-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Fri, 29 May 2026 11:48:56 -0400 Source: chromium Binary: chromium chromium-common chromium-common-dbgsym chromium-dbgsym chromium-driver chromium-headless-shell chromium-headless-shell-dbgsym chromium-sandbox chromium-sandbox-dbgsym chromium-shell chromium-shell-dbgsym Architecture: arm64 Version: 148.0.7778.215-1~deb12u1 Distribution: bookworm-security Urgency: high Maintainer: arm64 Build Daemon (arm-ubc-02) Changed-By: Andres Salomon Description: chromium - web browser chromium-common - web browser - common resources used by the chromium packages chromium-driver - web browser - WebDriver support chromium-headless-shell - web browser - old headless shell chromium-sandbox - web browser - setuid security sandbox for chromium chromium-shell - web browser - minimal shell Changes: chromium (148.0.7778.215-1~deb12u1) bookworm-security; urgency=high . [ Andres Salomon ] * New upstream security release. - CVE-2026-9872: Out of bounds write in GPU. Reported by cinzinga. - CVE-2026-9873: Use after free in Network. Reported by cinzinga. - CVE-2026-9874: Use after free in Dawn. Reported by Anonymous. - CVE-2026-9875: Out of bounds read in WebGL. Reported by Anonymous. - CVE-2026-9876: Use after free in WebGL. Reported by happy2me. - CVE-2026-9877: Use after free in ANGLE. Reported by Google. - CVE-2026-9878: Use after free in ANGLE. Reported by Google. - CVE-2026-9879: Out of bounds write in ANGLE. Reported by Google. - CVE-2026-9880: Insufficient validation of untrusted input in WebGL. Reported by Google. - CVE-2026-9881: Use after free in Bluetooth. Reported by Google. - CVE-2026-9882: Integer overflow in ANGLE. Reported by Google. - CVE-2026-9883: Use after free in Base. Reported by Google. - CVE-2026-9884: Use after free in Browser. Reported by Google. - CVE-2026-9885: Insufficient validation of untrusted input in UI. Reported by Google. - CVE-2026-9886: Use after free in Base. Reported by Google. - CVE-2026-9887: Use after free in Proxy. Reported by Google. - CVE-2026-9888: Use after free in WebView. Reported by Google. - CVE-2026-9889: Out of bounds read and write in Dawn. Reported by Google. - CVE-2026-9890: Use after free in XR. Reported by Google. - CVE-2026-9891: Use after free in Extensions. Reported by Google. - CVE-2026-9892: Inappropriate implementation in Skia. Reported by Google. - CVE-2026-9893: Use after free in Skia. Reported by Google. - CVE-2026-9894: Use after free in GPU. Reported by tohafrit. - CVE-2026-9895: Out of bounds read in GPU. Reported by 86ac1f1587b71893ed2ad792cd7dde32. - CVE-2026-9896: Out of bounds write in V8. Reported by 303f06e3. - CVE-2026-9897: Use after free in DOM. Reported by Google. - CVE-2026-9898: Insufficient validation of untrusted input in GPU. Reported by Google. - CVE-2026-9899: Use after free in ANGLE. Reported by Google. - CVE-2026-9900: Out of bounds write in ANGLE. Reported by Google. - CVE-2026-9901: Use after free in ANGLE. Reported by Google. - CVE-2026-9902: Use after free in Accessibility. Reported by Google. - CVE-2026-9903: Insufficient validation of untrusted input in Site Isolation. Reported by Google. - CVE-2026-9904: Use after free in ANGLE. Reported by Google. - CVE-2026-9905: Use after free in Accessibility. Reported by Google. - CVE-2026-9906: Out of bounds write in GPU. Reported by Google. - CVE-2026-9907: Out of bounds read in Dawn. Reported by Google. - CVE-2026-9908: Out of bounds read in ANGLE. Reported by Google. - CVE-2026-9909: Integer overflow in Skia. Reported by Google. - CVE-2026-9910: Out of bounds memory access in ANGLE. Reported by Google. - CVE-2026-9911: Integer overflow in ANGLE. Reported by Google. - CVE-2026-9912: Inappropriate implementation in GPU. Reported by Google. - CVE-2026-9913: Inappropriate implementation in ANGLE. Reported by Google - CVE-2026-9914: Insufficient validation of untrusted input in ANGLE. Reported by Google. - CVE-2026-9915: Heap buffer overflow in ANGLE. Reported by Google. - CVE-2026-9916: Out of bounds write in ANGLE. Reported by Google. - CVE-2026-9917: Uninitialized Use in WebGL. Reported by Google. - CVE-2026-9918: Inappropriate implementation in Tint. Reported by Google. - CVE-2026-9919: Out of bounds read in WebGL. Reported by Google. - CVE-2026-9920: Uninitialized Use in GPU. Reported by Google. - CVE-2026-9921: Uninitialized Use in WebGL. Reported by Google. - CVE-2026-9922: Use after free in GPU. Reported by Google. - CVE-2026-9923: Use after free in Skia. Reported by Google. - CVE-2026-9924: Heap buffer overflow in ANGLE. Reported by Google. - CVE-2026-9925: Use after free in ANGLE. Reported by Google. - CVE-2026-9926: Heap buffer overflow in ANGLE. Reported by Google. - CVE-2026-9927: Use after free in ANGLE. Reported by Google. - CVE-2026-9928: Out of bounds read in ANGLE. Reported by Jeff Muizelaar - Mozilla. - CVE-2026-9929: Inappropriate implementation in WebGL. Reported by Google - CVE-2026-9930: Out of bounds write in Dawn. Reported by Google. - CVE-2026-9931: Use after free in GPU. Reported by Google. - CVE-2026-9932: Use after free in ANGLE. Reported by Google. - CVE-2026-9933: Use after free in Input. Reported by Google. - CVE-2026-9934: Use after free in Aura. Reported by Google. - CVE-2026-9935: Uninitialized Use in ANGLE. Reported by Google. - CVE-2026-9936: Use after free in GFX. Reported by Google. - CVE-2026-9937: Use after free in UI. Reported by Google. - CVE-2026-9938: Inappropriate implementation in V8. Reported by Google. - CVE-2026-9939: Heap buffer overflow in WebCodecs. Reported by Google. - CVE-2026-9940: Heap buffer overflow in ANGLE. Reported by Google. - CVE-2026-9941: Use after free in ANGLE. Reported by Google. - CVE-2026-9942: Uninitialized Use in ANGLE. Reported by Google. - CVE-2026-9943: Out of bounds read in WebGL. Reported by Google. - CVE-2026-9944: Uninitialized Use in ANGLE. Reported by Google. - CVE-2026-9945: Use after free in Media. Reported by Google. - CVE-2026-9946: Use after free in ANGLE. Reported by Google. - CVE-2026-9947: Use after free in XML. Reported by Google. - CVE-2026-9948: Use after free in Views. Reported by Google. - CVE-2026-9949: Use after free in Core. Reported by Google. - CVE-2026-9950: Insufficient validation of untrusted input in iOS. Reported by Google. - CVE-2026-9951: Use after free in UI. Reported by Google. - CVE-2026-9952: Use after free in WebAudio. Reported by Google. - CVE-2026-9953: Out of bounds read in ANGLE. Reported by Google. - CVE-2026-9954: Use after free in TabStrip. Reported by yueliu of Microsoft. - CVE-2026-9955: Inappropriate implementation in iOS. Reported by Google. - CVE-2026-9956: Use after free in iOS. Reported by Google. - CVE-2026-9957: Use after free in PDF. Reported by Google. - CVE-2026-9958: Use after free in PDFium. Reported by Google. - CVE-2026-9959: Race in WebRTC. Reported by Google. - CVE-2026-9960: Integer overflow in PDFium. Reported by Google. - CVE-2026-9961: Use after free in SurfaceCapture. Reported by Google. - CVE-2026-9962: Use after free in WebRTC. Reported by Google. - CVE-2026-9963: Uninitialized Use in iOS. Reported by Google. - CVE-2026-9964: Use after free in Bluetooth. Reported by Google. - CVE-2026-9965: Out of bounds write in ANGLE. Reported by Google. - CVE-2026-9966: Integer overflow in XML. Reported by Google. - CVE-2026-9967: Out of bounds write in GPU. Reported by Google. - CVE-2026-9968: Integer overflow in V8. Reported by Google. - CVE-2026-9969: Insufficient validation of untrusted input in ANGLE. Reported by Google. - CVE-2026-9970: Use after free in WebGL. Reported by TFGC. - CVE-2026-9971: Inappropriate implementation in iOS. Reported by Google. - CVE-2026-9972: Uninitialized Use in Gamepad. Reported by Google. - CVE-2026-9973: Out of bounds write in V8. Reported by amyb of OpenAI. - CVE-2026-9974: Out of bounds write in GPU. Reported by Google. - CVE-2026-9975: Out of bounds read and write in ANGLE. Reported by Google - CVE-2026-9976: Inappropriate implementation in USB. Reported by Google. - CVE-2026-9977: Insufficient validation of untrusted input in WebShare. Reported by Google. - CVE-2026-9978: Use after free in Glic. Reported by Google. - CVE-2026-9979: Insufficient validation of untrusted input in Input. Reported by Google. - CVE-2026-9980: Insufficient validation of untrusted input in Printing. Reported by Google. - CVE-2026-9981: Inappropriate implementation in Skia. Reported by Google. - CVE-2026-9982: Insufficient validation of untrusted input in ANGLE. Reported by Google. - CVE-2026-9983: Type Confusion in Skia. Reported by Google. - CVE-2026-9984: Use after free in UI. Reported by Google. - CVE-2026-9985: Insufficient validation of untrusted input in Media. Reported by Google. - CVE-2026-9986: Insufficient validation of untrusted input in OptimizationGuide. Reported by Google. - CVE-2026-9987: Insufficient validation of untrusted input in WebAppInstalls. Reported by Google. - CVE-2026-9988: Use after free in WebRTC. Reported by Google. - CVE-2026-9989: Inappropriate implementation in Media. Reported by Google - CVE-2026-9990: Use after free in WebAppInstalls. Reported by Google. - CVE-2026-9991: Inappropriate implementation in Media. Reported by Google - CVE-2026-9992: Use after free in Network. Reported by Google. - CVE-2026-9993: Use after free in Views. Reported by Google. - CVE-2026-9994: Use after free in Core. Reported by Google. - CVE-2026-9995: Use after free in WebXR. Reported by Google. - CVE-2026-9996: Out of bounds read in WebRTC. Reported by Google. - CVE-2026-9997: Use after free in Input. Reported by Google. - CVE-2026-9998: Integer overflow in Skia. Reported by Google. - CVE-2026-9999: Inappropriate implementation in ANGLE. Reported by Google - CVE-2026-10000: Use after free in Passwords. Reported by Google. - CVE-2026-10001: Use after free in PerformanceManager. Reported by Google - CVE-2026-10002: Use after free in PDFium. Reported by Google. - CVE-2026-10003: Use after free in Views. Reported by Google. - CVE-2026-10004: Insufficient validation of untrusted input in Passwords. Reported by Google. - CVE-2026-10005: Use after free in WebAppInstalls. Reported by Google. - CVE-2026-10006: Race in WebAudio. Reported by Google. - CVE-2026-10007: Use after free in SVG. Reported by Google. - CVE-2026-10008: Uninitialized Use in GPU. Reported by Google. - CVE-2026-10009: Integer overflow in Skia. Reported by Google. - CVE-2026-10010: Inappropriate implementation in Input. Reported by Google. - CVE-2026-10011: Inappropriate implementation in Skia. Reported by Google - CVE-2026-10012: Use after free in Skia. Reported by Google. - CVE-2026-10013: Use after free in WebCodecs. Reported by Google. - CVE-2026-10014: Use after free in WebMIDI. Reported by Google. - CVE-2026-10015: Integer overflow in WTF. Reported by Google. - CVE-2026-10016: Use after free in DOM. Reported by pwn2addr. - CVE-2026-10017: Out of bounds read in Headless. Reported by c6eed09fc8b174b0f3eebedcceb1e792. - CVE-2026-10018: Integer overflow in ANGLE. Reported by Rahul Raj. - CVE-2026-10019: Integer overflow in ANGLE. Reported by Mufeed VH from Winfunc Research (winfunc.com). - CVE-2026-10020: Insufficient validation of untrusted input in Skia. Reported by Google. - CVE-2026-10021: Insufficient validation of untrusted input in USB. Reported by Google. - CVE-2026-10022: Type Confusion in V8. Reported by ggwhyp. Checksums-Sha1: 0147050396f00cc23ad00c2df0dbc59561353f06 6479848 chromium-common-dbgsym_148.0.7778.215-1~deb12u1_arm64.deb 34a7a2c222f1a483275efedc209897477f7f1c2c 30465032 chromium-common_148.0.7778.215-1~deb12u1_arm64.deb 686f51f15551d1628643d476e9ebe208f41475e4 37742448 chromium-dbgsym_148.0.7778.215-1~deb12u1_arm64.deb e3c935ea7bd9769fb1275883452c85558431b2c6 6763644 chromium-driver_148.0.7778.215-1~deb12u1_arm64.deb babfc77ebbd5d37b7dfe7cb8cc04482966e423d9 30646844 chromium-headless-shell-dbgsym_148.0.7778.215-1~deb12u1_arm64.deb 96ecd3f76c997ad76b1170470f6239375a2b77e3 51005808 chromium-headless-shell_148.0.7778.215-1~deb12u1_arm64.deb 4a55f5c64722fafcf3c19c17ecc3e78f17b4ebd1 20252 chromium-sandbox-dbgsym_148.0.7778.215-1~deb12u1_arm64.deb 805566bca1b012014fe6388bfc7bd16be5a3e0ee 121868 chromium-sandbox_148.0.7778.215-1~deb12u1_arm64.deb 1ef8d7c40d9c9c0093ee80420fe78c4ff7e681d0 32996320 chromium-shell-dbgsym_148.0.7778.215-1~deb12u1_arm64.deb d6ee431f41c51f562767569cd4623dac82445193 55912136 chromium-shell_148.0.7778.215-1~deb12u1_arm64.deb 286a868241b49afabbca6228dc7d000b76e7b5b5 30453 chromium_148.0.7778.215-1~deb12u1_arm64-buildd.buildinfo 188b0a73151d48f8505fa66296565142604f3082 65381904 chromium_148.0.7778.215-1~deb12u1_arm64.deb Checksums-Sha256: a1517fdac6eda9bb28b7abd2c4d0841dd3d6963607e3bee4330f1a8f17e7e76d 6479848 chromium-common-dbgsym_148.0.7778.215-1~deb12u1_arm64.deb 4b0c52f590f2b27443ac086f5b1009a542f4014b19997fd73a0c08257935531b 30465032 chromium-common_148.0.7778.215-1~deb12u1_arm64.deb 530ae77f0c292f58d24ec283797dbcff55d30d1eb5d0a49c41eb3431fa0e1824 37742448 chromium-dbgsym_148.0.7778.215-1~deb12u1_arm64.deb 8c94b0a5fb1a84da48f222f830b4c3a8d1bcc496a88cc5fd04b8384b37d7278c 6763644 chromium-driver_148.0.7778.215-1~deb12u1_arm64.deb 55bc3fc8bb7935820b123371d04ca80df9639f55fd448a7eccf6b7cca27907b7 30646844 chromium-headless-shell-dbgsym_148.0.7778.215-1~deb12u1_arm64.deb 88faacc82337efd7a1fc3f0dc1ae5e27b96a2c26524e9e3aa047cb9ebfabc91e 51005808 chromium-headless-shell_148.0.7778.215-1~deb12u1_arm64.deb 35301725c449d9be44e9d7ca539785580a1a6f70ca9f832d52f559d26df694b6 20252 chromium-sandbox-dbgsym_148.0.7778.215-1~deb12u1_arm64.deb 866901cdf0b003b2d12f2bdee7df5ad8aa0a24cdf18a573551f6a449b6f82663 121868 chromium-sandbox_148.0.7778.215-1~deb12u1_arm64.deb 5e6de4f51d191d9fff1364b6256d736da4f408eb32ca884b41c6ad2b4c671ae8 32996320 chromium-shell-dbgsym_148.0.7778.215-1~deb12u1_arm64.deb 6a2b22dcea5f73b5be403bd1535118d56ee016d52d6e835692a4a5ac77f17d83 55912136 chromium-shell_148.0.7778.215-1~deb12u1_arm64.deb ed0dae0292168a723c0d135964d0b534ac630e3ed02d569758b2cce33da82e44 30453 chromium_148.0.7778.215-1~deb12u1_arm64-buildd.buildinfo 6196df3b9b3b2875b8bb8051fadb83526f3d4cb40316895e7cc225ceedf8651f 65381904 chromium_148.0.7778.215-1~deb12u1_arm64.deb Files: bfa8a13115c84b39ec03471916d197b4 6479848 debug optional chromium-common-dbgsym_148.0.7778.215-1~deb12u1_arm64.deb a7e03e2caebe804f7a373864656bb7d4 30465032 web optional chromium-common_148.0.7778.215-1~deb12u1_arm64.deb 07f193a84e989ef7251971abffe98b2e 37742448 debug optional chromium-dbgsym_148.0.7778.215-1~deb12u1_arm64.deb 36c2e2ec16524b50fc455e118df72f86 6763644 web optional chromium-driver_148.0.7778.215-1~deb12u1_arm64.deb b6245fd115fc716f7ca02e5d85042b31 30646844 debug optional chromium-headless-shell-dbgsym_148.0.7778.215-1~deb12u1_arm64.deb 564b617bc2cd7c8e9c382995fb707272 51005808 web optional chromium-headless-shell_148.0.7778.215-1~deb12u1_arm64.deb bb9f897971000224b3c2fae5fd0ee8cd 20252 debug optional chromium-sandbox-dbgsym_148.0.7778.215-1~deb12u1_arm64.deb 070c34c9954e67109108502e0f6692e7 121868 web optional chromium-sandbox_148.0.7778.215-1~deb12u1_arm64.deb fcfbd9f18233c945b5cefcf78ade56e1 32996320 debug optional chromium-shell-dbgsym_148.0.7778.215-1~deb12u1_arm64.deb f7efde1ec0efc362ba5812f8f2268637 55912136 web optional chromium-shell_148.0.7778.215-1~deb12u1_arm64.deb dc75ecd91e7897aa6fa1231d1b8e9ed1 30453 web optional chromium_148.0.7778.215-1~deb12u1_arm64-buildd.buildinfo 4d88fd0739bea911d3b1f509b57eb2d1 65381904 web optional chromium_148.0.7778.215-1~deb12u1_arm64.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEJkN0BnKzGWWW6tS+G5VHrWJmwgcFAmodWX0ACgkQG5VHrWJm wgeNqw//UEuECEreb+sOiFIW9mNrxXSnTyibrsponNN1JMMr8/EZEcCiSdUZG8GU 53tr24Udaefqg2s5As80QVr3DZwHOtPaq4OY4G+cKj0rUei7H1pgPtiLhqETJPx4 EqV8xxwjQsGYkD5if0Rt/8HfMv86rxktOZp06ArVXIPvXH4N5zivFXjrGQlahpdo hDceHWRb9gp3bgCynli90SsjNcwD7ZKOjlWguw4vPtqdr2SHbu2s6Z8YagPCHgeV 92p4CBxIOJN7wR9rjFunZ+YEHMAGjsPYp4i0UqiO+W7QT0vP15TIGa3umYiwh4Jn jgUdMhDnDGKCIKN2kV7wCdvx0CweVggpM0ZwPtTpE0kSzoDTzZ31KWbNN1x7NU7t Lbf005H0TJZvNaBW9kq8Sl3awt+dXd/7l4gT1Pcg9jcuBxy3RvmsoEXr8SsTXCs5 IHhc7mbzG7KXTJTGoTXq+cvCTmp2p7A4/P8f+lLUCQQCMYhtsrqk+Bx10dAghRpD a/ubJBUMHZ+goaV4rdbCU1tdn5oMKa1z7zT2a7b/OBCFiPL0JT46HhidvZW8B9RU 8wDY+L9pdK5L69LPZN2Sw/DWSZda9STt9PsooowjS6oGYvPtC1m7fyvjJB+w5m9m sp4N/xwDf8rRciDnLJi8zbqj+rw8StBxVa4jHoLDqfbEquUy0wg= =lznD -----END PGP SIGNATURE-----