[Git][security-tracker-team/security-tracker][master] Add CVE-2025-13107 for DSA-5993-1 for chromium

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sun Nov 16 08:31:48 GMT 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a3c98ef9 by Salvatore Bonaccorso at 2025-11-16T09:31:11+01:00
Add CVE-2025-13107 for DSA-5993-1 for chromium

- - - - -


2 changed files:

- data/CVE/list
- data/DSA/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -321,7 +321,8 @@ CVE-2025-13131 (A vulnerability was found in Sonarr 4.0.15.2940. The impacted el
 CVE-2025-13130 (A vulnerability has been found in Radarr 5.28.0.10274. The affected el ...)
 	NOT-FOR-US: Radarr
 CVE-2025-13107 (Inappropriate implementation in Compositing in Google Chrome prior to  ...)
-	TODO: check
+	- chromium 140.0.7339.80-1
+	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2025-13102 (Inappropriate implementation in WebApp Installs in Google Chrome on An ...)
 	TODO: check
 CVE-2025-13097 (Inappropriate implementation in DevTools in Google Chrome prior to 136 ...)


=====================================
data/DSA/list
=====================================
@@ -243,7 +243,7 @@
 	[bookworm] - shibboleth-sp 3.4.1+dfsg-2+deb12u1
 	[trixie] - shibboleth-sp 3.5.0+dfsg-2+deb13u1
 [05 Sep 2025] DSA-5993-1 chromium - security update
-	{CVE-2025-9865 CVE-2025-9866 CVE-2025-9867 CVE-2025-12906 CVE-2025-12907 CVE-2025-12909 CVE-2025-12910 CVE-2025-12911}
+	{CVE-2025-9865 CVE-2025-9866 CVE-2025-9867 CVE-2025-12906 CVE-2025-12907 CVE-2025-12909 CVE-2025-12910 CVE-2025-12911 CVE-2025-13107}
 	[bookworm] - chromium 140.0.7339.80-1~deb12u1
 	[trixie] - chromium 140.0.7339.80-1~deb13u1
 [30 Aug 2025] DSA-5992-1 firebird4.0 - security update



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a3c98ef99f1af841306d7c10049ef0a50b674902

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a3c98ef99f1af841306d7c10049ef0a50b674902
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251116/650d591c/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list