chore: update react to apply patch for CVE-2025-55182 (#21084) #21175

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Merged

david-fraley merged 1 commit into release/2.28 from react-upgrade-CVE-2025-55182-2.28

Dec 9, 2025

Contributor

jdomeracki-coder commented Dec 8, 2025

Reference:
https://react.dev/blog/2025/12/03/critical-security-vulnerability-in-react-server-components

Please note that coder deployments aren't vulnerable since React Server Components aren't in use


          chore: update react to apply patch for CVE-2025-55182 (#21084)

07117d7

Reference:

https://react.dev/blog/2025/12/03/critical-security-vulnerability-in-react-server-components

jdomeracki-coder added the cherry-pick/v2.28 label

github-actions bot assigned jdomeracki-coder

david-fraley approved these changes

View reviewed changes

david-fraley merged commit df47153 into release/2.28

35 checks passed

david-fraley deleted the react-upgrade-CVE-2025-55182-2.28 branch

December 9, 2025 14:44

github-actions bot locked and limited conversation to collaborators

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Labels

cherry-pick/v2.28