[SECURITY] [DSA 5955-1] chromium security update

To: debian-security-announce@lists.debian.org
Subject: [SECURITY] [DSA 5955-1] chromium security update
From: Andres Salomon <dilinger@debian.org>
Date: Wed, 02 Jul 2025 07:26:47 +0000
Message-id: <[🔎] E1uWrrj-00CJc7-IE@seger.debian.org>
Reply-to: debian-security-announce-request@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

- -------------------------------------------------------------------------
Debian Security Advisory DSA-5955-1                   security@debian.org
https://www.debian.org/security/                           Andres Salomon
July 02, 2025                         https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : chromium
CVE ID         : CVE-2025-6554

Security issues were discovered in Chromium which could result
in the execution of arbitrary code, denial of service, or information
disclosure. Google is aware that an exploit for CVE-2025-6554 exists
in the wild.

For the stable distribution (bookworm), this problem has been fixed in
version 138.0.7204.92-1~deb12u1.

We recommend that you upgrade your chromium packages.

For the detailed security status of chromium please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/chromium

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=I0dA
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DSA 5954-1] sudo security update
Next by Date: [SECURITY] [DSA 5956-1] ring security update
Previous by thread: [SECURITY] [DSA 5954-1] sudo security update
Next by thread: [SECURITY] [DSA 5956-1] ring security update
Index(es):
- Date
- Thread