From fc18d1b7decccf48fe2fb1c82c4351f9491e0e77 Mon Sep 17 00:00:00 2001 From: Carlo Bottaro Date: Wed, 10 Dec 2025 15:01:08 +0100 Subject: [PATCH 1/2] chore(deps): update react and next (CVE-2025-55182) --- .../GHSA-fv66-9v8q-g76r.json | 180 ++++++++++++++++++ 1 file changed, 180 insertions(+) diff --git a/advisories/github-reviewed/2025/12/GHSA-fv66-9v8q-g76r/GHSA-fv66-9v8q-g76r.json b/advisories/github-reviewed/2025/12/GHSA-fv66-9v8q-g76r/GHSA-fv66-9v8q-g76r.json index e215f9f9f0a84..79f0f5058e1b4 100644 --- a/advisories/github-reviewed/2025/12/GHSA-fv66-9v8q-g76r/GHSA-fv66-9v8q-g76r.json +++ b/advisories/github-reviewed/2025/12/GHSA-fv66-9v8q-g76r/GHSA-fv66-9v8q-g76r.json @@ -203,6 +203,186 @@ "versions": [ "19.2.0" ] + }, + { + "package": { + "ecosystem": "npm", + "name": "next" + }, + "ranges": [ + { + "type": "ECOSYSTEM", + "events": [ + { + "introduced": "14.3.0-canary.77" + }, + { + "fixed": "15.0.5" + } + ] + } + ] + }, + { + "package": { + "ecosystem": "npm", + "name": "next" + }, + "ranges": [ + { + "type": "ECOSYSTEM", + "events": [ + { + "introduced": "15.1.0-canary.0" + }, + { + "fixed": "15.1.9" + } + ] + } + ] + }, + { + "package": { + "ecosystem": "npm", + "name": "next" + }, + "ranges": [ + { + "type": "ECOSYSTEM", + "events": [ + { + "introduced": "15.2.0-canary.0" + }, + { + "fixed": "15.2.6" + } + ] + } + ] + }, + { + "package": { + "ecosystem": "npm", + "name": "next" + }, + "ranges": [ + { + "type": "ECOSYSTEM", + "events": [ + { + "introduced": "15.3.0-canary.0" + }, + { + "fixed": "15.3.6" + } + ] + } + ] + }, + { + "package": { + "ecosystem": "npm", + "name": "next" + }, + "ranges": [ + { + "type": "ECOSYSTEM", + "events": [ + { + "introduced": "15.4.0-canary.0" + }, + { + "fixed": "15.4.8" + } + ] + } + ] + }, + { + "package": { + "ecosystem": "npm", + "name": "next" + }, + "ranges": [ + { + "type": "ECOSYSTEM", + "events": [ + { + "introduced": "15.5.0-canary.0" + }, + { + "fixed": "15.5.7" + } + ] + } + ] + }, + { + "package": { + "ecosystem": "npm", + "name": "next" + }, + "ranges": [ + { + "type": "ECOSYSTEM", + "events": [ + { + "introduced": "16.0.0-canary.0" + }, + { + "fixed": "16.0.7" + } + ] + } + ] + }, + { + "package": { + "ecosystem": "npm", + "name": "react" + }, + "ranges": [ + { + "type": "ECOSYSTEM", + "events": [ + { "introduced": "19.0.0" }, + { "fixed": "19.0.1" } + ] + } + ], + "versions": ["19.0.0"] + }, + { + "package": { + "ecosystem": "npm", + "name": "react" + }, + "ranges": [ + { + "type": "ECOSYSTEM", + "events": [ + { "introduced": "19.1.0" }, + { "fixed": "19.1.2" } + ] + } + ] + }, + { + "package": { + "ecosystem": "npm", + "name": "react" + }, + "ranges": [ + { + "type": "ECOSYSTEM", + "events": [ + { "introduced": "19.2.0" }, + { "fixed": "19.2.1" } + ] + } + ], + "versions": ["19.2.0"] } ], "references": [ From 1e0a9f31016498c09efbaf5e895c76e0d8423738 Mon Sep 17 00:00:00 2001 From: Carlo Bottaro Date: Thu, 11 Dec 2025 12:23:33 +0100 Subject: [PATCH 2/2] Apply suggestions from code review Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> --- .../12/GHSA-fv66-9v8q-g76r/GHSA-fv66-9v8q-g76r.json | 10 +++++++--- 1 file changed, 7 insertions(+), 3 deletions(-) diff --git a/advisories/github-reviewed/2025/12/GHSA-fv66-9v8q-g76r/GHSA-fv66-9v8q-g76r.json b/advisories/github-reviewed/2025/12/GHSA-fv66-9v8q-g76r/GHSA-fv66-9v8q-g76r.json index 79f0f5058e1b4..d58b98d2e13b7 100644 --- a/advisories/github-reviewed/2025/12/GHSA-fv66-9v8q-g76r/GHSA-fv66-9v8q-g76r.json +++ b/advisories/github-reviewed/2025/12/GHSA-fv66-9v8q-g76r/GHSA-fv66-9v8q-g76r.json @@ -204,7 +204,7 @@ "19.2.0" ] }, - { + { "package": { "ecosystem": "npm", "name": "next" @@ -351,7 +351,9 @@ ] } ], - "versions": ["19.0.0"] + "versions": [ + "19.0.0" + ] }, { "package": { @@ -382,7 +384,9 @@ ] } ], - "versions": ["19.2.0"] + "versions": [ + "19.2.0" + ] } ], "references": [