[Git][security-tracker-team/security-tracker][master] CVE-2025-67713/miniflux does not affect trixie
Adrian Bunk (@bunk)
bunk at debian.org
Fri Jun 19 11:22:28 BST 2026
Adrian Bunk pushed to branch master at Debian Security Tracker / security-tracker
Commits:
aba03b6e by Adrian Bunk at 2026-06-19T13:17:45+03:00
CVE-2025-67713/miniflux does not affect trixie
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -101115,9 +101115,10 @@ CVE-2025-67716 (The Auth0 Next.js SDK is a library for implementing user authent
NOT-FOR-US: Next.js
CVE-2025-67713 (Miniflux 2 is an open source feed reader. Versions 2.2.14 and below tr ...)
- miniflux 2.2.16-1 (bug #1122583)
- [trixie] - miniflux <no-dsa> (Minor issue)
+ [trixie] - miniflux <not-affected> (Vulnerable code introduced later)
NOTE: https://github.com/miniflux/v2/security/advisories/GHSA-wqv2-4wpg-8hc9
NOTE: Fixed by: https://github.com/miniflux/v2/commit/76df99f3a3db234cf6b312be5e771485213d03c7 (2.2.15)
+ NOTE: Introduced by: https://github.com/miniflux/v2/commit/1a29c1568c06724584332a873616651d144c797a (2.2.14)
CVE-2025-67694
REJECTED
CVE-2025-67693
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/aba03b6ec24ea945bea0f8697917205396c299ec
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/aba03b6ec24ea945bea0f8697917205396c299ec
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260619/fc4f34ba/attachment.htm>
More information about the debian-security-tracker-commits
mailing list