Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
cf3753ee by Moritz Muehlenhoff at 2026-05-08T13:19:40+02:00
new node-axios issue
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -217,7 +217,10 @@ CVE-2026-42271 (LiteLLM is a proxy server (AI Gateway) to
call LLM APIs in OpenA
CVE-2026-42267 (Kimai is an open-source time tracking application. From
version 2.27.0 ...)
NOT-FOR-US: Kimai
CVE-2026-42264 (Axios is a promise based HTTP client for the browser and
Node.js. From ...)
- TODO: check
+ - node-axios 1.15.2-1
+ NOTE:
https://github.com/axios/axios/security/advisories/GHSA-q8qp-cvcw-x6jj
+ NOTE: https://github.com/axios/axios/pull/10779
+ NOTE:
https://github.com/axios/axios/commit/47915144662f2733e6c051bdcb895a8c8f0586aa
(v1.15.2)
CVE-2026-42261 (PromptHub is an all-in-one AI toolbox for prompt, skill, and
agent man ...)
NOT-FOR-US: PromptHub
CVE-2026-42259 (Saltcorn is an extensible, open source, no-code database
application b ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cf3753ee58f0662be53c4c83c869d8a2757c8bf9
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cf3753ee58f0662be53c4c83c869d8a2757c8bf9
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
