CLEANSTART-2026-CR27895

See a problem?

Import Source

https://github.com/cleanstart-dev/cleanstart-security-advisories/blob/main/advisories/2026/CLEANSTART-2026-CR27895.json

JSON Data

https://api.osv.dev/v1/vulns/CLEANSTART-2026-CR27895

Upstream

CVE-2026-42304

CVE-2026-44307

ghsa-2h4p-vjrc-8xpq

ghsa-grgv-6hw6-v9g4

Published

2026-05-18T13:34:20.661032Z

Modified

2026-05-21T08:45:05.645984475Z

Summary

Security fixes for CVE-2026-42304, CVE-2026-44307, ghsa-2h4p-vjrc-8xpq, ghsa-grgv-6hw6-v9g4 applied in versions: 4.3.5-r0

Details

Multiple security vulnerabilities affect the jupyterhub-k8s-hub package. These issues are resolved in later releases. See references for individual vulnerability details.

References

Affected packages

CleanStart / jupyterhub-k8s-hub

Package

Name: jupyterhub-k8s-hub

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.3.5-r0

Database specific

source

"https://github.com/cleanstart-dev/cleanstart-security-advisories/blob/main/advisories/2026/CLEANSTART-2026-CR27895.json"