Skip to content

Commit 11ee739

Browse files
advisory-database[bot]advisory-database[bot]
committed
Publish Advisories
GHSA-hvwj-8w5g-28rg GHSA-jx93-g359-86wm GHSA-rgq9-fqf5-fv58 GHSA-4w7w-66w2-5vf9 GHSA-p9ff-h696-f583 GHSA-v2wj-q39q-566r
1 parent 1dcc107 commit 11ee739

6 files changed

Lines changed: 44 additions & 15 deletions

File tree

advisories/github-reviewed/2026/03/GHSA-hvwj-8w5g-28rg/GHSA-hvwj-8w5g-28rg.json

Lines changed: 14 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-hvwj-8w5g-28rg",
4-
"modified": "2026-03-12T17:39:04Z",
4+
"modified": "2026-04-07T22:14:04Z",
55
"published": "2026-03-12T12:30:29Z",
66
"aliases": [
77
"CVE-2026-3989"
@@ -28,18 +28,25 @@
2828
"introduced": "0"
2929
},
3030
{
31-
"last_affected": "0.5.9"
31+
"fixed": "0.5.10"
3232
}
3333
]
3434
}
35-
]
35+
],
36+
"database_specific": {
37+
"last_known_affected_version_range": "<= 0.5.9"
38+
}
3639
}
3740
],
3841
"references": [
3942
{
4043
"type": "ADVISORY",
4144
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-3989"
4245
},
46+
{
47+
"type": "WEB",
48+
"url": "https://github.com/sgl-project/sglang/pull/20904"
49+
},
4350
{
4451
"type": "PACKAGE",
4552
"url": "https://github.com/sgl-project/sglang"
@@ -48,6 +55,10 @@
4855
"type": "WEB",
4956
"url": "https://github.com/sgl-project/sglang/blob/main/scripts/playground/replay_request_dump.py"
5057
},
58+
{
59+
"type": "WEB",
60+
"url": "https://github.com/sgl-project/sglang/releases/tag/v0.5.10"
61+
},
5162
{
5263
"type": "WEB",
5364
"url": "https://orca.security/resources/blog/sglang-llm-framework-rce-vulnerabilities"

advisories/github-reviewed/2026/03/GHSA-jx93-g359-86wm/GHSA-jx93-g359-86wm.json

Lines changed: 6 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-jx93-g359-86wm",
4-
"modified": "2026-04-07T22:12:43Z",
4+
"modified": "2026-04-07T22:14:15Z",
55
"published": "2026-03-12T12:30:29Z",
66
"aliases": [
77
"CVE-2026-3060"
@@ -28,11 +28,14 @@
2828
"introduced": "0"
2929
},
3030
{
31-
"last_affected": "0.5.9"
31+
"fixed": "0.5.10"
3232
}
3333
]
3434
}
35-
]
35+
],
36+
"database_specific": {
37+
"last_known_affected_version_range": "<= 0.5.9"
38+
}
3639
}
3740
],
3841
"references": [

advisories/github-reviewed/2026/03/GHSA-rgq9-fqf5-fv58/GHSA-rgq9-fqf5-fv58.json

Lines changed: 6 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-rgq9-fqf5-fv58",
4-
"modified": "2026-04-07T22:12:51Z",
4+
"modified": "2026-04-07T22:14:24Z",
55
"published": "2026-03-12T12:30:29Z",
66
"aliases": [
77
"CVE-2026-3059"
@@ -28,11 +28,14 @@
2828
"introduced": "0"
2929
},
3030
{
31-
"last_affected": "0.5.9"
31+
"fixed": "0.5.10"
3232
}
3333
]
3434
}
35-
]
35+
],
36+
"database_specific": {
37+
"last_known_affected_version_range": "<= 0.5.9"
38+
}
3639
}
3740
],
3841
"references": [

advisories/github-reviewed/2026/04/GHSA-4w7w-66w2-5vf9/GHSA-4w7w-66w2-5vf9.json

Lines changed: 6 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-4w7w-66w2-5vf9",
4-
"modified": "2026-04-07T14:18:32Z",
4+
"modified": "2026-04-07T22:16:27Z",
55
"published": "2026-04-06T18:03:46Z",
66
"aliases": [
77
"CVE-2026-39365"
@@ -87,6 +87,10 @@
8787
"type": "WEB",
8888
"url": "https://github.com/vitejs/vite/security/advisories/GHSA-4w7w-66w2-5vf9"
8989
},
90+
{
91+
"type": "ADVISORY",
92+
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39365"
93+
},
9094
{
9195
"type": "WEB",
9296
"url": "https://github.com/vitejs/vite/pull/22161"
@@ -120,6 +124,6 @@
120124
"severity": "MODERATE",
121125
"github_reviewed": true,
122126
"github_reviewed_at": "2026-04-06T18:03:46Z",
123-
"nvd_published_at": null
127+
"nvd_published_at": "2026-04-07T20:16:30Z"
124128
}
125129
}

advisories/github-reviewed/2026/04/GHSA-p9ff-h696-f583/GHSA-p9ff-h696-f583.json

Lines changed: 6 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-p9ff-h696-f583",
4-
"modified": "2026-04-07T14:21:49Z",
4+
"modified": "2026-04-07T22:16:11Z",
55
"published": "2026-04-06T18:03:24Z",
66
"aliases": [
77
"CVE-2026-39363"
@@ -87,6 +87,10 @@
8787
"type": "WEB",
8888
"url": "https://github.com/vitejs/vite/security/advisories/GHSA-p9ff-h696-f583"
8989
},
90+
{
91+
"type": "ADVISORY",
92+
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39363"
93+
},
9094
{
9195
"type": "WEB",
9296
"url": "https://github.com/vitejs/vite/pull/22159"
@@ -120,6 +124,6 @@
120124
"severity": "HIGH",
121125
"github_reviewed": true,
122126
"github_reviewed_at": "2026-04-06T18:03:24Z",
123-
"nvd_published_at": null
127+
"nvd_published_at": "2026-04-07T20:16:30Z"
124128
}
125129
}

advisories/github-reviewed/2026/04/GHSA-v2wj-q39q-566r/GHSA-v2wj-q39q-566r.json

Lines changed: 6 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-v2wj-q39q-566r",
4-
"modified": "2026-04-07T14:18:17Z",
4+
"modified": "2026-04-07T22:16:17Z",
55
"published": "2026-04-06T18:03:32Z",
66
"aliases": [
77
"CVE-2026-39364"
@@ -65,6 +65,10 @@
6565
"type": "WEB",
6666
"url": "https://github.com/vitejs/vite/security/advisories/GHSA-v2wj-q39q-566r"
6767
},
68+
{
69+
"type": "ADVISORY",
70+
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39364"
71+
},
6872
{
6973
"type": "WEB",
7074
"url": "https://github.com/vitejs/vite/pull/22160"
@@ -94,6 +98,6 @@
9498
"severity": "HIGH",
9599
"github_reviewed": true,
96100
"github_reviewed_at": "2026-04-06T18:03:32Z",
97-
"nvd_published_at": null
101+
"nvd_published_at": "2026-04-07T20:16:30Z"
98102
}
99103
}

0 commit comments

Comments
 (0)