[Git][security-tracker-team/security-tracker][master] Add CVE-2026-9358/node-css-loader
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Jun 4 23:10:27 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
69cb2e78 by Salvatore Bonaccorso at 2026-06-05T00:09:56+02:00
Add CVE-2026-9358/node-css-loader
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -8827,7 +8827,9 @@ CVE-2026-48849 (In Roundcube Webmail 1.6.x before 1.6.16 and 1.7.x before 1.7.1,
CVE-2026-9359 (A vulnerability was identified in Edimax EW-7438RPn 1.28a. Affected by ...)
NOT-FOR-US: Edimax
CVE-2026-9358 (A vulnerability was determined in postcss up to 7.1.1. Affected is the ...)
- TODO: check
+ - node-css-loader <unfixed>
+ NOTE: https://gist.github.com/bx33661/581e3a38134601c04e19b4dfc9b459b9
+ NOTE: postcss-selector-parser embedded in node-css-loader
CVE-2026-9357 (A vulnerability was found in vBulletin 6.x. This impacts an unknown fu ...)
NOT-FOR-US: vBulletin
CVE-2026-9356 (A vulnerability has been found in SourceCodester Hospitals Patient Rec ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/69cb2e78e87734d2a511bd10457422cd97c951d8
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/69cb2e78e87734d2a511bd10457422cd97c951d8
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260604/50cc8c65/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list