[Git][security-tracker-team/security-tracker][master] Add CVE-2025-69725/golang-github-go-chi-chi

Sat, 21 Feb 2026 12:46:19 -0800 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
b00a2d48 by Salvatore Bonaccorso at 2026-02-21T21:45:20+01:00
Add CVE-2025-69725/golang-github-go-chi-chi

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1538,7 +1538,10 @@ CVE-2025-71240 (SPIP before 4.2.15 allows Cross-Site 
Scripting (XSS) via crafted
        - spip 4.3.0+dfsg-1
        NOTE: 
https://blog.spip.net/Mise-a-jour-de-maintenance-et-securite-sortie-de-SPIP-4-2-15.html
 CVE-2025-69725 (An Open Redirect vulnerability in the go-chi/chi >=5.2.2 
RedirectSlash ...)
-       TODO: check
+       - golang-github-go-chi-chi <unfixed>
+       [trixie] - golang-github-go-chi-chi <not-affected> (Vulnerable code 
introduced in 5.2.2)
+       [bookworm] - golang-github-go-chi-chi <not-affected> (Vulnerable code 
introduced in 5.2.2)
+       NOTE: 
https://github.com/go-chi/chi/security/advisories/GHSA-mqqf-5wvp-8fh8
 CVE-2025-69674 (Buffer Overflow vulnerability in CDATA FD614GS3-R850 
V3.2.7_P161006 (B ...)
        NOT-FOR-US: CDATA
 CVE-2025-67304 (In Ruckus Network Director (RND) < 4.5.0.54, the OVA appliance 
contain ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b00a2d48b00f9e8ed8aa06dfbae817ec12002b0f

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b00a2d48b00f9e8ed8aa06dfbae817ec12002b0f
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to