-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 - ------------------------------------------------------------------------- Debian Security Advisory DSA-6004-1 [email protected] https://www.debian.org/security/ Andres Salomon September 19, 2025 https://www.debian.org/security/faq - -------------------------------------------------------------------------
Package : chromium CVE ID : CVE-2025-10500 CVE-2025-10501 CVE-2025-10502 CVE-2025-10585 Security issues were discovered in Chromium which could result in the execution of arbitrary code, denial of service, or information disclosure. Google is aware that an exploit for CVE-2025-10585 exists in the wild. For the oldstable distribution (bookworm), these problems have been fixed in version 140.0.7339.185-1~deb12u1. For the stable distribution (trixie), these problems have been fixed in version 140.0.7339.185-1~deb13u1. We recommend that you upgrade your chromium packages. For the detailed security status of chromium please refer to its security tracker page at: https://security-tracker.debian.org/tracker/chromium Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: [email protected] -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEUAUk+X1YiTIjs19qZF0CR8NudjcFAmjNCv0ACgkQZF0CR8Nu djfaTw//YLGidGiT8mesCcuatYoqcOBeQ3z7nW/2mP6EDG72KdHrpgpsljHhpTHG cXVL02Om/mvBnsVb5B+++tLhkzbu0DRsn8SR7TT6e8fKvA+EgUb0chMNvZQNqEDq ehnW3sO1yNA1lrPbkXztkIxHUf1rKPQ6ooNRhDZiOpcck5KIPATYoqSKvgpJAss6 CLesJyQdf82z8ESRMohRQEjaEx5/zbo+igyg0cSQpNcbIJbc3LaTwZ2H9jJtJwhU IJjgmasKmUlv0uacxbl/KQPmtYxra0GR2o3hS0R5JtA5BPGG7ZSadlb0MAGOavDb 7fN9f+Nf7aZHtu6XANdLEUXzSlWmJ7aHKM8nSmCJL5guWjC/rJ4ElJ6egmUPKGz6 Ge9bhXMPij1OzWhoy5HtHe60f6wuAStIGs/A9Nj80SPKRix9LKBaxshlxGIp3d0M sY2c8oVHjT6NOke+stUH6LCM6X1LP84D55luUaemKmk8ilSa3IGj3T8RRz3SIOy5 MQugVGUqSBp6EnI1saO7tRSJFfb6a9pdxGGiPS9F1TDe/UO9i/eUWzwAJsd6yx+S pSle5/DTpsxIdYlmNfHwMQKohmxLclGxbeM1XrknTVFs3ghzBiQm0zs/02sTSUJj uMvILYZTjmTNg/CDyqRIu5XAwgt7ys4xKtZ4OT+Q/rtMWOeWcP8= =hWYg -----END PGP SIGNATURE-----
