forked from wolfi-dev/advisories
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathcertificate-transparency.advisories.yaml
71 lines (63 loc) · 1.75 KB
/
certificate-transparency.advisories.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
schema-version: 2.0.2
package:
name: certificate-transparency
advisories:
- id: CVE-2019-3826
aliases:
- GHSA-3m87-5598-2v4f
events:
- timestamp: 2023-12-17T17:35:38Z
type: false-positive-determination
data:
type: vulnerable-code-version-not-used
note: This vulnerability has been fixed in version v2.7.1 which corresponds to the Go library version v0.7.1 and this package includes a later version.
- id: CVE-2023-44487
aliases:
- GHSA-qppj-fm5r-hxr3
events:
- timestamp: 2023-11-01T14:45:08Z
type: pending-upstream-fix
data:
note: Pending upstream fix, this fix will require some code changes.
- id: CVE-2023-45283
aliases:
- GHSA-vvjp-q62m-2vph
events:
- timestamp: 2023-11-07T19:24:07Z
type: false-positive-determination
data:
type: vulnerable-code-not-included-in-package
note: Only affects Windows
- id: CVE-2023-45284
aliases:
- GHSA-rq3x-83w4-p28c
events:
- timestamp: 2023-11-07T19:24:08Z
type: false-positive-determination
data:
type: vulnerable-code-not-included-in-package
note: Only affects Windows
- id: CVE-2023-45288
aliases:
- GHSA-4v7x-pqxf-cx7m
events:
- timestamp: 2024-04-13T07:06:50Z
type: fixed
data:
fixed-version: 1.1.8-r1
- id: CVE-2023-48795
aliases:
- GHSA-45x7-px36-x8w8
events:
- timestamp: 2023-12-19T17:31:31Z
type: fixed
data:
fixed-version: 1.1.7-r2
- id: CVE-2024-24786
aliases:
- GHSA-8r3f-844c-mc37
events:
- timestamp: 2024-03-15T07:05:41Z
type: fixed
data:
fixed-version: 1.1.8-r0