forked from wolfi-dev/advisories
-
Notifications
You must be signed in to change notification settings - Fork 0
/
apko.advisories.yaml
121 lines (107 loc) · 2.65 KB
/
apko.advisories.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
schema-version: 2.0.2
package:
name: apko
advisories:
- id: CVE-2023-28840
aliases:
- GHSA-232p-vwff-86mp
events:
- timestamp: 2023-04-05T14:22:32Z
type: fixed
data:
fixed-version: 0.7.3-r1
- id: CVE-2023-28841
aliases:
- GHSA-33pg-m6jh-5237
events:
- timestamp: 2023-04-05T14:22:32Z
type: fixed
data:
fixed-version: 0.7.3-r1
- id: CVE-2023-28842
aliases:
- GHSA-6wrf-mxfj-pf5p
events:
- timestamp: 2023-04-05T14:22:32Z
type: fixed
data:
fixed-version: 0.7.3-r1
- id: CVE-2023-30551
aliases:
- GHSA-2h5h-59f5-c5x9
events:
- timestamp: 2023-05-04T16:30:46Z
type: fixed
data:
fixed-version: 0.8.0-r1
- id: CVE-2023-39325
aliases:
- GHSA-4374-p667-p6c8
events:
- timestamp: 2023-10-13T12:38:57Z
type: fixed
data:
fixed-version: 0.10.0-r6
- id: CVE-2023-3978
aliases:
- GHSA-2wrh-6pvc-2jm9
events:
- timestamp: 2023-10-13T12:38:12Z
type: fixed
data:
fixed-version: 0.10.0-r6
- id: CVE-2023-45283
aliases:
- GHSA-vvjp-q62m-2vph
events:
- timestamp: 2023-11-07T19:22:58Z
type: false-positive-determination
data:
type: vulnerable-code-not-included-in-package
note: Only affects Windows
- id: CVE-2023-45284
aliases:
- GHSA-rq3x-83w4-p28c
events:
- timestamp: 2023-11-07T19:23:00Z
type: false-positive-determination
data:
type: vulnerable-code-not-included-in-package
note: Only affects Windows
- id: CVE-2023-46737
aliases:
- GHSA-vfp6-jrw2-99g9
events:
- timestamp: 2023-11-16T12:39:51Z
type: fixed
data:
fixed-version: 0.11.3-r0
- id: CVE-2023-48795
aliases:
- GHSA-45x7-px36-x8w8
events:
- timestamp: 2023-12-19T16:56:36Z
type: fixed
data:
fixed-version: 0.12.0-r2
- id: CVE-2023-49568
aliases:
- GHSA-mw99-9chc-xw7r
events:
- timestamp: 2023-12-29T21:34:42Z
type: fixed
data:
fixed-version: 0.13.2-r0
- id: GHSA-9763-4f94-gfch
events:
- timestamp: 2024-01-27T07:12:38Z
type: fixed
data:
fixed-version: 0.13.3-r0
- id: GHSA-jq35-85cj-fj4p
events:
- timestamp: 2023-10-31T20:03:39Z
type: false-positive-determination
data:
type: vulnerable-code-not-included-in-package
note: This vulnerability is in the container runtime itself, not clients of the container runtime.