[Git][security-tracker-team/security-tracker][master] Add CVE-2026-25639/node-axios

Tue, 10 Feb 2026 12:44:02 -0800 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
f60e7b43 by Salvatore Bonaccorso at 2026-02-10T21:43:29+01:00
Add CVE-2026-25639/node-axios

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -565,7 +565,9 @@ CVE-2026-25761 (Super-linter is a combination of multiple 
linters to run as a Gi
 CVE-2026-25740 (captive browser, a dedicated Chrome instance to log into 
captive porta ...)
        NOT-FOR-US: captive browser
 CVE-2026-25639 (Axios is a promise based HTTP client for the browser and 
Node.js. Prio ...)
-       TODO: check
+       - node-axios <unfixed>
+       NOTE: 
https://github.com/axios/axios/security/advisories/GHSA-43fc-jf86-j433
+       NOTE: Fixed by: 
https://github.com/axios/axios/commit/28c721588c7a77e7503d0a434e016f852c597b57 
(v1.13.5)
 CVE-2026-25528 (LangSmith Client SDKs provide SDK's for interacting with the 
LangSmith ...)
        NOT-FOR-US: LangSmith Client SDK
 CVE-2026-24328 (SAP TAF_APPLAUNCHER within Business Server Pages allows 
unauthenticate ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f60e7b43aed4352f7ca0cf75a1adc61abcb9ad1c

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f60e7b43aed4352f7ca0cf75a1adc61abcb9ad1c
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to