Skip to content

Commit b44bdc8

Browse files
1 parent fb5b497 commit b44bdc8

8 files changed

Lines changed: 41 additions & 9 deletions

File tree

advisories/github-reviewed/2022/05/GHSA-9gcf-pq99-rjw3/GHSA-9gcf-pq99-rjw3.json

Lines changed: 5 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-9gcf-pq99-rjw3",
4-
"modified": "2024-10-21T21:24:39Z",
4+
"modified": "2026-05-29T20:48:18Z",
55
"published": "2022-05-17T01:27:10Z",
66
"aliases": [
77
"CVE-2014-1604"
@@ -47,6 +47,10 @@
4747
"type": "PACKAGE",
4848
"url": "https://github.com/alex/rply"
4949
},
50+
{
51+
"type": "WEB",
52+
"url": "https://github.com/pypa/advisory-database/tree/main/vulns/rply/PYSEC-2014-117.yaml"
53+
},
5054
{
5155
"type": "WEB",
5256
"url": "https://github.com/pypa/advisory-database/tree/main/vulns/rply/PYSEC-2014-17.yaml"

advisories/github-reviewed/2022/05/GHSA-qh4q-fwf8-qqrw/GHSA-qh4q-fwf8-qqrw.json

Lines changed: 5 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-qh4q-fwf8-qqrw",
4-
"modified": "2024-11-26T18:51:15Z",
4+
"modified": "2026-05-29T20:48:32Z",
55
"published": "2022-05-17T05:48:31Z",
66
"aliases": [
77
"CVE-2010-3198"
@@ -79,6 +79,10 @@
7979
"type": "WEB",
8080
"url": "https://github.com/pypa/advisory-database/tree/main/vulns/zope/PYSEC-2010-32.yaml"
8181
},
82+
{
83+
"type": "WEB",
84+
"url": "https://github.com/pypa/advisory-database/tree/main/vulns/zope/PYSEC-2010-33.yaml"
85+
},
8286
{
8387
"type": "PACKAGE",
8488
"url": "https://github.com/zopefoundation/Zope"

advisories/github-reviewed/2022/09/GHSA-5v95-j4rr-6f3c/GHSA-5v95-j4rr-6f3c.json

Lines changed: 5 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-5v95-j4rr-6f3c",
4-
"modified": "2024-10-25T21:29:22Z",
4+
"modified": "2026-05-29T20:49:26Z",
55
"published": "2022-09-27T00:00:17Z",
66
"aliases": [
77
"CVE-2022-3290"
@@ -56,6 +56,10 @@
5656
"type": "WEB",
5757
"url": "https://github.com/pypa/advisory-database/tree/main/vulns/rdiffweb/PYSEC-2022-292.yaml"
5858
},
59+
{
60+
"type": "WEB",
61+
"url": "https://github.com/pypa/advisory-database/tree/main/vulns/rdiffweb/PYSEC-2022-43184.yaml"
62+
},
5963
{
6064
"type": "WEB",
6165
"url": "https://huntr.dev/bounties/d8b8519d-96a5-484c-8141-624c54290bf5"

advisories/github-reviewed/2022/10/GHSA-w596-4wvx-j9j6/GHSA-w596-4wvx-j9j6.json

Lines changed: 5 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-w596-4wvx-j9j6",
4-
"modified": "2025-08-01T20:34:12Z",
4+
"modified": "2026-05-29T20:49:54Z",
55
"published": "2022-10-16T12:00:23Z",
66
"withdrawn": "2025-08-01T20:34:11Z",
77
"aliases": [
@@ -65,6 +65,10 @@
6565
"type": "WEB",
6666
"url": "https://github.com/pypa/advisory-database/tree/main/vulns/py/PYSEC-2022-42969.yaml"
6767
},
68+
{
69+
"type": "WEB",
70+
"url": "https://github.com/pypa/advisory-database/tree/main/vulns/py/PYSEC-2022-43183.yaml"
71+
},
6872
{
6973
"type": "PACKAGE",
7074
"url": "https://github.com/pytest-dev/py"

advisories/github-reviewed/2023/02/GHSA-36gx-9q6h-g429/GHSA-36gx-9q6h-g429.json

Lines changed: 6 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,13 +1,13 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-36gx-9q6h-g429",
4-
"modified": "2024-11-18T23:08:13Z",
4+
"modified": "2026-05-29T20:49:19Z",
55
"published": "2023-02-28T23:18:37Z",
66
"aliases": [
77
"CVE-2022-39228"
88
],
99
"summary": "vantage6 vulnerable to Observable Response Discrepancy",
10-
"details": "### Impact\nWe are incorporating the password policies listed in https://github.com/vantage6/vantage6/issues/59. One measure is that we don't let the user know in case of wrong username/password combination if the username actually exists, to prevent that bots can guess usernames. However, if a wrong password is entered a number of times, the user account is blocked temporarily. This way you could still find out which usernames exist.\n\n### Patches\nUpdate to 3.8.0+\n\n### Workarounds\nNo\n\n### References\nhttps://github.com/vantage6/vantage6/issues/59\n\n### For more information\nIf you have any questions or comments about this advisory:\n* Email us at [vantage6@iknl.nl](mailto:vantage6@iknl.nl)\n",
10+
"details": "### Impact\nWe are incorporating the password policies listed in https://github.com/vantage6/vantage6/issues/59. One measure is that we don't let the user know in case of wrong username/password combination if the username actually exists, to prevent that bots can guess usernames. However, if a wrong password is entered a number of times, the user account is blocked temporarily. This way you could still find out which usernames exist.\n\n### Patches\nUpdate to 3.8.0+\n\n### Workarounds\nNo\n\n### References\nhttps://github.com/vantage6/vantage6/issues/59\n\n### For more information\nIf you have any questions or comments about this advisory:\n* Email us at [vantage6@iknl.nl](mailto:vantage6@iknl.nl)",
1111
"severity": [
1212
{
1313
"type": "CVSS_V3",
@@ -60,6 +60,10 @@
6060
"type": "WEB",
6161
"url": "https://github.com/vantage6/vantage6/commit/ab4381c35d24add06f75d5a8a284321f7a340bd2"
6262
},
63+
{
64+
"type": "WEB",
65+
"url": "https://github.com/pypa/advisory-database/tree/main/vulns/vantage6/PYSEC-2023-313.yaml"
66+
},
6367
{
6468
"type": "WEB",
6569
"url": "https://github.com/pypa/advisory-database/tree/main/vulns/vantage6/PYSEC-2023-52.yaml"

advisories/github-reviewed/2025/08/GHSA-c9rc-mg46-23w3/GHSA-c9rc-mg46-23w3.json

Lines changed: 5 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-c9rc-mg46-23w3",
4-
"modified": "2025-08-12T19:33:07Z",
4+
"modified": "2026-05-29T20:50:08Z",
55
"published": "2025-08-12T19:33:07Z",
66
"aliases": [
77
"CVE-2025-8747"
@@ -56,6 +56,10 @@
5656
"type": "PACKAGE",
5757
"url": "https://github.com/keras-team/keras"
5858
},
59+
{
60+
"type": "WEB",
61+
"url": "https://github.com/pypa/advisory-database/tree/main/vulns/keras/PYSEC-2025-75.yaml"
62+
},
5963
{
6064
"type": "WEB",
6165
"url": "https://jfrog.com/blog/keras-safe_mode-bypass-vulnerability"

advisories/github-reviewed/2025/09/GHSA-36fq-jgmw-4r9c/GHSA-36fq-jgmw-4r9c.json

Lines changed: 5 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-36fq-jgmw-4r9c",
4-
"modified": "2025-09-23T21:30:06Z",
4+
"modified": "2026-05-29T20:50:12Z",
55
"published": "2025-09-19T09:31:14Z",
66
"aliases": [
77
"CVE-2025-9906"
@@ -60,6 +60,10 @@
6060
"type": "WEB",
6161
"url": "https://github.com/keras-team/keras/releases/tag/v3.11.0"
6262
},
63+
{
64+
"type": "WEB",
65+
"url": "https://github.com/pypa/advisory-database/tree/main/vulns/keras/PYSEC-2025-76.yaml"
66+
},
6367
{
6468
"type": "WEB",
6569
"url": "https://osv.dev/vulnerability/CVE-2025-9906"

advisories/github-reviewed/2025/11/GHSA-xh5w-g8gq-r3v9/GHSA-xh5w-g8gq-r3v9.json

Lines changed: 5 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-xh5w-g8gq-r3v9",
4-
"modified": "2026-03-19T21:23:17Z",
4+
"modified": "2026-05-29T20:50:19Z",
55
"published": "2025-11-24T18:31:14Z",
66
"aliases": [
77
"CVE-2025-13609"
@@ -91,6 +91,10 @@
9191
{
9292
"type": "WEB",
9393
"url": "https://github.com/keylime/keylime/releases/tag/v7.13.0"
94+
},
95+
{
96+
"type": "WEB",
97+
"url": "https://github.com/pypa/advisory-database/tree/main/vulns/keylime/PYSEC-2025-77.yaml"
9498
}
9599
],
96100
"database_specific": {

0 commit comments

Comments
 (0)