[Git][security-tracker-team/security-tracker][master] Add new chromium issues

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Jul 15 21:23:17 BST 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
6f4c6746 by Salvatore Bonaccorso at 2025-07-15T22:22:42+02:00
Add new chromium issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,9 +1,11 @@
 CVE-2025-7667 (The Restrict File Access plugin for WordPress is vulnerable to Cross-S ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2025-7657 (Use after free in WebRTC in Google Chrome prior to 138.0.7204.157 allo ...)
-	TODO: check
+	- chromium <unfixed>
+	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2025-7656 (Integer overflow in V8 in Google Chrome prior to 138.0.7204.157 allowe ...)
-	TODO: check
+	- chromium <unfixed>
+	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2025-7042 (Use After Free vulnerability exists in the IPT file reading procedure  ...)
 	NOT-FOR-US: Dassault Systemes
 CVE-2025-6974 (Use of Uninitialized Variable vulnerability exists in the JT file read ...)
@@ -17,7 +19,8 @@ CVE-2025-6971 (Use After Free vulnerability exists in the CATPRODUCT file readin
 CVE-2025-6965 (There exists a vulnerability in SQLite versions before 3.50.2 where th ...)
 	TODO: check
 CVE-2025-6558 (Insufficient validation of untrusted input in ANGLE and GPU in Google  ...)
-	TODO: check
+	- chromium <unfixed>
+	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2025-53959 (In JetBrains YouTrack before 2025.2.86069,  2024.3.85077,  2025.1.8619 ...)
 	NOT-FOR-US: JetBrains
 CVE-2025-53903 (The Scratch Channel is a news website that is under development as of  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6f4c67467edf8c1306dee6cc714c138094655d86

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6f4c67467edf8c1306dee6cc714c138094655d86
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250715/648c793a/attachment.htm>

More information about the debian-security-tracker-commits mailing list