diff --git a/reports/main/data.csv b/reports/main/data.csv index 613c51a..2ea9516 100644 --- a/reports/main/data.csv +++ b/reports/main/data.csv @@ -1,5 +1,6 @@ "target","flakeref","pintype","vuln_id","url","package","severity","version_local","version_nixpkgs","version_upstream","package_repology","sortcol","whitelist","whitelist_comment","classify","nixpkgs_pr" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","GHSA-fwr7-v2mv-hh25","https://osv.dev/GHSA-fwr7-v2mv-hh25","async","","2.2.5","2.2.5","2.2.5","haskell:async","2024A1719187200","False","","err_not_vulnerable_based_on_repology","" +"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2024-45620","https://nvd.nist.gov/vuln/detail/CVE-2024-45620","opensc","3.9","0.25.1","0.25.1","0.25.1","opensc","2024A0000045620","False","","fix_not_available","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2024-45618","https://nvd.nist.gov/vuln/detail/CVE-2024-45618","opensc","3.9","0.25.1","0.25.1","0.25.1","opensc","2024A0000045618","False","","fix_not_available","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2024-45617","https://nvd.nist.gov/vuln/detail/CVE-2024-45617","opensc","3.9","0.25.1","0.25.1","0.25.1","opensc","2024A0000045617","False","","fix_not_available","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2024-45616","https://nvd.nist.gov/vuln/detail/CVE-2024-45616","opensc","3.9","0.25.1","0.25.1","0.25.1","opensc","2024A0000045616","False","","fix_not_available","" @@ -34,6 +35,7 @@ https://github.com/NixOS/nixpkgs/pull/339878" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2024-8365","https://nvd.nist.gov/vuln/detail/CVE-2024-8365","vault","6.5","0.3.1.5-r7.cabal","0.3.1.5","0.3.1.5","haskell:vault","2024A0000008365","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2024-8365","https://nvd.nist.gov/vuln/detail/CVE-2024-8365","vault","6.5","0.3.1.5","0.3.1.5","0.3.1.5","haskell:vault","2024A0000008365","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2024-8088","https://nvd.nist.gov/vuln/detail/CVE-2024-8088","python","","2.7.18.8","3.13.0rc2","3.12.6","python","2024A0000008088","False","","err_not_vulnerable_based_on_repology","" +"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2024-8006","https://nvd.nist.gov/vuln/detail/CVE-2024-8006","libpcap","4.4","1.10.4","1.10.4","1.10.5","libpcap","2024A0000008006","False","","fix_update_to_version_upstream","https://github.com/NixOS/nixpkgs/pull/339181" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2024-7592","https://nvd.nist.gov/vuln/detail/CVE-2024-7592","python","7.5","2.7.18.8","3.13.0rc2","3.12.6","python","2024A0000007592","False","","fix_update_to_version_nixpkgs","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2024-7348","https://nvd.nist.gov/vuln/detail/CVE-2024-7348","postgresql","7.5","15.7","16.4","16.4","postgresql","2024A0000007348","False","","fix_update_to_version_nixpkgs","https://github.com/NixOS/nixpkgs/pull/334479" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2024-7272","https://nvd.nist.gov/vuln/detail/CVE-2024-7272","ffmpeg","8.8","4.4.4","","","","2024A0000007272","False","","err_missing_repology_version","https://github.com/NixOS/nixpkgs/pull/333021" @@ -122,6 +124,7 @@ https://github.com/NixOS/nixpkgs/pull/221841" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2023-24999","https://nvd.nist.gov/vuln/detail/CVE-2023-24999","vault","8.1","0.3.1.5","0.3.1.5","0.3.1.5","haskell:vault","2023A0000024999","False","","err_not_vulnerable_based_on_repology","https://github.com/NixOS/nixpkgs/pull/221835 https://github.com/NixOS/nixpkgs/pull/221841" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2023-24329","https://nvd.nist.gov/vuln/detail/CVE-2023-24329","python","7.5","2.7.18.8","3.13.0rc2","3.12.6","python","2023A0000024329","False","","fix_update_to_version_nixpkgs","https://github.com/NixOS/nixpkgs/pull/236448" +"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2023-7256","https://nvd.nist.gov/vuln/detail/CVE-2023-7256","libpcap","4.4","1.10.4","1.10.4","1.10.5","libpcap","2023A0000007256","False","","fix_update_to_version_upstream","https://github.com/NixOS/nixpkgs/pull/339181" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2023-7216","https://nvd.nist.gov/vuln/detail/CVE-2023-7216","cpio","5.3","2.15","2.15","2.15","cpio","2023A0000007216","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2023-6992","https://nvd.nist.gov/vuln/detail/CVE-2023-6992","zlib","5.5","1.3.1","1.3.1","1.3.1","zlib","2023A0000006992","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2023-6992","https://nvd.nist.gov/vuln/detail/CVE-2023-6992","zlib","5.5","0.6.3.0-r4.cabal","0.7.1.0","0.7.1.0","haskell:zlib","2023A0000006992","False","","err_not_vulnerable_based_on_repology","" @@ -552,6 +555,7 @@ https://github.com/NixOS/nixpkgs/pull/205374" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2002-0059","https://nvd.nist.gov/vuln/detail/CVE-2002-0059","zlib","9.8","0.6.3.0","0.7.1.0","0.7.1.0","haskell:zlib","2002A0000000059","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-1999-0475","https://nvd.nist.gov/vuln/detail/CVE-1999-0475","procmail","","3.24","3.24","3.24","procmail","1999A0000000475","False","","fix_not_available","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","GHSA-fwr7-v2mv-hh25","https://osv.dev/GHSA-fwr7-v2mv-hh25","async","","2.2.5","2.2.5","2.2.5","haskell:async","2024A1719187200","False","","err_not_vulnerable_based_on_repology","" +"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2024-45620","https://nvd.nist.gov/vuln/detail/CVE-2024-45620","opensc","3.9","0.25.1","0.25.1","0.25.1","opensc","2024A0000045620","False","","fix_not_available","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2024-45618","https://nvd.nist.gov/vuln/detail/CVE-2024-45618","opensc","3.9","0.25.1","0.25.1","0.25.1","opensc","2024A0000045618","False","","fix_not_available","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2024-45617","https://nvd.nist.gov/vuln/detail/CVE-2024-45617","opensc","3.9","0.25.1","0.25.1","0.25.1","opensc","2024A0000045617","False","","fix_not_available","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2024-45616","https://nvd.nist.gov/vuln/detail/CVE-2024-45616","opensc","3.9","0.25.1","0.25.1","0.25.1","opensc","2024A0000045616","False","","fix_not_available","" @@ -586,6 +590,7 @@ https://github.com/NixOS/nixpkgs/pull/339878" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2024-8365","https://nvd.nist.gov/vuln/detail/CVE-2024-8365","vault","6.5","0.3.1.5-r7.cabal","0.3.1.5","0.3.1.5","haskell:vault","2024A0000008365","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2024-8365","https://nvd.nist.gov/vuln/detail/CVE-2024-8365","vault","6.5","0.3.1.5","0.3.1.5","0.3.1.5","haskell:vault","2024A0000008365","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2024-8088","https://nvd.nist.gov/vuln/detail/CVE-2024-8088","python","","2.7.18.8","3.13.0rc2","3.12.6","python","2024A0000008088","False","","err_not_vulnerable_based_on_repology","" +"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2024-8006","https://nvd.nist.gov/vuln/detail/CVE-2024-8006","libpcap","4.4","1.10.4","1.10.4","1.10.5","libpcap","2024A0000008006","False","","fix_update_to_version_upstream","https://github.com/NixOS/nixpkgs/pull/339181" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2024-7592","https://nvd.nist.gov/vuln/detail/CVE-2024-7592","python","7.5","2.7.18.8","3.13.0rc2","3.12.6","python","2024A0000007592","False","","fix_update_to_version_nixpkgs","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2024-7348","https://nvd.nist.gov/vuln/detail/CVE-2024-7348","postgresql","7.5","15.7","16.4","16.4","postgresql","2024A0000007348","False","","fix_update_to_version_nixpkgs","https://github.com/NixOS/nixpkgs/pull/334479" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2024-7272","https://nvd.nist.gov/vuln/detail/CVE-2024-7272","ffmpeg","8.8","4.4.4","","","","2024A0000007272","False","","err_missing_repology_version","https://github.com/NixOS/nixpkgs/pull/333021" @@ -674,6 +679,7 @@ https://github.com/NixOS/nixpkgs/pull/221841" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2023-24999","https://nvd.nist.gov/vuln/detail/CVE-2023-24999","vault","8.1","0.3.1.5","0.3.1.5","0.3.1.5","haskell:vault","2023A0000024999","False","","err_not_vulnerable_based_on_repology","https://github.com/NixOS/nixpkgs/pull/221835 https://github.com/NixOS/nixpkgs/pull/221841" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2023-24329","https://nvd.nist.gov/vuln/detail/CVE-2023-24329","python","7.5","2.7.18.8","3.13.0rc2","3.12.6","python","2023A0000024329","False","","fix_update_to_version_nixpkgs","https://github.com/NixOS/nixpkgs/pull/236448" +"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2023-7256","https://nvd.nist.gov/vuln/detail/CVE-2023-7256","libpcap","4.4","1.10.4","1.10.4","1.10.5","libpcap","2023A0000007256","False","","fix_update_to_version_upstream","https://github.com/NixOS/nixpkgs/pull/339181" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2023-7216","https://nvd.nist.gov/vuln/detail/CVE-2023-7216","cpio","5.3","2.15","2.15","2.15","cpio","2023A0000007216","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2023-6992","https://nvd.nist.gov/vuln/detail/CVE-2023-6992","zlib","5.5","1.3.1","1.3.1","1.3.1","zlib","2023A0000006992","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2023-6992","https://nvd.nist.gov/vuln/detail/CVE-2023-6992","zlib","5.5","0.6.3.0-r4.cabal","0.7.1.0","0.7.1.0","haskell:zlib","2023A0000006992","False","","err_not_vulnerable_based_on_repology","" @@ -1104,6 +1110,7 @@ https://github.com/NixOS/nixpkgs/pull/205374" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2002-0059","https://nvd.nist.gov/vuln/detail/CVE-2002-0059","zlib","9.8","0.6.3.0","0.7.1.0","0.7.1.0","haskell:zlib","2002A0000000059","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","CVE-1999-0475","https://nvd.nist.gov/vuln/detail/CVE-1999-0475","procmail","","3.24","3.24","3.24","procmail","1999A0000000475","False","","fix_not_available","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","GHSA-fwr7-v2mv-hh25","https://osv.dev/GHSA-fwr7-v2mv-hh25","async","","2.2.5","2.2.5","2.2.5","haskell:async","2024A1719187200","False","","err_not_vulnerable_based_on_repology","" +"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","CVE-2024-45620","https://nvd.nist.gov/vuln/detail/CVE-2024-45620","opensc","3.9","0.25.1","0.25.1","0.25.1","opensc","2024A0000045620","False","","fix_not_available","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","CVE-2024-45618","https://nvd.nist.gov/vuln/detail/CVE-2024-45618","opensc","3.9","0.25.1","0.25.1","0.25.1","opensc","2024A0000045618","False","","fix_not_available","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","CVE-2024-45617","https://nvd.nist.gov/vuln/detail/CVE-2024-45617","opensc","3.9","0.25.1","0.25.1","0.25.1","opensc","2024A0000045617","False","","fix_not_available","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","CVE-2024-45616","https://nvd.nist.gov/vuln/detail/CVE-2024-45616","opensc","3.9","0.25.1","0.25.1","0.25.1","opensc","2024A0000045616","False","","fix_not_available","" @@ -1120,6 +1127,7 @@ https://github.com/NixOS/nixpkgs/pull/339878" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","CVE-2024-8365","https://nvd.nist.gov/vuln/detail/CVE-2024-8365","vault","6.5","0.3.1.5-r7.cabal","0.3.1.5","0.3.1.5","haskell:vault","2024A0000008365","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","CVE-2024-8365","https://nvd.nist.gov/vuln/detail/CVE-2024-8365","vault","6.5","0.3.1.5","0.3.1.5","0.3.1.5","haskell:vault","2024A0000008365","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","CVE-2024-8088","https://nvd.nist.gov/vuln/detail/CVE-2024-8088","python","","2.7.18.8","3.13.0rc2","3.12.6","python","2024A0000008088","False","","err_not_vulnerable_based_on_repology","" +"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","CVE-2024-8006","https://nvd.nist.gov/vuln/detail/CVE-2024-8006","libpcap","4.4","1.10.4","1.10.4","1.10.5","libpcap","2024A0000008006","False","","fix_update_to_version_upstream","https://github.com/NixOS/nixpkgs/pull/339181" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","CVE-2024-7592","https://nvd.nist.gov/vuln/detail/CVE-2024-7592","python","7.5","2.7.18.8","3.13.0rc2","3.12.6","python","2024A0000007592","False","","fix_update_to_version_nixpkgs","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","CVE-2024-6923","https://nvd.nist.gov/vuln/detail/CVE-2024-6923","python","5.5","2.7.18.8","3.13.0rc2","3.12.6","python","2024A0000006923","False","","err_not_vulnerable_based_on_repology","https://github.com/NixOS/nixpkgs/pull/335172" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","CVE-2024-6232","https://nvd.nist.gov/vuln/detail/CVE-2024-6232","python","7.5","2.7.18.8","3.13.0rc2","3.12.6","python","2024A0000006232","False","","fix_update_to_version_nixpkgs","" @@ -1196,6 +1204,7 @@ https://github.com/NixOS/nixpkgs/pull/221841" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","CVE-2023-24999","https://nvd.nist.gov/vuln/detail/CVE-2023-24999","vault","8.1","0.3.1.5","0.3.1.5","0.3.1.5","haskell:vault","2023A0000024999","False","","err_not_vulnerable_based_on_repology","https://github.com/NixOS/nixpkgs/pull/221835 https://github.com/NixOS/nixpkgs/pull/221841" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","CVE-2023-24329","https://nvd.nist.gov/vuln/detail/CVE-2023-24329","python","7.5","2.7.18.8","3.13.0rc2","3.12.6","python","2023A0000024329","False","","fix_update_to_version_nixpkgs","https://github.com/NixOS/nixpkgs/pull/236448" +"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","CVE-2023-7256","https://nvd.nist.gov/vuln/detail/CVE-2023-7256","libpcap","4.4","1.10.4","1.10.4","1.10.5","libpcap","2023A0000007256","False","","fix_update_to_version_upstream","https://github.com/NixOS/nixpkgs/pull/339181" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","CVE-2023-7216","https://nvd.nist.gov/vuln/detail/CVE-2023-7216","cpio","5.3","2.15","2.15","2.15","cpio","2023A0000007216","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","CVE-2023-6992","https://nvd.nist.gov/vuln/detail/CVE-2023-6992","zlib","5.5","1.3.1","1.3.1","1.3.1","zlib","2023A0000006992","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","CVE-2023-6992","https://nvd.nist.gov/vuln/detail/CVE-2023-6992","zlib","5.5","0.6.3.0-r5.cabal","0.7.1.0","0.7.1.0","haskell:zlib","2023A0000006992","False","","err_not_vulnerable_based_on_repology","" diff --git a/reports/main/packages.x86_64-linux.lenovo-x1-carbon-gen11-debug.md b/reports/main/packages.x86_64-linux.lenovo-x1-carbon-gen11-debug.md index 0b3d769..5731fa3 100644 --- a/reports/main/packages.x86_64-linux.lenovo-x1-carbon-gen11-debug.md +++ b/reports/main/packages.x86_64-linux.lenovo-x1-carbon-gen11-debug.md @@ -6,7 +6,7 @@ SPDX-License-Identifier: CC-BY-SA-4.0 # Vulnerability Report -This vulnerability report is generated for Ghaf target `github:tiiuae/ghaf?ref=main#packages.x86_64-linux.lenovo-x1-carbon-gen11-debug` revision https://github.com/tiiuae/ghaf/commit/5c270677069b96cc43ae2578a72ece272d7e1a37. The tables on this page include known vulnerabilities impacting buildtime or runtime dependencies of the given target. +This vulnerability report is generated for Ghaf target `github:tiiuae/ghaf?ref=main#packages.x86_64-linux.lenovo-x1-carbon-gen11-debug` revision https://github.com/tiiuae/ghaf/commit/67edf0036d0d077da963d8ac666237f19b22302b. The tables on this page include known vulnerabilities impacting buildtime or runtime dependencies of the given target. This report is automatically generated as specified on the [Vulnerability Scan](../../.github/workflows/vulnerability-scan.yml) GitHub action workflow. It uses the tooling from [sbomnix](https://github.com/tiiuae/sbomnix) repository, such as [vulnxscan](https://github.com/tiiuae/sbomnix/tree/main/scripts/vulnxscan), as well as the manual analysis results maintained in the [manual_analysis.csv](../../manual_analysis.csv) file. @@ -69,7 +69,13 @@ Following table lists vulnerabilities currently impacting the Ghaf target that h Consider [whitelisting](../../manual_analysis.csv) possible false positives based on manual analysis, or - if determined valid - help nixpkgs community fix the following issues in nixpkgs: -```No vulnerabilities``` + +| vuln_id | package | severity | version_local | nix_unstable | upstream | comment | +|-------------------------------------------------------------------|-----------|------------|-----------------|----------------|------------|--------------------------------------------------------| +| [CVE-2024-8006](https://nvd.nist.gov/vuln/detail/CVE-2024-8006) | libpcap | 4.4 | 1.10.4 | 1.10.4 | 1.10.5 | *[[PR](https://github.com/NixOS/nixpkgs/pull/339181)]* | +| [CVE-2023-7256](https://nvd.nist.gov/vuln/detail/CVE-2023-7256) | libpcap | 4.4 | 1.10.4 | 1.10.4 | 1.10.5 | *[[PR](https://github.com/NixOS/nixpkgs/pull/339181)]* | +| [CVE-2024-45620](https://nvd.nist.gov/vuln/detail/CVE-2024-45620) | opensc | 3.9 | 0.25.1 | 0.25.1 | 0.25.1 | | + ## All Vulnerabilities Impacting Ghaf @@ -331,6 +337,8 @@ Consider [whitelisting](../../manual_analysis.csv) possible false positives base | [CVE-2024-43802](https://nvd.nist.gov/vuln/detail/CVE-2024-43802) | vim | 4.5 | 9.1.0595 | 9.1.0707 | 9.1.0737 | *[[PR](https://github.com/NixOS/nixpkgs/pull/338683)]* | | [CVE-2024-43790](https://nvd.nist.gov/vuln/detail/CVE-2024-43790) | vim | 4.5 | 9.1.0595 | 9.1.0707 | 9.1.0737 | | | [CVE-2024-43374](https://nvd.nist.gov/vuln/detail/CVE-2024-43374) | vim | 4.5 | 9.1.0595 | 9.1.0707 | 9.1.0737 | *[[PR](https://github.com/NixOS/nixpkgs/pull/335213), [PR](https://github.com/NixOS/nixpkgs/pull/335269)]* | +| [CVE-2024-8006](https://nvd.nist.gov/vuln/detail/CVE-2024-8006) | libpcap | 4.4 | 1.10.4 | 1.10.4 | 1.10.5 | *[[PR](https://github.com/NixOS/nixpkgs/pull/339181)]* | +| [CVE-2023-7256](https://nvd.nist.gov/vuln/detail/CVE-2023-7256) | libpcap | 4.4 | 1.10.4 | 1.10.4 | 1.10.5 | *[[PR](https://github.com/NixOS/nixpkgs/pull/339181)]* | | [CVE-2022-28873](https://nvd.nist.gov/vuln/detail/CVE-2022-28873) | safe | 4.3 | 0.3.21-r1.cabal | 0.3.21 | 0.3.21 | | | [CVE-2022-28873](https://nvd.nist.gov/vuln/detail/CVE-2022-28873) | safe | 4.3 | 0.3.21 | 0.3.21 | 0.3.21 | | | [CVE-2022-28870](https://nvd.nist.gov/vuln/detail/CVE-2022-28870) | safe | 4.3 | 0.3.21-r1.cabal | 0.3.21 | 0.3.21 | | @@ -347,6 +355,7 @@ Consider [whitelisting](../../manual_analysis.csv) possible false positives base | [CVE-2024-41965](https://nvd.nist.gov/vuln/detail/CVE-2024-41965) | vim | 4.2 | 9.1.0595 | 9.1.0707 | 9.1.0737 | *[[PR](https://github.com/NixOS/nixpkgs/pull/335213), [PR](https://github.com/NixOS/nixpkgs/pull/335269), [PR](https://github.com/NixOS/nixpkgs/pull/338683), [PR](https://github.com/NixOS/nixpkgs/pull/339041), [PR](https://github.com/NixOS/nixpkgs/pull/339177)]* | | [CVE-2021-33596](https://nvd.nist.gov/vuln/detail/CVE-2021-33596) | safe | 4.1 | 0.3.21-r1.cabal | 0.3.21 | 0.3.21 | | | [CVE-2021-33596](https://nvd.nist.gov/vuln/detail/CVE-2021-33596) | safe | 4.1 | 0.3.21 | 0.3.21 | 0.3.21 | | +| [CVE-2024-45620](https://nvd.nist.gov/vuln/detail/CVE-2024-45620) | opensc | 3.9 | 0.25.1 | 0.25.1 | 0.25.1 | | | [CVE-2024-45618](https://nvd.nist.gov/vuln/detail/CVE-2024-45618) | opensc | 3.9 | 0.25.1 | 0.25.1 | 0.25.1 | | | [CVE-2024-45617](https://nvd.nist.gov/vuln/detail/CVE-2024-45617) | opensc | 3.9 | 0.25.1 | 0.25.1 | 0.25.1 | | | [CVE-2024-45616](https://nvd.nist.gov/vuln/detail/CVE-2024-45616) | opensc | 3.9 | 0.25.1 | 0.25.1 | 0.25.1 | |