[Git][security-tracker-team/security-tracker][master] Add later assigned CVEs for chromium issues

Tue Nov 18 17:12:00 GMT 2025


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b55a2b65 by Salvatore Bonaccorso at 2025-11-18T18:10:39+01:00
Add later assigned CVEs for chromium issues

- - - - -


2 changed files:

- data/CVE/list
- data/DSA/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -63,15 +63,20 @@ CVE-2025-13301 (A vulnerability was found in itsourcecode Web-Based Internet Lab
 CVE-2025-13300 (A vulnerability has been found in itsourcecode Web-Based Internet Labo ...)
 	NOT-FOR-US: itsourcecode System
 CVE-2025-13230 (Type Confusion in V8 in Google Chrome prior to 142.0.7444.59 allowed a ...)
-	TODO: check
+	- chromium 142.0.7444.59-1
+	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2025-13229 (Type Confusion in V8 in Google Chrome prior to 142.0.7444.59 allowed a ...)
-	TODO: check
+	- chromium 142.0.7444.59-1
+	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2025-13228 (Type Confusion in V8 in Google Chrome prior to 142.0.7444.59 allowed a ...)
-	TODO: check
+	- chromium 142.0.7444.59-1
+	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2025-13227 (Type Confusion in V8 in Google Chrome prior to 142.0.7444.59 allowed a ...)
-	TODO: check
+	- chromium 142.0.7444.59-1
+	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2025-13226 (Type Confusion in V8 in Google Chrome prior to 142.0.7444.59 allowed a ...)
-	TODO: check
+	- chromium 142.0.7444.59-1
+	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2025-12974 (The Gravity Forms plugin for WordPress is vulnerable to arbitrary file ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2025-12792 (The Mac App Store distribution of the Canva for Mac desktop app before ...)


=====================================
data/DSA/list
=====================================
@@ -47,7 +47,7 @@
 	[bookworm] - squid 5.7-2+deb12u4
 	[trixie] - squid 6.13-2+deb13u1
 [30 Oct 2025] DSA-6046-1 chromium - security update
-	{CVE-2025-12036 CVE-2025-12428 CVE-2025-12429 CVE-2025-12430 CVE-2025-12431 CVE-2025-12432 CVE-2025-12433 CVE-2025-12434 CVE-2025-12435 CVE-2025-12436 CVE-2025-12437 CVE-2025-12438 CVE-2025-12439 CVE-2025-12440 CVE-2025-12441 CVE-2025-12443 CVE-2025-12444 CVE-2025-12445 CVE-2025-12446 CVE-2025-12447}
+	{CVE-2025-12036 CVE-2025-12428 CVE-2025-12429 CVE-2025-12430 CVE-2025-12431 CVE-2025-12432 CVE-2025-12433 CVE-2025-12434 CVE-2025-12435 CVE-2025-12436 CVE-2025-12437 CVE-2025-12438 CVE-2025-12439 CVE-2025-12440 CVE-2025-12441 CVE-2025-12443 CVE-2025-12444 CVE-2025-12445 CVE-2025-12446 CVE-2025-12447 CVE-2025-13226 CVE-2025-13227 CVE-2025-13228 CVE-2025-13229 CVE-2025-13230}
 	[bookworm] - chromium 142.0.7444.59-1~deb12u1
 	[trixie] - chromium 142.0.7444.59-1~deb13u1
 [29 Oct 2025] DSA-6045-1 pdns-recursor - security update



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b55a2b659e0545de5a7f18c69e19c9df20e7b0f2

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b55a2b659e0545de5a7f18c69e19c9df20e7b0f2
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251118/96f166ad/attachment-0001.htm>
