[Git][security-tracker-team/security-tracker][master] Add CVE-2026-49356/node-babel7

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Jun 25 06:20:55 BST 2026



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
86d3440d by Salvatore Bonaccorso at 2026-06-25T07:20:30+02:00
Add CVE-2026-49356/node-babel7

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2518,7 +2518,8 @@ CVE-2026-50168 (Angular is a development platform for building mobile and deskto
 CVE-2026-50146 (Astro is a web framework. Prior to 6.3.3, when a component uses a clie ...)
 	NOT-FOR-US: Astro
 CVE-2026-49356 (Babel is a compiler for writing next generation JavaScript. Prior to 8 ...)
-	TODO: check
+	- node-babel7 <unfixed>
+	NOTE: https://github.com/babel/babel/security/advisories/GHSA-4x5r-pxfx-6jf8
 CVE-2026-49241 (The Angular Language Service VS Code Extension provides a rich editing ...)
 	TODO: check
 CVE-2026-48712 (protobufjs compiles protobuf definitions into JavaScript (JS) function ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/86d3440d46c31920b24c0242dd8b9683c5b4fa9c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/86d3440d46c31920b24c0242dd8b9683c5b4fa9c
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260625/e457f307/attachment.htm>


More information about the debian-security-tracker-commits mailing list