lp:~chromium-team/chromium-browser/zesty-stable

Branch merges

Propose for merging

No branches dependent on this one.

Related source package recipes

No recipes using this branch. (?)

Create packaging recipe

Related snap packages

Related bugs

Bug #1710789: chromium does not open downloaded files	High	Fix Released
Bug #1718885: chromium 61 doesn't start in guest session	High	Fix Released
Bug #1742653: chromium-browser 63+ packages 50+ MB of binaries only needed at build time	High	Fix Released

Link a bug report

Related blueprints

1395. By Olivier Tilloy on 2018-01-14

releasing package chromium-browser version 63.0.3239.132-0ubuntu0.17.04.1

1394. By Olivier Tilloy on 2018-01-14

* Upstream release: 63.0.3239.132
* debian/rules: do not install files used for building only (LP: #1742653)

1393. By Olivier Tilloy on 2017-12-15

releasing package chromium-browser version 63.0.3239.108-0ubuntu0.17.04.1

1392. By Olivier Tilloy on 2017-12-15

* Upstream release: 63.0.3239.108
  - CVE-2017-15429: UXSS in V8.
* debian/control: update Vcs-Bzr field

1391. By Olivier Tilloy on 2017-12-07

releasing package chromium-browser version 63.0.3239.84-0ubuntu0.17.04.1

1390. By Olivier Tilloy on 2017-12-07

* Upstream release: 63.0.3239.84
  - CVE-2017-15407: Out of bounds write in QUIC.
  - CVE-2017-15408: Heap buffer overflow in PDFium.
  - CVE-2017-15409: Out of bounds write in Skia.
  - CVE-2017-15410: Use after free in PDFium.
  - CVE-2017-15411: Use after free in PDFium.
  - CVE-2017-15412: Use after free in libXML.
  - CVE-2017-15413: Type confusion in WebAssembly.
  - CVE-2017-15415: Pointer information disclosure in IPC call.
  - CVE-2017-15416: Out of bounds read in Blink.
  - CVE-2017-15417: Cross origin information disclosure in Skia.
  - CVE-2017-15418: Use of uninitialized value in Skia.
  - CVE-2017-15419: Cross origin leak of redirect URL in Blink.
  - CVE-2017-15420: URL spoofing in Omnibox.
  - CVE-2017-15422: Integer overflow in ICU.
  - CVE-2017-15423: Issue with SPAKE implementation in BoringSSL.
  - CVE-2017-15424: URL Spoof in Omnibox.
  - CVE-2017-15425: URL Spoof in Omnibox.
  - CVE-2017-15426: URL Spoof in Omnibox.
  - CVE-2017-15427: Insufficient blocking of JavaScript in Omnibox.
* debian/rules:
  - replace allow_posix_link_time_opt=false by use_lld=false, is_cfi=false and use_thin_lto=false
  - rename use_vulcanize GN flag to optimize_webui
  - generate the man page as it's not being built with chromium any longer (since commit 64b961499bebc54fe48478f5e37477252c7887fa)
  - build gn with clang
* debian/patches/arm-neon.patch: refreshed
* debian/patches/disable-sse2: refreshed
* debian/patches/fix-gn-bootstrap.patch: removed, no longer needed
* debian/patches/fix_building_widevinecdm_with_chromium.patch: replaced by debian/patches/widevine-revision.patch
* debian/patches/revert-Xclang-instcombine-lower-dbg-declare.patch: added
* debian/patches/search-credit.patch: refreshed
* debian/patches/set-rpath-on-chromium-executables.patch: updated
* debian/patches/suppress-newer-clang-warning-flags.patch: updated
* debian/patches/touch-v35: refreshed
* debian/patches/widevine-other-locations: updated (LP: #1652110)
* debian/patches/widevine-revision.patch: added (LP: #1652110)

1389. By Olivier Tilloy on 2017-11-13

releasing package chromium-browser version 62.0.3202.94-0ubuntu0.17.04.1388

1388. By Olivier Tilloy on 2017-11-13

* Upstream release: 62.0.3202.94

1387. By Olivier Tilloy on 2017-11-06

releasing package chromium-browser version 62.0.3202.89-0ubuntu0.17.04.1386

1386. By Olivier Tilloy on 2017-11-06

* Upstream release: 62.0.3202.89
  - CVE-2017-15398: Stack buffer overflow in QUIC.
  - CVE-2017-15399: Use after free in V8.