[Git][security-tracker-team/security-tracker][master] Add CVE-2025-12756/mattermost-server, itp'ed
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon Dec 1 20:46:03 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
be655d53 by Salvatore Bonaccorso at 2025-12-01T21:45:30+01:00
Add CVE-2025-12756/mattermost-server, itp'ed
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -135,7 +135,7 @@ CVE-2025-13296 (Cross-Site Request Forgery (CSRF) vulnerability in Tekrom Techno
CVE-2025-13129 (Improper Enforcement of Behavioral Workflow vulnerability in Seneka So ...)
NOT-FOR-US: Onaylarim
CVE-2025-12756 (Mattermost versions 11.0.x <= 11.0.2, 10.12.x <= 10.12.1, 10.11.x <= 1 ...)
- TODO: check
+ - mattermost-server <itp> (bug #823556)
CVE-2025-11772 (A carefully crafted DLL, copied to C:\ProgramData\Synaptics folder ...)
NOT-FOR-US: Synaptics
CVE-2025-11699 (nopCommerce v4.70 and prior, and version 4.80.3, does not invalidate s ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/be655d53709ab3d3d24e875c64dccc400b8dbad1
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/be655d53709ab3d3d24e875c64dccc400b8dbad1
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251201/5dff80d9/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list