We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? # to your account
In GitHub Security Advisory GHSA-rhh4-rh7c-7r5v, there is a vulnerability in the following Go packages or modules:
Cross references:
See doc/triage.md for instructions on how to triage this report.
modules: - module: github.com/mholt/archiver versions: - introduced: TODO (earliest fixed "", vuln range ">= 3.0.0, <= 3.5.1") packages: - package: github.com/mholt/archiver - module: github.com/mholt/archiver versions: - introduced: TODO (earliest fixed "", vuln range ">= 3.0.0, <= 3.5.1") packages: - package: github.com/mholt/archiver/v3 summary: Archiver Path Traversal vulnerability cves: - CVE-2024-0406 ghsas: - GHSA-rhh4-rh7c-7r5v references: - web: https://nvd.nist.gov/vuln/detail/CVE-2024-0406 - web: https://access.redhat.com/security/cve/CVE-2024-0406 - web: https://bugzilla.redhat.com/show_bug.cgi?id=2257749 - advisory: https://github.com/advisories/GHSA-rhh4-rh7c-7r5v
The text was updated successfully, but these errors were encountered:
Change https://go.dev/cl/590278 mentions this issue: data/reports: add 48 unreviewed reports
data/reports: add 48 unreviewed reports
Sorry, something went wrong.
8ed6db9
Change https://go.dev/cl/595960 mentions this issue: data/reports: review 3 reports, add 2 reports
data/reports: review 3 reports, add 2 reports
6b8d768
- data/reports/GO-2024-2491.yaml - data/reports/GO-2024-2698.yaml - data/reports/GO-2024-2785.yaml - data/reports/GO-2024-2912.yaml - data/reports/GO-2024-2918.yaml Updates #2491 Updates #2698 Updates #2785 Fixes #2912 Fixes #2918 Change-Id: I296bb2155b7a3ad7b8f8e7e3f1cc829a159c6cc8 Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/595960 Auto-Submit: Tatiana Bradley <tatianabradley@google.com> LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com> Reviewed-by: Zvonimir Pavlinovic <zpavlinovic@google.com>
No branches or pull requests
In GitHub Security Advisory GHSA-rhh4-rh7c-7r5v, there is a vulnerability in the following Go packages or modules:
Cross references:
See doc/triage.md for instructions on how to triage this report.
The text was updated successfully, but these errors were encountered: