Skip to content

Commit

Permalink
Automatic vulnerability report update
Browse files Browse the repository at this point in the history
  • Loading branch information
@henrirosten @github-actions
henrirosten authored and github-actions[bot] committed Jan 21, 2025
1 parent 8c04428 commit 6d8565c
Show file tree
Hide file tree
Showing 2 changed files with 13 additions and 13 deletions.
12 changes: 6 additions & 6 deletions reports/main/data.csv
View file
Original file line number Diff line number Diff line change
Expand Up @@ -246,17 +246,17 @@ https://github.com/NixOS/nixpkgs/pull/207165"
"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2022-43357","https://nvd.nist.gov/vuln/detail/CVE-2022-43357","sassc","7.5","3.6.2","3.6.2","3.6.2","sassc","2022A0000043357","False","","fix_not_available","https://github.com/NixOS/nixpkgs/pull/274726
https://github.com/NixOS/nixpkgs/pull/275599
https://github.com/NixOS/nixpkgs/pull/275878"
"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2022-42012","https://nvd.nist.gov/vuln/detail/CVE-2022-42012","dbus","6.5","1","1.14.10","1.16.1","dbus","2022A0000042012","False","","fix_update_to_version_nixpkgs","https://github.com/NixOS/nixpkgs/pull/195264
"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2022-42012","https://nvd.nist.gov/vuln/detail/CVE-2022-42012","dbus","6.5","1","1.14.10","1.16.0","dbus","2022A0000042012","False","","fix_update_to_version_nixpkgs","https://github.com/NixOS/nixpkgs/pull/195264
https://github.com/NixOS/nixpkgs/pull/253430"
"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2022-42012","https://nvd.nist.gov/vuln/detail/CVE-2022-42012","dbus","6.5","0.9.7","1.14.10","1.16.1","dbus","2022A0000042012","False","","fix_update_to_version_nixpkgs","https://github.com/NixOS/nixpkgs/pull/195264
"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2022-42012","https://nvd.nist.gov/vuln/detail/CVE-2022-42012","dbus","6.5","0.9.7","1.14.10","1.16.0","dbus","2022A0000042012","False","","fix_update_to_version_nixpkgs","https://github.com/NixOS/nixpkgs/pull/195264
https://github.com/NixOS/nixpkgs/pull/253430"
"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2022-42011","https://nvd.nist.gov/vuln/detail/CVE-2022-42011","dbus","6.5","1","1.14.10","1.16.1","dbus","2022A0000042011","False","","fix_update_to_version_nixpkgs","https://github.com/NixOS/nixpkgs/pull/195264
"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2022-42011","https://nvd.nist.gov/vuln/detail/CVE-2022-42011","dbus","6.5","1","1.14.10","1.16.0","dbus","2022A0000042011","False","","fix_update_to_version_nixpkgs","https://github.com/NixOS/nixpkgs/pull/195264
https://github.com/NixOS/nixpkgs/pull/253430"
"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2022-42011","https://nvd.nist.gov/vuln/detail/CVE-2022-42011","dbus","6.5","0.9.7","1.14.10","1.16.1","dbus","2022A0000042011","False","","fix_update_to_version_nixpkgs","https://github.com/NixOS/nixpkgs/pull/195264
"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2022-42011","https://nvd.nist.gov/vuln/detail/CVE-2022-42011","dbus","6.5","0.9.7","1.14.10","1.16.0","dbus","2022A0000042011","False","","fix_update_to_version_nixpkgs","https://github.com/NixOS/nixpkgs/pull/195264
https://github.com/NixOS/nixpkgs/pull/253430"
"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2022-42010","https://nvd.nist.gov/vuln/detail/CVE-2022-42010","dbus","6.5","1","1.14.10","1.16.1","dbus","2022A0000042010","False","","fix_update_to_version_nixpkgs","https://github.com/NixOS/nixpkgs/pull/195264
"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2022-42010","https://nvd.nist.gov/vuln/detail/CVE-2022-42010","dbus","6.5","1","1.14.10","1.16.0","dbus","2022A0000042010","False","","fix_update_to_version_nixpkgs","https://github.com/NixOS/nixpkgs/pull/195264
https://github.com/NixOS/nixpkgs/pull/253430"
"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2022-42010","https://nvd.nist.gov/vuln/detail/CVE-2022-42010","dbus","6.5","0.9.7","1.14.10","1.16.1","dbus","2022A0000042010","False","","fix_update_to_version_nixpkgs","https://github.com/NixOS/nixpkgs/pull/195264
"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2022-42010","https://nvd.nist.gov/vuln/detail/CVE-2022-42010","dbus","6.5","0.9.7","1.14.10","1.16.0","dbus","2022A0000042010","False","","fix_update_to_version_nixpkgs","https://github.com/NixOS/nixpkgs/pull/195264
https://github.com/NixOS/nixpkgs/pull/253430"
"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2022-41316","https://nvd.nist.gov/vuln/detail/CVE-2022-41316","vault","5.3","0.3.1.5-r8.cabal","0.3.1.5","0.3.1.5","haskell:vault","2022A0000041316","False","","err_not_vulnerable_based_on_repology",""
"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2022-41316","https://nvd.nist.gov/vuln/detail/CVE-2022-41316","vault","5.3","0.3.1.5","0.3.1.5","0.3.1.5","haskell:vault","2022A0000041316","False","","err_not_vulnerable_based_on_repology",""
Expand Down
14 changes: 7 additions & 7 deletions reports/main/packages.x86_64-linux.lenovo-x1-carbon-gen11-debug.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -6,7 +6,7 @@ SPDX-License-Identifier: CC-BY-SA-4.0

# Vulnerability Report

This vulnerability report is generated for Ghaf target `github:tiiuae/ghaf?ref=main#packages.x86_64-linux.lenovo-x1-carbon-gen11-debug` revision https://github.com/tiiuae/ghaf/commit/a36a9236116d3516b952d68ccd7c0b4887c5e2b2. The tables on this page include known vulnerabilities impacting buildtime or runtime dependencies of the given target.
This vulnerability report is generated for Ghaf target `github:tiiuae/ghaf?ref=main#packages.x86_64-linux.lenovo-x1-carbon-gen11-debug` revision https://github.com/tiiuae/ghaf/commit/b2c28e0fc24c9dcf38f2a0b11c6d82c763659d52. The tables on this page include known vulnerabilities impacting buildtime or runtime dependencies of the given target.

This report is automatically generated as specified on the [Vulnerability Scan](../../.github/workflows/vulnerability-scan.yml) GitHub action workflow. It uses the tooling from [sbomnix](https://github.com/tiiuae/sbomnix) repository, such as [vulnxscan](https://github.com/tiiuae/sbomnix/tree/main/scripts/vulnxscan), as well as the manual analysis results maintained in the [manual_analysis.csv](../../manual_analysis.csv) file.

Expand Down Expand Up @@ -226,12 +226,12 @@ Consider [whitelisting](../../manual_analysis.csv) possible false positives base
| [CVE-2023-0665](https://nvd.nist.gov/vuln/detail/CVE-2023-0665) | vault | 6.5 | 0.3.1.5-r8.cabal | 0.3.1.5 | 0.3.1.5 | *[[PR](https://github.com/NixOS/nixpkgs/pull/227692)]* |
| [CVE-2023-0665](https://nvd.nist.gov/vuln/detail/CVE-2023-0665) | vault | 6.5 | 0.3.1.5 | 0.3.1.5 | 0.3.1.5 | *[[PR](https://github.com/NixOS/nixpkgs/pull/227692)]* |
| [CVE-2022-48564](https://nvd.nist.gov/vuln/detail/CVE-2022-48564) | python | 6.5 | 2.7.18.8 | 3.13.1 | 3.13.1 | *[[PR](https://github.com/NixOS/nixpkgs/pull/173833), [PR](https://github.com/NixOS/nixpkgs/pull/363310)]* |
| [CVE-2022-42012](https://nvd.nist.gov/vuln/detail/CVE-2022-42012) | dbus | 6.5 | 1 | 1.14.10 | 1.16.1 | *[[PR](https://github.com/NixOS/nixpkgs/pull/195264), [PR](https://github.com/NixOS/nixpkgs/pull/253430)]* |
| [CVE-2022-42012](https://nvd.nist.gov/vuln/detail/CVE-2022-42012) | dbus | 6.5 | 0.9.7 | 1.14.10 | 1.16.1 | *[[PR](https://github.com/NixOS/nixpkgs/pull/195264), [PR](https://github.com/NixOS/nixpkgs/pull/253430)]* |
| [CVE-2022-42011](https://nvd.nist.gov/vuln/detail/CVE-2022-42011) | dbus | 6.5 | 1 | 1.14.10 | 1.16.1 | *[[PR](https://github.com/NixOS/nixpkgs/pull/195264), [PR](https://github.com/NixOS/nixpkgs/pull/253430)]* |
| [CVE-2022-42011](https://nvd.nist.gov/vuln/detail/CVE-2022-42011) | dbus | 6.5 | 0.9.7 | 1.14.10 | 1.16.1 | *[[PR](https://github.com/NixOS/nixpkgs/pull/195264), [PR](https://github.com/NixOS/nixpkgs/pull/253430)]* |
| [CVE-2022-42010](https://nvd.nist.gov/vuln/detail/CVE-2022-42010) | dbus | 6.5 | 1 | 1.14.10 | 1.16.1 | *[[PR](https://github.com/NixOS/nixpkgs/pull/195264), [PR](https://github.com/NixOS/nixpkgs/pull/253430)]* |
| [CVE-2022-42010](https://nvd.nist.gov/vuln/detail/CVE-2022-42010) | dbus | 6.5 | 0.9.7 | 1.14.10 | 1.16.1 | *[[PR](https://github.com/NixOS/nixpkgs/pull/195264), [PR](https://github.com/NixOS/nixpkgs/pull/253430)]* |
| [CVE-2022-42012](https://nvd.nist.gov/vuln/detail/CVE-2022-42012) | dbus | 6.5 | 1 | 1.14.10 | 1.16.0 | *[[PR](https://github.com/NixOS/nixpkgs/pull/195264), [PR](https://github.com/NixOS/nixpkgs/pull/253430)]* |
| [CVE-2022-42012](https://nvd.nist.gov/vuln/detail/CVE-2022-42012) | dbus | 6.5 | 0.9.7 | 1.14.10 | 1.16.0 | *[[PR](https://github.com/NixOS/nixpkgs/pull/195264), [PR](https://github.com/NixOS/nixpkgs/pull/253430)]* |
| [CVE-2022-42011](https://nvd.nist.gov/vuln/detail/CVE-2022-42011) | dbus | 6.5 | 1 | 1.14.10 | 1.16.0 | *[[PR](https://github.com/NixOS/nixpkgs/pull/195264), [PR](https://github.com/NixOS/nixpkgs/pull/253430)]* |
| [CVE-2022-42011](https://nvd.nist.gov/vuln/detail/CVE-2022-42011) | dbus | 6.5 | 0.9.7 | 1.14.10 | 1.16.0 | *[[PR](https://github.com/NixOS/nixpkgs/pull/195264), [PR](https://github.com/NixOS/nixpkgs/pull/253430)]* |
| [CVE-2022-42010](https://nvd.nist.gov/vuln/detail/CVE-2022-42010) | dbus | 6.5 | 1 | 1.14.10 | 1.16.0 | *[[PR](https://github.com/NixOS/nixpkgs/pull/195264), [PR](https://github.com/NixOS/nixpkgs/pull/253430)]* |
| [CVE-2022-42010](https://nvd.nist.gov/vuln/detail/CVE-2022-42010) | dbus | 6.5 | 0.9.7 | 1.14.10 | 1.16.0 | *[[PR](https://github.com/NixOS/nixpkgs/pull/195264), [PR](https://github.com/NixOS/nixpkgs/pull/253430)]* |
| [CVE-2022-38164](https://nvd.nist.gov/vuln/detail/CVE-2022-38164) | safe | 6.5 | 0.3.21-r1.cabal | 0.3.21 | 0.3.21 | |
| [CVE-2022-38164](https://nvd.nist.gov/vuln/detail/CVE-2022-38164) | safe | 6.5 | 0.3.21 | 0.3.21 | 0.3.21 | |
| [CVE-2022-32206](https://nvd.nist.gov/vuln/detail/CVE-2022-32206) | curl | 6.5 | 0.4.46 | | | *[[PR](https://github.com/NixOS/nixpkgs/pull/179314), [PR](https://github.com/NixOS/nixpkgs/pull/180021)]* |
Expand Down

0 comments on commit 6d8565c

Please sign in to comment.