[Git][security-tracker-team/security-tracker][master] composer ospu/spu

[Moritz Muehlenhoff (@jmm)]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
0f993f77 by Moritz Mühlenhoff at 2026-04-21T20:26:29+02:00
composer ospu/spu

- - - - -


2 changed files:

- data/next-oldstable-point-update.txt
- data/next-point-update.txt


Changes:

=====================================
data/next-oldstable-point-update.txt
=====================================
@@ -272,3 +272,7 @@ CVE-2026-40194
 	[bookworm] - php-phpseclib3 3.0.19-1+deb12u5
 	[bookworm] - php-phpseclib 2.0.42-1+deb12u4
 	[bookworm] - phpseclib 1.0.20-1+deb12u4
+CVE-2026-40261
+	[bookworm] - composer 2.5.5-1+deb12u4
+CVE-2026-40176
+	[bookworm] - composer 2.5.5-1+deb12u4


=====================================
data/next-point-update.txt
=====================================
@@ -308,3 +308,7 @@ CVE-2025-34468
 	[trixie] - libcoap3 4.3.4-1.1+deb13u3
 CVE-2025-26625
 	[trixie] - git-lfs 3.6.1-1+deb13u1
+CVE-2026-40261
+	[trixie] - composer 2.8.8-1+deb13u2
+CVE-2026-40176
+	[trixie] - composer 2.8.8-1+deb13u2



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0f993f77cd3f9225ec01589f98f8d6f21b967977

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0f993f77cd3f9225ec01589f98f8d6f21b967977
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260421/7f179057/attachment-0001.htm>