[Git][security-tracker-team/security-tracker][master] new node-axios issue
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Fri May 8 12:20:00 BST 2026
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
cf3753ee by Moritz Muehlenhoff at 2026-05-08T13:19:40+02:00
new node-axios issue
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -217,7 +217,10 @@ CVE-2026-42271 (LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenA
CVE-2026-42267 (Kimai is an open-source time tracking application. From version 2.27.0 ...)
NOT-FOR-US: Kimai
CVE-2026-42264 (Axios is a promise based HTTP client for the browser and Node.js. From ...)
- TODO: check
+ - node-axios 1.15.2-1
+ NOTE: https://github.com/axios/axios/security/advisories/GHSA-q8qp-cvcw-x6jj
+ NOTE: https://github.com/axios/axios/pull/10779
+ NOTE: https://github.com/axios/axios/commit/47915144662f2733e6c051bdcb895a8c8f0586aa (v1.15.2)
CVE-2026-42261 (PromptHub is an all-in-one AI toolbox for prompt, skill, and agent man ...)
NOT-FOR-US: PromptHub
CVE-2026-42259 (Saltcorn is an extensible, open source, no-code database application b ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cf3753ee58f0662be53c4c83c869d8a2757c8bf9
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cf3753ee58f0662be53c4c83c869d8a2757c8bf9
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260508/26c91f69/attachment.htm>
More information about the debian-security-tracker-commits
mailing list