зеркало из https://github.com/golang/vulndb.git
data/reports: add GO-2024-3230
- data/reports/GO-2024-3230.yaml Fixes golang/vulndb#3230 Change-Id: I6f7ae459f36321b08fcb0e42843b0fb7a9a9f3c8 Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/623695 Auto-Submit: Zvonimir Pavlinovic <zpavlinovic@google.com> LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com> Reviewed-by: Tatiana Bradley <tatianabradley@google.com>
This commit is contained in:
Zvonimir Pavlinovic
Gopher Robot
Родитель
0419a58004
Коммит
c845b17415
|
|
@ -0,0 +1,48 @@
|
|||
{
|
||||
"schema_version": "1.3.1",
|
||||
"id": "GO-2024-3230",
|
||||
"modified": "0001-01-01T00:00:00Z",
|
||||
"published": "0001-01-01T00:00:00Z",
|
||||
"aliases": [
|
||||
"CVE-2024-48921",
|
||||
"GHSA-qjvc-p88j-j9rm"
|
||||
],
|
||||
"summary": "Kyverno's PolicyException objects can be created in any namespace by default in github.com/kyverno/kyverno",
|
||||
"details": "Kyverno's PolicyException objects can be created in any namespace by default in github.com/kyverno/kyverno",
|
||||
"affected": [
|
||||
{
|
||||
"package": {
|
||||
"name": "github.com/kyverno/kyverno",
|
||||
"ecosystem": "Go"
|
||||
},
|
||||
"ranges": [
|
||||
{
|
||||
"type": "SEMVER",
|
||||
"events": [
|
||||
{
|
||||
"introduced": "0"
|
||||
},
|
||||
{
|
||||
"fixed": "1.13.0"
|
||||
}
|
||||
]
|
||||
}
|
||||
],
|
||||
"ecosystem_specific": {}
|
||||
}
|
||||
],
|
||||
"references": [
|
||||
{
|
||||
"type": "ADVISORY",
|
||||
"url": "https://github.com/kyverno/kyverno/security/advisories/GHSA-qjvc-p88j-j9rm"
|
||||
},
|
||||
{
|
||||
"type": "ADVISORY",
|
||||
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-48921"
|
||||
}
|
||||
],
|
||||
"database_specific": {
|
||||
"url": "https://pkg.go.dev/vuln/GO-2024-3230",
|
||||
"review_status": "UNREVIEWED"
|
||||
}
|
||||
}
|
||||
|
|
@ -0,0 +1,18 @@
|
|||
id: GO-2024-3230
|
||||
modules:
|
||||
- module: github.com/kyverno/kyverno
|
||||
versions:
|
||||
- fixed: 1.13.0
|
||||
vulnerable_at: 1.13.0-rc.3
|
||||
summary: Kyverno's PolicyException objects can be created in any namespace by default in github.com/kyverno/kyverno
|
||||
cves:
|
||||
- CVE-2024-48921
|
||||
ghsas:
|
||||
- GHSA-qjvc-p88j-j9rm
|
||||
references:
|
||||
- advisory: https://github.com/kyverno/kyverno/security/advisories/GHSA-qjvc-p88j-j9rm
|
||||
- advisory: https://nvd.nist.gov/vuln/detail/CVE-2024-48921
|
||||
source:
|
||||
id: GHSA-qjvc-p88j-j9rm
|
||||
created: 2024-10-30T20:59:58.011655183Z
|
||||
review_status: UNREVIEWED
|
||||
Загрузка…
Ссылка в новой задаче