[Git][security-tracker-team/security-tracker][master] Add CVE-2026-44727/Jupyter-server

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Jun 24 15:58:44 BST 2026



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1580f337 by Salvatore Bonaccorso at 2026-06-24T16:58:14+02:00
Add CVE-2026-44727/Jupyter-server

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -947,7 +947,9 @@ CVE-2026-44889 (WebOb provides objects for HTTP requests and responses. Prior to
 	- python-webob <unfixed>
 	NOTE: https://github.com/Pylons/webob/security/advisories/GHSA-fh3h-vg37-cc95
 CVE-2026-44727 (Jupyter Server is the backend for Jupyter web applications. Prior to 2 ...)
-	TODO: check
+	- jupyter-server 2.20.0-1
+	NOTE: https://github.com/jupyter-server/jupyter_server/security/advisories/GHSA-fcw5-x6j4-ccmp
+	NOTE: Fixed by: https://github.com/jupyter-server/jupyter_server/commit/6cbee8d65e71abac851c4492fea987ad080580bd (v2.20.0)
 CVE-2026-44311 (Fabric.js is a Javascript HTML5 canvas library. Prior to 7.4.0, a pote ...)
 	NOT-FOR-US: Fabric.js
 CVE-2026-44274 (Dell Wyse Management Suite (WMS), versions prior to WMS 2605, contain  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1580f337365ce2a7598e0ab67ce8c83e9a52618f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1580f337365ce2a7598e0ab67ce8c83e9a52618f
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260624/93df0a9b/attachment-0001.htm>


More information about the debian-security-tracker-commits mailing list