From 6d86f73081a962f50bd9d96f9439294da6dfdd84 Mon Sep 17 00:00:00 2001
From: henrirosten <henrirosten@users.noreply.github.com>
Date: Wed, 26 Jun 2024 03:04:14 +0000
Subject: [PATCH] Automatic vulnerability report update

---
 reports/main/data.csv                         | 108 +++++++++---------
 ...h64-linux.nvidia-jetson-orin-nx-release.md |  54 ++++-----
 2 files changed, 81 insertions(+), 81 deletions(-)

diff --git a/reports/main/data.csv b/reports/main/data.csv
index b6bd784..5774f83 100644
--- a/reports/main/data.csv
+++ b/reports/main/data.csv
@@ -18,7 +18,7 @@ https://github.com/NixOS/nixpkgs/pull/318322"
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2024-4030","https://nvd.nist.gov/vuln/detail/CVE-2024-4030","python","","2.7.18.8","3.13.0b2","3.12.4","python","2024A0000004030","False","","err_not_vulnerable_based_on_repology",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2024-2511","https://nvd.nist.gov/vuln/detail/CVE-2024-2511","openssl","","3.0.13","3.2.0","3.2.0","ruby:openssl","2024A0000002511","False","","err_not_vulnerable_based_on_repology","https://github.com/NixOS/nixpkgs/pull/317238 
 https://github.com/NixOS/nixpkgs/pull/318322"
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2024-0953","https://nvd.nist.gov/vuln/detail/CVE-2024-0953","firefox","6.1","127.0","127.0.1","127.0.1","firefox","2024A0000000953","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2024-0953","https://nvd.nist.gov/vuln/detail/CVE-2024-0953","firefox","6.1","127.0","128.0b3","127.0.2","firefox","2024A0000000953","False","","err_not_vulnerable_based_on_repology",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","OSV-2024-517","https://osv.dev/OSV-2024-517","libaom","","3.9.0","","","","2024A0000000517","False","","err_missing_repology_version",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","OSV-2024-460","https://osv.dev/OSV-2024-460","glslang","","14.2.0","14.2.0","14.2.0","glslang","2024A0000000460","False","","err_not_vulnerable_based_on_repology",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2024-0450","https://nvd.nist.gov/vuln/detail/CVE-2024-0450","python","6.2","2.7.18.8","3.13.0b2","3.12.4","python","2024A0000000450","False","","err_not_vulnerable_based_on_repology","https://github.com/NixOS/nixpkgs/pull/298006 
@@ -121,7 +121,7 @@ https://github.com/NixOS/nixpkgs/pull/253430"
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2022-42010","https://nvd.nist.gov/vuln/detail/CVE-2022-42010","dbus","6.5","1","1.14.10","1.14.10","dbus","2022A0000042010","False","","fix_update_to_version_nixpkgs","https://github.com/NixOS/nixpkgs/pull/195264 
 https://github.com/NixOS/nixpkgs/pull/253430"
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2022-40898","https://nvd.nist.gov/vuln/detail/CVE-2022-40898","wheel","7.5","0.37.1-source","0.43.0","0.43.0","python:wheel","2022A0000040898","False","","fix_update_to_version_nixpkgs","https://github.com/NixOS/nixpkgs/pull/210565"
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2022-40897","https://nvd.nist.gov/vuln/detail/CVE-2022-40897","setuptools","5.9","44.0.0-source","69.5.1","70.1.0","python:setuptools","2022A0000040897","False","","fix_update_to_version_nixpkgs",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2022-40897","https://nvd.nist.gov/vuln/detail/CVE-2022-40897","setuptools","5.9","44.0.0-source","69.5.1","70.1.1","python:setuptools","2022A0000040897","False","","fix_update_to_version_nixpkgs",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2022-38663","https://nvd.nist.gov/vuln/detail/CVE-2022-38663","git","6.5","2.44.1","","","","2022A0000038663","True","Incorrect package: Impacts Jenkins git plugin, not git. Issue gets included to the report due to vulnix's design decision to avoid false negatives with the cost of false positives: https://github.com/nix-community/vulnix/blob/f56f3ac857626171b95e51d98cb6874278f789d3/src/vulnix/vulnerability.py#L90-L96.","err_missing_repology_version",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2022-37416","https://nvd.nist.gov/vuln/detail/CVE-2022-37416","libmpeg2","6.5","0.5.1","","","","2022A0000037416","True","NVD data issue: concerns Android only.","err_missing_repology_version",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2022-36884","https://nvd.nist.gov/vuln/detail/CVE-2022-36884","git","5.3","2.44.1","","","","2022A0000036884","True","Incorrect package: Impacts Jenkins git plugin, not git. Issue gets included to the report due to vulnix's design decision to avoid false negatives with the cost of false positives: https://github.com/nix-community/vulnix/blob/f56f3ac857626171b95e51d98cb6874278f789d3/src/vulnix/vulnerability.py#L90-L96.","err_missing_repology_version",""
@@ -143,7 +143,7 @@ https://github.com/NixOS/nixpkgs/pull/170659"
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2022-26691","https://nvd.nist.gov/vuln/detail/CVE-2022-26691","cups","6.7","2.4.7","","","","2022A0000026691","True","Fixed in nixpkgs with PR: https://github.com/NixOS/nixpkgs/pull/174898.","err_missing_repology_version",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2022-26488","https://nvd.nist.gov/vuln/detail/CVE-2022-26488","python","7.0","2.7.18.8","3.13.0b2","3.12.4","python","2022A0000026488","False","","err_not_vulnerable_based_on_repology",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","MAL-2022-4301","https://osv.dev/MAL-2022-4301","libidn2","","2.3.7","","","","2022A0000004301","True","Incorrect package: Issue refers npm libidn2, whereas, nixpkgs refers libidn2 https://gitlab.com/libidn/libidn2.","err_missing_repology_version",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2022-4066","https://nvd.nist.gov/vuln/detail/CVE-2022-4066","firefox","8.2","127.0","127.0.1","127.0.1","firefox","2022A0000004066","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2022-4066","https://nvd.nist.gov/vuln/detail/CVE-2022-4066","firefox","8.2","127.0","128.0b3","127.0.2","firefox","2022A0000004066","False","","err_not_vulnerable_based_on_repology",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2022-3219","https://nvd.nist.gov/vuln/detail/CVE-2022-3219","gnupg","3.3","2.4.5","","","","2022A0000003219","True","Fix patch is not accepted upstream: https://dev.gnupg.org/D556.","err_missing_repology_version",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","OSV-2022-908","https://osv.dev/OSV-2022-908","bluez","","5.75","5.75","5.76","bluez","2022A0000000908","False","Unclear if this is still valid.","err_not_vulnerable_based_on_repology",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","OSV-2022-896","https://osv.dev/OSV-2022-896","libsass","","3.6.6","3.6.6","3.6.6","libsass","2022A0000000896","False","Unclear if this is still valid.","err_not_vulnerable_based_on_repology",""
@@ -247,8 +247,8 @@ https://github.com/NixOS/nixpkgs/pull/82958"
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2019-5443","https://nvd.nist.gov/vuln/detail/CVE-2019-5443","curl","7.8","0.4.46","","","","2019A0000005443","False","","err_missing_repology_version",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2018-18438","https://nvd.nist.gov/vuln/detail/CVE-2018-18438","qemu","5.5","8.2.4","","","","2018A0000018438","True","NVD data issue: CPE entry does not correctly state the version numbers.","err_missing_repology_version",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2018-13162","https://nvd.nist.gov/vuln/detail/CVE-2018-13162","alex","7.5","3.4.0.1","3.4.0.1","3.5.1.0","alex","2018A0000013162","False","","err_not_vulnerable_based_on_repology",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2018-10229","https://nvd.nist.gov/vuln/detail/CVE-2018-10229","firefox","4.8","127.0","127.0.1","127.0.1","firefox","2018A0000010229","False","","err_not_vulnerable_based_on_repology",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2018-8024","https://nvd.nist.gov/vuln/detail/CVE-2018-8024","firefox","5.4","127.0","127.0.1","127.0.1","firefox","2018A0000008024","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2018-10229","https://nvd.nist.gov/vuln/detail/CVE-2018-10229","firefox","4.8","127.0","128.0b3","127.0.2","firefox","2018A0000010229","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2018-8024","https://nvd.nist.gov/vuln/detail/CVE-2018-8024","firefox","5.4","127.0","128.0b3","127.0.2","firefox","2018A0000008024","False","","err_not_vulnerable_based_on_repology",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2018-7263","https://nvd.nist.gov/vuln/detail/CVE-2018-7263","libmad","9.8","0.15.1b","","","","2018A0000007263","True","Based on https://github.com/NixOS/nixpkgs/issues/57154, issue is fixed by https://github.com/NixOS/nixpkgs/commit/92edb0610923fab5a9dcc59b94652f1e8a5ea1ed.","err_missing_repology_version",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2018-6553","https://nvd.nist.gov/vuln/detail/CVE-2018-6553","cups","8.8","2.4.7","","","","2018A0000006553","True","NVD data issue: CPE entry does not correctly state the version numbers.","err_missing_repology_version",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2017-18207","https://nvd.nist.gov/vuln/detail/CVE-2017-18207","python","6.5","2.7.18.8","3.13.0b2","3.12.4","python","2017A0000018207","False","","fix_update_to_version_nixpkgs",""
@@ -269,36 +269,36 @@ https://github.com/NixOS/nixpkgs/pull/82958"
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2016-7563","https://nvd.nist.gov/vuln/detail/CVE-2016-7563","mujs","7.5","1.3.4","","","","2016A0000007563","True","NVD data issue: CPE entry does not correctly state the version numbers.","err_missing_repology_version",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2016-7506","https://nvd.nist.gov/vuln/detail/CVE-2016-7506","mujs","7.5","1.3.4","","","","2016A0000007506","True","NVD data issue: CPE entry does not correctly state the version numbers.","err_missing_repology_version",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2016-7504","https://nvd.nist.gov/vuln/detail/CVE-2016-7504","mujs","9.8","1.3.4","","","","2016A0000007504","True","NVD data issue: CPE entry does not correctly state the version numbers.","err_missing_repology_version",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2016-7153","https://nvd.nist.gov/vuln/detail/CVE-2016-7153","firefox","5.3","127.0","127.0.1","127.0.1","firefox","2016A0000007153","False","","err_not_vulnerable_based_on_repology",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2016-7152","https://nvd.nist.gov/vuln/detail/CVE-2016-7152","firefox","5.3","127.0","127.0.1","127.0.1","firefox","2016A0000007152","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2016-7153","https://nvd.nist.gov/vuln/detail/CVE-2016-7153","firefox","5.3","127.0","128.0b3","127.0.2","firefox","2016A0000007153","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2016-7152","https://nvd.nist.gov/vuln/detail/CVE-2016-7152","firefox","5.3","127.0","128.0b3","127.0.2","firefox","2016A0000007152","False","","err_not_vulnerable_based_on_repology",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2016-2781","https://nvd.nist.gov/vuln/detail/CVE-2016-2781","coreutils","6.5","9.5","","","","2016A0000002781","True","NVD data issue: CPE entry does not correctly state the version numbers.","err_missing_repology_version",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2015-7313","https://nvd.nist.gov/vuln/detail/CVE-2015-7313","libtiff","5.5","4.6.0","","","","2015A0000007313","True","NVD data issue: CPE entry does not correctly state the version numbers.","err_missing_repology_version",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2015-5652","https://nvd.nist.gov/vuln/detail/CVE-2015-5652","python","","2.7.18.8","3.13.0b2","3.12.4","python","2015A0000005652","False","","err_not_vulnerable_based_on_repology",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2014-9157","https://nvd.nist.gov/vuln/detail/CVE-2014-9157","graphviz","","10.0.1","","","","2014A0000009157","True","NVD data issue: CPE entry does not correctly state the version numbers.","err_missing_repology_version",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2014-6492","https://nvd.nist.gov/vuln/detail/CVE-2014-6492","firefox","","127.0","127.0.1","127.0.1","firefox","2014A0000006492","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2014-6492","https://nvd.nist.gov/vuln/detail/CVE-2014-6492","firefox","","127.0","128.0b3","127.0.2","firefox","2014A0000006492","False","","err_not_vulnerable_based_on_repology",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2014-4860","https://nvd.nist.gov/vuln/detail/CVE-2014-4860","edk2","6.8","202402","","","","2014A0000004860","True","NVD data issue: CPE entry does not correctly state the version numbers.","err_missing_repology_version",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2014-4859","https://nvd.nist.gov/vuln/detail/CVE-2014-4859","edk2","6.8","202402","","","","2014A0000004859","True","NVD data issue: CPE entry does not correctly state the version numbers.","err_missing_repology_version",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2012-4930","https://nvd.nist.gov/vuln/detail/CVE-2012-4930","firefox","","127.0","127.0.1","127.0.1","firefox","2012A0000004930","False","","err_not_vulnerable_based_on_repology",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2012-4929","https://nvd.nist.gov/vuln/detail/CVE-2012-4929","firefox","","127.0","127.0.1","127.0.1","firefox","2012A0000004929","False","","err_not_vulnerable_based_on_repology",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2011-3389","https://nvd.nist.gov/vuln/detail/CVE-2011-3389","firefox","","127.0","127.0.1","127.0.1","firefox","2011A0000003389","False","","err_not_vulnerable_based_on_repology",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2011-0064","https://nvd.nist.gov/vuln/detail/CVE-2011-0064","firefox","","127.0","127.0.1","127.0.1","firefox","2011A0000000064","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2012-4930","https://nvd.nist.gov/vuln/detail/CVE-2012-4930","firefox","","127.0","128.0b3","127.0.2","firefox","2012A0000004930","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2012-4929","https://nvd.nist.gov/vuln/detail/CVE-2012-4929","firefox","","127.0","128.0b3","127.0.2","firefox","2012A0000004929","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2011-3389","https://nvd.nist.gov/vuln/detail/CVE-2011-3389","firefox","","127.0","128.0b3","127.0.2","firefox","2011A0000003389","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2011-0064","https://nvd.nist.gov/vuln/detail/CVE-2011-0064","firefox","","127.0","128.0b3","127.0.2","firefox","2011A0000000064","False","","err_not_vulnerable_based_on_repology",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2010-4226","https://nvd.nist.gov/vuln/detail/CVE-2010-4226","cpio","","2.15","","","","2010A0000004226","True","NVD data issue: concerns OpenSuSE, not cpio.","err_missing_repology_version",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2009-4630","https://nvd.nist.gov/vuln/detail/CVE-2009-4630","firefox","","127.0","127.0.1","127.0.1","firefox","2009A0000004630","False","","err_not_vulnerable_based_on_repology",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2009-4130","https://nvd.nist.gov/vuln/detail/CVE-2009-4130","firefox","","127.0","127.0.1","127.0.1","firefox","2009A0000004130","False","","err_not_vulnerable_based_on_repology",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2009-4129","https://nvd.nist.gov/vuln/detail/CVE-2009-4129","firefox","","127.0","127.0.1","127.0.1","firefox","2009A0000004129","False","","err_not_vulnerable_based_on_repology",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2009-4102","https://nvd.nist.gov/vuln/detail/CVE-2009-4102","firefox","","127.0","127.0.1","127.0.1","firefox","2009A0000004102","False","","err_not_vulnerable_based_on_repology",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2009-2409","https://nvd.nist.gov/vuln/detail/CVE-2009-2409","firefox","","127.0","127.0.1","127.0.1","firefox","2009A0000002409","False","","err_not_vulnerable_based_on_repology",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2009-1597","https://nvd.nist.gov/vuln/detail/CVE-2009-1597","firefox","","127.0","127.0.1","127.0.1","firefox","2009A0000001597","False","","err_not_vulnerable_based_on_repology",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2007-6715","https://nvd.nist.gov/vuln/detail/CVE-2007-6715","firefox","","127.0","127.0.1","127.0.1","firefox","2007A0000006715","False","","err_not_vulnerable_based_on_repology",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2007-5967","https://nvd.nist.gov/vuln/detail/CVE-2007-5967","firefox","6.5","127.0","127.0.1","127.0.1","firefox","2007A0000005967","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2009-4630","https://nvd.nist.gov/vuln/detail/CVE-2009-4630","firefox","","127.0","128.0b3","127.0.2","firefox","2009A0000004630","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2009-4130","https://nvd.nist.gov/vuln/detail/CVE-2009-4130","firefox","","127.0","128.0b3","127.0.2","firefox","2009A0000004130","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2009-4129","https://nvd.nist.gov/vuln/detail/CVE-2009-4129","firefox","","127.0","128.0b3","127.0.2","firefox","2009A0000004129","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2009-4102","https://nvd.nist.gov/vuln/detail/CVE-2009-4102","firefox","","127.0","128.0b3","127.0.2","firefox","2009A0000004102","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2009-2409","https://nvd.nist.gov/vuln/detail/CVE-2009-2409","firefox","","127.0","128.0b3","127.0.2","firefox","2009A0000002409","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2009-1597","https://nvd.nist.gov/vuln/detail/CVE-2009-1597","firefox","","127.0","128.0b3","127.0.2","firefox","2009A0000001597","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2007-6715","https://nvd.nist.gov/vuln/detail/CVE-2007-6715","firefox","","127.0","128.0b3","127.0.2","firefox","2007A0000006715","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2007-5967","https://nvd.nist.gov/vuln/detail/CVE-2007-5967","firefox","6.5","127.0","128.0b3","127.0.2","firefox","2007A0000005967","False","","err_not_vulnerable_based_on_repology",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2007-4559","https://nvd.nist.gov/vuln/detail/CVE-2007-4559","python","","2.7.18.8","3.13.0b2","3.12.4","python","2007A0000004559","False","","fix_update_to_version_nixpkgs",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2007-4013","https://nvd.nist.gov/vuln/detail/CVE-2007-4013","firefox","","127.0","127.0.1","127.0.1","firefox","2007A0000004013","False","","err_not_vulnerable_based_on_repology",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2007-3827","https://nvd.nist.gov/vuln/detail/CVE-2007-3827","firefox","","127.0","127.0.1","127.0.1","firefox","2007A0000003827","False","","err_not_vulnerable_based_on_repology",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2007-3670","https://nvd.nist.gov/vuln/detail/CVE-2007-3670","firefox","","127.0","127.0.1","127.0.1","firefox","2007A0000003670","False","","err_not_vulnerable_based_on_repology",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2007-2176","https://nvd.nist.gov/vuln/detail/CVE-2007-2176","firefox","","127.0","127.0.1","127.0.1","firefox","2007A0000002176","False","","err_not_vulnerable_based_on_repology",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2007-1970","https://nvd.nist.gov/vuln/detail/CVE-2007-1970","firefox","","127.0","127.0.1","127.0.1","firefox","2007A0000001970","False","","err_not_vulnerable_based_on_repology",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2007-0896","https://nvd.nist.gov/vuln/detail/CVE-2007-0896","firefox","","127.0","127.0.1","127.0.1","firefox","2007A0000000896","False","","err_not_vulnerable_based_on_repology",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2003-1492","https://nvd.nist.gov/vuln/detail/CVE-2003-1492","firefox","","127.0","127.0.1","127.0.1","firefox","2003A0000001492","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2007-4013","https://nvd.nist.gov/vuln/detail/CVE-2007-4013","firefox","","127.0","128.0b3","127.0.2","firefox","2007A0000004013","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2007-3827","https://nvd.nist.gov/vuln/detail/CVE-2007-3827","firefox","","127.0","128.0b3","127.0.2","firefox","2007A0000003827","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2007-3670","https://nvd.nist.gov/vuln/detail/CVE-2007-3670","firefox","","127.0","128.0b3","127.0.2","firefox","2007A0000003670","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2007-2176","https://nvd.nist.gov/vuln/detail/CVE-2007-2176","firefox","","127.0","128.0b3","127.0.2","firefox","2007A0000002176","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2007-1970","https://nvd.nist.gov/vuln/detail/CVE-2007-1970","firefox","","127.0","128.0b3","127.0.2","firefox","2007A0000001970","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2007-0896","https://nvd.nist.gov/vuln/detail/CVE-2007-0896","firefox","","127.0","128.0b3","127.0.2","firefox","2007A0000000896","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-2003-1492","https://nvd.nist.gov/vuln/detail/CVE-2003-1492","firefox","","127.0","128.0b3","127.0.2","firefox","2003A0000001492","False","","err_not_vulnerable_based_on_repology",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","current","CVE-1999-0475","https://nvd.nist.gov/vuln/detail/CVE-1999-0475","procmail","","3.24","3.24","3.24","procmail","1999A0000000475","False","","fix_not_available",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","GHSA-fwr7-v2mv-hh25","https://osv.dev/GHSA-fwr7-v2mv-hh25","async","","2.2.5","2.2.5","2.2.5","haskell:async","2024A1719187200","False","","err_not_vulnerable_based_on_repology",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2024-24790","https://nvd.nist.gov/vuln/detail/CVE-2024-24790","go","9.8","1.22.3","1.22.3","1.22.4","go","2024A0000024790","False","","fix_update_to_version_upstream","https://github.com/NixOS/nixpkgs/pull/317326 
@@ -319,7 +319,7 @@ https://github.com/NixOS/nixpkgs/pull/318322"
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2024-4030","https://nvd.nist.gov/vuln/detail/CVE-2024-4030","python","","2.7.18.8","3.13.0b2","3.12.4","python","2024A0000004030","False","","err_not_vulnerable_based_on_repology",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2024-2511","https://nvd.nist.gov/vuln/detail/CVE-2024-2511","openssl","","3.0.13","3.2.0","3.2.0","ruby:openssl","2024A0000002511","False","","err_not_vulnerable_based_on_repology","https://github.com/NixOS/nixpkgs/pull/317238 
 https://github.com/NixOS/nixpkgs/pull/318322"
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2024-0953","https://nvd.nist.gov/vuln/detail/CVE-2024-0953","firefox","6.1","127.0","127.0.1","127.0.1","firefox","2024A0000000953","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2024-0953","https://nvd.nist.gov/vuln/detail/CVE-2024-0953","firefox","6.1","127.0","128.0b3","127.0.2","firefox","2024A0000000953","False","","err_not_vulnerable_based_on_repology",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","OSV-2024-517","https://osv.dev/OSV-2024-517","libaom","","3.9.0","","","","2024A0000000517","False","","err_missing_repology_version",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","OSV-2024-460","https://osv.dev/OSV-2024-460","glslang","","14.2.0","14.2.0","14.2.0","glslang","2024A0000000460","False","","err_not_vulnerable_based_on_repology",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2024-0450","https://nvd.nist.gov/vuln/detail/CVE-2024-0450","python","6.2","2.7.18.8","3.13.0b2","3.12.4","python","2024A0000000450","False","","err_not_vulnerable_based_on_repology","https://github.com/NixOS/nixpkgs/pull/298006 
@@ -422,7 +422,7 @@ https://github.com/NixOS/nixpkgs/pull/253430"
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2022-42010","https://nvd.nist.gov/vuln/detail/CVE-2022-42010","dbus","6.5","1","1.14.10","1.14.10","dbus","2022A0000042010","False","","fix_update_to_version_nixpkgs","https://github.com/NixOS/nixpkgs/pull/195264 
 https://github.com/NixOS/nixpkgs/pull/253430"
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2022-40898","https://nvd.nist.gov/vuln/detail/CVE-2022-40898","wheel","7.5","0.37.1-source","0.43.0","0.43.0","python:wheel","2022A0000040898","False","","fix_update_to_version_nixpkgs","https://github.com/NixOS/nixpkgs/pull/210565"
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2022-40897","https://nvd.nist.gov/vuln/detail/CVE-2022-40897","setuptools","5.9","44.0.0-source","69.5.1","70.1.0","python:setuptools","2022A0000040897","False","","fix_update_to_version_nixpkgs",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2022-40897","https://nvd.nist.gov/vuln/detail/CVE-2022-40897","setuptools","5.9","44.0.0-source","69.5.1","70.1.1","python:setuptools","2022A0000040897","False","","fix_update_to_version_nixpkgs",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2022-38663","https://nvd.nist.gov/vuln/detail/CVE-2022-38663","git","6.5","2.44.1","","","","2022A0000038663","True","Incorrect package: Impacts Jenkins git plugin, not git. Issue gets included to the report due to vulnix's design decision to avoid false negatives with the cost of false positives: https://github.com/nix-community/vulnix/blob/f56f3ac857626171b95e51d98cb6874278f789d3/src/vulnix/vulnerability.py#L90-L96.","err_missing_repology_version",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2022-37416","https://nvd.nist.gov/vuln/detail/CVE-2022-37416","libmpeg2","6.5","0.5.1","","","","2022A0000037416","True","NVD data issue: concerns Android only.","err_missing_repology_version",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2022-36884","https://nvd.nist.gov/vuln/detail/CVE-2022-36884","git","5.3","2.44.1","","","","2022A0000036884","True","Incorrect package: Impacts Jenkins git plugin, not git. Issue gets included to the report due to vulnix's design decision to avoid false negatives with the cost of false positives: https://github.com/nix-community/vulnix/blob/f56f3ac857626171b95e51d98cb6874278f789d3/src/vulnix/vulnerability.py#L90-L96.","err_missing_repology_version",""
@@ -444,7 +444,7 @@ https://github.com/NixOS/nixpkgs/pull/170659"
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2022-26691","https://nvd.nist.gov/vuln/detail/CVE-2022-26691","cups","6.7","2.4.7","","","","2022A0000026691","True","Fixed in nixpkgs with PR: https://github.com/NixOS/nixpkgs/pull/174898.","err_missing_repology_version",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2022-26488","https://nvd.nist.gov/vuln/detail/CVE-2022-26488","python","7.0","2.7.18.8","3.13.0b2","3.12.4","python","2022A0000026488","False","","err_not_vulnerable_based_on_repology",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","MAL-2022-4301","https://osv.dev/MAL-2022-4301","libidn2","","2.3.7","","","","2022A0000004301","True","Incorrect package: Issue refers npm libidn2, whereas, nixpkgs refers libidn2 https://gitlab.com/libidn/libidn2.","err_missing_repology_version",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2022-4066","https://nvd.nist.gov/vuln/detail/CVE-2022-4066","firefox","8.2","127.0","127.0.1","127.0.1","firefox","2022A0000004066","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2022-4066","https://nvd.nist.gov/vuln/detail/CVE-2022-4066","firefox","8.2","127.0","128.0b3","127.0.2","firefox","2022A0000004066","False","","err_not_vulnerable_based_on_repology",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2022-3219","https://nvd.nist.gov/vuln/detail/CVE-2022-3219","gnupg","3.3","2.4.5","","","","2022A0000003219","True","Fix patch is not accepted upstream: https://dev.gnupg.org/D556.","err_missing_repology_version",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","OSV-2022-908","https://osv.dev/OSV-2022-908","bluez","","5.75","5.75","5.76","bluez","2022A0000000908","False","Unclear if this is still valid.","err_not_vulnerable_based_on_repology",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","OSV-2022-896","https://osv.dev/OSV-2022-896","libsass","","3.6.6","3.6.6","3.6.6","libsass","2022A0000000896","False","Unclear if this is still valid.","err_not_vulnerable_based_on_repology",""
@@ -548,8 +548,8 @@ https://github.com/NixOS/nixpkgs/pull/82958"
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2019-5443","https://nvd.nist.gov/vuln/detail/CVE-2019-5443","curl","7.8","0.4.46","","","","2019A0000005443","False","","err_missing_repology_version",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2018-18438","https://nvd.nist.gov/vuln/detail/CVE-2018-18438","qemu","5.5","8.2.4","","","","2018A0000018438","True","NVD data issue: CPE entry does not correctly state the version numbers.","err_missing_repology_version",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2018-13162","https://nvd.nist.gov/vuln/detail/CVE-2018-13162","alex","7.5","3.4.0.1","3.4.0.1","3.5.1.0","alex","2018A0000013162","False","","err_not_vulnerable_based_on_repology",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2018-10229","https://nvd.nist.gov/vuln/detail/CVE-2018-10229","firefox","4.8","127.0","127.0.1","127.0.1","firefox","2018A0000010229","False","","err_not_vulnerable_based_on_repology",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2018-8024","https://nvd.nist.gov/vuln/detail/CVE-2018-8024","firefox","5.4","127.0","127.0.1","127.0.1","firefox","2018A0000008024","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2018-10229","https://nvd.nist.gov/vuln/detail/CVE-2018-10229","firefox","4.8","127.0","128.0b3","127.0.2","firefox","2018A0000010229","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2018-8024","https://nvd.nist.gov/vuln/detail/CVE-2018-8024","firefox","5.4","127.0","128.0b3","127.0.2","firefox","2018A0000008024","False","","err_not_vulnerable_based_on_repology",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2018-7263","https://nvd.nist.gov/vuln/detail/CVE-2018-7263","libmad","9.8","0.15.1b","","","","2018A0000007263","True","Based on https://github.com/NixOS/nixpkgs/issues/57154, issue is fixed by https://github.com/NixOS/nixpkgs/commit/92edb0610923fab5a9dcc59b94652f1e8a5ea1ed.","err_missing_repology_version",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2018-6553","https://nvd.nist.gov/vuln/detail/CVE-2018-6553","cups","8.8","2.4.7","","","","2018A0000006553","True","NVD data issue: CPE entry does not correctly state the version numbers.","err_missing_repology_version",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2017-18207","https://nvd.nist.gov/vuln/detail/CVE-2017-18207","python","6.5","2.7.18.8","3.13.0b2","3.12.4","python","2017A0000018207","False","","fix_update_to_version_nixpkgs",""
@@ -570,34 +570,34 @@ https://github.com/NixOS/nixpkgs/pull/82958"
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2016-7563","https://nvd.nist.gov/vuln/detail/CVE-2016-7563","mujs","7.5","1.3.4","","","","2016A0000007563","True","NVD data issue: CPE entry does not correctly state the version numbers.","err_missing_repology_version",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2016-7506","https://nvd.nist.gov/vuln/detail/CVE-2016-7506","mujs","7.5","1.3.4","","","","2016A0000007506","True","NVD data issue: CPE entry does not correctly state the version numbers.","err_missing_repology_version",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2016-7504","https://nvd.nist.gov/vuln/detail/CVE-2016-7504","mujs","9.8","1.3.4","","","","2016A0000007504","True","NVD data issue: CPE entry does not correctly state the version numbers.","err_missing_repology_version",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2016-7153","https://nvd.nist.gov/vuln/detail/CVE-2016-7153","firefox","5.3","127.0","127.0.1","127.0.1","firefox","2016A0000007153","False","","err_not_vulnerable_based_on_repology",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2016-7152","https://nvd.nist.gov/vuln/detail/CVE-2016-7152","firefox","5.3","127.0","127.0.1","127.0.1","firefox","2016A0000007152","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2016-7153","https://nvd.nist.gov/vuln/detail/CVE-2016-7153","firefox","5.3","127.0","128.0b3","127.0.2","firefox","2016A0000007153","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2016-7152","https://nvd.nist.gov/vuln/detail/CVE-2016-7152","firefox","5.3","127.0","128.0b3","127.0.2","firefox","2016A0000007152","False","","err_not_vulnerable_based_on_repology",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2016-2781","https://nvd.nist.gov/vuln/detail/CVE-2016-2781","coreutils","6.5","9.5","","","","2016A0000002781","True","NVD data issue: CPE entry does not correctly state the version numbers.","err_missing_repology_version",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2015-7313","https://nvd.nist.gov/vuln/detail/CVE-2015-7313","libtiff","5.5","4.6.0","","","","2015A0000007313","True","NVD data issue: CPE entry does not correctly state the version numbers.","err_missing_repology_version",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2015-5652","https://nvd.nist.gov/vuln/detail/CVE-2015-5652","python","","2.7.18.8","3.13.0b2","3.12.4","python","2015A0000005652","False","","err_not_vulnerable_based_on_repology",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2014-9157","https://nvd.nist.gov/vuln/detail/CVE-2014-9157","graphviz","","10.0.1","","","","2014A0000009157","True","NVD data issue: CPE entry does not correctly state the version numbers.","err_missing_repology_version",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2014-6492","https://nvd.nist.gov/vuln/detail/CVE-2014-6492","firefox","","127.0","127.0.1","127.0.1","firefox","2014A0000006492","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2014-6492","https://nvd.nist.gov/vuln/detail/CVE-2014-6492","firefox","","127.0","128.0b3","127.0.2","firefox","2014A0000006492","False","","err_not_vulnerable_based_on_repology",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2014-4860","https://nvd.nist.gov/vuln/detail/CVE-2014-4860","edk2","6.8","202402","","","","2014A0000004860","True","NVD data issue: CPE entry does not correctly state the version numbers.","err_missing_repology_version",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2014-4859","https://nvd.nist.gov/vuln/detail/CVE-2014-4859","edk2","6.8","202402","","","","2014A0000004859","True","NVD data issue: CPE entry does not correctly state the version numbers.","err_missing_repology_version",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2012-4930","https://nvd.nist.gov/vuln/detail/CVE-2012-4930","firefox","","127.0","127.0.1","127.0.1","firefox","2012A0000004930","False","","err_not_vulnerable_based_on_repology",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2012-4929","https://nvd.nist.gov/vuln/detail/CVE-2012-4929","firefox","","127.0","127.0.1","127.0.1","firefox","2012A0000004929","False","","err_not_vulnerable_based_on_repology",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2011-3389","https://nvd.nist.gov/vuln/detail/CVE-2011-3389","firefox","","127.0","127.0.1","127.0.1","firefox","2011A0000003389","False","","err_not_vulnerable_based_on_repology",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2011-0064","https://nvd.nist.gov/vuln/detail/CVE-2011-0064","firefox","","127.0","127.0.1","127.0.1","firefox","2011A0000000064","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2012-4930","https://nvd.nist.gov/vuln/detail/CVE-2012-4930","firefox","","127.0","128.0b3","127.0.2","firefox","2012A0000004930","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2012-4929","https://nvd.nist.gov/vuln/detail/CVE-2012-4929","firefox","","127.0","128.0b3","127.0.2","firefox","2012A0000004929","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2011-3389","https://nvd.nist.gov/vuln/detail/CVE-2011-3389","firefox","","127.0","128.0b3","127.0.2","firefox","2011A0000003389","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2011-0064","https://nvd.nist.gov/vuln/detail/CVE-2011-0064","firefox","","127.0","128.0b3","127.0.2","firefox","2011A0000000064","False","","err_not_vulnerable_based_on_repology",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2010-4226","https://nvd.nist.gov/vuln/detail/CVE-2010-4226","cpio","","2.15","","","","2010A0000004226","True","NVD data issue: concerns OpenSuSE, not cpio.","err_missing_repology_version",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2009-4630","https://nvd.nist.gov/vuln/detail/CVE-2009-4630","firefox","","127.0","127.0.1","127.0.1","firefox","2009A0000004630","False","","err_not_vulnerable_based_on_repology",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2009-4130","https://nvd.nist.gov/vuln/detail/CVE-2009-4130","firefox","","127.0","127.0.1","127.0.1","firefox","2009A0000004130","False","","err_not_vulnerable_based_on_repology",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2009-4129","https://nvd.nist.gov/vuln/detail/CVE-2009-4129","firefox","","127.0","127.0.1","127.0.1","firefox","2009A0000004129","False","","err_not_vulnerable_based_on_repology",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2009-4102","https://nvd.nist.gov/vuln/detail/CVE-2009-4102","firefox","","127.0","127.0.1","127.0.1","firefox","2009A0000004102","False","","err_not_vulnerable_based_on_repology",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2009-2409","https://nvd.nist.gov/vuln/detail/CVE-2009-2409","firefox","","127.0","127.0.1","127.0.1","firefox","2009A0000002409","False","","err_not_vulnerable_based_on_repology",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2009-1597","https://nvd.nist.gov/vuln/detail/CVE-2009-1597","firefox","","127.0","127.0.1","127.0.1","firefox","2009A0000001597","False","","err_not_vulnerable_based_on_repology",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2007-6715","https://nvd.nist.gov/vuln/detail/CVE-2007-6715","firefox","","127.0","127.0.1","127.0.1","firefox","2007A0000006715","False","","err_not_vulnerable_based_on_repology",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2007-5967","https://nvd.nist.gov/vuln/detail/CVE-2007-5967","firefox","6.5","127.0","127.0.1","127.0.1","firefox","2007A0000005967","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2009-4630","https://nvd.nist.gov/vuln/detail/CVE-2009-4630","firefox","","127.0","128.0b3","127.0.2","firefox","2009A0000004630","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2009-4130","https://nvd.nist.gov/vuln/detail/CVE-2009-4130","firefox","","127.0","128.0b3","127.0.2","firefox","2009A0000004130","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2009-4129","https://nvd.nist.gov/vuln/detail/CVE-2009-4129","firefox","","127.0","128.0b3","127.0.2","firefox","2009A0000004129","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2009-4102","https://nvd.nist.gov/vuln/detail/CVE-2009-4102","firefox","","127.0","128.0b3","127.0.2","firefox","2009A0000004102","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2009-2409","https://nvd.nist.gov/vuln/detail/CVE-2009-2409","firefox","","127.0","128.0b3","127.0.2","firefox","2009A0000002409","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2009-1597","https://nvd.nist.gov/vuln/detail/CVE-2009-1597","firefox","","127.0","128.0b3","127.0.2","firefox","2009A0000001597","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2007-6715","https://nvd.nist.gov/vuln/detail/CVE-2007-6715","firefox","","127.0","128.0b3","127.0.2","firefox","2007A0000006715","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2007-5967","https://nvd.nist.gov/vuln/detail/CVE-2007-5967","firefox","6.5","127.0","128.0b3","127.0.2","firefox","2007A0000005967","False","","err_not_vulnerable_based_on_repology",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2007-4559","https://nvd.nist.gov/vuln/detail/CVE-2007-4559","python","","2.7.18.8","3.13.0b2","3.12.4","python","2007A0000004559","False","","fix_update_to_version_nixpkgs",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2007-4013","https://nvd.nist.gov/vuln/detail/CVE-2007-4013","firefox","","127.0","127.0.1","127.0.1","firefox","2007A0000004013","False","","err_not_vulnerable_based_on_repology",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2007-3827","https://nvd.nist.gov/vuln/detail/CVE-2007-3827","firefox","","127.0","127.0.1","127.0.1","firefox","2007A0000003827","False","","err_not_vulnerable_based_on_repology",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2007-3670","https://nvd.nist.gov/vuln/detail/CVE-2007-3670","firefox","","127.0","127.0.1","127.0.1","firefox","2007A0000003670","False","","err_not_vulnerable_based_on_repology",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2007-2176","https://nvd.nist.gov/vuln/detail/CVE-2007-2176","firefox","","127.0","127.0.1","127.0.1","firefox","2007A0000002176","False","","err_not_vulnerable_based_on_repology",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2007-1970","https://nvd.nist.gov/vuln/detail/CVE-2007-1970","firefox","","127.0","127.0.1","127.0.1","firefox","2007A0000001970","False","","err_not_vulnerable_based_on_repology",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2007-0896","https://nvd.nist.gov/vuln/detail/CVE-2007-0896","firefox","","127.0","127.0.1","127.0.1","firefox","2007A0000000896","False","","err_not_vulnerable_based_on_repology",""
-"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2003-1492","https://nvd.nist.gov/vuln/detail/CVE-2003-1492","firefox","","127.0","127.0.1","127.0.1","firefox","2003A0000001492","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2007-4013","https://nvd.nist.gov/vuln/detail/CVE-2007-4013","firefox","","127.0","128.0b3","127.0.2","firefox","2007A0000004013","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2007-3827","https://nvd.nist.gov/vuln/detail/CVE-2007-3827","firefox","","127.0","128.0b3","127.0.2","firefox","2007A0000003827","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2007-3670","https://nvd.nist.gov/vuln/detail/CVE-2007-3670","firefox","","127.0","128.0b3","127.0.2","firefox","2007A0000003670","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2007-2176","https://nvd.nist.gov/vuln/detail/CVE-2007-2176","firefox","","127.0","128.0b3","127.0.2","firefox","2007A0000002176","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2007-1970","https://nvd.nist.gov/vuln/detail/CVE-2007-1970","firefox","","127.0","128.0b3","127.0.2","firefox","2007A0000001970","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2007-0896","https://nvd.nist.gov/vuln/detail/CVE-2007-0896","firefox","","127.0","128.0b3","127.0.2","firefox","2007A0000000896","False","","err_not_vulnerable_based_on_repology",""
+"packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2003-1492","https://nvd.nist.gov/vuln/detail/CVE-2003-1492","firefox","","127.0","128.0b3","127.0.2","firefox","2003A0000001492","False","","err_not_vulnerable_based_on_repology",""
 "packages.aarch64-linux.nvidia-jetson-orin-nx-release","github:tiiuae/ghaf?ref=main","lock_updated","CVE-1999-0475","https://nvd.nist.gov/vuln/detail/CVE-1999-0475","procmail","","3.24","3.24","3.24","procmail","1999A0000000475","False","","fix_not_available",""
diff --git a/reports/main/packages.aarch64-linux.nvidia-jetson-orin-nx-release.md b/reports/main/packages.aarch64-linux.nvidia-jetson-orin-nx-release.md
index 5b87f7a..647163e 100644
--- a/reports/main/packages.aarch64-linux.nvidia-jetson-orin-nx-release.md
+++ b/reports/main/packages.aarch64-linux.nvidia-jetson-orin-nx-release.md
@@ -68,7 +68,7 @@ Consider [whitelisting](../../manual_analysis.csv) possible false positives base
 | [CVE-2021-4048](https://nvd.nist.gov/vuln/detail/CVE-2021-4048)   | lapack     | 9.1        | 3                | 3.12.0           | 3.12.0           | *[[PR](https://github.com/NixOS/nixpkgs/pull/150788), [PR](https://github.com/NixOS/nixpkgs/pull/150906), [PR](https://github.com/NixOS/nixpkgs/pull/152147), [PR](https://github.com/NixOS/nixpkgs/pull/152359), [PR](https://github.com/NixOS/nixpkgs/pull/168777)]*                                                              |
 | [CVE-2017-17522](https://nvd.nist.gov/vuln/detail/CVE-2017-17522) | python     | 8.8        | 2.7.18.8         | 3.13.0b2         | 3.12.4           |                                                                                                                                                                                                                                                                                                                                     |
 | [CVE-2023-2680](https://nvd.nist.gov/vuln/detail/CVE-2023-2680)   | qemu       | 8.2        | 8.2.4            | 9.0.1            | 9.0.1            | *[[PR](https://github.com/NixOS/nixpkgs/pull/305402)]*                                                                                                                                                                                                                                                                              |
-| [CVE-2022-4066](https://nvd.nist.gov/vuln/detail/CVE-2022-4066)   | firefox    | 8.2        | 127.0            | 127.0.1          | 127.0.1          |                                                                                                                                                                                                                                                                                                                                     |
+| [CVE-2022-4066](https://nvd.nist.gov/vuln/detail/CVE-2022-4066)   | firefox    | 8.2        | 127.0            | 128.0b3          | 127.0.2          |                                                                                                                                                                                                                                                                                                                                     |
 | [CVE-2023-39323](https://nvd.nist.gov/vuln/detail/CVE-2023-39323) | go         | 8.1        | 1.21.0-linux-arm | 1.22.3           | 1.22.4           |                                                                                                                                                                                                                                                                                                                                     |
 | [CVE-2023-6597](https://nvd.nist.gov/vuln/detail/CVE-2023-6597)   | python     | 7.8        | 2.7.18.8         | 3.13.0b2         | 3.12.4           | *[[PR](https://github.com/NixOS/nixpkgs/pull/298006), [PR](https://github.com/NixOS/nixpkgs/pull/299123), [PR](https://github.com/NixOS/nixpkgs/pull/299125)]*                                                                                                                                                                      |
 | [CVE-2023-1386](https://nvd.nist.gov/vuln/detail/CVE-2023-1386)   | qemu       | 7.8        | 8.2.4            | 9.0.1            | 9.0.1            | Revisit when fixed upstream: [link](https://github.com/v9fs/linux/issues/29).                                                                                                                                                                                                                                                       |
@@ -112,9 +112,9 @@ Consider [whitelisting](../../manual_analysis.csv) possible false positives base
 | [CVE-2020-2304](https://nvd.nist.gov/vuln/detail/CVE-2020-2304)   | subversion | 6.5        | 1.14.3           | 1.14.3           | 1.14.3           |                                                                                                                                                                                                                                                                                                                                     |
 | [CVE-2019-20503](https://nvd.nist.gov/vuln/detail/CVE-2019-20503) | usrsctp    | 6.5        | 0.9.5.0          | 0.9.5.0          | 0.9.5.0          | *[[PR](https://github.com/NixOS/nixpkgs/pull/82874), [PR](https://github.com/NixOS/nixpkgs/pull/82958)]*                                                                                                                                                                                                                            |
 | [CVE-2017-18207](https://nvd.nist.gov/vuln/detail/CVE-2017-18207) | python     | 6.5        | 2.7.18.8         | 3.13.0b2         | 3.12.4           |                                                                                                                                                                                                                                                                                                                                     |
-| [CVE-2007-5967](https://nvd.nist.gov/vuln/detail/CVE-2007-5967)   | firefox    | 6.5        | 127.0            | 127.0.1          | 127.0.1          |                                                                                                                                                                                                                                                                                                                                     |
+| [CVE-2007-5967](https://nvd.nist.gov/vuln/detail/CVE-2007-5967)   | firefox    | 6.5        | 127.0            | 128.0b3          | 127.0.2          |                                                                                                                                                                                                                                                                                                                                     |
 | [CVE-2024-0450](https://nvd.nist.gov/vuln/detail/CVE-2024-0450)   | python     | 6.2        | 2.7.18.8         | 3.13.0b2         | 3.12.4           | *[[PR](https://github.com/NixOS/nixpkgs/pull/298006), [PR](https://github.com/NixOS/nixpkgs/pull/299123), [PR](https://github.com/NixOS/nixpkgs/pull/299125)]*                                                                                                                                                                      |
-| [CVE-2024-0953](https://nvd.nist.gov/vuln/detail/CVE-2024-0953)   | firefox    | 6.1        | 127.0            | 127.0.1          | 127.0.1          |                                                                                                                                                                                                                                                                                                                                     |
+| [CVE-2024-0953](https://nvd.nist.gov/vuln/detail/CVE-2024-0953)   | firefox    | 6.1        | 127.0            | 128.0b3          | 127.0.2          |                                                                                                                                                                                                                                                                                                                                     |
 | [CVE-2023-39319](https://nvd.nist.gov/vuln/detail/CVE-2023-39319) | go         | 6.1        | 1.21.0-linux-arm | 1.22.3           | 1.22.4           |                                                                                                                                                                                                                                                                                                                                     |
 | [CVE-2023-39318](https://nvd.nist.gov/vuln/detail/CVE-2023-39318) | go         | 6.1        | 1.21.0-linux-arm | 1.22.3           | 1.22.4           |                                                                                                                                                                                                                                                                                                                                     |
 | [CVE-2020-35669](https://nvd.nist.gov/vuln/detail/CVE-2020-35669) | http       | 6.1        | 0.2.12           | 0.3-0            | 0.4              |                                                                                                                                                                                                                                                                                                                                     |
@@ -122,7 +122,7 @@ Consider [whitelisting](../../manual_analysis.csv) possible false positives base
 | [CVE-2023-28320](https://nvd.nist.gov/vuln/detail/CVE-2023-28320) | curl       | 5.9        | 0.4.46           |                  |                  | *[[PR](https://github.com/NixOS/nixpkgs/pull/232531), [PR](https://github.com/NixOS/nixpkgs/pull/232535)]*                                                                                                                                                                                                                          |
 | [CVE-2022-48566](https://nvd.nist.gov/vuln/detail/CVE-2022-48566) | python     | 5.9        | 2.7.18.8         | 3.13.0b2         | 3.12.4           |                                                                                                                                                                                                                                                                                                                                     |
 | [CVE-2022-43552](https://nvd.nist.gov/vuln/detail/CVE-2022-43552) | curl       | 5.9        | 0.4.46           |                  |                  | *[[PR](https://github.com/NixOS/nixpkgs/pull/207158), [PR](https://github.com/NixOS/nixpkgs/pull/207162), [PR](https://github.com/NixOS/nixpkgs/pull/207165)]*                                                                                                                                                                      |
-| [CVE-2022-40897](https://nvd.nist.gov/vuln/detail/CVE-2022-40897) | setuptools | 5.9        | 44.0.0-source    | 69.5.1           | 70.1.0           |                                                                                                                                                                                                                                                                                                                                     |
+| [CVE-2022-40897](https://nvd.nist.gov/vuln/detail/CVE-2022-40897) | setuptools | 5.9        | 44.0.0-source    | 69.5.1           | 70.1.1           |                                                                                                                                                                                                                                                                                                                                     |
 | [CVE-2021-23336](https://nvd.nist.gov/vuln/detail/CVE-2021-23336) | python     | 5.9        | 2.7.18.8         | 3.13.0b2         | 3.12.4           | *[[PR](https://github.com/NixOS/nixpkgs/pull/117037), [PR](https://github.com/NixOS/nixpkgs/pull/117082), [PR](https://github.com/NixOS/nixpkgs/pull/118403)]*                                                                                                                                                                      |
 | [CVE-2021-3572](https://nvd.nist.gov/vuln/detail/CVE-2021-3572)   | pip        | 5.7        | 20.3.4-source    | 24.0             | 24.1             |                                                                                                                                                                                                                                                                                                                                     |
 | [CVE-2024-24789](https://nvd.nist.gov/vuln/detail/CVE-2024-24789) | go         | 5.5        | 1.22.3           | 1.22.3           | 1.22.4           | *[[PR](https://github.com/NixOS/nixpkgs/pull/317326), [PR](https://github.com/NixOS/nixpkgs/pull/318064), [PR](https://github.com/NixOS/nixpkgs/pull/319485)]*                                                                                                                                                                      |
@@ -141,16 +141,16 @@ Consider [whitelisting](../../manual_analysis.csv) possible false positives base
 | [CVE-2022-29046](https://nvd.nist.gov/vuln/detail/CVE-2022-29046) | subversion | 5.4        | 1.14.3           | 1.14.3           | 1.14.3           |                                                                                                                                                                                                                                                                                                                                     |
 | [CVE-2020-2136](https://nvd.nist.gov/vuln/detail/CVE-2020-2136)   | git        | 5.4        | 2.44.1           | 2.45.1           | 2.45.2           | *[[PR](https://github.com/NixOS/nixpkgs/pull/82872), [PR](https://github.com/NixOS/nixpkgs/pull/84664)]*                                                                                                                                                                                                                            |
 | [CVE-2020-2111](https://nvd.nist.gov/vuln/detail/CVE-2020-2111)   | subversion | 5.4        | 1.14.3           | 1.14.3           | 1.14.3           |                                                                                                                                                                                                                                                                                                                                     |
-| [CVE-2018-8024](https://nvd.nist.gov/vuln/detail/CVE-2018-8024)   | firefox    | 5.4        | 127.0            | 127.0.1          | 127.0.1          |                                                                                                                                                                                                                                                                                                                                     |
+| [CVE-2018-8024](https://nvd.nist.gov/vuln/detail/CVE-2018-8024)   | firefox    | 5.4        | 127.0            | 128.0b3          | 127.0.2          |                                                                                                                                                                                                                                                                                                                                     |
 | [CVE-2023-40217](https://nvd.nist.gov/vuln/detail/CVE-2023-40217) | python     | 5.3        | 2.7.18.8         | 3.13.0b2         | 3.12.4           |                                                                                                                                                                                                                                                                                                                                     |
 | [CVE-2023-7216](https://nvd.nist.gov/vuln/detail/CVE-2023-7216)   | cpio       | 5.3        | 2.15             | 2.15             | 2.15             |                                                                                                                                                                                                                                                                                                                                     |
-| [CVE-2016-7153](https://nvd.nist.gov/vuln/detail/CVE-2016-7153)   | firefox    | 5.3        | 127.0            | 127.0.1          | 127.0.1          |                                                                                                                                                                                                                                                                                                                                     |
-| [CVE-2016-7152](https://nvd.nist.gov/vuln/detail/CVE-2016-7152)   | firefox    | 5.3        | 127.0            | 127.0.1          | 127.0.1          |                                                                                                                                                                                                                                                                                                                                     |
+| [CVE-2016-7153](https://nvd.nist.gov/vuln/detail/CVE-2016-7153)   | firefox    | 5.3        | 127.0            | 128.0b3          | 127.0.2          |                                                                                                                                                                                                                                                                                                                                     |
+| [CVE-2016-7152](https://nvd.nist.gov/vuln/detail/CVE-2016-7152)   | firefox    | 5.3        | 127.0            | 128.0b3          | 127.0.2          |                                                                                                                                                                                                                                                                                                                                     |
 | [CVE-2023-49292](https://nvd.nist.gov/vuln/detail/CVE-2023-49292) | go         | 4.8        | 1.22.3           | 1.22.3           | 1.22.4           |                                                                                                                                                                                                                                                                                                                                     |
 | [CVE-2023-49292](https://nvd.nist.gov/vuln/detail/CVE-2023-49292) | go         | 4.8        | 1.21.0-linux-arm | 1.22.3           | 1.22.4           |                                                                                                                                                                                                                                                                                                                                     |
 | [CVE-2023-4039](https://nvd.nist.gov/vuln/detail/CVE-2023-4039)   | gcc        | 4.8        | 9.5.0            | 13.3.0           | 14.1.0           |                                                                                                                                                                                                                                                                                                                                     |
 | [CVE-2023-4039](https://nvd.nist.gov/vuln/detail/CVE-2023-4039)   | gcc        | 4.8        | 13.2.0           | 13.3.0           | 14.1.0           |                                                                                                                                                                                                                                                                                                                                     |
-| [CVE-2018-10229](https://nvd.nist.gov/vuln/detail/CVE-2018-10229) | firefox    | 4.8        | 127.0            | 127.0.1          | 127.0.1          |                                                                                                                                                                                                                                                                                                                                     |
+| [CVE-2018-10229](https://nvd.nist.gov/vuln/detail/CVE-2018-10229) | firefox    | 4.8        | 127.0            | 128.0b3          | 127.0.2          |                                                                                                                                                                                                                                                                                                                                     |
 | [CVE-2022-29048](https://nvd.nist.gov/vuln/detail/CVE-2022-29048) | subversion | 4.3        | 1.14.3           | 1.14.3           | 1.14.3           |                                                                                                                                                                                                                                                                                                                                     |
 | [CVE-2023-28322](https://nvd.nist.gov/vuln/detail/CVE-2023-28322) | curl       | 3.7        | 0.4.46           |                  |                  | *[[PR](https://github.com/NixOS/nixpkgs/pull/232531), [PR](https://github.com/NixOS/nixpkgs/pull/232535)]*                                                                                                                                                                                                                          |
 | [CVE-2022-35252](https://nvd.nist.gov/vuln/detail/CVE-2022-35252) | curl       | 3.7        | 0.4.46           |                  |                  | *[[PR](https://github.com/NixOS/nixpkgs/pull/189083), [PR](https://github.com/NixOS/nixpkgs/pull/198730)]*                                                                                                                                                                                                                          |
@@ -205,26 +205,26 @@ Consider [whitelisting](../../manual_analysis.csv) possible false positives base
 | [OSV-2020-1420](https://osv.dev/OSV-2020-1420)                    | libsass    |            | 3.6.6            | 3.6.6            | 3.6.6            |                                                                                                                                                                                                                                                                                                                                     |
 | [OSV-2020-862](https://osv.dev/OSV-2020-862)                      | libsass    |            | 3.6.6            | 3.6.6            | 3.6.6            |                                                                                                                                                                                                                                                                                                                                     |
 | [CVE-2015-5652](https://nvd.nist.gov/vuln/detail/CVE-2015-5652)   | python     |            | 2.7.18.8         | 3.13.0b2         | 3.12.4           |                                                                                                                                                                                                                                                                                                                                     |
-| [CVE-2014-6492](https://nvd.nist.gov/vuln/detail/CVE-2014-6492)   | firefox    |            | 127.0            | 127.0.1          | 127.0.1          |                                                                                                                                                                                                                                                                                                                                     |
-| [CVE-2012-4930](https://nvd.nist.gov/vuln/detail/CVE-2012-4930)   | firefox    |            | 127.0            | 127.0.1          | 127.0.1          |                                                                                                                                                                                                                                                                                                                                     |
-| [CVE-2012-4929](https://nvd.nist.gov/vuln/detail/CVE-2012-4929)   | firefox    |            | 127.0            | 127.0.1          | 127.0.1          |                                                                                                                                                                                                                                                                                                                                     |
-| [CVE-2011-3389](https://nvd.nist.gov/vuln/detail/CVE-2011-3389)   | firefox    |            | 127.0            | 127.0.1          | 127.0.1          |                                                                                                                                                                                                                                                                                                                                     |
-| [CVE-2011-0064](https://nvd.nist.gov/vuln/detail/CVE-2011-0064)   | firefox    |            | 127.0            | 127.0.1          | 127.0.1          |                                                                                                                                                                                                                                                                                                                                     |
-| [CVE-2009-4630](https://nvd.nist.gov/vuln/detail/CVE-2009-4630)   | firefox    |            | 127.0            | 127.0.1          | 127.0.1          |                                                                                                                                                                                                                                                                                                                                     |
-| [CVE-2009-4130](https://nvd.nist.gov/vuln/detail/CVE-2009-4130)   | firefox    |            | 127.0            | 127.0.1          | 127.0.1          |                                                                                                                                                                                                                                                                                                                                     |
-| [CVE-2009-4129](https://nvd.nist.gov/vuln/detail/CVE-2009-4129)   | firefox    |            | 127.0            | 127.0.1          | 127.0.1          |                                                                                                                                                                                                                                                                                                                                     |
-| [CVE-2009-4102](https://nvd.nist.gov/vuln/detail/CVE-2009-4102)   | firefox    |            | 127.0            | 127.0.1          | 127.0.1          |                                                                                                                                                                                                                                                                                                                                     |
-| [CVE-2009-2409](https://nvd.nist.gov/vuln/detail/CVE-2009-2409)   | firefox    |            | 127.0            | 127.0.1          | 127.0.1          |                                                                                                                                                                                                                                                                                                                                     |
-| [CVE-2009-1597](https://nvd.nist.gov/vuln/detail/CVE-2009-1597)   | firefox    |            | 127.0            | 127.0.1          | 127.0.1          |                                                                                                                                                                                                                                                                                                                                     |
-| [CVE-2007-6715](https://nvd.nist.gov/vuln/detail/CVE-2007-6715)   | firefox    |            | 127.0            | 127.0.1          | 127.0.1          |                                                                                                                                                                                                                                                                                                                                     |
+| [CVE-2014-6492](https://nvd.nist.gov/vuln/detail/CVE-2014-6492)   | firefox    |            | 127.0            | 128.0b3          | 127.0.2          |                                                                                                                                                                                                                                                                                                                                     |
+| [CVE-2012-4930](https://nvd.nist.gov/vuln/detail/CVE-2012-4930)   | firefox    |            | 127.0            | 128.0b3          | 127.0.2          |                                                                                                                                                                                                                                                                                                                                     |
+| [CVE-2012-4929](https://nvd.nist.gov/vuln/detail/CVE-2012-4929)   | firefox    |            | 127.0            | 128.0b3          | 127.0.2          |                                                                                                                                                                                                                                                                                                                                     |
+| [CVE-2011-3389](https://nvd.nist.gov/vuln/detail/CVE-2011-3389)   | firefox    |            | 127.0            | 128.0b3          | 127.0.2          |                                                                                                                                                                                                                                                                                                                                     |
+| [CVE-2011-0064](https://nvd.nist.gov/vuln/detail/CVE-2011-0064)   | firefox    |            | 127.0            | 128.0b3          | 127.0.2          |                                                                                                                                                                                                                                                                                                                                     |
+| [CVE-2009-4630](https://nvd.nist.gov/vuln/detail/CVE-2009-4630)   | firefox    |            | 127.0            | 128.0b3          | 127.0.2          |                                                                                                                                                                                                                                                                                                                                     |
+| [CVE-2009-4130](https://nvd.nist.gov/vuln/detail/CVE-2009-4130)   | firefox    |            | 127.0            | 128.0b3          | 127.0.2          |                                                                                                                                                                                                                                                                                                                                     |
+| [CVE-2009-4129](https://nvd.nist.gov/vuln/detail/CVE-2009-4129)   | firefox    |            | 127.0            | 128.0b3          | 127.0.2          |                                                                                                                                                                                                                                                                                                                                     |
+| [CVE-2009-4102](https://nvd.nist.gov/vuln/detail/CVE-2009-4102)   | firefox    |            | 127.0            | 128.0b3          | 127.0.2          |                                                                                                                                                                                                                                                                                                                                     |
+| [CVE-2009-2409](https://nvd.nist.gov/vuln/detail/CVE-2009-2409)   | firefox    |            | 127.0            | 128.0b3          | 127.0.2          |                                                                                                                                                                                                                                                                                                                                     |
+| [CVE-2009-1597](https://nvd.nist.gov/vuln/detail/CVE-2009-1597)   | firefox    |            | 127.0            | 128.0b3          | 127.0.2          |                                                                                                                                                                                                                                                                                                                                     |
+| [CVE-2007-6715](https://nvd.nist.gov/vuln/detail/CVE-2007-6715)   | firefox    |            | 127.0            | 128.0b3          | 127.0.2          |                                                                                                                                                                                                                                                                                                                                     |
 | [CVE-2007-4559](https://nvd.nist.gov/vuln/detail/CVE-2007-4559)   | python     |            | 2.7.18.8         | 3.13.0b2         | 3.12.4           |                                                                                                                                                                                                                                                                                                                                     |
-| [CVE-2007-4013](https://nvd.nist.gov/vuln/detail/CVE-2007-4013)   | firefox    |            | 127.0            | 127.0.1          | 127.0.1          |                                                                                                                                                                                                                                                                                                                                     |
-| [CVE-2007-3827](https://nvd.nist.gov/vuln/detail/CVE-2007-3827)   | firefox    |            | 127.0            | 127.0.1          | 127.0.1          |                                                                                                                                                                                                                                                                                                                                     |
-| [CVE-2007-3670](https://nvd.nist.gov/vuln/detail/CVE-2007-3670)   | firefox    |            | 127.0            | 127.0.1          | 127.0.1          |                                                                                                                                                                                                                                                                                                                                     |
-| [CVE-2007-2176](https://nvd.nist.gov/vuln/detail/CVE-2007-2176)   | firefox    |            | 127.0            | 127.0.1          | 127.0.1          |                                                                                                                                                                                                                                                                                                                                     |
-| [CVE-2007-1970](https://nvd.nist.gov/vuln/detail/CVE-2007-1970)   | firefox    |            | 127.0            | 127.0.1          | 127.0.1          |                                                                                                                                                                                                                                                                                                                                     |
-| [CVE-2007-0896](https://nvd.nist.gov/vuln/detail/CVE-2007-0896)   | firefox    |            | 127.0            | 127.0.1          | 127.0.1          |                                                                                                                                                                                                                                                                                                                                     |
-| [CVE-2003-1492](https://nvd.nist.gov/vuln/detail/CVE-2003-1492)   | firefox    |            | 127.0            | 127.0.1          | 127.0.1          |                                                                                                                                                                                                                                                                                                                                     |
+| [CVE-2007-4013](https://nvd.nist.gov/vuln/detail/CVE-2007-4013)   | firefox    |            | 127.0            | 128.0b3          | 127.0.2          |                                                                                                                                                                                                                                                                                                                                     |
+| [CVE-2007-3827](https://nvd.nist.gov/vuln/detail/CVE-2007-3827)   | firefox    |            | 127.0            | 128.0b3          | 127.0.2          |                                                                                                                                                                                                                                                                                                                                     |
+| [CVE-2007-3670](https://nvd.nist.gov/vuln/detail/CVE-2007-3670)   | firefox    |            | 127.0            | 128.0b3          | 127.0.2          |                                                                                                                                                                                                                                                                                                                                     |
+| [CVE-2007-2176](https://nvd.nist.gov/vuln/detail/CVE-2007-2176)   | firefox    |            | 127.0            | 128.0b3          | 127.0.2          |                                                                                                                                                                                                                                                                                                                                     |
+| [CVE-2007-1970](https://nvd.nist.gov/vuln/detail/CVE-2007-1970)   | firefox    |            | 127.0            | 128.0b3          | 127.0.2          |                                                                                                                                                                                                                                                                                                                                     |
+| [CVE-2007-0896](https://nvd.nist.gov/vuln/detail/CVE-2007-0896)   | firefox    |            | 127.0            | 128.0b3          | 127.0.2          |                                                                                                                                                                                                                                                                                                                                     |
+| [CVE-2003-1492](https://nvd.nist.gov/vuln/detail/CVE-2003-1492)   | firefox    |            | 127.0            | 128.0b3          | 127.0.2          |                                                                                                                                                                                                                                                                                                                                     |
 | [CVE-1999-0475](https://nvd.nist.gov/vuln/detail/CVE-1999-0475)   | procmail   |            | 3.24             | 3.24             | 3.24             |                                                                                                                                                                                                                                                                                                                                     |