Your message dated Thu, 12 Dec 2024 14:25:49 -0500
with message-id <[email protected]>
and subject line Re: Bug#1089181: chromium: security update wants to remove
chromium package itself
has caused the Debian Bug report #1089181,
regarding chromium: Security update 131.0.6778.108-1~deb12u1 remove chromium
from bookworm (unmet dependencies)
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
1089181: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1089181
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: chromium
Severity: important
X-Debbugs-Cc: [email protected]
The following packages have unmet dependencies:
chromium : Depends: libc++1-19 (>= 1:19.1.4) but it is not installable
Depends: libc++abi1-19 (>= 1:19.1.4) but it is not installable
Depends: libunwind-19 (>= 1:19.1.4) but it is not installable
Depends: chromium-common (= 131.0.6778.108-1~deb12u1) but
131.0.6778.85-1~deb12u1 is to be installed
E: Unable to correct problems, you have held broken packages.
-- System Information:
Debian Release: 12.8
APT prefers stable-updates
APT policy: (500, 'stable-updates'), (500, 'stable-security'), (500, 'stable')
Architecture: amd64 (x86_64)
Kernel: Linux 6.1.0-28-amd64 (SMP w/12 CPU threads; PREEMPT)
Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled
Versions of packages chromium depends on:
ii chromium-common 131.0.6778.85-1~deb12u1
ii libasound2 1.2.8-1+b1
ii libatk-bridge2.0-0 2.46.0-5
ii libatk1.0-0 2.46.0-5
ii libatspi2.0-0 2.46.0-5
ii libc++1-16 1:16.0.6-15~deb12u1
pn libc++1-19 <none>
ii libc++abi1-16 1:16.0.6-15~deb12u1
pn libc++abi1-19 <none>
ii libc6 2.36-9+deb12u9
ii libcairo2 1.16.0-7
ii libcups2 2.4.2-3+deb12u8
ii libdav1d6 1.0.0-2+deb12u1
ii libdbus-1-3 1.14.10-1~deb12u1
ii libdouble-conversion3 3.2.1-1
ii libdrm2 2.4.114-1+b1
ii libevent-2.1-7 2.1.12-stable-8
ii libexpat1 2.5.0-1+deb12u1
ii libflac12 1.4.2+ds-2
ii libfontconfig1 2.14.1-4
ii libfreetype6 2.12.1+dfsg-5+deb12u3
ii libgbm1 22.3.6-1+deb12u1
ii libglib2.0-0 2.74.6-2+deb12u4
ii libgtk-3-0 3.24.38-2~deb12u3
ii libharfbuzz-subset0 6.0.0+dfsg-3
ii libharfbuzz0b 6.0.0+dfsg-3
ii libjpeg62-turbo 1:2.1.5-2
ii liblcms2-2 2.14-2
ii libminizip1 1.1-8+deb12u1
ii libnspr4 2:4.35-1
ii libnss3 2:3.87.1-1+deb12u1
ii libopenh264-7 2.3.1+dfsg-3
ii libopenjp2-7 2.5.0-2
ii libopus0 1.3.1-3
ii libpango-1.0-0 1.50.12+ds-1
ii libpng16-16 1.6.39-2
ii libpulse0 16.1+dfsg1-2+b1
ii libtiff6 4.5.0-6+deb12u1
ii libudev1 252.31-1~deb12u1
ii libunwind-16 1:16.0.6-15~deb12u1
pn libunwind-19 <none>
ii libx11-6 2:1.8.4-2+deb12u2
ii libxcb1 1.15-1
ii libxcomposite1 1:0.4.5-1
ii libxdamage1 1:1.1.6-1
ii libxext6 2:1.3.4-1+b1
ii libxfixes3 1:6.0.0-2
ii libxkbcommon0 1.5.0-1
ii libxml2 2.9.14+dfsg-1.3~deb12u1
ii libxnvctrl0 525.85.05-3~deb12u1
ii libxrandr2 2:1.5.2-2+b1
ii libxslt1.1 1.1.35-1
ii libzstd1 1.5.4+dfsg2-5
ii xdg-desktop-portal-gnome [xdg-desktop-portal-backe 43.1-2
nd]
ii xdg-desktop-portal-gtk [xdg-desktop-portal-backend 1.14.1-1
]
ii zlib1g 1:1.2.13.dfsg-1
Versions of packages chromium recommends:
ii chromium-sandbox 131.0.6778.108-1~deb12u1
Versions of packages chromium suggests:
pn chromium-driver <none>
pn chromium-l10n <none>
pn chromium-shell <none>
--- End Message ---
--- Begin Message ---
On Tue, 10 Dec 2024 14:50:37 -0500 Andres Salomon <[email protected]>
wrote:
On 12/10/24 14:41, Neil Van Dyke wrote:
> Are those library updates part of the security update?
>
> The following packages will be REMOVED:
> libc++1-16 libc++abi1-16 libunwind-16
> The following NEW packages will be installed:
> libc++1-19 libc++abi1-19 libunwind-19
> The following packages will be upgraded:
> chromium chromium-common chromium-sandbox
>
> I don't recall seeing this before in Debian Stable, so I'm hesitant to
> install the `chromium` security update.
>
Yes.
However, for the next security release (scheduled for later today;
upstream just released for IOS, so I expect a Linux release any minute
now) I'm going to temporarily switch back to gcc's libstdc++ so that
users can upgrade without those conflicts.
New DSA with security update has been released. This should fix all
issues related to libc++.
OpenPGP_signature.asc
Description: OpenPGP digital signature
--- End Message ---
