Debian has released a security update for the Chromium package to address multiple vulnerabilities. These issues, identified by CVE IDs CVE-2025-9864 through CVE-2025-9867, could result in arbitrary code execution, denial of service, or information disclosure. The updates have been made available for both the Debian GNU/Linux 12 (Bookworm) and 13 (Trixie) distributions, with fixes included in versions 140.0.7339.80-1deb12u1 and 140.0.7339.80-1deb13u1, respectively.

[DSA 5993-1] chromium security update

[SECURITY] [DSA 5993-1] chromium security update

- -------------------------------------------------------------------------
Debian Security Advisory DSA-5993-1 security@debian.org
https://www.debian.org/security/ Andres Salomon
September 05, 2025 https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package : chromium
CVE ID : CVE-2025-9864 CVE-2025-9865 CVE-2025-9866 CVE-2025-9867

Security issues were discovered in Chromium which could result
in the execution of arbitrary code, denial of service, or information
disclosure.

For the oldstable distribution (bookworm), these problems have been fixed
in version 140.0.7339.80-1~deb12u1.

For the stable distribution (trixie), these problems have been fixed in
version 140.0.7339.80-1~deb13u1.

We recommend that you upgrade your chromium packages.

For the detailed security status of chromium please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/chromium

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/