Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
5ccb10ba by security tracker role at 2025-12-27T08:12:52+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,29 @@
+CVE-2025-68952 (Eigent is a multi-agent Workforce. In version 0.0.60, a
1-click Remote ...)
+ TODO: check
+CVE-2025-68948 (SiYuan is self-hosted, open source personal knowledge
management softw ...)
+ TODO: check
+CVE-2025-68932 (FreshRSS is a free, self-hostable RSS aggregator. Prior to
version 1.2 ...)
+ TODO: check
+CVE-2025-68927 (Libredesk is a self-hosted customer support desk. Prior to
version 0.8 ...)
+ TODO: check
+CVE-2025-68697 (n8n is an open source workflow automation platform. Prior to
version 2 ...)
+ TODO: check
+CVE-2025-68668 (n8n is an open source workflow automation platform. From
version 1.0.0 ...)
+ TODO: check
+CVE-2025-68474 (ESF-IDF is the Espressif Internet of Things (IOT) Development
Framewor ...)
+ TODO: check
+CVE-2025-68473 (ESF-IDF is the Espressif Internet of Things (IOT) Development
Framewor ...)
+ TODO: check
+CVE-2025-68148 (FreshRSS is a free, self-hostable RSS aggregator. From version
1.27.0 ...)
+ TODO: check
+CVE-2025-67729 (LMDeploy is a toolkit for compressing, deploying, and serving
LLMs. Pr ...)
+ TODO: check
+CVE-2025-66203 (StreamVault is a video download integration solution. Prior to
version ...)
+ TODO: check
+CVE-2025-61914 (n8n is an open source workflow automation platform. Prior to
version 1 ...)
+ TODO: check
+CVE-2025-59946 (NanoMQ MQTT Broker (NanoMQ) is an Edge Messaging Platform.
Prior to ve ...)
+ TODO: check
CVE-2025-67349 (A cross-site scripting (XSS) vulnerability was identified in
FluentCMS ...)
NOT-FOR-US: FluentCMS
CVE-2025-67015 (Incorrect access control in Comtech EF Data CDM-625 / CDM-625A
Advance ...)
@@ -1917,7 +1943,7 @@ CVE-2025-68687
REJECTED
CVE-2025-68669 (5ire is a cross-platform desktop artificial intelligence
assistant and ...)
NOT-FOR-US: 5ire
-CVE-2025-68667 (continuwuity is a Matrix homeserver written in Rust. Prior to
version ...)
+CVE-2025-68667 (Conduit is a chat server powered by Matrix. A vulnerability
that affec ...)
NOT-FOR-US: continuwuity
CVE-2025-68665 (LangChain is a framework for building LLM-powered
applications. Prior ...)
NOT-FOR-US: LangChain
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5ccb10ba2af76bf57ac6fe0c0bad06cedeeca46c
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5ccb10ba2af76bf57ac6fe0c0bad06cedeeca46c
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
