CLEANSTART-2026-ZI38454

See a problem?
Import Source
https://github.com/cleanstart-dev/cleanstart-security-advisories/blob/main/advisories/2026/CLEANSTART-2026-ZI38454.json
JSON Data
https://api.test.osv.dev/v1/vulns/CLEANSTART-2026-ZI38454
Upstream
  • ghsa-jp4c-xjxw-mgf9
  • ghsa-mf9v-mfxr-j63j
  • ghsa-qccp-gfcp-xxvc
Published
2026-05-18T12:57:47.688001Z
Modified
2026-07-08T00:45:05.253597119Z
Summary
Security fixes for CVE-2026-44431, CVE-2026-44432, CVE-2026-6357, ghsa-jp4c-xjxw-mgf9, ghsa-mf9v-mfxr-j63j, ghsa-qccp-gfcp-xxvc applied in versions: 25.11.0.1-r1
Details

Multiple security vulnerabilities affect the miniforge3 package. These issues are resolved in later releases. See references for individual vulnerability details.

References

Affected packages

CleanStart / miniforge3

Package

Name
miniforge3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
25.11.0.1-r1

Database specific

source
"https://github.com/cleanstart-dev/cleanstart-security-advisories/blob/main/advisories/2026/CLEANSTART-2026-ZI38454.json"