-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

- -------------------------------------------------------------------------
Debian Security Advisory DSA-5976-1                   security@debian.org
https://www.debian.org/security/                           Andres Salomon
August 14, 2025                       https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : chromium
CVE ID         : CVE-2025-8879 CVE-2025-8880 CVE-2025-8881 CVE-2025-8882 
                 CVE-2025-8901

Security issues were discovered in Chromium which could result
in the execution of arbitrary code, denial of service, or information
disclosure.

For the oldstable distribution (bookworm), these problems have been fixed
in version 139.0.7258.127-1~deb12u1.

For the stable distribution (trixie), these problems have been fixed in
version 139.0.7258.127-1~deb13u1. Additionally this update includes fixes
for CVE-2025-8576, CVE-2025-8577, CVE-2025-8578, CVE-2025-8579,
CVE-2025-8580, CVE-2025-8581, CVE-2025-8582, and CVE-2025-8583.

We recommend that you upgrade your chromium packages.

For the detailed security status of chromium please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/chromium

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=88yf
-----END PGP SIGNATURE-----