[Git][security-tracker-team/security-tracker][master] Add two new CVEs for chromium
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Oct 8 08:50:27 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
11bf577f by Salvatore Bonaccorso at 2025-10-08T09:49:02+02:00
Add two new CVEs for chromium
Note: CVE-2025-11211 is listed again in the list of CVEs, either this is
due to an incomplete fix or the the previous listing in
https://chromereleases.googleblog.com/2025/09/stable-channel-update-for-desktop_30.html
So we might consider it fixed only with the later update.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,9 @@
+CVE-2025-11460
+ - chromium <unfixed>
+ [bullseye] - chromium <end-of-life> (see #1061268)
+CVE-2025-11458
+ - chromium <unfixed>
+ [bullseye] - chromium <end-of-life> (see #1061268)
CVE-2025-61772 [Rack memory exhaustion denial of service]
- ruby-rack <unfixed>
NOTE: https://github.com/rack/rack/security/advisories/GHSA-wpv5-97wm-hp9c
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/11bf577f1d7a75a6acfff9cbb2257253ee1b2fcd
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/11bf577f1d7a75a6acfff9cbb2257253ee1b2fcd
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251008/c00d4e1d/attachment.htm>
More information about the debian-security-tracker-commits
mailing list