chromium: update to 143.0.7499.109

[kikadf (via pkgsrc-wip) <commit-notify%pkgsrc.org@localhost>]

Module Name:	pkgsrc-wip
Committed By:	kikadf <kikadf.01%gmail.com@localhost>
Pushed By:	kikadf
Date:		Sat Dec 13 14:10:39 2025 +0100
Changeset:	bda76033e0d1eb525958c015702099b1249c7157

Modified Files:
	chromium/COMMIT_MSG
	chromium/Makefile
	chromium/distinfo

Log Message:
chromium: update to 143.0.7499.109

To see a diff of this commit:
https://wip.pkgsrc.org/cgi-bin/gitweb.cgi?p=pkgsrc-wip.git;a=commitdiff;h=bda76033e0d1eb525958c015702099b1249c7157

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

diffstat:
 chromium/COMMIT_MSG | 45 ++++++++++++++-------------------------------
 chromium/Makefile   |  2 +-
 chromium/distinfo   | 12 ++++++------
 3 files changed, 21 insertions(+), 38 deletions(-)

diffs:
diff --git a/chromium/COMMIT_MSG b/chromium/COMMIT_MSG
index 2864e04e94..4b84e00281 100644
--- a/chromium/COMMIT_MSG
+++ b/chromium/COMMIT_MSG
@@ -1,33 +1,16 @@
-www/chromium: update to 143.0.7499.40
+www/chromium: update to 143.0.7499.109
 
-* 143.0.7499.40
-This update includes 13 security fixes. Below, we highlight fixes
-that were contributed by external researchers. Please see the
-Chrome Security Page for more information.
-[$11000][456547591] High CVE-2025-13630: Type Confusion in V8.
-Reported by Shreyas Penkar (@streypaws) on 2025-10-31
-[$3000][448113221] High CVE-2025-13631: Inappropriate implementation
-in Google Updater. Reported by Jota Domingos on 2025-09-29
-[TBD][439058242] High CVE-2025-13632: Inappropriate implementation
-in DevTools. Reported by Leandro Teles on 2025-08-16
-[N/A][458082926] High CVE-2025-13633: Use after free in Digital
-Credentials. Reported by Chrome on 2025-11-05
-[TBD][429140219] Medium CVE-2025-13634: Inappropriate implementation
-in Downloads. Reported by Eric Lawrence of Microsoft on 2025-07-02
-[N/A][457818670] Medium CVE-2025-13720: Bad cast in Loader.
-Reported by Chrome on 2025-11-04
-[N/A][355120682] Medium CVE-2025-13721: Race in v8.
-Reported by Chrome on 2024-07-23
-[$3000][405727341] Low CVE-2025-13635: Inappropriate implementation
-in Downloads. Reported by Hafiizh on 2025-03-24
-[$1000][446181124] Low CVE-2025-13636: Inappropriate implementation
-in Split View. Reported by Khalil Zhani on 2025-09-20
-[TBD][392375329] Low CVE-2025-13637: Inappropriate implementation
-in Downloads. Reported by Hafiizh on 2025-01-27
-[TBD][448046109] Low CVE-2025-13638: Use after free in Media Stream.
-Reported by sherkito on 2025-09-29
-[TBD][448408148] Low CVE-2025-13639: Inappropriate implementation
-in WebRTC. Reported by Philipp Hancke on 2025-10-01
-[TBD][452071826] Low CVE-2025-13640: Inappropriate implementation
-in Passwords. Reported by Anonymous on 2025-10-14
+* 143.0.7499.109
+This update includes 3 security fixes. Below, we highlight
+fixes that were contributed by external researchers. Please
+see the Chrome Security Page for more information.
+[N/A][466192044] High CVE-2025-14174: Out of bounds memory
+access in ANGLE. Reported by Apple Security Engineering and
+Architecture (SEAR) and Google Threat Analysis Group on 2025-12-05
+[$2000][460599518] Medium CVE-2025-14372: Use after free in
+Password Manager.
+Reported by Weipeng Jiang (@Krace) of VRI on 2025-11-14
+[$2000][461532432] Medium CVE-2025-14373: Inappropriate
+implementation in Toolbar. Reported by Khalil Zhani on 2025-11-18
 
+Google is aware that an exploit for CVE-2025-14174 exists in the wild.1~
diff --git a/chromium/Makefile b/chromium/Makefile
index dd447722e3..20c26ff4d0 100644
--- a/chromium/Makefile
+++ b/chromium/Makefile
@@ -1,7 +1,7 @@
 # $NetBSD: Makefile,v 1.24 2025/10/27 11:27:36 kikadf Exp $
 
 DISTNAME=			chromium-${VERSION}
-VERSION=			143.0.7499.40
+VERSION=			143.0.7499.109
 CATEGORIES=			www
 MASTER_SITES=			https://commondatastorage.googleapis.com/chromium-browser-official/
 EXTRACT_SUFX_C=			.tar.xz
diff --git a/chromium/distinfo b/chromium/distinfo
index 1b18864224..0fc113dbeb 100644
--- a/chromium/distinfo
+++ b/chromium/distinfo
@@ -1,11 +1,11 @@
 $NetBSD$
 
-BLAKE2s (chromium-143.0.7499.40-lite.tar.xz) = d4b758a007bccdb4d486a28887baf3906b1b6161e41130dbf0bff908969bbd4e
-SHA512 (chromium-143.0.7499.40-lite.tar.xz) = 072aa649082313819a01445a9c89c569f74f95fda7b9d49c0f0452086a2ae24cfb17280bd12cb2f130f6bc17fbd00dca65193226c60a2e5fe61a7a255097e4f0
-Size (chromium-143.0.7499.40-lite.tar.xz) = 1137895952 bytes
-BLAKE2s (chromium-143.0.7499.40-testdata.tar.xz) = 705e4dc84a72f84ecd81ac9fc81529aedf85a9c004a23b2740a36a826ab21b12
-SHA512 (chromium-143.0.7499.40-testdata.tar.xz) = c605f9fb24059aa53fff1f9b1284ca42901cee121c874e73dd12e8fa105226ffe7b278e0c0ab556a23d204ef86bcd0484daaaee7e8b5d81c3fa6e12ab818c91b
-Size (chromium-143.0.7499.40-testdata.tar.xz) = 1200244664 bytes
+BLAKE2s (chromium-143.0.7499.109-lite.tar.xz) = 124a140069cd599ff0f8801933dd4a56cdbb286f4bddaf55f7cc59fab81b5441
+SHA512 (chromium-143.0.7499.109-lite.tar.xz) = 9d9a24f9e424b8121c73edc8c5ad685447ccfc67d29878cc3b248eed86273702a0f26eb91ed501d492f165de1319bfdaed7a4071f2a9e7cfd7551f845b066f65
+Size (chromium-143.0.7499.109-lite.tar.xz) = 1140751164 bytes
+BLAKE2s (chromium-143.0.7499.109-testdata.tar.xz) = 87dd2a2e96129a2a737f593a7856e9cd4686678e98d31062963dd9c40ade4059
+SHA512 (chromium-143.0.7499.109-testdata.tar.xz) = 124d847be8bd4e3acdc312e34e5a1c61c2c899677d91eab6dc668b7c93890e93bf5db4eb2b5aaeb523a87d59e25861382f16a046f514c72a679fc3a4d6d264d9
+Size (chromium-143.0.7499.109-testdata.tar.xz) = 1155272172 bytes
 BLAKE2s (kikadf-chromium-audioio-v140.0.tar.gz) = 063582b80823694cfa30c020d3378dae3c7dbb1d0b3ffc3b756ce26e9984504c
 SHA512 (kikadf-chromium-audioio-v140.0.tar.gz) = e986fd201969e2ce9e7c092497c34bca84771992a2c8d980556d2dc77002ff68f3d13b4144629e9a8bc41b8ad0d4d06650eafadbfde7c0fa91ed84fbcd74763b
 Size (kikadf-chromium-audioio-v140.0.tar.gz) = 8453 bytes