[Git][security-tracker-team/security-tracker][master] Update status for CVE-2026-26996/node-minimatch

Mon Apr 6 14:48:47 BST 2026


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
60611f98 by Salvatore Bonaccorso at 2026-04-06T15:48:16+02:00
Update status for CVE-2026-26996/node-minimatch

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -21679,12 +21679,13 @@ CVE-2026-27002 (OpenClaw is a personal AI assistant. Prior to version 2026.2.15,
 CVE-2026-27001 (OpenClaw is a personal AI assistant. Prior to version 2026.2.15, OpenC ...)
 	NOT-FOR-US: OpenClaw
 CVE-2026-26996 (minimatch is a minimal matching utility for converting glob expression ...)
-	- node-minimatch <unfixed> (bug #1128579)
+	- node-minimatch 9.0.7-1 (bug #1128579)
 	[trixie] - node-minimatch <no-dsa> (Minor issue)
 	[bookworm] - node-minimatch <no-dsa> (Minor issue)
 	[bullseye] - node-minimatch <postponed> (Minor issue)
 	NOTE: https://github.com/isaacs/minimatch/security/advisories/GHSA-3ppc-4f35-3m26
 	NOTE: Fixed by: https://github.com/isaacs/minimatch/commit/2e111f3a79abc00fa73110195de2c0f2351904f5 (v10.2.1)
+	NOTE: Fixed by: https://github.com/isaacs/minimatch/commit/50126552835505d2c73ba13e8bdaafd737469a2f (v9.0.6)
 CVE-2026-26995
 	REJECTED
 CVE-2026-26994 (uTLS is a fork of crypto/tls, created to customize ClientHello for fin ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/60611f980a80c88a6c448f05d22d2add1d88dc52

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/60611f980a80c88a6c448f05d22d2add1d88dc52
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260406/50ef4e24/attachment.htm>
