lp:~chromium-team/chromium-browser/bionic-stable

Branch merges

Propose for merging

1 branch proposed for merging into this one.

Related source package recipes

No recipes using this branch. (?)

Create packaging recipe

Related snap packages

Related bugs

Bug #1667208: Ubuntu's selenium hardcodes a path that is valid for Debian, but not for Ubuntu	Medium	Fix Released
Bug #1742653: chromium-browser 63+ packages 50+ MB of binaries only needed at build time	High	Fix Released
Bug #1768653: chromium 66 FTBFS on armhf	High	Fix Released
Bug #1771847: chromium-browser.svg icon is outdated	Low	Fix Released
Bug #1828192: Please stop build-depending on libgnome-keyring	Medium	Fix Released
Bug #1853149: 78.0.3904.108-1 released for stable channel; fixes CVEs	High	Fix Released
Bug #1913069: [regression] Start-up page is blank after upgrading to version 88	High	Fix Released
Bug #1919146: Missing runtime dependency on libx11-xcb1	High	Fix Released

Link a bug report

Related blueprints

1598. By Olivier Tilloy on 2021-04-15

releasing package chromium-browser version 90.0.4430.72-0ubuntu0.18.04.1

1597. By Olivier Tilloy on 2021-04-15

* Upstream release: 90.0.4430.72
  - CVE-2021-21201: Use after free in permissions.
  - CVE-2021-21202: Use after free in extensions.
  - CVE-2021-21203: Use after free in Blink.
  - CVE-2021-21204: Use after free in Blink.
  - CVE-2021-21205: Insufficient policy enforcement in navigation.
  - CVE-2021-21221: Insufficient validation of untrusted input in Mojo.
  - CVE-2021-21207: Use after free in IndexedDB.
  - CVE-2021-21208: Insufficient data validation in QR scanner.
  - CVE-2021-21209: Inappropriate implementation in storage.
  - CVE-2021-21210: Inappropriate implementation in Network.
  - CVE-2021-21211: Inappropriate implementation in Navigation.
  - CVE-2021-21212: Incorrect security UI in Network Config UI.
  - CVE-2021-21213: Use after free in WebMIDI.
  - CVE-2021-21214: Use after free in Network API.
  - CVE-2021-21215: Inappropriate implementation in Autofill.
  - CVE-2021-21216: Inappropriate implementation in Autofill.
  - CVE-2021-21217: Uninitialized Use in PDFium.
  - CVE-2021-21218: Uninitialized Use in PDFium.
  - CVE-2021-21219: Uninitialized Use in PDFium.
* debian/patches/build-with-old-libva.patch: refreshed and renamed to debian/patches/build-with-old-libva-missing-defines.patch
* debian/patches/build-with-old-libva-no-av1.patch: added
* debian/patches/configuration-directory.patch: refreshed
* debian/patches/define__libc_malloc.patch: refreshed
* debian/patches/disable-sse2: removed, no longer needed
* debian/patches/libaom-armhf-build-cpudetect.patch: added
* debian/patches/revert-sequence-checker-capability-name.patch: refreshed
* debian/patches/search-credit.patch: refreshed
* debian/patches/set-rpath-on-chromium-executables.patch: refreshed
* debian/patches/suppress-newer-clang-warning-flags.patch: refreshed
* debian/patches/title-bar-default-system.patch-v35: refreshed
* debian/patches/use-clang-versioned.patch: refreshed
* debian/patches/widevine-enable-version-string.patch: refreshed
* debian/patches/widevine-other-locations: refreshed

1596. By Olivier Tilloy on 2021-04-14

releasing package chromium-browser version 89.0.4389.128-0ubuntu0.18.04.1

1595. By Olivier Tilloy on 2021-04-14

* Upstream release: 89.0.4389.128
  - CVE-2021-21206: Use after free in Blink.
  - CVE-2021-21220: Insufficient validation of untrusted input in V8 for x86_64.

1594. By Olivier Tilloy on 2021-03-31

releasing package chromium-browser version 89.0.4389.114-0ubuntu0.18.04.1

1593. By Olivier Tilloy on 2021-03-31

* Upstream release: 89.0.4389.114
  - CVE-2021-21194: Use after free in screen capture.
  - CVE-2021-21195: Use after free in V8.
  - CVE-2021-21196: Heap buffer overflow in TabStrip.
  - CVE-2021-21197: Heap buffer overflow in TabStrip.
  - CVE-2021-21198: Out of bounds read in IPC.
  - CVE-2021-21199: Use Use after free in Aura.

1592. By Olivier Tilloy on 2021-03-18

releasing package chromium-browser version 89.0.4389.90-0ubuntu0.18.04.2

1591. By Olivier Tilloy on 2021-03-18

* debian/control: add an explicit runtime dependency on libx11-xcb1 (LP: #1919146)

1590. By Olivier Tilloy on 2021-03-13

releasing package chromium-browser version 89.0.4389.90-0ubuntu0.18.04.1

1589. By Olivier Tilloy on 2021-03-13

* Upstream release: 89.0.4389.90
  - CVE-2021-21191: Use after free in WebRTC.
  - CVE-2021-21192: Heap buffer overflow in tab groups.
  - CVE-2021-21193: Use after free in Blink.