CLEANSTART-2026-XN33394

See a problem?

Import Source

https://github.com/cleanstart-dev/cleanstart-security-advisories/blob/main/advisories/2026/CLEANSTART-2026-XN33394.json

JSON Data

https://api.test.osv.dev/v1/vulns/CLEANSTART-2026-XN33394

Upstream

CVE-2026-34040

CVE-2026-39883

ghsa-3xc5-wrhm-f963

ghsa-hfvc-g4fc-pqhx

ghsa-xmrv-pmrh-hhx2

Published

2026-05-18T13:30:40.188467Z

Modified

2026-06-23T05:15:21.425242212Z

Summary

Security fixes for CVE-2026-34040, CVE-2026-39883, ghsa-3xc5-wrhm-f963, ghsa-hfvc-g4fc-pqhx, ghsa-xmrv-pmrh-hhx2 applied in versions: 3.299.0-r0

Details

Multiple security vulnerabilities affect the pulumi package. These issues are resolved in later releases. See references for individual vulnerability details.

References

Affected packages

CleanStart / pulumi

Package

Name: pulumi

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.299.0-r0

Database specific

source

"https://github.com/cleanstart-dev/cleanstart-security-advisories/blob/main/advisories/2026/CLEANSTART-2026-XN33394.json"