[Git][security-tracker-team/security-tracker][master] automatic update

Sat Dec 27 08:13:06 GMT 2025


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5ccb10ba by security tracker role at 2025-12-27T08:12:52+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,29 @@
+CVE-2025-68952 (Eigent is a multi-agent Workforce. In version 0.0.60, a 1-click Remote ...)
+	TODO: check
+CVE-2025-68948 (SiYuan is self-hosted, open source personal knowledge management softw ...)
+	TODO: check
+CVE-2025-68932 (FreshRSS is a free, self-hostable RSS aggregator. Prior to version 1.2 ...)
+	TODO: check
+CVE-2025-68927 (Libredesk is a self-hosted customer support desk. Prior to version 0.8 ...)
+	TODO: check
+CVE-2025-68697 (n8n is an open source workflow automation platform. Prior to version 2 ...)
+	TODO: check
+CVE-2025-68668 (n8n is an open source workflow automation platform. From version 1.0.0 ...)
+	TODO: check
+CVE-2025-68474 (ESF-IDF is the Espressif Internet of Things (IOT) Development Framewor ...)
+	TODO: check
+CVE-2025-68473 (ESF-IDF is the Espressif Internet of Things (IOT) Development Framewor ...)
+	TODO: check
+CVE-2025-68148 (FreshRSS is a free, self-hostable RSS aggregator. From version 1.27.0  ...)
+	TODO: check
+CVE-2025-67729 (LMDeploy is a toolkit for compressing, deploying, and serving LLMs. Pr ...)
+	TODO: check
+CVE-2025-66203 (StreamVault is a video download integration solution. Prior to version ...)
+	TODO: check
+CVE-2025-61914 (n8n is an open source workflow automation platform. Prior to version 1 ...)
+	TODO: check
+CVE-2025-59946 (NanoMQ MQTT Broker (NanoMQ) is an Edge Messaging Platform. Prior to ve ...)
+	TODO: check
 CVE-2025-67349 (A cross-site scripting (XSS) vulnerability was identified in FluentCMS ...)
 	NOT-FOR-US: FluentCMS
 CVE-2025-67015 (Incorrect access control in Comtech EF Data CDM-625 / CDM-625A Advance ...)
@@ -1917,7 +1943,7 @@ CVE-2025-68687
 	REJECTED
 CVE-2025-68669 (5ire is a cross-platform desktop artificial intelligence assistant and ...)
 	NOT-FOR-US: 5ire
-CVE-2025-68667 (continuwuity is a Matrix homeserver written in Rust. Prior to version  ...)
+CVE-2025-68667 (Conduit is a chat server powered by Matrix. A vulnerability that affec ...)
 	NOT-FOR-US: continuwuity
 CVE-2025-68665 (LangChain is a framework for building LLM-powered applications. Prior  ...)
 	NOT-FOR-US: LangChain



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5ccb10ba2af76bf57ac6fe0c0bad06cedeeca46c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5ccb10ba2af76bf57ac6fe0c0bad06cedeeca46c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251227/c2ac9cd1/attachment-0001.htm>
