diff --git a/advisories/github-reviewed/2026/02/GHSA-3ppc-4f35-3m26/GHSA-3ppc-4f35-3m26.json b/advisories/github-reviewed/2026/02/GHSA-3ppc-4f35-3m26/GHSA-3ppc-4f35-3m26.json index e62b787b379c0..1506c0c1295bb 100644 --- a/advisories/github-reviewed/2026/02/GHSA-3ppc-4f35-3m26/GHSA-3ppc-4f35-3m26.json +++ b/advisories/github-reviewed/2026/02/GHSA-3ppc-4f35-3m26/GHSA-3ppc-4f35-3m26.json @@ -1,7 +1,7 @@ { "schema_version": "1.4.0", "id": "GHSA-3ppc-4f35-3m26", - "modified": "2026-02-20T16:52:14Z", + "modified": "2026-02-20T16:52:16Z", "published": "2026-02-18T22:38:11Z", "aliases": [ "CVE-2026-26996" @@ -15,6 +15,28 @@ } ], "affected": [ + { + "package": { + "ecosystem": "npm", + "name": "minimatch" + }, + "ranges": [ + { + "type": "ECOSYSTEM", + "events": [ + { + "introduced": "10.0.0" + }, + { + "fixed": "10.2.1 || 3.1.3 || 4.2.4 || 5.1.7 || 6.2.1 || 7.4.7 || 8.0.5 || 9.0.6" + } + ] + } + ], + "database_specific": { + "last_known_affected_version_range": "< 10.2.1" + } + }, { "package": { "ecosystem": "npm", @@ -28,11 +50,146 @@ "introduced": "0" }, { - "fixed": "10.2.1" + "fixed": "10.2.1 || 3.1.3 || 4.2.4 || 5.1.7 || 6.2.1 || 7.4.7 || 8.0.5 || 9.0.6" + } + ] + } + ], + "database_specific": { + "last_known_affected_version_range": "< 3.1.3" + } + }, + { + "package": { + "ecosystem": "npm", + "name": "minimatch" + }, + "ranges": [ + { + "type": "ECOSYSTEM", + "events": [ + { + "introduced": "4.0.0" + }, + { + "fixed": "10.2.1 || 3.1.3 || 4.2.4 || 5.1.7 || 6.2.1 || 7.4.7 || 8.0.5 || 9.0.6" + } + ] + } + ], + "database_specific": { + "last_known_affected_version_range": "< 4.2.4" + } + }, + { + "package": { + "ecosystem": "npm", + "name": "minimatch" + }, + "ranges": [ + { + "type": "ECOSYSTEM", + "events": [ + { + "introduced": "5.0.0" + }, + { + "fixed": "10.2.1 || 3.1.3 || 4.2.4 || 5.1.7 || 6.2.1 || 7.4.7 || 8.0.5 || 9.0.6" + } + ] + } + ], + "database_specific": { + "last_known_affected_version_range": "< 5.1.7" + } + }, + { + "package": { + "ecosystem": "npm", + "name": "minimatch" + }, + "ranges": [ + { + "type": "ECOSYSTEM", + "events": [ + { + "introduced": "6.0.0" + }, + { + "fixed": "10.2.1 || 3.1.3 || 4.2.4 || 5.1.7 || 6.2.1 || 7.4.7 || 8.0.5 || 9.0.6" + } + ] + } + ], + "database_specific": { + "last_known_affected_version_range": "< 6.2.1" + } + }, + { + "package": { + "ecosystem": "npm", + "name": "minimatch" + }, + "ranges": [ + { + "type": "ECOSYSTEM", + "events": [ + { + "introduced": "7.0.0" + }, + { + "fixed": "10.2.1 || 3.1.3 || 4.2.4 || 5.1.7 || 6.2.1 || 7.4.7 || 8.0.5 || 9.0.6" + } + ] + } + ], + "database_specific": { + "last_known_affected_version_range": "< 7.4.7" + } + }, + { + "package": { + "ecosystem": "npm", + "name": "minimatch" + }, + "ranges": [ + { + "type": "ECOSYSTEM", + "events": [ + { + "introduced": "8.0.0" + }, + { + "fixed": "10.2.1 || 3.1.3 || 4.2.4 || 5.1.7 || 6.2.1 || 7.4.7 || 8.0.5 || 9.0.6" + } + ] + } + ], + "database_specific": { + "last_known_affected_version_range": "< 8.0.5" + } + }, + { + "package": { + "ecosystem": "npm", + "name": "minimatch" + }, + "ranges": [ + { + "type": "ECOSYSTEM", + "events": [ + { + "introduced": "9.0.0" + }, + { + "fixed": "10.2.1 || 3.1.3 || 4.2.4 || 5.1.7 || 6.2.1 || 7.4.7 || 8.0.5 || 9.0.6" } ] } - ] + ], + "database_specific": { + "last_known_affected_version_range": "< 9.0.6" + } } ], "references": [