From 96c6b51b799d00c4a271c3ab86a4ccf98086cc4f Mon Sep 17 00:00:00 2001 From: henrirosten Date: Thu, 7 Nov 2024 03:56:29 +0000 Subject: [PATCH] Automatic vulnerability report update --- reports/main/data.csv | 36 ++++++++++++------- ...6_64-linux.lenovo-x1-carbon-gen11-debug.md | 17 +++++---- 2 files changed, 34 insertions(+), 19 deletions(-) diff --git a/reports/main/data.csv b/reports/main/data.csv index 82ca285..ed2d954 100644 --- a/reports/main/data.csv +++ b/reports/main/data.csv @@ -2,6 +2,7 @@ "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","GHSA-pxg6-pf52-xh8x","https://osv.dev/GHSA-pxg6-pf52-xh8x","cookie","","0.4.6","0.5.0","0.5.0","haskell:cookie","2024A1728000000","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","GHSA-fwr7-v2mv-hh25","https://osv.dev/GHSA-fwr7-v2mv-hh25","async","","2.2.5","2.2.5","2.2.5","haskell:async","2024A1719187200","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2024-50613","https://nvd.nist.gov/vuln/detail/CVE-2024-50613","libsndfile","6.5","1.2.2","1.2.2","1.2.2","libsndfile","2024A0000050613","False","","fix_not_available","" +"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2024-50612","https://nvd.nist.gov/vuln/detail/CVE-2024-50612","libsndfile","5.5","1.2.2","1.2.2","1.2.2","libsndfile","2024A0000050612","False","","fix_not_available","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2024-48958","https://nvd.nist.gov/vuln/detail/CVE-2024-48958","libarchive","7.8","3.7.4","3.7.6","3.7.7","libarchive","2024A0000048958","False","","fix_update_to_version_nixpkgs","https://github.com/NixOS/nixpkgs/pull/305402 https://github.com/NixOS/nixpkgs/pull/341705 https://github.com/NixOS/nixpkgs/pull/348492 @@ -19,9 +20,11 @@ https://github.com/NixOS/nixpkgs/pull/351858" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2024-45615","https://nvd.nist.gov/vuln/detail/CVE-2024-45615","opensc","3.9","0.25.1","0.25.1","0.25.1","opensc","2024A0000045615","False","","fix_not_available","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2024-24790","https://nvd.nist.gov/vuln/detail/CVE-2024-24790","go","9.8","1.21.0-linux-amd64-bootstrap","1.23.2","1.23.2","go","2024A0000024790","False","","fix_update_to_version_nixpkgs","https://github.com/NixOS/nixpkgs/pull/319485 https://github.com/NixOS/nixpkgs/pull/331906 -https://github.com/NixOS/nixpkgs/pull/345737" +https://github.com/NixOS/nixpkgs/pull/345737 +https://github.com/NixOS/nixpkgs/pull/354124" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2024-24789","https://nvd.nist.gov/vuln/detail/CVE-2024-24789","go","5.5","1.21.0-linux-amd64-bootstrap","1.23.2","1.23.2","go","2024A0000024789","False","","fix_update_to_version_nixpkgs","https://github.com/NixOS/nixpkgs/pull/319485 -https://github.com/NixOS/nixpkgs/pull/345737" +https://github.com/NixOS/nixpkgs/pull/345737 +https://github.com/NixOS/nixpkgs/pull/354124" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2024-23741","https://nvd.nist.gov/vuln/detail/CVE-2024-23741","hyper","9.8","1.5.0","","","","2024A0000023741","False","","err_missing_repology_version","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2024-23741","https://nvd.nist.gov/vuln/detail/CVE-2024-23741","hyper","9.8","1.4.1","","","","2024A0000023741","False","","err_missing_repology_version","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2024-23741","https://nvd.nist.gov/vuln/detail/CVE-2024-23741","hyper","9.8","0.14.31","","","","2024A0000023741","False","","err_missing_repology_version","" @@ -199,7 +202,7 @@ https://github.com/NixOS/nixpkgs/pull/239571" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","OSV-2023-1329","https://osv.dev/OSV-2023-1329","jq","","1.7.1","1.7.1","1.7.1","jq","2023A0000001329","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","OSV-2023-1307","https://osv.dev/OSV-2023-1307","libbpf","","1.4.6","1.4.6","1.5.0","libbpf","2023A0000001307","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","OSV-2023-1170","https://osv.dev/OSV-2023-1170","vulkan-loader","","1.3.290.0","1.3.296.0","1.3.301","vulkan-loader","2023A0000001170","False","","err_not_vulnerable_based_on_repology","" -"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","OSV-2023-1129","https://osv.dev/OSV-2023-1129","libheif","","1.18.2","1.18.2","1.19.1","libheif","2023A0000001129","False","","err_not_vulnerable_based_on_repology","" +"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","OSV-2023-1129","https://osv.dev/OSV-2023-1129","libheif","","1.18.2","1.18.2","1.19.2","libheif","2023A0000001129","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","OSV-2023-877","https://osv.dev/OSV-2023-877","libbpf","","1.4.6","1.4.6","1.5.0","libbpf","2023A0000000877","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","OSV-2023-862","https://osv.dev/OSV-2023-862","gstreamer","","1.24.7","1.24.7","1.24.9","gstreamer","2023A0000000862","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","OSV-2023-675","https://osv.dev/OSV-2023-675","flac","","1.4.3","1.4.3","1.4.3","flac","2023A0000000675","False","","err_not_vulnerable_based_on_repology","" @@ -350,6 +353,7 @@ https://github.com/NixOS/nixpkgs/pull/170659" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","OSV-2022-1276","https://osv.dev/OSV-2022-1276","openvpn","","2.6.12","2.6.12","2.6.12","openvpn","2022A0000001276","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","OSV-2022-1201","https://osv.dev/OSV-2022-1201","opensc","","0.25.1","0.25.1","0.25.1","opensc","2022A0000001201","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","OSV-2022-1188","https://osv.dev/OSV-2022-1188","opensc","","0.25.1","0.25.1","0.25.1","opensc","2022A0000001188","False","","err_not_vulnerable_based_on_repology","" +"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","OSV-2022-1108","https://osv.dev/OSV-2022-1108","ruby","","3.3.5","3.4.0-preview2","3.3.6","ruby","2022A0000001108","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2022-0997","https://nvd.nist.gov/vuln/detail/CVE-2022-0997","network","7.8","3.1.4.0-r1.cabal","3.2.4.0","3.2.4.0","haskell:network","2022A0000000997","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2022-0997","https://nvd.nist.gov/vuln/detail/CVE-2022-0997","network","7.8","3.1.4.0","3.2.4.0","3.2.4.0","haskell:network","2022A0000000997","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","OSV-2022-908","https://osv.dev/OSV-2022-908","bluez","","5.78","5.78","5.79","bluez","2022A0000000908","False","Unclear if this is still valid.","err_not_vulnerable_based_on_repology","" @@ -528,7 +532,7 @@ https://github.com/NixOS/nixpkgs/pull/84664" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2020-11104","https://nvd.nist.gov/vuln/detail/CVE-2020-11104","cereal","5.3","0.5.8.3","0.5.8.3","0.5.8.3","haskell:cereal","2020A0000011104","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2020-11021","https://nvd.nist.gov/vuln/detail/CVE-2020-11021","http-client","7.5","0.7.17","0.7.17","0.7.17","haskell:http-client","2020A0000011021","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2020-8284","https://nvd.nist.gov/vuln/detail/CVE-2020-8284","curl","3.7","0.4.46","","","","2020A0000008284","False","","err_missing_repology_version","https://github.com/NixOS/nixpkgs/pull/106452" -"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","OSV-2020-2308","https://osv.dev/OSV-2020-2308","libheif","","1.18.2","1.18.2","1.19.1","libheif","2020A0000002308","False","","err_not_vulnerable_based_on_repology","" +"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","OSV-2020-2308","https://osv.dev/OSV-2020-2308","libheif","","1.18.2","1.18.2","1.19.2","libheif","2020A0000002308","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2020-2136","https://nvd.nist.gov/vuln/detail/CVE-2020-2136","git","5.4","2.46.1","2.47.0","2.47.0","git","2020A0000002136","False","","err_not_vulnerable_based_on_repology","https://github.com/NixOS/nixpkgs/pull/82872 https://github.com/NixOS/nixpkgs/pull/84664" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","OSV-2020-1420","https://osv.dev/OSV-2020-1420","libsass","","3.6.6","3.6.6","3.6.6","libsass","2020A0000001420","False","","err_not_vulnerable_based_on_repology","" @@ -654,6 +658,7 @@ https://github.com/NixOS/nixpkgs/pull/333926" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","GHSA-pxg6-pf52-xh8x","https://osv.dev/GHSA-pxg6-pf52-xh8x","cookie","","0.4.6","0.5.0","0.5.0","haskell:cookie","2024A1728000000","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","GHSA-fwr7-v2mv-hh25","https://osv.dev/GHSA-fwr7-v2mv-hh25","async","","2.2.5","2.2.5","2.2.5","haskell:async","2024A1719187200","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2024-50613","https://nvd.nist.gov/vuln/detail/CVE-2024-50613","libsndfile","6.5","1.2.2","1.2.2","1.2.2","libsndfile","2024A0000050613","False","","fix_not_available","" +"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2024-50612","https://nvd.nist.gov/vuln/detail/CVE-2024-50612","libsndfile","5.5","1.2.2","1.2.2","1.2.2","libsndfile","2024A0000050612","False","","fix_not_available","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2024-48958","https://nvd.nist.gov/vuln/detail/CVE-2024-48958","libarchive","7.8","3.7.4","3.7.6","3.7.7","libarchive","2024A0000048958","False","","fix_update_to_version_nixpkgs","https://github.com/NixOS/nixpkgs/pull/305402 https://github.com/NixOS/nixpkgs/pull/341705 https://github.com/NixOS/nixpkgs/pull/348492 @@ -671,9 +676,11 @@ https://github.com/NixOS/nixpkgs/pull/351858" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2024-45615","https://nvd.nist.gov/vuln/detail/CVE-2024-45615","opensc","3.9","0.25.1","0.25.1","0.25.1","opensc","2024A0000045615","False","","fix_not_available","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2024-24790","https://nvd.nist.gov/vuln/detail/CVE-2024-24790","go","9.8","1.21.0-linux-amd64-bootstrap","1.23.2","1.23.2","go","2024A0000024790","False","","fix_update_to_version_nixpkgs","https://github.com/NixOS/nixpkgs/pull/319485 https://github.com/NixOS/nixpkgs/pull/331906 -https://github.com/NixOS/nixpkgs/pull/345737" +https://github.com/NixOS/nixpkgs/pull/345737 +https://github.com/NixOS/nixpkgs/pull/354124" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2024-24789","https://nvd.nist.gov/vuln/detail/CVE-2024-24789","go","5.5","1.21.0-linux-amd64-bootstrap","1.23.2","1.23.2","go","2024A0000024789","False","","fix_update_to_version_nixpkgs","https://github.com/NixOS/nixpkgs/pull/319485 -https://github.com/NixOS/nixpkgs/pull/345737" +https://github.com/NixOS/nixpkgs/pull/345737 +https://github.com/NixOS/nixpkgs/pull/354124" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2024-23741","https://nvd.nist.gov/vuln/detail/CVE-2024-23741","hyper","9.8","1.5.0","","","","2024A0000023741","False","","err_missing_repology_version","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2024-23741","https://nvd.nist.gov/vuln/detail/CVE-2024-23741","hyper","9.8","1.4.1","","","","2024A0000023741","False","","err_missing_repology_version","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2024-23741","https://nvd.nist.gov/vuln/detail/CVE-2024-23741","hyper","9.8","0.14.31","","","","2024A0000023741","False","","err_missing_repology_version","" @@ -851,7 +858,7 @@ https://github.com/NixOS/nixpkgs/pull/239571" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","OSV-2023-1329","https://osv.dev/OSV-2023-1329","jq","","1.7.1","1.7.1","1.7.1","jq","2023A0000001329","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","OSV-2023-1307","https://osv.dev/OSV-2023-1307","libbpf","","1.4.6","1.4.6","1.5.0","libbpf","2023A0000001307","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","OSV-2023-1170","https://osv.dev/OSV-2023-1170","vulkan-loader","","1.3.290.0","1.3.296.0","1.3.301","vulkan-loader","2023A0000001170","False","","err_not_vulnerable_based_on_repology","" -"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","OSV-2023-1129","https://osv.dev/OSV-2023-1129","libheif","","1.18.2","1.18.2","1.19.1","libheif","2023A0000001129","False","","err_not_vulnerable_based_on_repology","" +"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","OSV-2023-1129","https://osv.dev/OSV-2023-1129","libheif","","1.18.2","1.18.2","1.19.2","libheif","2023A0000001129","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","OSV-2023-877","https://osv.dev/OSV-2023-877","libbpf","","1.4.6","1.4.6","1.5.0","libbpf","2023A0000000877","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","OSV-2023-862","https://osv.dev/OSV-2023-862","gstreamer","","1.24.7","1.24.7","1.24.9","gstreamer","2023A0000000862","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","OSV-2023-675","https://osv.dev/OSV-2023-675","flac","","1.4.3","1.4.3","1.4.3","flac","2023A0000000675","False","","err_not_vulnerable_based_on_repology","" @@ -1002,6 +1009,7 @@ https://github.com/NixOS/nixpkgs/pull/170659" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","OSV-2022-1276","https://osv.dev/OSV-2022-1276","openvpn","","2.6.12","2.6.12","2.6.12","openvpn","2022A0000001276","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","OSV-2022-1201","https://osv.dev/OSV-2022-1201","opensc","","0.25.1","0.25.1","0.25.1","opensc","2022A0000001201","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","OSV-2022-1188","https://osv.dev/OSV-2022-1188","opensc","","0.25.1","0.25.1","0.25.1","opensc","2022A0000001188","False","","err_not_vulnerable_based_on_repology","" +"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","OSV-2022-1108","https://osv.dev/OSV-2022-1108","ruby","","3.3.5","3.4.0-preview2","3.3.6","ruby","2022A0000001108","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2022-0997","https://nvd.nist.gov/vuln/detail/CVE-2022-0997","network","7.8","3.1.4.0-r1.cabal","3.2.4.0","3.2.4.0","haskell:network","2022A0000000997","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2022-0997","https://nvd.nist.gov/vuln/detail/CVE-2022-0997","network","7.8","3.1.4.0","3.2.4.0","3.2.4.0","haskell:network","2022A0000000997","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","OSV-2022-908","https://osv.dev/OSV-2022-908","bluez","","5.78","5.78","5.79","bluez","2022A0000000908","False","Unclear if this is still valid.","err_not_vulnerable_based_on_repology","" @@ -1180,7 +1188,7 @@ https://github.com/NixOS/nixpkgs/pull/84664" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2020-11104","https://nvd.nist.gov/vuln/detail/CVE-2020-11104","cereal","5.3","0.5.8.3","0.5.8.3","0.5.8.3","haskell:cereal","2020A0000011104","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2020-11021","https://nvd.nist.gov/vuln/detail/CVE-2020-11021","http-client","7.5","0.7.17","0.7.17","0.7.17","haskell:http-client","2020A0000011021","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2020-8284","https://nvd.nist.gov/vuln/detail/CVE-2020-8284","curl","3.7","0.4.46","","","","2020A0000008284","False","","err_missing_repology_version","https://github.com/NixOS/nixpkgs/pull/106452" -"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","OSV-2020-2308","https://osv.dev/OSV-2020-2308","libheif","","1.18.2","1.18.2","1.19.1","libheif","2020A0000002308","False","","err_not_vulnerable_based_on_repology","" +"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","OSV-2020-2308","https://osv.dev/OSV-2020-2308","libheif","","1.18.2","1.18.2","1.19.2","libheif","2020A0000002308","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2020-2136","https://nvd.nist.gov/vuln/detail/CVE-2020-2136","git","5.4","2.46.1","2.47.0","2.47.0","git","2020A0000002136","False","","err_not_vulnerable_based_on_repology","https://github.com/NixOS/nixpkgs/pull/82872 https://github.com/NixOS/nixpkgs/pull/84664" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","OSV-2020-1420","https://osv.dev/OSV-2020-1420","libsass","","3.6.6","3.6.6","3.6.6","libsass","2020A0000001420","False","","err_not_vulnerable_based_on_repology","" @@ -1306,6 +1314,7 @@ https://github.com/NixOS/nixpkgs/pull/333926" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","GHSA-pxg6-pf52-xh8x","https://osv.dev/GHSA-pxg6-pf52-xh8x","cookie","","0.4.6","0.5.0","0.5.0","haskell:cookie","2024A1728000000","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","GHSA-fwr7-v2mv-hh25","https://osv.dev/GHSA-fwr7-v2mv-hh25","async","","2.2.5","2.2.5","2.2.5","haskell:async","2024A1719187200","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","CVE-2024-50613","https://nvd.nist.gov/vuln/detail/CVE-2024-50613","libsndfile","6.5","1.2.2","1.2.2","1.2.2","libsndfile","2024A0000050613","False","","fix_not_available","" +"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","CVE-2024-50612","https://nvd.nist.gov/vuln/detail/CVE-2024-50612","libsndfile","5.5","1.2.2","1.2.2","1.2.2","libsndfile","2024A0000050612","False","","fix_not_available","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","CVE-2024-45620","https://nvd.nist.gov/vuln/detail/CVE-2024-45620","opensc","3.9","0.25.1","0.25.1","0.25.1","opensc","2024A0000045620","False","","fix_not_available","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","CVE-2024-45619","https://nvd.nist.gov/vuln/detail/CVE-2024-45619","opensc","4.3","0.25.1","0.25.1","0.25.1","opensc","2024A0000045619","False","","fix_not_available","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","CVE-2024-45618","https://nvd.nist.gov/vuln/detail/CVE-2024-45618","opensc","3.9","0.25.1","0.25.1","0.25.1","opensc","2024A0000045618","False","","fix_not_available","" @@ -1314,9 +1323,11 @@ https://github.com/NixOS/nixpkgs/pull/333926" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","CVE-2024-45615","https://nvd.nist.gov/vuln/detail/CVE-2024-45615","opensc","3.9","0.25.1","0.25.1","0.25.1","opensc","2024A0000045615","False","","fix_not_available","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","CVE-2024-24790","https://nvd.nist.gov/vuln/detail/CVE-2024-24790","go","9.8","1.21.0-linux-amd64-bootstrap","1.23.2","1.23.2","go","2024A0000024790","False","","fix_update_to_version_nixpkgs","https://github.com/NixOS/nixpkgs/pull/319485 https://github.com/NixOS/nixpkgs/pull/331906 -https://github.com/NixOS/nixpkgs/pull/345737" +https://github.com/NixOS/nixpkgs/pull/345737 +https://github.com/NixOS/nixpkgs/pull/354124" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","CVE-2024-24789","https://nvd.nist.gov/vuln/detail/CVE-2024-24789","go","5.5","1.21.0-linux-amd64-bootstrap","1.23.2","1.23.2","go","2024A0000024789","False","","fix_update_to_version_nixpkgs","https://github.com/NixOS/nixpkgs/pull/319485 -https://github.com/NixOS/nixpkgs/pull/345737" +https://github.com/NixOS/nixpkgs/pull/345737 +https://github.com/NixOS/nixpkgs/pull/354124" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","CVE-2024-23741","https://nvd.nist.gov/vuln/detail/CVE-2024-23741","hyper","9.8","1.5.0","","","","2024A0000023741","False","","err_missing_repology_version","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","CVE-2024-23741","https://nvd.nist.gov/vuln/detail/CVE-2024-23741","hyper","9.8","1.4.1","","","","2024A0000023741","False","","err_missing_repology_version","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","CVE-2024-23741","https://nvd.nist.gov/vuln/detail/CVE-2024-23741","hyper","9.8","0.14.31","","","","2024A0000023741","False","","err_missing_repology_version","" @@ -1486,7 +1497,7 @@ https://github.com/NixOS/nixpkgs/pull/239571" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","OSV-2023-1344","https://osv.dev/OSV-2023-1344","jq","","1.7.1","1.7.1","1.7.1","jq","2023A0000001344","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","OSV-2023-1329","https://osv.dev/OSV-2023-1329","jq","","1.7.1","1.7.1","1.7.1","jq","2023A0000001329","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","OSV-2023-1307","https://osv.dev/OSV-2023-1307","libbpf","","1.4.6","1.4.6","1.5.0","libbpf","2023A0000001307","False","","err_not_vulnerable_based_on_repology","" -"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","OSV-2023-1129","https://osv.dev/OSV-2023-1129","libheif","","1.18.2","1.18.2","1.19.1","libheif","2023A0000001129","False","","err_not_vulnerable_based_on_repology","" +"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","OSV-2023-1129","https://osv.dev/OSV-2023-1129","libheif","","1.18.2","1.18.2","1.19.2","libheif","2023A0000001129","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","OSV-2023-877","https://osv.dev/OSV-2023-877","libbpf","","1.4.6","1.4.6","1.5.0","libbpf","2023A0000000877","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","OSV-2023-862","https://osv.dev/OSV-2023-862","gstreamer","","1.24.7","1.24.7","1.24.9","gstreamer","2023A0000000862","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","OSV-2023-675","https://osv.dev/OSV-2023-675","flac","","1.4.3","1.4.3","1.4.3","flac","2023A0000000675","False","","err_not_vulnerable_based_on_repology","" @@ -1637,6 +1648,7 @@ https://github.com/NixOS/nixpkgs/pull/170659" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","OSV-2022-1276","https://osv.dev/OSV-2022-1276","openvpn","","2.6.12","2.6.12","2.6.12","openvpn","2022A0000001276","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","OSV-2022-1201","https://osv.dev/OSV-2022-1201","opensc","","0.25.1","0.25.1","0.25.1","opensc","2022A0000001201","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","OSV-2022-1188","https://osv.dev/OSV-2022-1188","opensc","","0.25.1","0.25.1","0.25.1","opensc","2022A0000001188","False","","err_not_vulnerable_based_on_repology","" +"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","OSV-2022-1108","https://osv.dev/OSV-2022-1108","ruby","","3.3.5","3.4.0-preview2","3.3.6","ruby","2022A0000001108","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","CVE-2022-0997","https://nvd.nist.gov/vuln/detail/CVE-2022-0997","network","7.8","3.1.4.0-r1.cabal","3.2.4.0","3.2.4.0","haskell:network","2022A0000000997","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","CVE-2022-0997","https://nvd.nist.gov/vuln/detail/CVE-2022-0997","network","7.8","3.1.4.0","3.2.4.0","3.2.4.0","haskell:network","2022A0000000997","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","OSV-2022-908","https://osv.dev/OSV-2022-908","bluez","","5.78","5.78","5.79","bluez","2022A0000000908","False","Unclear if this is still valid.","err_not_vulnerable_based_on_repology","" @@ -1814,7 +1826,7 @@ https://github.com/NixOS/nixpkgs/pull/84664" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","CVE-2020-11104","https://nvd.nist.gov/vuln/detail/CVE-2020-11104","cereal","5.3","0.5.8.3","0.5.8.3","0.5.8.3","haskell:cereal","2020A0000011104","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","CVE-2020-11021","https://nvd.nist.gov/vuln/detail/CVE-2020-11021","http-client","7.5","0.7.17","0.7.17","0.7.17","haskell:http-client","2020A0000011021","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","CVE-2020-8284","https://nvd.nist.gov/vuln/detail/CVE-2020-8284","curl","3.7","0.4.46","","","","2020A0000008284","False","","err_missing_repology_version","https://github.com/NixOS/nixpkgs/pull/106452" -"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","OSV-2020-2308","https://osv.dev/OSV-2020-2308","libheif","","1.18.2","1.18.2","1.19.1","libheif","2020A0000002308","False","","err_not_vulnerable_based_on_repology","" +"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","OSV-2020-2308","https://osv.dev/OSV-2020-2308","libheif","","1.18.2","1.18.2","1.19.2","libheif","2020A0000002308","False","","err_not_vulnerable_based_on_repology","" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","CVE-2020-2136","https://nvd.nist.gov/vuln/detail/CVE-2020-2136","git","5.4","2.47.0","2.47.0","2.47.0","git","2020A0000002136","False","","err_not_vulnerable_based_on_repology","https://github.com/NixOS/nixpkgs/pull/82872 https://github.com/NixOS/nixpkgs/pull/84664" "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","OSV-2020-1420","https://osv.dev/OSV-2020-1420","libsass","","3.6.6","3.6.6","3.6.6","libsass","2020A0000001420","False","","err_not_vulnerable_based_on_repology","" diff --git a/reports/main/packages.x86_64-linux.lenovo-x1-carbon-gen11-debug.md b/reports/main/packages.x86_64-linux.lenovo-x1-carbon-gen11-debug.md index 3d6d05c..dda903a 100644 --- a/reports/main/packages.x86_64-linux.lenovo-x1-carbon-gen11-debug.md +++ b/reports/main/packages.x86_64-linux.lenovo-x1-carbon-gen11-debug.md @@ -56,9 +56,10 @@ Following table lists vulnerabilities currently impacting the Ghaf target that h Consider [whitelisting](../../manual_analysis.csv) possible false positives based on manual analysis, or - if determined valid - help nixpkgs community fix the following issues in nixpkgs: -| vuln_id | package | severity | version_local | nix_unstable | upstream | comment | -|-------------------------------------------------------------------|-----------|------------|-----------------|----------------|------------|-----------| -| [CVE-2024-10041](https://nvd.nist.gov/vuln/detail/CVE-2024-10041) | linux-pam | 4.7 | 1.6.1 | | | | +| vuln_id | package | severity | version_local | nix_unstable | upstream | comment | +|-------------------------------------------------------------------|------------|------------|-----------------|----------------|------------|-----------| +| [CVE-2024-50612](https://nvd.nist.gov/vuln/detail/CVE-2024-50612) | libsndfile | 5.5 | 1.2.2 | 1.2.2 | 1.2.2 | | +| [OSV-2022-1108](https://osv.dev/OSV-2022-1108) | ruby | | 3.3.5 | 3.4.0-preview2 | 3.3.6 | | @@ -71,7 +72,7 @@ Consider [whitelisting](../../manual_analysis.csv) possible false positives base | vuln_id | package | severity | version_local | nix_unstable | upstream | comment | |-----------------------------------------------------------------------|---------------------------|------------|------------------|------------------|------------------|-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------| -| [CVE-2024-24790](https://nvd.nist.gov/vuln/detail/CVE-2024-24790) | go | 9.8 | 1.21.0-linux-amd | 1.23.2 | 1.23.2 | *[[PR](https://github.com/NixOS/nixpkgs/pull/319485), [PR](https://github.com/NixOS/nixpkgs/pull/331906), [PR](https://github.com/NixOS/nixpkgs/pull/345737)]* | +| [CVE-2024-24790](https://nvd.nist.gov/vuln/detail/CVE-2024-24790) | go | 9.8 | 1.21.0-linux-amd | 1.23.2 | 1.23.2 | *[[PR](https://github.com/NixOS/nixpkgs/pull/319485), [PR](https://github.com/NixOS/nixpkgs/pull/331906), [PR](https://github.com/NixOS/nixpkgs/pull/345737), [PR](https://github.com/NixOS/nixpkgs/pull/354124)]* | | [CVE-2024-23741](https://nvd.nist.gov/vuln/detail/CVE-2024-23741) | hyper | 9.8 | 1.5.0 | | | | | [CVE-2024-23741](https://nvd.nist.gov/vuln/detail/CVE-2024-23741) | hyper | 9.8 | 1.4.1 | | | | | [CVE-2024-23741](https://nvd.nist.gov/vuln/detail/CVE-2024-23741) | hyper | 9.8 | 0.14.31 | | | | @@ -263,7 +264,8 @@ Consider [whitelisting](../../manual_analysis.csv) possible false positives base | [CVE-2022-40897](https://nvd.nist.gov/vuln/detail/CVE-2022-40897) | setuptools | 5.9 | 44.0.0-source | 75.1.0 | 75.3.0 | | | [CVE-2021-23336](https://nvd.nist.gov/vuln/detail/CVE-2021-23336) | python | 5.9 | 2.7.18.8 | 3.13.0 | 3.13.0 | *[[PR](https://github.com/NixOS/nixpkgs/pull/117037), [PR](https://github.com/NixOS/nixpkgs/pull/117082), [PR](https://github.com/NixOS/nixpkgs/pull/118403), [PR](https://github.com/NixOS/nixpkgs/pull/226656), [PR](https://github.com/NixOS/nixpkgs/pull/333926)]* | | [CVE-2021-3572](https://nvd.nist.gov/vuln/detail/CVE-2021-3572) | pip | 5.7 | 20.3.4-source | 24.0 | 24.3.1 | | -| [CVE-2024-24789](https://nvd.nist.gov/vuln/detail/CVE-2024-24789) | go | 5.5 | 1.21.0-linux-amd | 1.23.2 | 1.23.2 | *[[PR](https://github.com/NixOS/nixpkgs/pull/319485), [PR](https://github.com/NixOS/nixpkgs/pull/345737)]* | +| [CVE-2024-50612](https://nvd.nist.gov/vuln/detail/CVE-2024-50612) | libsndfile | 5.5 | 1.2.2 | 1.2.2 | 1.2.2 | | +| [CVE-2024-24789](https://nvd.nist.gov/vuln/detail/CVE-2024-24789) | go | 5.5 | 1.21.0-linux-amd | 1.23.2 | 1.23.2 | *[[PR](https://github.com/NixOS/nixpkgs/pull/319485), [PR](https://github.com/NixOS/nixpkgs/pull/345737), [PR](https://github.com/NixOS/nixpkgs/pull/354124)]* | | [CVE-2024-8354](https://nvd.nist.gov/vuln/detail/CVE-2024-8354) | qemu | 5.5 | 9.1.0 | 9.1.1 | 9.1.1 | | | [CVE-2024-6923](https://nvd.nist.gov/vuln/detail/CVE-2024-6923) | python | 5.5 | 2.7.18.8 | 3.13.0 | 3.13.0 | *[[PR](https://github.com/NixOS/nixpkgs/pull/335172)]* | | [CVE-2023-51258](https://nvd.nist.gov/vuln/detail/CVE-2023-51258) | yasm | 5.5 | 1.3.0 | 1.3.0 | 1.3.0 | | @@ -394,7 +396,7 @@ Consider [whitelisting](../../manual_analysis.csv) possible false positives base | [OSV-2023-1329](https://osv.dev/OSV-2023-1329) | jq | | 1.7.1 | 1.7.1 | 1.7.1 | | | [OSV-2023-1307](https://osv.dev/OSV-2023-1307) | libbpf | | 1.4.6 | 1.4.6 | 1.5.0 | | | [OSV-2023-1170](https://osv.dev/OSV-2023-1170) | vulkan-loader | | 1.3.290.0 | 1.3.296.0 | 1.3.301 | | -| [OSV-2023-1129](https://osv.dev/OSV-2023-1129) | libheif | | 1.18.2 | 1.18.2 | 1.19.1 | | +| [OSV-2023-1129](https://osv.dev/OSV-2023-1129) | libheif | | 1.18.2 | 1.18.2 | 1.19.2 | | | [OSV-2023-877](https://osv.dev/OSV-2023-877) | libbpf | | 1.4.6 | 1.4.6 | 1.5.0 | | | [OSV-2023-862](https://osv.dev/OSV-2023-862) | gstreamer | | 1.24.7 | 1.24.7 | 1.24.9 | | | [OSV-2023-675](https://osv.dev/OSV-2023-675) | flac | | 1.4.3 | 1.4.3 | 1.4.3 | | @@ -410,6 +412,7 @@ Consider [whitelisting](../../manual_analysis.csv) possible false positives base | [OSV-2022-1276](https://osv.dev/OSV-2022-1276) | openvpn | | 2.6.12 | 2.6.12 | 2.6.12 | | | [OSV-2022-1201](https://osv.dev/OSV-2022-1201) | opensc | | 0.25.1 | 0.25.1 | 0.25.1 | | | [OSV-2022-1188](https://osv.dev/OSV-2022-1188) | opensc | | 0.25.1 | 0.25.1 | 0.25.1 | | +| [OSV-2022-1108](https://osv.dev/OSV-2022-1108) | ruby | | 3.3.5 | 3.4.0-preview2 | 3.3.6 | | | [OSV-2022-908](https://osv.dev/OSV-2022-908) | bluez | | 5.78 | 5.78 | 5.79 | Unclear if this is still valid. | | [OSV-2022-896](https://osv.dev/OSV-2022-896) | libsass | | 3.6.6 | 3.6.6 | 3.6.6 | Unclear if this is still valid. | | [OSV-2022-882](https://osv.dev/OSV-2022-882) | hunspell | | 1.7.2 | 1.7.2 | 1.7.2 | | @@ -440,7 +443,7 @@ Consider [whitelisting](../../manual_analysis.csv) possible false positives base | [OSV-2021-787](https://osv.dev/OSV-2021-787) | espeak-ng | | 1.51.1 | | | Unclear if this is still valid. | | [OSV-2021-765](https://osv.dev/OSV-2021-765) | espeak-ng | | 1.51.1 | | | Unclear if this is still valid. | | [OSV-2021-508](https://osv.dev/OSV-2021-508) | libsass | | 3.6.6 | 3.6.6 | 3.6.6 | Unclear if this is still valid. | -| [OSV-2020-2308](https://osv.dev/OSV-2020-2308) | libheif | | 1.18.2 | 1.18.2 | 1.19.1 | | +| [OSV-2020-2308](https://osv.dev/OSV-2020-2308) | libheif | | 1.18.2 | 1.18.2 | 1.19.2 | | | [OSV-2020-1420](https://osv.dev/OSV-2020-1420) | libsass | | 3.6.6 | 3.6.6 | 3.6.6 | | | [OSV-2020-862](https://osv.dev/OSV-2020-862) | libsass | | 3.6.6 | 3.6.6 | 3.6.6 | | | [RUSTSEC-2019-0006](https://osv.dev/RUSTSEC-2019-0006) | ncurses | | 6.4.20221231 | 6.4.20221231 | 6.5 | |