Skip to content

Commit

Permalink
Automatic vulnerability report update
Browse files Browse the repository at this point in the history
  • Loading branch information
@henrirosten @github-actions
henrirosten authored and github-actions[bot] committed Dec 28, 2023
1 parent 5f4e991 commit f19a3db
Show file tree
Hide file tree
Showing 7 changed files with 227 additions and 278 deletions.
98 changes: 49 additions & 49 deletions reports/ghaf-23.06/data.csv
View file

Large diffs are not rendered by default.

46 changes: 23 additions & 23 deletions reports/ghaf-23.06/packages.x86_64-linux.generic-x86_64-release.md
View file

Large diffs are not rendered by default.

98 changes: 49 additions & 49 deletions reports/ghaf-23.09/data.csv
View file

Large diffs are not rendered by default.

46 changes: 23 additions & 23 deletions reports/ghaf-23.09/packages.x86_64-linux.generic-x86_64-release.md
View file

Large diffs are not rendered by default.

94 changes: 47 additions & 47 deletions reports/main/data.csv
View file

Large diffs are not rendered by default.

34 changes: 17 additions & 17 deletions reports/main/packages.riscv64-linux.microchip-icicle-kit-release.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -46,14 +46,14 @@ Consider [whitelisting](../../manual_analysis.csv) possible false positives base
| vuln_id | package | severity | version_local | nix_unstable | upstream | comment |
|-------------------------------------------------------------------|-----------|------------|-----------------|----------------|------------|----------------------------------------------------------------------------------------------------------------------------------------------------------------|
| [CVE-2023-47100](https://nvd.nist.gov/vuln/detail/CVE-2023-47100) | perl | 9.8 | 5.38.0 | 5.38.2 | 5.38.2 | *[[PR](https://github.com/NixOS/nixpkgs/pull/269996), [PR](https://github.com/NixOS/nixpkgs/pull/271223)]* |
| [CVE-2023-46246](https://nvd.nist.gov/vuln/detail/CVE-2023-46246) | vim | 5.5 | 9.0.2048 | 9.0.2116 | 9.0.2185 | *[[PR](https://github.com/NixOS/nixpkgs/pull/268532), [PR](https://github.com/NixOS/nixpkgs/pull/271373), [PR](https://github.com/NixOS/nixpkgs/pull/276595)]* |
| [CVE-2023-48237](https://nvd.nist.gov/vuln/detail/CVE-2023-48237) | vim | 4.3 | 9.0.2048 | 9.0.2116 | 9.0.2185 | *[[PR](https://github.com/NixOS/nixpkgs/pull/268532), [PR](https://github.com/NixOS/nixpkgs/pull/271373), [PR](https://github.com/NixOS/nixpkgs/pull/276595)]* |
| [CVE-2023-48236](https://nvd.nist.gov/vuln/detail/CVE-2023-48236) | vim | 4.3 | 9.0.2048 | 9.0.2116 | 9.0.2185 | *[[PR](https://github.com/NixOS/nixpkgs/pull/268532), [PR](https://github.com/NixOS/nixpkgs/pull/271373), [PR](https://github.com/NixOS/nixpkgs/pull/276595)]* |
| [CVE-2023-48235](https://nvd.nist.gov/vuln/detail/CVE-2023-48235) | vim | 4.3 | 9.0.2048 | 9.0.2116 | 9.0.2185 | *[[PR](https://github.com/NixOS/nixpkgs/pull/268532), [PR](https://github.com/NixOS/nixpkgs/pull/271373), [PR](https://github.com/NixOS/nixpkgs/pull/276595)]* |
| [CVE-2023-48234](https://nvd.nist.gov/vuln/detail/CVE-2023-48234) | vim | 4.3 | 9.0.2048 | 9.0.2116 | 9.0.2185 | *[[PR](https://github.com/NixOS/nixpkgs/pull/268532), [PR](https://github.com/NixOS/nixpkgs/pull/271373), [PR](https://github.com/NixOS/nixpkgs/pull/276595)]* |
| [CVE-2023-48233](https://nvd.nist.gov/vuln/detail/CVE-2023-48233) | vim | 4.3 | 9.0.2048 | 9.0.2116 | 9.0.2185 | *[[PR](https://github.com/NixOS/nixpkgs/pull/268532), [PR](https://github.com/NixOS/nixpkgs/pull/271373), [PR](https://github.com/NixOS/nixpkgs/pull/276595)]* |
| [CVE-2023-48232](https://nvd.nist.gov/vuln/detail/CVE-2023-48232) | vim | 4.3 | 9.0.2048 | 9.0.2116 | 9.0.2185 | *[[PR](https://github.com/NixOS/nixpkgs/pull/268532), [PR](https://github.com/NixOS/nixpkgs/pull/271373), [PR](https://github.com/NixOS/nixpkgs/pull/276595)]* |
| [CVE-2023-48231](https://nvd.nist.gov/vuln/detail/CVE-2023-48231) | vim | 4.3 | 9.0.2048 | 9.0.2116 | 9.0.2185 | *[[PR](https://github.com/NixOS/nixpkgs/pull/268532), [PR](https://github.com/NixOS/nixpkgs/pull/271373), [PR](https://github.com/NixOS/nixpkgs/pull/276595)]* |
| [CVE-2023-46246](https://nvd.nist.gov/vuln/detail/CVE-2023-46246) | vim | 5.5 | 9.0.2048 | 9.0.2116 | 9.0.2188 | *[[PR](https://github.com/NixOS/nixpkgs/pull/268532), [PR](https://github.com/NixOS/nixpkgs/pull/271373), [PR](https://github.com/NixOS/nixpkgs/pull/276595)]* |
| [CVE-2023-48237](https://nvd.nist.gov/vuln/detail/CVE-2023-48237) | vim | 4.3 | 9.0.2048 | 9.0.2116 | 9.0.2188 | *[[PR](https://github.com/NixOS/nixpkgs/pull/268532), [PR](https://github.com/NixOS/nixpkgs/pull/271373), [PR](https://github.com/NixOS/nixpkgs/pull/276595)]* |
| [CVE-2023-48236](https://nvd.nist.gov/vuln/detail/CVE-2023-48236) | vim | 4.3 | 9.0.2048 | 9.0.2116 | 9.0.2188 | *[[PR](https://github.com/NixOS/nixpkgs/pull/268532), [PR](https://github.com/NixOS/nixpkgs/pull/271373), [PR](https://github.com/NixOS/nixpkgs/pull/276595)]* |
| [CVE-2023-48235](https://nvd.nist.gov/vuln/detail/CVE-2023-48235) | vim | 4.3 | 9.0.2048 | 9.0.2116 | 9.0.2188 | *[[PR](https://github.com/NixOS/nixpkgs/pull/268532), [PR](https://github.com/NixOS/nixpkgs/pull/271373), [PR](https://github.com/NixOS/nixpkgs/pull/276595)]* |
| [CVE-2023-48234](https://nvd.nist.gov/vuln/detail/CVE-2023-48234) | vim | 4.3 | 9.0.2048 | 9.0.2116 | 9.0.2188 | *[[PR](https://github.com/NixOS/nixpkgs/pull/268532), [PR](https://github.com/NixOS/nixpkgs/pull/271373), [PR](https://github.com/NixOS/nixpkgs/pull/276595)]* |
| [CVE-2023-48233](https://nvd.nist.gov/vuln/detail/CVE-2023-48233) | vim | 4.3 | 9.0.2048 | 9.0.2116 | 9.0.2188 | *[[PR](https://github.com/NixOS/nixpkgs/pull/268532), [PR](https://github.com/NixOS/nixpkgs/pull/271373), [PR](https://github.com/NixOS/nixpkgs/pull/276595)]* |
| [CVE-2023-48232](https://nvd.nist.gov/vuln/detail/CVE-2023-48232) | vim | 4.3 | 9.0.2048 | 9.0.2116 | 9.0.2188 | *[[PR](https://github.com/NixOS/nixpkgs/pull/268532), [PR](https://github.com/NixOS/nixpkgs/pull/271373), [PR](https://github.com/NixOS/nixpkgs/pull/276595)]* |
| [CVE-2023-48231](https://nvd.nist.gov/vuln/detail/CVE-2023-48231) | vim | 4.3 | 9.0.2048 | 9.0.2116 | 9.0.2188 | *[[PR](https://github.com/NixOS/nixpkgs/pull/268532), [PR](https://github.com/NixOS/nixpkgs/pull/271373), [PR](https://github.com/NixOS/nixpkgs/pull/276595)]* |



Expand Down Expand Up @@ -98,7 +98,7 @@ Consider [whitelisting](../../manual_analysis.csv) possible false positives base
| [CVE-2023-51384](https://nvd.nist.gov/vuln/detail/CVE-2023-51384) | openssh | 5.5 | 9.5p1 | 9.6p1 | 9.6p1 | *[[PR](https://github.com/NixOS/nixpkgs/pull/275249), [PR](https://github.com/NixOS/nixpkgs/pull/275399), [PR](https://github.com/NixOS/nixpkgs/pull/275587)]* |
| [CVE-2023-50268](https://nvd.nist.gov/vuln/detail/CVE-2023-50268) | jq | 5.5 | 1.7 | 1.7 | 1.7.1 | |
| [CVE-2023-50246](https://nvd.nist.gov/vuln/detail/CVE-2023-50246) | jq | 5.5 | 1.7 | 1.7 | 1.7.1 | |
| [CVE-2023-46246](https://nvd.nist.gov/vuln/detail/CVE-2023-46246) | vim | 5.5 | 9.0.2048 | 9.0.2116 | 9.0.2185 | *[[PR](https://github.com/NixOS/nixpkgs/pull/268532), [PR](https://github.com/NixOS/nixpkgs/pull/271373), [PR](https://github.com/NixOS/nixpkgs/pull/276595)]* |
| [CVE-2023-46246](https://nvd.nist.gov/vuln/detail/CVE-2023-46246) | vim | 5.5 | 9.0.2048 | 9.0.2116 | 9.0.2188 | *[[PR](https://github.com/NixOS/nixpkgs/pull/268532), [PR](https://github.com/NixOS/nixpkgs/pull/271373), [PR](https://github.com/NixOS/nixpkgs/pull/276595)]* |
| [CVE-2023-42366](https://nvd.nist.gov/vuln/detail/CVE-2023-42366) | busybox | 5.5 | 1.36.1 | 1.36.1 | 1.36.1 | |
| [CVE-2023-42365](https://nvd.nist.gov/vuln/detail/CVE-2023-42365) | busybox | 5.5 | 1.36.1 | 1.36.1 | 1.36.1 | |
| [CVE-2023-42364](https://nvd.nist.gov/vuln/detail/CVE-2023-42364) | busybox | 5.5 | 1.36.1 | 1.36.1 | 1.36.1 | |
Expand All @@ -111,14 +111,14 @@ Consider [whitelisting](../../manual_analysis.csv) possible false positives base
| [CVE-2023-46219](https://nvd.nist.gov/vuln/detail/CVE-2023-46219) | curl | 5.3 | 8.4.0 | 8.4.0 | 8.5.0 | *[[PR](https://github.com/NixOS/nixpkgs/pull/272886)]* |
| [CVE-2023-5678](https://nvd.nist.gov/vuln/detail/CVE-2023-5678) | openssl | 5.3 | 3.0.12 | 3.1.4 | 3.2.0 | *[[PR](https://github.com/NixOS/nixpkgs/pull/269450)]* |
| [CVE-2023-4039](https://nvd.nist.gov/vuln/detail/CVE-2023-4039) | gcc | 4.8 | 12.3.0 | 12.3.0 | 13.2.0 | |
| [CVE-2023-48706](https://nvd.nist.gov/vuln/detail/CVE-2023-48706) | vim | 4.7 | 9.0.2048 | 9.0.2116 | 9.0.2185 | |
| [CVE-2023-48237](https://nvd.nist.gov/vuln/detail/CVE-2023-48237) | vim | 4.3 | 9.0.2048 | 9.0.2116 | 9.0.2185 | *[[PR](https://github.com/NixOS/nixpkgs/pull/268532), [PR](https://github.com/NixOS/nixpkgs/pull/271373), [PR](https://github.com/NixOS/nixpkgs/pull/276595)]* |
| [CVE-2023-48236](https://nvd.nist.gov/vuln/detail/CVE-2023-48236) | vim | 4.3 | 9.0.2048 | 9.0.2116 | 9.0.2185 | *[[PR](https://github.com/NixOS/nixpkgs/pull/268532), [PR](https://github.com/NixOS/nixpkgs/pull/271373), [PR](https://github.com/NixOS/nixpkgs/pull/276595)]* |
| [CVE-2023-48235](https://nvd.nist.gov/vuln/detail/CVE-2023-48235) | vim | 4.3 | 9.0.2048 | 9.0.2116 | 9.0.2185 | *[[PR](https://github.com/NixOS/nixpkgs/pull/268532), [PR](https://github.com/NixOS/nixpkgs/pull/271373), [PR](https://github.com/NixOS/nixpkgs/pull/276595)]* |
| [CVE-2023-48234](https://nvd.nist.gov/vuln/detail/CVE-2023-48234) | vim | 4.3 | 9.0.2048 | 9.0.2116 | 9.0.2185 | *[[PR](https://github.com/NixOS/nixpkgs/pull/268532), [PR](https://github.com/NixOS/nixpkgs/pull/271373), [PR](https://github.com/NixOS/nixpkgs/pull/276595)]* |
| [CVE-2023-48233](https://nvd.nist.gov/vuln/detail/CVE-2023-48233) | vim | 4.3 | 9.0.2048 | 9.0.2116 | 9.0.2185 | *[[PR](https://github.com/NixOS/nixpkgs/pull/268532), [PR](https://github.com/NixOS/nixpkgs/pull/271373), [PR](https://github.com/NixOS/nixpkgs/pull/276595)]* |
| [CVE-2023-48232](https://nvd.nist.gov/vuln/detail/CVE-2023-48232) | vim | 4.3 | 9.0.2048 | 9.0.2116 | 9.0.2185 | *[[PR](https://github.com/NixOS/nixpkgs/pull/268532), [PR](https://github.com/NixOS/nixpkgs/pull/271373), [PR](https://github.com/NixOS/nixpkgs/pull/276595)]* |
| [CVE-2023-48231](https://nvd.nist.gov/vuln/detail/CVE-2023-48231) | vim | 4.3 | 9.0.2048 | 9.0.2116 | 9.0.2185 | *[[PR](https://github.com/NixOS/nixpkgs/pull/268532), [PR](https://github.com/NixOS/nixpkgs/pull/271373), [PR](https://github.com/NixOS/nixpkgs/pull/276595)]* |
| [CVE-2023-48706](https://nvd.nist.gov/vuln/detail/CVE-2023-48706) | vim | 4.7 | 9.0.2048 | 9.0.2116 | 9.0.2188 | |
| [CVE-2023-48237](https://nvd.nist.gov/vuln/detail/CVE-2023-48237) | vim | 4.3 | 9.0.2048 | 9.0.2116 | 9.0.2188 | *[[PR](https://github.com/NixOS/nixpkgs/pull/268532), [PR](https://github.com/NixOS/nixpkgs/pull/271373), [PR](https://github.com/NixOS/nixpkgs/pull/276595)]* |
| [CVE-2023-48236](https://nvd.nist.gov/vuln/detail/CVE-2023-48236) | vim | 4.3 | 9.0.2048 | 9.0.2116 | 9.0.2188 | *[[PR](https://github.com/NixOS/nixpkgs/pull/268532), [PR](https://github.com/NixOS/nixpkgs/pull/271373), [PR](https://github.com/NixOS/nixpkgs/pull/276595)]* |
| [CVE-2023-48235](https://nvd.nist.gov/vuln/detail/CVE-2023-48235) | vim | 4.3 | 9.0.2048 | 9.0.2116 | 9.0.2188 | *[[PR](https://github.com/NixOS/nixpkgs/pull/268532), [PR](https://github.com/NixOS/nixpkgs/pull/271373), [PR](https://github.com/NixOS/nixpkgs/pull/276595)]* |
| [CVE-2023-48234](https://nvd.nist.gov/vuln/detail/CVE-2023-48234) | vim | 4.3 | 9.0.2048 | 9.0.2116 | 9.0.2188 | *[[PR](https://github.com/NixOS/nixpkgs/pull/268532), [PR](https://github.com/NixOS/nixpkgs/pull/271373), [PR](https://github.com/NixOS/nixpkgs/pull/276595)]* |
| [CVE-2023-48233](https://nvd.nist.gov/vuln/detail/CVE-2023-48233) | vim | 4.3 | 9.0.2048 | 9.0.2116 | 9.0.2188 | *[[PR](https://github.com/NixOS/nixpkgs/pull/268532), [PR](https://github.com/NixOS/nixpkgs/pull/271373), [PR](https://github.com/NixOS/nixpkgs/pull/276595)]* |
| [CVE-2023-48232](https://nvd.nist.gov/vuln/detail/CVE-2023-48232) | vim | 4.3 | 9.0.2048 | 9.0.2116 | 9.0.2188 | *[[PR](https://github.com/NixOS/nixpkgs/pull/268532), [PR](https://github.com/NixOS/nixpkgs/pull/271373), [PR](https://github.com/NixOS/nixpkgs/pull/276595)]* |
| [CVE-2023-48231](https://nvd.nist.gov/vuln/detail/CVE-2023-48231) | vim | 4.3 | 9.0.2048 | 9.0.2116 | 9.0.2188 | *[[PR](https://github.com/NixOS/nixpkgs/pull/268532), [PR](https://github.com/NixOS/nixpkgs/pull/271373), [PR](https://github.com/NixOS/nixpkgs/pull/276595)]* |
| [GHSA-w596-4wvx-j9j6](https://osv.dev/GHSA-w596-4wvx-j9j6) | py | | 1.11.0 | 1.11.0 | 1.11.0 | |
| [GHSA-gmwp-3pwc-3j3g](https://osv.dev/GHSA-gmwp-3pwc-3j3g) | mockery | | 0.3.5 | 0.3.5 | 0.3.5 | |
| [GHSA-fwr7-v2mv-hh25](https://osv.dev/GHSA-fwr7-v2mv-hh25) | async | | 2.2.4 | 2.2.4 | 2.2.5 | |
Expand Down
Loading

0 comments on commit f19a3db

Please sign in to comment.