request #47206 socket.io-parser: 4.2.4 -> 4.2.6

Infos

Artifact ID#47206

Submitted byJoris MASSON (jmasson)

Last Modified On2026-03-19 18:01

Submitted on2026-03-19 11:54

Rank48931

Details

Summary *

socket.io-parser: 4.2.4 -> 4.2.6

Original Submission

Fixes CVE-2026-33151. See Security Advisory : https://github.com/advisories/GHSA-677m-j7p3-52f9

Tuleap and particularly the tuleap-realtime component is affected by this vulnerability.

CategoryDependencies

Reported in versionAll

PlatformEmpty

Is an Enhancement or an internal improvement?

[ ] enhancement
[ ] internal improvement

CC listEmpty

Stage

Assigned toJoris MASSON (jmasson)

StatusClosed

Close date2026-03-19

Attachments

AttachmentsEmpty

References

Cross references

Show items referenced by request #47206

Referenced by request #47206

Artifact

rel #47137 17.5

Other

gerrit #37161

Follow-ups

Thomas Gerbet (tgerbet)

2026-03-19 18:01

Connected artifacts
- Added Fixed in: rel #47137

Tracker Workflow Manager (forge__tracker_workflow_manager)

2026-03-19 17:52

request fixed by @jmasson with git #tuleap/stable/ed7db79c6dbda54f584c60ffcc9cb323447dc325.

Status changed from Under review to Closed
Close date set to 2026-03-19

Joris MASSON (jmasson)

2026-03-19 12:25

See gerrit #37161

Status changed from Under implementation to Under review

Public

Referenced by request #47206

Artifact

Other

Follow-ups