[Git][security-tracker-team/security-tracker][master] Add CVE-2026-44240/node-proxy-agents
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu May 14 10:41:09 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
620081e4 by Salvatore Bonaccorso at 2026-05-14T11:40:50+02:00
Add CVE-2026-44240/node-proxy-agents
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -976,7 +976,8 @@ CVE-2026-44242 (Micronaut Framework is a JVM-based full stack Java framework des
CVE-2026-44241 (Micronaut Framework is a JVM-based full stack Java framework designed ...)
NOT-FOR-US: Micronaut Framework
CVE-2026-44240 (basic-ftp is an FTP client for Node.js. Prior to 5.3.1, basic-ftp is v ...)
- TODO: check
+ - node-proxy-agents <unfixed>
+ NOTE: https://github.com/patrickjuchli/basic-ftp/security/advisories/GHSA-rpmf-866q-6p89
CVE-2026-44232 (DSSRF is a Node.js library that provides a wide range of utilities and ...)
NOT-FOR-US: DSSRF
CVE-2026-44225 (Pulpy is a lightweight, cross-platform desktop application packager fo ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/620081e430c6b6dcba5a96316ba8c50661bf2c9d
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/620081e430c6b6dcba5a96316ba8c50661bf2c9d
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260514/3f95a57e/attachment.htm>
More information about the debian-security-tracker-commits
mailing list