGkvQ/1SJCL0=
=YSk6
-----END PGP SIGNATURE-----