[SECURITY] [DSA 5935-1] chromium security update

To: debian-security-announce@lists.debian.org
Subject: [SECURITY] [DSA 5935-1] chromium security update
From: Andres Salomon <dilinger@debian.org>
Date: Wed, 04 Jun 2025 12:52:31 +0000
Message-id: <[🔎] E1uMnbb-00CFMu-Vr@seger.debian.org>
Reply-to: debian-security-announce-request@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

- -------------------------------------------------------------------------
Debian Security Advisory DSA-5935-1                   security@debian.org
https://www.debian.org/security/                           Andres Salomon
June 04, 2025                         https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : chromium
CVE ID         : CVE-2025-5068 CVE-2025-5419

Security issues were discovered in Chromium which could result
in the execution of arbitrary code, denial of service, or information
disclosure. Google is aware that an exploit for CVE-2025-5419 exists
in the wild.

For the stable distribution (bookworm), these problems have been fixed in
version 137.0.7151.68-1~deb12u1.

We recommend that you upgrade your chromium packages.

For the detailed security status of chromium please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/chromium

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=pPlg
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DSA 5934-1] roundcube security update
Next by Date: [SECURITY] [DSA 5936-1] libfile-find-rule-perl security update
Previous by thread: [SECURITY] [DSA 5934-1] roundcube security update
Next by thread: [SECURITY] [DSA 5936-1] libfile-find-rule-perl security update
Index(es):
- Date
- Thread