[Git][security-tracker-team/security-tracker][master] chromium dsa

Andres Salomon (@dilinger) Thu, 14 Aug 2025 00:13:29 -0700


Andres Salomon pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
aaee3698 by Andres Salomon at 2025-08-14T03:12:48-04:00
chromium dsa

- - - - -


3 changed files:

- data/CVE/list
- data/DSA/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -2487,34 +2487,42 @@ CVE-2012-10031 (BlazeVideo HDTV Player Pro v6.6.0.3 is 
vulnerable to a stack-bas
 CVE-2025-8583 (Inappropriate implementation in Permissions in Google Chrome 
prior to  ...)
        {DSA-5971-1}
        - chromium 139.0.7258.66-1
+       [trixie] - chromium 139.0.7258.127-1~deb13u1
        [bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2025-8582 (Insufficient validation of untrusted input in Core in Google 
Chrome pr ...)
        {DSA-5971-1}
        - chromium 139.0.7258.66-1
+       [trixie] - chromium 139.0.7258.127-1~deb13u1
        [bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2025-8581 (Inappropriate implementation in Extensions in Google Chrome 
prior to 1 ...)
        {DSA-5971-1}
        - chromium 139.0.7258.66-1
+       [trixie] - chromium 139.0.7258.127-1~deb13u1
        [bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2025-8580 (Inappropriate implementation in Filesystems in Google Chrome 
prior to  ...)
        {DSA-5971-1}
        - chromium 139.0.7258.66-1
+       [trixie] - chromium 139.0.7258.127-1~deb13u1
        [bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2025-8579 (Inappropriate implementation in Picture In Picture in Google 
Chrome pr ...)
        {DSA-5971-1}
        - chromium 139.0.7258.66-1
+       [trixie] - chromium 139.0.7258.127-1~deb13u1
        [bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2025-8578 (Use after free in Cast in Google Chrome prior to 139.0.7258.66 
allowed ...)
        {DSA-5971-1}
        - chromium 139.0.7258.66-1
+       [trixie] - chromium 139.0.7258.127-1~deb13u1
        [bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2025-8577 (Inappropriate implementation in Picture In Picture in Google 
Chrome pr ...)
        {DSA-5971-1}
        - chromium 139.0.7258.66-1
+       [trixie] - chromium 139.0.7258.127-1~deb13u1
        [bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2025-8576 (Use after free in Extensions in Google Chrome prior to 
139.0.7258.66 a ...)
        {DSA-5971-1}
        - chromium 139.0.7258.66-1
+       [trixie] - chromium 139.0.7258.127-1~deb13u1
        [bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2025-8551 (A vulnerability was found in atjiu pybbs up to 6.0.0. It has 
been rate ...)
        NOT-FOR-US: atjiu pybbs


=====================================
data/DSA/list
=====================================
@@ -1,3 +1,7 @@
+[14 Aug 2025] DSA-5976-1 chromium - security update
+       {CVE-2025-8879 CVE-2025-8880 CVE-2025-8881 CVE-2025-8882 CVE-2025-8901}
+       [bookworm] - chromium 139.0.7258.127-1~deb12u1
+       [trixie] - chromium 139.0.7258.127-1~deb13u1
 [13 Aug 2025] DSA-5975-1 linux - security update
        {CVE-2025-22115 CVE-2025-27558 CVE-2025-37925 CVE-2025-37984 
CVE-2025-38067 CVE-2025-38104 CVE-2025-38335 CVE-2025-38349 CVE-2025-38351 
CVE-2025-38437 CVE-2025-38438 CVE-2025-38439 CVE-2025-38440 CVE-2025-38441 
CVE-2025-38443 CVE-2025-38444 CVE-2025-38445 CVE-2025-38446 CVE-2025-38448 
CVE-2025-38449 CVE-2025-38450 CVE-2025-38451 CVE-2025-38452 CVE-2025-38454 
CVE-2025-38455 CVE-2025-38456 CVE-2025-38457 CVE-2025-38458 CVE-2025-38459 
CVE-2025-38460 CVE-2025-38461 CVE-2025-38462 CVE-2025-38463 CVE-2025-38464 
CVE-2025-38465 CVE-2025-38466 CVE-2025-38467 CVE-2025-38468 CVE-2025-38469 
CVE-2025-38470 CVE-2025-38471 CVE-2025-38472 CVE-2025-38473 CVE-2025-38474 
CVE-2025-38475 CVE-2025-38476 CVE-2025-38477 CVE-2025-38478 CVE-2025-38480 
CVE-2025-38481 CVE-2025-38482 CVE-2025-38483 CVE-2025-38484 CVE-2025-38485 
CVE-2025-38487 CVE-2025-38488 CVE-2025-38489 CVE-2025-38490 CVE-2025-38491 
CVE-2025-38493 CVE-2025-38494 CVE-2025-38495 CVE-2025-38496 CVE-2025-38497 
CVE-2025-38499 CVE-2025-38500}
        [trixie] - linux 6.12.41-1


=====================================
data/dsa-needed.txt
=====================================
@@ -17,8 +17,6 @@ amd64-microcode (carnil)
 --
 ark/oldstable (jmm)
 --
-chromium (dilinger)
---
 frr/oldstable
   coordination with the maintainer ongoing, Daniel Baumann proposing an update
 --



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/aaee3698cff8273f44f92b68e8298146d889058c

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/aaee3698cff8273f44f92b68e8298146d889058c
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] chromium dsa

Reply via email to