[Git][security-tracker-team/security-tracker][master] chromium dsa

Andres Salomon (@dilinger) dilinger at debian.org
Thu Aug 14 08:13:20 BST 2025 


Andres Salomon pushed to branch master at Debian Security Tracker / security-tracker


Commits:
aaee3698 by Andres Salomon at 2025-08-14T03:12:48-04:00
chromium dsa

- - - - -


3 changed files:

- data/CVE/list
- data/DSA/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -2487,34 +2487,42 @@ CVE-2012-10031 (BlazeVideo HDTV Player Pro v6.6.0.3 is vulnerable to a stack-bas
 CVE-2025-8583 (Inappropriate implementation in Permissions in Google Chrome prior to  ...)
 	{DSA-5971-1}
 	- chromium 139.0.7258.66-1
+	[trixie] - chromium 139.0.7258.127-1~deb13u1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2025-8582 (Insufficient validation of untrusted input in Core in Google Chrome pr ...)
 	{DSA-5971-1}
 	- chromium 139.0.7258.66-1
+	[trixie] - chromium 139.0.7258.127-1~deb13u1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2025-8581 (Inappropriate implementation in Extensions in Google Chrome prior to 1 ...)
 	{DSA-5971-1}
 	- chromium 139.0.7258.66-1
+	[trixie] - chromium 139.0.7258.127-1~deb13u1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2025-8580 (Inappropriate implementation in Filesystems in Google Chrome prior to  ...)
 	{DSA-5971-1}
 	- chromium 139.0.7258.66-1
+	[trixie] - chromium 139.0.7258.127-1~deb13u1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2025-8579 (Inappropriate implementation in Picture In Picture in Google Chrome pr ...)
 	{DSA-5971-1}
 	- chromium 139.0.7258.66-1
+	[trixie] - chromium 139.0.7258.127-1~deb13u1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2025-8578 (Use after free in Cast in Google Chrome prior to 139.0.7258.66 allowed ...)
 	{DSA-5971-1}
 	- chromium 139.0.7258.66-1
+	[trixie] - chromium 139.0.7258.127-1~deb13u1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2025-8577 (Inappropriate implementation in Picture In Picture in Google Chrome pr ...)
 	{DSA-5971-1}
 	- chromium 139.0.7258.66-1
+	[trixie] - chromium 139.0.7258.127-1~deb13u1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2025-8576 (Use after free in Extensions in Google Chrome prior to 139.0.7258.66 a ...)
 	{DSA-5971-1}
 	- chromium 139.0.7258.66-1
+	[trixie] - chromium 139.0.7258.127-1~deb13u1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2025-8551 (A vulnerability was found in atjiu pybbs up to 6.0.0. It has been rate ...)
 	NOT-FOR-US: atjiu pybbs


=====================================
data/DSA/list
=====================================
@@ -1,3 +1,7 @@
+[14 Aug 2025] DSA-5976-1 chromium - security update
+	{CVE-2025-8879 CVE-2025-8880 CVE-2025-8881 CVE-2025-8882 CVE-2025-8901}
+	[bookworm] - chromium 139.0.7258.127-1~deb12u1
+	[trixie] - chromium 139.0.7258.127-1~deb13u1
 [13 Aug 2025] DSA-5975-1 linux - security update
 	{CVE-2025-22115 CVE-2025-27558 CVE-2025-37925 CVE-2025-37984 CVE-2025-38067 CVE-2025-38104 CVE-2025-38335 CVE-2025-38349 CVE-2025-38351 CVE-2025-38437 CVE-2025-38438 CVE-2025-38439 CVE-2025-38440 CVE-2025-38441 CVE-2025-38443 CVE-2025-38444 CVE-2025-38445 CVE-2025-38446 CVE-2025-38448 CVE-2025-38449 CVE-2025-38450 CVE-2025-38451 CVE-2025-38452 CVE-2025-38454 CVE-2025-38455 CVE-2025-38456 CVE-2025-38457 CVE-2025-38458 CVE-2025-38459 CVE-2025-38460 CVE-2025-38461 CVE-2025-38462 CVE-2025-38463 CVE-2025-38464 CVE-2025-38465 CVE-2025-38466 CVE-2025-38467 CVE-2025-38468 CVE-2025-38469 CVE-2025-38470 CVE-2025-38471 CVE-2025-38472 CVE-2025-38473 CVE-2025-38474 CVE-2025-38475 CVE-2025-38476 CVE-2025-38477 CVE-2025-38478 CVE-2025-38480 CVE-2025-38481 CVE-2025-38482 CVE-2025-38483 CVE-2025-38484 CVE-2025-38485 CVE-2025-38487 CVE-2025-38488 CVE-2025-38489 CVE-2025-38490 CVE-2025-38491 CVE-2025-38493 CVE-2025-38494 CVE-2025-38495 CVE-2025-38496 CVE-2025-38497 CVE-2025-38499 CVE-2025-38500}
 	[trixie] - linux 6.12.41-1


=====================================
data/dsa-needed.txt
=====================================
@@ -17,8 +17,6 @@ amd64-microcode (carnil)
 --
 ark/oldstable (jmm)
 --
-chromium (dilinger)
---
 frr/oldstable
   coordination with the maintainer ongoing, Daniel Baumann proposing an update
 --



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/aaee3698cff8273f44f92b68e8298146d889058c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/aaee3698cff8273f44f92b68e8298146d889058c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250814/120fc356/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list