[Git][security-tracker-team/security-tracker][master] node-webpack fixed in sid

[Moritz Muehlenhoff (@jmm)]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
0b8ef902 by Moritz Mühlenhoff at 2026-03-31T18:55:35+02:00
node-webpack fixed in sid

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -24473,14 +24473,14 @@ CVE-2026-0106 (In vpu_mmap of vpu_ioctl, there is a possible arbitrary address m
 	NOT-FOR-US: Google devices
 CVE-2025-68458 (Webpack is a module bundler. From version 5.49.0 to before 5.104.1, wh ...)
 	[experimental] - node-webpack 5.105.4+dfsg1+~cs15.13.23-1
-	- node-webpack <unfixed> (bug #1127322)
+	- node-webpack 5.105.4+dfsg1+~cs15.13.23-2 (bug #1127322)
 	[trixie] - node-webpack <no-dsa> (Minor issue)
 	[bookworm] - node-webpack <no-dsa> (Minor issue)
 	[bullseye] - node-webpack <postponed> (Minor issue)
 	NOTE: https://github.com/webpack/webpack/security/advisories/GHSA-8fgc-7cc6-rx7x
 CVE-2025-68157 (Webpack is a module bundler. From version 5.49.0 to before 5.104.0, wh ...)
 	[experimental] - node-webpack 5.105.4+dfsg1+~cs15.13.23-1
-	- node-webpack <unfixed> (bug #1127322)
+	- node-webpack 5.105.4+dfsg1+~cs15.13.23-2 (bug #1127322)
 	[trixie] - node-webpack <no-dsa> (Minor issue)
 	[bookworm] - node-webpack <no-dsa> (Minor issue)
 	[bullseye] - node-webpack <postponed> (Minor issue)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0b8ef9021b6af3174091a3ab2cc57baaf9afcc70

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0b8ef9021b6af3174091a3ab2cc57baaf9afcc70
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260331/01f2f771/attachment.htm>