Commit 7c675fa
authored
fix(deps)!: enforce Next.js 15.4.10 (#14908)
Address
[CVE-2025-67779](https://www.cve.org/CVERecord?id=CVE-2025-67779).
> The initial fix was incomplete and did not fully prevent
denial-of-service attacks for all payload types, resulting in
[CVE-2025-67779](https://www.cve.org/CVERecord?id=CVE-2025-67779).
Everyone must upgrade to the latest patched versions listed in the
[Patched versions
table](https://vercel.com/kb/bulletin/security-bulletin-cve-2025-55184-and-cve-2025-55183#patched-versions).
Source:
https://vercel.com/kb/bulletin/security-bulletin-cve-2025-55184-and-cve-2025-55183#how-to-upgrade-and-protect-your-next.js-app
Related: #14898 and
#148151 parent 471cd1b commit 7c675fa
File tree
43 files changed
+177
-161
lines changed- examples
- astro
- payload
- auth
- custom-components
- custom-server
- draft-preview
- email
- form-builder
- live-preview
- localization
- multi-tenant
- remix/payload
- tailwind-shadcn-ui
- whitelabel
- packages
- next
- ui
- templates
- _template
- blank
- ecommerce
- plugin
- website
- with-cloudflare-d1
- with-postgres
- with-vercel-mongodb
- with-vercel-postgres
- with-vercel-website
- test
- tools/claude-plugin/skills/payload/reference
Some content is hidden
Large Commits have some content hidden by default. Use the searchbox below for content that may be hidden.
43 files changed
+177
-161
lines changed| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
27 | 27 | | |
28 | 28 | | |
29 | 29 | | |
30 | | - | |
| 30 | + | |
31 | 31 | | |
32 | 32 | | |
33 | 33 | | |
| |||
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.
0 commit comments