Created by Olivier Tilloy on 2017-10-25 and last modified on 2021-04-15
Get this branch:
bzr branch lp:~chromium-team/chromium-browser/bionic-stable
Members of Chromium team can upload to this branch. Log in for directions.

Branch merges

Related bugs

Related blueprints

Branch information

Chromium team
Chromium Browser

Recent revisions

1598. By Olivier Tilloy on 2021-04-15

releasing package chromium-browser version 90.0.4430.72-0ubuntu0.18.04.1

1597. By Olivier Tilloy on 2021-04-15

* Upstream release: 90.0.4430.72
  - CVE-2021-21201: Use after free in permissions.
  - CVE-2021-21202: Use after free in extensions.
  - CVE-2021-21203: Use after free in Blink.
  - CVE-2021-21204: Use after free in Blink.
  - CVE-2021-21205: Insufficient policy enforcement in navigation.
  - CVE-2021-21221: Insufficient validation of untrusted input in Mojo.
  - CVE-2021-21207: Use after free in IndexedDB.
  - CVE-2021-21208: Insufficient data validation in QR scanner.
  - CVE-2021-21209: Inappropriate implementation in storage.
  - CVE-2021-21210: Inappropriate implementation in Network.
  - CVE-2021-21211: Inappropriate implementation in Navigation.
  - CVE-2021-21212: Incorrect security UI in Network Config UI.
  - CVE-2021-21213: Use after free in WebMIDI.
  - CVE-2021-21214: Use after free in Network API.
  - CVE-2021-21215: Inappropriate implementation in Autofill.
  - CVE-2021-21216: Inappropriate implementation in Autofill.
  - CVE-2021-21217: Uninitialized Use in PDFium.
  - CVE-2021-21218: Uninitialized Use in PDFium.
  - CVE-2021-21219: Uninitialized Use in PDFium.
* debian/patches/build-with-old-libva.patch: refreshed and renamed to debian/patches/build-with-old-libva-missing-defines.patch
* debian/patches/build-with-old-libva-no-av1.patch: added
* debian/patches/configuration-directory.patch: refreshed
* debian/patches/define__libc_malloc.patch: refreshed
* debian/patches/disable-sse2: removed, no longer needed
* debian/patches/libaom-armhf-build-cpudetect.patch: added
* debian/patches/revert-sequence-checker-capability-name.patch: refreshed
* debian/patches/search-credit.patch: refreshed
* debian/patches/set-rpath-on-chromium-executables.patch: refreshed
* debian/patches/suppress-newer-clang-warning-flags.patch: refreshed
* debian/patches/title-bar-default-system.patch-v35: refreshed
* debian/patches/use-clang-versioned.patch: refreshed
* debian/patches/widevine-enable-version-string.patch: refreshed
* debian/patches/widevine-other-locations: refreshed

1596. By Olivier Tilloy on 2021-04-14

releasing package chromium-browser version 89.0.4389.128-0ubuntu0.18.04.1

1595. By Olivier Tilloy on 2021-04-14

* Upstream release: 89.0.4389.128
  - CVE-2021-21206: Use after free in Blink.
  - CVE-2021-21220: Insufficient validation of untrusted input in V8 for x86_64.

1594. By Olivier Tilloy on 2021-03-31

releasing package chromium-browser version 89.0.4389.114-0ubuntu0.18.04.1

1593. By Olivier Tilloy on 2021-03-31

* Upstream release: 89.0.4389.114
  - CVE-2021-21194: Use after free in screen capture.
  - CVE-2021-21195: Use after free in V8.
  - CVE-2021-21196: Heap buffer overflow in TabStrip.
  - CVE-2021-21197: Heap buffer overflow in TabStrip.
  - CVE-2021-21198: Out of bounds read in IPC.
  - CVE-2021-21199: Use Use after free in Aura.

1592. By Olivier Tilloy on 2021-03-18

releasing package chromium-browser version 89.0.4389.90-0ubuntu0.18.04.2

1591. By Olivier Tilloy on 2021-03-18

* debian/control: add an explicit runtime dependency on libx11-xcb1 (LP: #1919146)

1590. By Olivier Tilloy on 2021-03-13

releasing package chromium-browser version 89.0.4389.90-0ubuntu0.18.04.1

1589. By Olivier Tilloy on 2021-03-13

* Upstream release: 89.0.4389.90
  - CVE-2021-21191: Use after free in WebRTC.
  - CVE-2021-21192: Heap buffer overflow in tab groups.
  - CVE-2021-21193: Use after free in Blink.

Branch metadata

Branch format:
Branch format 7
Repository format:
Bazaar repository format 2a (needs bzr 1.16 or later)
This branch contains Public information 
Everyone can see this information.