[Git][security-tracker-team/security-tracker][master] Add CVE-2025-67713/miniflux
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Dec 11 08:45:32 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
9ee400e2 by Salvatore Bonaccorso at 2025-12-11T09:45:08+01:00
Add CVE-2025-67713/miniflux
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -15,7 +15,9 @@ CVE-2025-67717 (ZITADEL is an open-source identity infrastructure tool. Versions
CVE-2025-67716 (The Auth0 Next.js SDK is a library for implementing user authenticatio ...)
NOT-FOR-US: Next.js
CVE-2025-67713 (Miniflux 2 is an open source feed reader. Versions 2.2.14 and below tr ...)
- TODO: check
+ - miniflux <unfixed>
+ NOTE: https://github.com/miniflux/v2/security/advisories/GHSA-wqv2-4wpg-8hc9
+ NOTE: Fixed by: https://github.com/miniflux/v2/commit/76df99f3a3db234cf6b312be5e771485213d03c7 (2.2.15)
CVE-2025-67694
REJECTED
CVE-2025-67693
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9ee400e2e6043f72c3a2b3d05a96ef655393835c
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9ee400e2e6043f72c3a2b3d05a96ef655393835c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251211/f9883010/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list