[Git][security-tracker-team/security-tracker][master] Triage CVE-2026-40895 in node-follow-redirects for bullseye LTS.
Chris Lamb (@lamby)
lamby at debian.org
Mon Apr 27 18:07:33 BST 2026
Chris Lamb pushed to branch master at Debian Security Tracker / security-tracker
Commits:
175d8f92 by Chris Lamb at 2026-04-27T10:07:22-07:00
Triage CVE-2026-40895 in node-follow-redirects for bullseye LTS.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -3014,6 +3014,7 @@ CVE-2026-40895 (follow-redirects is an open source, drop-in replacement for Node
- node-follow-redirects 1.16.0+~1.14.4-1 (bug #1134646)
[trixie] - node-follow-redirects <no-dsa> (Minor issue)
[bookworm] - node-follow-redirects <no-dsa> (Minor issue)
+ [bullseye] - node-follow-redirects <postponed> (Minor issue; can be fixed in next update)
NOTE: https://github.com/follow-redirects/follow-redirects/security/advisories/GHSA-r4q5-vmmm-2653
NOTE: https://github.com/follow-redirects/follow-redirects/pull/284
NOTE: https://github.com/follow-redirects/follow-redirects/commit/844c4d302ac963d29bdb5dc1754ec7df3d70d7f9 (v1.16.0)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/175d8f92e858e7ef233f7a0090e3795a81aba41c
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/175d8f92e858e7ef233f7a0090e3795a81aba41c
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260427/22f7ed20/attachment.htm>
More information about the debian-security-tracker-commits
mailing list