[Git][security-tracker-team/security-tracker][master] Process new issues in mattermost-server, itp'ed

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Feb 16 20:28:22 GMT 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e87b3bc5 by Salvatore Bonaccorso at 2026-02-16T21:28:10+01:00
Process new issues in mattermost-server, itp'ed

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -67,11 +67,11 @@ CVE-2026-1333 (A Use of Uninitialized Variable vulnerability affecting the EPRT
 CVE-2026-1046 (Mattermost Desktop App versions <=6.0 6.2.0 5.2.13.0 fail to validate  ...)
 	NOT-FOR-US: Mattermost Desktop App
 CVE-2026-0999 (Mattermost versions 11.1.x <= 11.1.2, 10.11.x <= 10.11.9, 11.2.x <= 11 ...)
-	TODO: check
+	- mattermost-server <itp> (bug #823556)
 CVE-2026-0998 (Mattermost versions 11.1.x <= 11.1.2, 10.11.x <= 10.11.9, 11.2.x <= 11 ...)
-	TODO: check
+	- mattermost-server <itp> (bug #823556)
 CVE-2026-0997 (Mattermost versions 11.1.x <= 11.1.2, 10.11.x <= 10.11.9, 11.2.x <= 11 ...)
-	TODO: check
+	- mattermost-server <itp> (bug #823556)
 CVE-2025-65717 (An issue in Visual Studio Code Extensions Live Server v5.7.9 allows at ...)
 	TODO: check
 CVE-2025-65716 (An issue in Visual Studio Code Extensions Markdown Preview Enhanced v0 ...)
@@ -87,11 +87,11 @@ CVE-2025-59903 (Stored Cross-Site Scripting (XSS) vulnerability in Kubysoft, whe
 CVE-2025-2418 (URL Redirection to Untrusted Site ('Open Redirect') vulnerability in T ...)
 	TODO: check
 CVE-2025-14573 (Mattermost versions 10.11.x <= 10.11.9 fail to enforce invite permissi ...)
-	TODO: check
+	- mattermost-server <itp> (bug #823556)
 CVE-2025-14350 (Mattermost versions 11.1.x <= 11.1.2, 10.11.x <= 10.11.9, 11.2.x <= 11 ...)
-	TODO: check
+	- mattermost-server <itp> (bug #823556)
 CVE-2025-13821 (Mattermost versions 11.1.x <= 11.1.2, 10.11.x <= 10.11.9, 11.2.x <= 11 ...)
-	TODO: check
+	- mattermost-server <itp> (bug #823556)
 CVE-2019-25395 (Smoothwall Express 3.1-SP4-polar-x86_64-update9 contains multiple stor ...)
 	TODO: check
 CVE-2019-25394 (Smoothwall Express 3.1-SP4-polar-x86_64-update9 contains multiple stor ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e87b3bc55b5efcd15a2372f20943924742d7a14a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e87b3bc55b5efcd15a2372f20943924742d7a14a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260216/c3186eb8/attachment.htm>

More information about the debian-security-tracker-commits mailing list