blob: 82022d5015908cbaa119c9b6156a0e0db2bf02c5 [file] [log] [blame]
// Copyright 2021 The Go Authors. All rights reserved.
// Use of this source code is governed by a BSD-style
// license that can be found in the LICENSE file.
// Code generated by gen_false_positives.go; DO NOT EDIT.
package worker
import "golang.org/x/vuln/srv/internal/worker/store"
var falsePositives = []*store.CVERecord{
{
ID: "CVE-2013-2124",
Path: "2013/2xxx/CVE-2013-2124.json",
BlobHash: "b1ff88f81a229ecf77fe19b4abcaea1188732b10",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"http://seclists.org/oss-sec/2013/q2/431",
"https://github.com/libguestfs/libguestfs/commit/fa6a76050d82894365dfe32916903ef7fee3ffcd",
"https://exchange.xforce.ibmcloud.com/vulnerabilities/85145",
"https://www.redhat.com/archives/libguestfs/2013-May/msg00079.html",
"https://www.redhat.com/archives/libguestfs/2013-May/msg00080.html",
"http://osvdb.org/93724",
"http://www.securityfocus.com/bid/60205",
},
},
{
ID: "CVE-2013-2233",
Path: "2013/2xxx/CVE-2013-2233.json",
BlobHash: "fff4e81581d35ca5feb18f441687a4e8ac2ef346",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://www.ansible.com/security",
"https://bugzilla.redhat.com/show_bug.cgi?id=980821",
"https://github.com/ansible/ansible/issues/857",
"http://www.openwall.com/lists/oss-security/2013/07/01/2",
"http://www.openwall.com/lists/oss-security/2013/07/02/6",
},
},
{
ID: "CVE-2014-0177",
Path: "2014/0xxx/CVE-2014-0177.json",
BlobHash: "2b106b8cbe92d17dbe0f40ef2bf8131a19a79dcc",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"http://secunia.com/advisories/58273",
"https://github.com/github/hub/commit/016ec99d25b1cb83cb4367e541177aa431beb600",
},
},
{
ID: "CVE-2014-3498",
Path: "2014/3xxx/CVE-2014-3498.json",
BlobHash: "82cec2c1ae4a884effa2c621469c9018ad07b09e",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/ansible/ansible/commit/8ed6350e65c82292a631f08845dfaacffe7f07f5",
"https://bugzilla.redhat.com/show_bug.cgi?id=1335551",
},
},
{
ID: "CVE-2014-3971",
Path: "2014/3xxx/CVE-2014-3971.json",
BlobHash: "cef39ff58a76f2b3b266e9fe49e3e1af75aa4199",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/mongodb/mongo/commit/c151e0660b9736fe66b224f1129a16871165251b",
"https://jira.mongodb.org/browse/SERVER-13753",
},
},
{
ID: "CVE-2014-4657",
Path: "2014/4xxx/CVE-2014-4657.json",
BlobHash: "973d958f719b33379fa47ac5330f68c79ad9b0f4",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/ansible/ansible/blob/release1.5.5/CHANGELOG.md",
"https://www.securityfocus.com/bid/68232",
},
},
{
ID: "CVE-2014-4658",
Path: "2014/4xxx/CVE-2014-4658.json",
BlobHash: "831c7a476ec7ddeebe0311821efd8ec207878b06",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/ansible/ansible/blob/release1.5.5/CHANGELOG.md",
"https://www.securityfocus.com/bid/68233",
},
},
{
ID: "CVE-2014-4659",
Path: "2014/4xxx/CVE-2014-4659.json",
BlobHash: "1fcaa970aab33beb1c8f5e94544a976060829bd5",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/ansible/ansible/blob/release1.5.5/CHANGELOG.md",
"https://www.securityfocus.com/bid/68234",
},
},
{
ID: "CVE-2014-4660",
Path: "2014/4xxx/CVE-2014-4660.json",
BlobHash: "1aff32c0d305a69e039cf6f5a909b9e3adb88965",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/ansible/ansible/blob/release1.5.5/CHANGELOG.md",
"https://www.securityfocus.com/bid/68231",
"https://www.openwall.com/lists/oss-security/2014/06/26/19",
"https://security-tracker.debian.org/tracker/CVE-2014-4660",
"https://github.com/ansible/ansible/commit/c4b5e46054c74176b2446c82d4df1a2610eddc08",
},
},
{
ID: "CVE-2014-4678",
Path: "2014/4xxx/CVE-2014-4678.json",
BlobHash: "453d55a513a567b647daee742272a73d06d2bbb3",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/ansible/ansible/commit/5429b85b9f6c2e640074176f36ff05fd5e4d1916",
"https://groups.google.com/forum/message/raw?msg=ansible-announce/ieV1vZvcTXU/5Q93ThkY9rIJ",
"https://security-tracker.debian.org/tracker/CVE-2014-4678",
"https://www.openwall.com/lists/oss-security/2014/06/26/30",
"https://www.openwall.com/lists/oss-security/2014/07/02/2",
"https://www.rapid7.com/db/vulnerabilities/gentoo-linux-cve-2014-4678",
"https://www.rapid7.com/db/vulnerabilities/freebsd-vid-2c493ac8-205e-11e5-a4a5-002590263bf5",
},
},
{
ID: "CVE-2014-4966",
Path: "2014/4xxx/CVE-2014-4966.json",
BlobHash: "e3378a01598473a0e0ec5b3576a3893236d1951e",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"http://www.ocert.org/advisories/ocert-2014-004.html",
"https://github.com/ansible/ansible/commit/62a1295a3e08cb6c3e9f1b2a1e6e5dcaeab32527",
},
},
{
ID: "CVE-2014-4967",
Path: "2014/4xxx/CVE-2014-4967.json",
BlobHash: "3db0b89320c00238e9ac985a46145a8735160af3",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"http://www.ocert.org/advisories/ocert-2014-004.html",
"https://github.com/ansible/ansible/commit/62a1295a3e08cb6c3e9f1b2a1e6e5dcaeab32527",
},
},
{
ID: "CVE-2014-8178",
Path: "2014/8xxx/CVE-2014-8178.json",
BlobHash: "c402c99f5ad15d2bb92c0cc2a1d200c61e8b3f5c",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"http://lists.opensuse.org/opensuse-updates/2015-10/msg00036.html",
"http://lists.opensuse.org/opensuse-security-announce/2015-10/msg00014.html",
"https://groups.google.com/forum/#!msg/docker-dev/bWVVtLNbFy8/UaefOqMOCAAJ",
"https://github.com/docker/docker/blob/master/CHANGELOG.md#183-2015-10-12",
"https://www.docker.com/legal/docker-cve-database",
},
},
{
ID: "CVE-2014-8179",
Path: "2014/8xxx/CVE-2014-8179.json",
BlobHash: "e4d44d6ea12f93279a9dd5ff4f305b87d7ede7cb",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"http://lists.opensuse.org/opensuse-updates/2015-10/msg00036.html",
"http://lists.opensuse.org/opensuse-security-announce/2015-10/msg00014.html",
"https://groups.google.com/forum/#!msg/docker-dev/bWVVtLNbFy8/UaefOqMOCAAJ",
"https://github.com/docker/docker/blob/master/CHANGELOG.md#183-2015-10-12",
"https://blog.docker.com/2015/10/security-release-docker-1-8-3-1-6-2-cs7/",
"https://www.docker.com/legal/docker-cve-database",
},
},
{
ID: "CVE-2014-8682",
Path: "2014/8xxx/CVE-2014-8682.json",
BlobHash: "0f015f20fd4dd01c859293025b0380a7d64c38e1",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"http://www.exploit-db.com/exploits/35238",
"https://exchange.xforce.ibmcloud.com/vulnerabilities/98694",
"http://packetstormsecurity.com/files/129117/Gogs-Repository-Search-SQL-Injection.html",
"http://seclists.org/fulldisclosure/2014/Nov/33",
"http://gogs.io/docs/intro/change_log.html",
"http://www.securityfocus.com/archive/1/533995/100/0/threaded",
"http://www.securityfocus.com/bid/71187",
"https://github.com/gogits/gogs/commit/0c5ba4573aecc9eaed669e9431a70a5d9f184b8d",
},
},
{
ID: "CVE-2014-9938",
Path: "2014/9xxx/CVE-2014-9938.json",
BlobHash: "9f74ca256c99ca814200cb62f3d5db211af77219",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/njhartwell/pw3nage",
"https://github.com/git/git/commit/8976500cbbb13270398d3b3e07a17b8cc7bff43f",
"https://access.redhat.com/errata/RHSA-2017:2004",
},
},
{
ID: "CVE-2015-5237",
Path: "2015/5xxx/CVE-2015-5237.json",
BlobHash: "12f3e517111a864cdaf06708bca08b1beefd91a9",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/google/protobuf/issues/760",
"http://www.openwall.com/lists/oss-security/2015/08/27/2",
"https://bugzilla.redhat.com/show_bug.cgi?id=1256426",
"https://lists.apache.org/thread.html/b0656d359c7d40ec9f39c8cc61bca66802ef9a2a12ee199f5b0c1442@%3Cdev.drill.apache.org%3E",
"https://lists.apache.org/thread.html/519eb0fd45642dcecd9ff74cb3e71c20a4753f7d82e2f07864b5108f@%3Cdev.drill.apache.org%3E",
"https://lists.apache.org/thread.html/f9bc3e55f4e28d1dcd1a69aae6d53e609a758e34d2869b4d798e13cc@%3Cissues.drill.apache.org%3E",
"https://lists.apache.org/thread.html/ra28fed69eef3a71e5fe5daea001d0456b05b102044237330ec5c7c82@%3Ccommits.pulsar.apache.org%3E",
"https://lists.apache.org/thread.html/r17dc6f394429f6bffb5e4c66555d93c2e9923cbbdc5a93db9a56c1c7@%3Ccommits.pulsar.apache.org%3E",
"https://lists.apache.org/thread.html/r42e47994734cd1980ef3e204a40555336e10cc80096927aca2f37d90@%3Ccommits.pulsar.apache.org%3E",
"https://lists.apache.org/thread.html/re6d04a214424a97ea59c62190d79316edf311a0a6346524dfef3b940@%3Ccommits.pulsar.apache.org%3E",
"https://lists.apache.org/thread.html/r1263fa5b51e4ec3cb8f09ff40e4747428c71198e9bee93349ec96a3c@%3Ccommits.pulsar.apache.org%3E",
"https://lists.apache.org/thread.html/r42ef6acfb0d86a2df0c2390702ecbe97d2104a331560f2790d17ca69@%3Ccommits.pulsar.apache.org%3E",
"https://lists.apache.org/thread.html/rb71dac1d9dd4e8a8ae3dbc033aeae514eda9be1263c1df3b42a530a2@%3Ccommits.pulsar.apache.org%3E",
"https://lists.apache.org/thread.html/r320dc858da88846ba00bb077bcca2cdf75b7dde0f6eb3a3d60dba6a1@%3Ccommits.pulsar.apache.org%3E",
"https://lists.apache.org/thread.html/r85c9a764b573c786224688cc906c27e28343e18f5b33387f94cae90f@%3Ccommits.pulsar.apache.org%3E",
"https://lists.apache.org/thread.html/r02e39d7beb32eebcdbb4b516e95f67d71c90d5d462b26f4078d21eeb@%3Cdev.flink.apache.org%3E",
"https://lists.apache.org/thread.html/r02e39d7beb32eebcdbb4b516e95f67d71c90d5d462b26f4078d21eeb@%3Cuser.flink.apache.org%3E",
"https://lists.apache.org/thread.html/r5e52caf41dc49df55b4ee80758356fe1ff2a88179ff24c685de7c28d@%3Ccommits.pulsar.apache.org%3E",
"https://lists.apache.org/thread.html/rf7539287c90be979bac94af9aaba34118fbf968864944b4871af48dd@%3Ccommits.pulsar.apache.org%3E",
"https://lists.apache.org/thread.html/r1d274d647b3c2060df9be21eade4ce56d3a59998cf19ac72662dd994@%3Ccommits.pulsar.apache.org%3E",
},
},
{
ID: "CVE-2015-5250",
Path: "2015/5xxx/CVE-2015-5250.json",
BlobHash: "a35f3719a75df2faff6d9702be23fd2a0f9c727f",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/openshift/origin/issues/4374",
"https://access.redhat.com/errata/RHSA-2015:1736",
"https://bugzilla.redhat.com/show_bug.cgi?id=1259867",
},
},
{
ID: "CVE-2015-6240",
Path: "2015/6xxx/CVE-2015-6240.json",
BlobHash: "6e0f9763e63ce17393bedf56ba538cde7e73d35f",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/ansible/ansible/commit/ca2f2c4ebd7b5e097eab0a710f79c1f63badf95b",
"http://www.openwall.com/lists/oss-security/2015/08/17/10",
"https://bugzilla.redhat.com/show_bug.cgi?id=1243468",
"https://github.com/ansible/ansible/commit/952166f48eb0f5797b75b160fd156bbe1e8fc647",
"https://lists.debian.org/debian-lts-announce/2019/09/msg00016.html",
},
},
{
ID: "CVE-2015-7082",
Path: "2015/7xxx/CVE-2015-7082.json",
BlobHash: "60475bed239cbaef4156695da083708a53b39c3c",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://support.apple.com/HT205642",
"http://lists.apple.com/archives/security-announce/2015/Dec/msg00004.html",
"https://github.com/git/git/blob/master/Documentation/RelNotes/2.5.4.txt",
"http://www.securitytracker.com/id/1034340",
},
},
{
ID: "CVE-2015-7528",
Path: "2015/7xxx/CVE-2015-7528.json",
BlobHash: "41b1d383e7e18cf2d4c312efccb9f3ebd99dd891",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/openshift/origin/pull/6113",
"https://github.com/kubernetes/kubernetes/releases/tag/v1.2.0-alpha.5",
"http://rhn.redhat.com/errata/RHSA-2015-2615.html",
"https://access.redhat.com/errata/RHSA-2015:2544",
"https://github.com/kubernetes/kubernetes/pull/17886",
},
},
{
ID: "CVE-2015-7545",
Path: "2015/7xxx/CVE-2015-7545.json",
BlobHash: "f3e7d53c4da88c237f053e914c122c4b392d6450",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"http://rhn.redhat.com/errata/RHSA-2015-2515.html",
"http://lists.opensuse.org/opensuse-updates/2015-11/msg00066.html",
"https://security.gentoo.org/glsa/201605-01",
"http://www.openwall.com/lists/oss-security/2015/12/08/5",
"https://lkml.org/lkml/2015/10/5/683",
"https://github.com/git/git/blob/master/Documentation/RelNotes/2.6.1.txt",
"http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html",
"http://www.securitytracker.com/id/1034501",
"http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html",
"http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html",
"https://bugzilla.redhat.com/show_bug.cgi?id=1269794",
"https://github.com/git/git/blob/master/Documentation/RelNotes/2.3.10.txt",
"http://www.ubuntu.com/usn/USN-2835-1",
"https://kernel.googlesource.com/pub/scm/git/git/+/33cfccbbf35a56e190b79bdec5c85457c952a021",
"https://github.com/git/git/blob/master/Documentation/RelNotes/2.5.4.txt",
"http://www.openwall.com/lists/oss-security/2015/12/11/7",
"http://www.securityfocus.com/bid/78711",
"http://www.openwall.com/lists/oss-security/2015/12/09/8",
"https://github.com/git/git/blob/master/Documentation/RelNotes/2.4.10.txt",
"http://www.slackware.com/security/viewer.php?l=slackware-security&y=2016&m=slackware-security.533255",
"http://www.debian.org/security/2016/dsa-3435",
},
},
{
ID: "CVE-2015-7561",
Path: "2015/7xxx/CVE-2015-7561.json",
BlobHash: "43b0e2034d6c4eb6d2701ef83d8fd26625e9f7fc",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/kubernetes/kubernetes/pull/18909",
"https://bugzilla.redhat.com/show_bug.cgi?id=1291963",
},
},
{
ID: "CVE-2015-8222",
Path: "2015/8xxx/CVE-2015-8222.json",
BlobHash: "ae2fc7029a0c22b3dca5c4e94ee99991c5a561b6",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://bugs.launchpad.net/ubuntu/+source/lxd/+bug/1515689",
"http://www.ubuntu.com/usn/USN-2809-1",
"https://github.com/lxc/lxd/issues/1307",
},
},
{
ID: "CVE-2015-8945",
Path: "2015/8xxx/CVE-2015-8945.json",
BlobHash: "cfbcfd20b67906928751c09053531cd9f79a6000",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"http://www.openwall.com/lists/oss-security/2016/07/13/9",
"http://www.securityfocus.com/bid/91776",
"http://www.openwall.com/lists/oss-security/2016/07/13/10",
"https://github.com/openshift/origin/issues/3951",
},
},
{
ID: "CVE-2015-9258",
Path: "2015/9xxx/CVE-2015-9258.json",
BlobHash: "3cb299ef650530e5b4fa3b8015b92ab1e97acc49",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://docs.docker.com/notary/changelog/",
"https://github.com/theupdateframework/notary/blob/master/docs/resources/ncc_docker_notary_audit_2015_07_31.pdf",
},
},
{
ID: "CVE-2015-9259",
Path: "2015/9xxx/CVE-2015-9259.json",
BlobHash: "107d41dfd5a02a2db4210d326eef52762e6614eb",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://docs.docker.com/notary/changelog/",
"https://github.com/theupdateframework/notary/blob/master/docs/resources/ncc_docker_notary_audit_2015_07_31.pdf",
},
},
{
ID: "CVE-2015-9282",
Path: "2015/9xxx/CVE-2015-9282.json",
BlobHash: "583dfbf04222a32d8a542ff502b858a73e00c199",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/grafana/piechart-panel/pull/163",
"https://github.com/grafana/grafana/issues/4117",
"https://github.com/grafana/piechart-panel/issues/3",
"https://padlock.argh.in/2019/02/05/exploiting-xss-grafana.html",
},
},
{
ID: "CVE-2016-0216",
Path: "2016/0xxx/CVE-2016-0216.json",
BlobHash: "ac9f59c6700576b5936dc014ce265ee0c9a41097",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"http://www.ibm.com/support/docview.wss?uid=swg21975358",
"http://www.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_multiple_security_vulnerabilities_in_ibm_tivoli_storage_manager_fastback_cve_2016_0212_cve_2016_0213_cve_2016_0216",
},
},
{
ID: "CVE-2016-1133",
Path: "2016/1xxx/CVE-2016-1133.json",
BlobHash: "e8c8db08c23519674cff28190d7799f409074600",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/h2o/h2o/issues/682",
"https://github.com/h2o/h2o/issues/684",
"http://jvndb.jvn.jp/jvndb/JVNDB-2016-000003",
"http://jvn.jp/en/jp/JVN45928828/index.html",
"https://h2o.examp1e.net/vulnerabilities.html#CVE-2016-1133",
},
},
{
ID: "CVE-2016-1544",
Path: "2016/1xxx/CVE-2016-1544.json",
BlobHash: "d441f5bd9f88bee233d06b76ebd092ac8ccccc7b",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://bugzilla.redhat.com/show_bug.cgi?id=1308461",
"https://github.com/nghttp2/nghttp2/releases/tag/v1.7.1",
"https://github.com/nghttp2/nghttp2/compare/v1.7.0...v1.7.1",
"https://security.gentoo.org/glsa/201612-13",
"http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177666.html",
"http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177308.html",
},
},
{
ID: "CVE-2016-1587",
Path: "2016/1xxx/CVE-2016-1587.json",
BlobHash: "d9e8ff0aad59fd3f73ea4387b62d42ba264e9f81",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/snapcore/snapweb/commit/3f4cf9403f7687fbc8e27c0e01b2cf6aa5e7e0d5",
},
},
{
ID: "CVE-2016-1905",
Path: "2016/1xxx/CVE-2016-1905.json",
BlobHash: "75a910c29b4ebf972c647ddc13c6f49d849be835",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/kubernetes/kubernetes/issues/19479",
"https://access.redhat.com/errata/RHSA-2016:0070",
},
},
{
ID: "CVE-2016-1906",
Path: "2016/1xxx/CVE-2016-1906.json",
BlobHash: "9241866e7adb1f68453b4c01c53f5f723d86365d",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/openshift/origin/issues/6556",
"https://github.com/openshift/origin/pull/6576",
"https://access.redhat.com/errata/RHSA-2016:0070",
"https://access.redhat.com/errata/RHSA-2016:0351",
},
},
{
ID: "CVE-2016-2160",
Path: "2016/2xxx/CVE-2016-2160.json",
BlobHash: "0c47ebe1754218401ccca83d9fc098ab2888c24a",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/openshift/origin/pull/7864",
"https://access.redhat.com/errata/RHSA-2016:1064",
"https://bugzilla.redhat.com/show_bug.cgi?id=1316127",
},
},
{
ID: "CVE-2016-2183",
Path: "2016/2xxx/CVE-2016-2183.json",
BlobHash: "a0a8a4df4906c4afe4e07f9cca42696252858f12",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://access.redhat.com/errata/RHSA-2017:3113",
"http://rhn.redhat.com/errata/RHSA-2017-0338.html",
"https://security.gentoo.org/glsa/201612-16",
"https://access.redhat.com/errata/RHSA-2017:3240",
"https://access.redhat.com/errata/RHSA-2017:2709",
"http://www.securityfocus.com/bid/92630",
"https://access.redhat.com/errata/RHSA-2017:3239",
"https://security.gentoo.org/glsa/201701-65",
"http://www.securitytracker.com/id/1036696",
"https://security.gentoo.org/glsa/201707-01",
"http://www.securityfocus.com/bid/95568",
"https://access.redhat.com/errata/RHSA-2017:3114",
"https://access.redhat.com/errata/RHSA-2017:1216",
"https://access.redhat.com/errata/RHSA-2017:2710",
"https://www.ietf.org/mail-archive/web/tls/current/msg04560.html",
"https://access.redhat.com/errata/RHSA-2018:2123",
"http://rhn.redhat.com/errata/RHSA-2017-0337.html",
"https://access.redhat.com/errata/RHSA-2017:2708",
"http://rhn.redhat.com/errata/RHSA-2017-0336.html",
"http://lists.opensuse.org/opensuse-security-announce/2016-10/msg00013.html",
"http://rhn.redhat.com/errata/RHSA-2017-0462.html",
"https://access.redhat.com/errata/RHSA-2019:1245",
"https://access.redhat.com/errata/RHSA-2019:2859",
"https://access.redhat.com/errata/RHSA-2020:0451",
"https://www.oracle.com/security-alerts/cpuapr2020.html",
"http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html",
"http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html",
"https://www.oracle.com/security-alerts/cpujul2020.html",
"http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html",
"https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html",
"https://www.oracle.com/security-alerts/cpujan2020.html",
"http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html",
"http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10759",
"http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html",
"https://www.tenable.com/security/tns-2016-20",
"https://sweet32.info/",
"http://www.splunk.com/view/SP-CAAAPUE",
"https://bugzilla.redhat.com/show_bug.cgi?id=1369383",
"https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbgn03765en_us",
"https://blog.cryptographyengineering.com/2016/08/24/attack-of-week-64-bit-ciphers-in-tls/",
"http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2016-3090545.html",
"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05369403",
"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05385680",
"https://access.redhat.com/articles/2548661",
"https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40312",
"https://www.teskalabs.com/blog/teskalabs-bulletin-160826-seacat-sweet32-issue",
"http://www.splunk.com/view/SP-CAAAPSV",
"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05369415",
"http://www-01.ibm.com/support/docview.wss?uid=swg21995039",
"https://github.com/ssllabs/ssllabs-scan/issues/387#issuecomment-242514633",
"https://nodejs.org/en/blog/vulnerability/september-2016-security-releases/",
"https://www.tenable.com/security/tns-2016-16",
"https://www.sigsac.org/ccs/CCS2016/accepted-papers/",
"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05349499",
"https://www.tenable.com/security/tns-2016-21",
"https://kc.mcafee.com/corporate/index?page=content&id=SB10171",
"http://www-01.ibm.com/support/docview.wss?uid=swg21991482",
"https://www.openssl.org/blog/blog/2016/08/24/sweet32/",
"https://access.redhat.com/security/cve/cve-2016-2183",
"https://www.nccgroup.trust/us/about-us/newsroom-and-events/blog/2016/august/new-practical-attacks-on-64-bit-block-ciphers-3des-blowfish/",
"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05390722",
"https://ics-cert.us-cert.gov/advisories/ICSMA-18-058-02",
"https://security.netapp.com/advisory/ntap-20160915-0001/",
"https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03725en_us",
"https://bto.bluecoat.com/security-advisory/sa133",
"https://www.tenable.com/security/tns-2017-09",
"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05390849",
"http://www.oracle.com/technetwork/topics/security/ovmbulletinoct2016-3090547.html",
"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05323116",
"https://security.netapp.com/advisory/ntap-20170119-0001/",
"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05309984",
"https://nakedsecurity.sophos.com/2016/08/25/anatomy-of-a-cryptographic-collision-the-sweet32-attack/",
"https://www.mitel.com/en-ca/support/security-advisories/mitel-product-security-advisory-17-0008",
"http://www-01.ibm.com/support/docview.wss?uid=nas8N1021697",
"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05356388",
"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05302448",
"https://kc.mcafee.com/corporate/index?page=content&id=SB10310",
"https://www.oracle.com/security-alerts/cpuoct2020.html",
},
},
{
ID: "CVE-2016-2315",
Path: "2016/2xxx/CVE-2016-2315.json",
BlobHash: "baa983753eeb8f4f588796fc6bb2a6da00b24638",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00074.html",
"http://lists.fedoraproject.org/pipermail/package-announce/2016-April/183147.html",
"http://www.debian.org/security/2016/dsa-3521",
"http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html",
"https://security.gentoo.org/glsa/201605-01",
"http://www.securitytracker.com/id/1035290",
"http://www.securityfocus.com/bid/84355",
"http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00062.html",
"http://pastebin.com/UX2P2jjg",
"http://lists.fedoraproject.org/pipermail/package-announce/2016-March/180763.html",
"http://www.openwall.com/lists/oss-security/2016/03/15/5",
"http://lists.opensuse.org/opensuse-updates/2016-04/msg00011.html",
"http://rhn.redhat.com/errata/RHSA-2016-0496.html",
"http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html",
"https://github.com/git/git/commit/34fa79a6cde56d6d428ab0d3160cb094ebad3305",
"https://github.com/git/git/commit/de1e67d0703894cb6ea782e36abb63976ab07e60",
"https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.7.4.txt",
"http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00061.html",
"http://www.ubuntu.com/usn/USN-2938-1",
"http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00071.html",
"http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00077.html",
"http://lists.fedoraproject.org/pipermail/package-announce/2016-March/179121.html",
"http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00076.html",
"http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00059.html",
"http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00060.html",
},
},
{
ID: "CVE-2016-2324",
Path: "2016/2xxx/CVE-2016-2324.json",
BlobHash: "9e5d38706848fe52155db5714fce80caef9ce6f2",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00074.html",
"http://lists.fedoraproject.org/pipermail/package-announce/2016-April/183147.html",
"http://www.debian.org/security/2016/dsa-3521",
"http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html",
"https://security.gentoo.org/glsa/201605-01",
"http://www.securitytracker.com/id/1035290",
"http://www.securityfocus.com/bid/84355",
"http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00062.html",
"http://pastebin.com/UX2P2jjg",
"http://lists.fedoraproject.org/pipermail/package-announce/2016-March/180763.html",
"http://www.openwall.com/lists/oss-security/2016/03/15/5",
"http://lists.opensuse.org/opensuse-updates/2016-04/msg00011.html",
"http://rhn.redhat.com/errata/RHSA-2016-0496.html",
"http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html",
"https://github.com/git/git/commit/de1e67d0703894cb6ea782e36abb63976ab07e60",
"https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.7.4.txt",
"http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00061.html",
"http://www.ubuntu.com/usn/USN-2938-1",
"http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00071.html",
"http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00077.html",
"http://lists.fedoraproject.org/pipermail/package-announce/2016-March/179121.html",
"http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00076.html",
"http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00059.html",
"http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00060.html",
},
},
{
ID: "CVE-2016-3096",
Path: "2016/3xxx/CVE-2016-3096.json",
BlobHash: "281e6714266b6074e0d92811e7af8d9c3d959282",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://bugzilla.redhat.com/show_bug.cgi?id=1322925",
"http://lists.fedoraproject.org/pipermail/package-announce/2016-April/183274.html",
"http://lists.fedoraproject.org/pipermail/package-announce/2016-April/183252.html",
"https://github.com/ansible/ansible-modules-extras/pull/1941/commits/8c6fe646ee79f5e55361b885b7efed5bec72d4a4",
"http://lists.fedoraproject.org/pipermail/package-announce/2016-May/184175.html",
"https://github.com/ansible/ansible/blob/v2.0.2.0-1/CHANGELOG.md#202-over-the-hills-and-far-away",
"http://lists.fedoraproject.org/pipermail/package-announce/2016-April/183132.html",
"http://lists.fedoraproject.org/pipermail/package-announce/2016-April/183103.html",
"https://groups.google.com/forum/#!topic/ansible-announce/tqiZbcWxYig",
"https://security.gentoo.org/glsa/201607-14",
"https://groups.google.com/forum/#!topic/ansible-announce/E80HLZilTU0",
"https://github.com/ansible/ansible-modules-extras/pull/1941",
"https://github.com/ansible/ansible/blob/v1.9.6-1/CHANGELOG.md#196-dancing-in-the-street---tbd",
},
},
{
ID: "CVE-2016-3711",
Path: "2016/3xxx/CVE-2016-3711.json",
BlobHash: "8115e08eb0b2daa8c0fc3a4f25d7ec056218bb0e",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://access.redhat.com/errata/RHSA-2016:1064",
"https://github.com/openshift/origin/pull/8334",
},
},
{
ID: "CVE-2016-4817",
Path: "2016/4xxx/CVE-2016-4817.json",
BlobHash: "43ee499860a7df5230da7220fdc287ed0a73ee96",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/h2o/h2o/commit/1c0808d580da09fdec5a9a74ff09e103ea058dd4",
"http://jvn.jp/en/jp/JVN87859762/index.html",
"https://github.com/h2o/h2o/pull/920",
"http://jvndb.jvn.jp/jvndb/JVNDB-2016-000091",
},
},
{
ID: "CVE-2016-4864",
Path: "2016/4xxx/CVE-2016-4864.json",
BlobHash: "db81b848bc530e5a932de1f97ee588da3ceed6e3",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/h2o/h2o/issues/1077",
"https://jvn.jp/en/jp/JVN94779084/index.html",
},
},
{
ID: "CVE-2016-6349",
Path: "2016/6xxx/CVE-2016-6349.json",
BlobHash: "026a929cc732d3e16f3707b0e77927431839df10",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"http://www.openwall.com/lists/oss-security/2016/07/26/9",
"https://bugzilla.redhat.com/show_bug.cgi?id=1360634",
"http://www.openwall.com/lists/oss-security/2016/10/13/7",
"https://github.com/projectatomic/oci-register-machine/pull/22",
"http://www.securityfocus.com/bid/92143",
},
},
{
ID: "CVE-2016-6494",
Path: "2016/6xxx/CVE-2016-6494.json",
BlobHash: "58fb6d3b0cfbca0fc47b3d74bee4093d056e06bc",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://bugzilla.redhat.com/show_bug.cgi?id=1362553",
"http://www.openwall.com/lists/oss-security/2016/07/29/8",
"https://github.com/mongodb/mongo/commit/035cf2afc04988b22cb67f4ebfd77e9b344cb6e0",
"http://www.securityfocus.com/bid/92204",
"https://jira.mongodb.org/browse/SERVER-25335",
"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5MCE2ZLFBNOK3TTWSTXZJQGZVP4EEJDL/",
"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=832908",
"http://www.openwall.com/lists/oss-security/2016/07/29/4",
},
},
{
ID: "CVE-2016-7063",
Path: "2016/7xxx/CVE-2016-7063.json",
BlobHash: "0e23338923c32c85922d4e928bb484a8d85dd32d",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/pritunl/pritunl-client-electron/releases/tag/1.0.1116.6,",
"https://lf.lc/CVE-2016-7063.txt",
"https://github.com/pritunl/pritunl-client-electron/releases/tag/1.0.1116.6",
},
},
{
ID: "CVE-2016-7064",
Path: "2016/7xxx/CVE-2016-7064.json",
BlobHash: "3d76d334ba98d7f5a2217446c7fc9ea78a9fed49",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://lf.lc/CVE-2016-7064.txt",
"https://github.com/pritunl/pritunl-client-electron/releases/tag/1.0.1116.6",
},
},
{
ID: "CVE-2016-7075",
Path: "2016/7xxx/CVE-2016-7075.json",
BlobHash: "f6822fb04347ec41f06e43ae10cc6c9e14752055",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/kubernetes/kubernetes/issues/34517",
"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-7075",
"https://access.redhat.com/errata/RHSA-2016:2064",
},
},
{
ID: "CVE-2016-7569",
Path: "2016/7xxx/CVE-2016-7569.json",
BlobHash: "a8f50811c4301d4f693d341f998650d54a710e4c",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/appc/docker2aci/issues/201",
"https://github.com/appc/docker2aci/releases/tag/v0.13.0",
"http://www.openwall.com/lists/oss-security/2016/09/28/2",
"http://www.openwall.com/lists/oss-security/2016/09/28/4",
"http://www.securityfocus.com/bid/93194",
},
},
{
ID: "CVE-2016-7835",
Path: "2016/7xxx/CVE-2016-7835.json",
BlobHash: "7bd0c8f8398f8e219cfc5875e710825f9847ae0a",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"http://www.securityfocus.com/bid/95061",
"https://github.com/h2o/h2o/issues/1144",
"https://jvn.jp/en/jp/JVN44566208/index.html",
},
},
{
ID: "CVE-2016-8579",
Path: "2016/8xxx/CVE-2016-8579.json",
BlobHash: "5a1e6220d014e3f9377352389fa43c63accb6625",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/appc/docker2aci/issues/203",
"http://www.securityfocus.com/bid/93560",
},
},
{
ID: "CVE-2016-9274",
Path: "2016/9xxx/CVE-2016-9274.json",
BlobHash: "96470ffc56da89ea8fc11f458e71ef111ec5df1b",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"http://www.securityfocus.com/bid/94289",
"https://github.com/git-for-windows/git/issues/944",
"https://www.youtube.com/watch?v=S7jOLv0sul0",
},
},
{
ID: "CVE-2016-9962",
Path: "2016/9xxx/CVE-2016-9962.json",
BlobHash: "c0f980f342321bb14cac1d5de7c6cf207e5c64b9",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"http://www.securityfocus.com/bid/95361",
"https://github.com/docker/docker/releases/tag/v1.12.6",
"http://rhn.redhat.com/errata/RHSA-2017-0116.html",
"http://seclists.org/fulldisclosure/2017/Jan/29",
"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WUQ3MQNEL5IBZZLMLR72Q4YDCL2SCKRK/",
"https://bugzilla.suse.com/show_bug.cgi?id=1012568#c6",
"https://security.gentoo.org/glsa/201701-34",
"http://rhn.redhat.com/errata/RHSA-2017-0123.html",
"https://github.com/opencontainers/runc/commit/50a19c6ff828c58e5dab13830bd3dacde268afe5",
"http://rhn.redhat.com/errata/RHSA-2017-0127.html",
"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FINGBFMIXBG6B6ZWYH3TMRP5V3PDBNXR/",
"https://access.redhat.com/security/vulnerabilities/cve-2016-9962",
"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BQAXJMMLRU7DD2IMG47SR2K4BOFFG7FZ/",
"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UVM7FCOQMPKOFLDTUYSS4ES76DDM56VP/",
"http://www.securityfocus.com/archive/1/540001/100/0/threaded",
"http://seclists.org/fulldisclosure/2017/Jan/21",
},
},
{
ID: "CVE-2017-1000056",
Path: "2017/1000xxx/CVE-2017-1000056.json",
BlobHash: "186cdca5f767cbd623a39f1b68889db80497e830",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/kubernetes/kubernetes/issues/43459",
},
},
{
ID: "CVE-2017-1000069",
Path: "2017/1000xxx/CVE-2017-1000069.json",
BlobHash: "942314c0d69828503afd2d44f4db106c1d9a30b3",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/bitly/oauth2_proxy/pull/360",
},
},
{
ID: "CVE-2017-1000070",
Path: "2017/1000xxx/CVE-2017-1000070.json",
BlobHash: "0e401cf5656d411d45e09c34c597b0f081a97387",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/bitly/oauth2_proxy/pull/359",
"https://tools.ietf.org/html/rfc6819#section-5.2.3.5",
},
},
{
ID: "CVE-2017-1000420",
Path: "2017/1000xxx/CVE-2017-1000420.json",
BlobHash: "ec203dd2d562b299c55bc03e6b0faac0017424d1",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/syncthing/syncthing/issues/4286",
},
},
{
ID: "CVE-2017-1000459",
Path: "2017/1000xxx/CVE-2017-1000459.json",
BlobHash: "e95287afe54b0c5f194f27d41bae9cd4c76cd6b3",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/leanote/leanote/issues/676",
},
},
{
ID: "CVE-2017-1000492",
Path: "2017/1000xxx/CVE-2017-1000492.json",
BlobHash: "2d9e9e6b632c0519380b320d1fb3329d948014a7",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/leanote/leanote/issues/695",
"https://github.com/leanote/desktop-app/commit/a2ed226637f8e66c9b089784b5e58eccf2e2fb30",
},
},
{
ID: "CVE-2017-1002100",
Path: "2017/1002xxx/CVE-2017-1002100.json",
BlobHash: "fca5a4aa6327f1653b40a0a3c9b6ced4e696afac",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://groups.google.com/d/msg/kubernetes-security-announce/n3VBg_WJZic/-ddIqKXqAAAJ",
"https://github.com/kubernetes/kubernetes/issues/47611",
},
},
{
ID: "CVE-2017-1002101",
Path: "2017/1002xxx/CVE-2017-1002101.json",
BlobHash: "a8c2bdc2f9c60764e9f1881ec7b2d23aec704e94",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://access.redhat.com/errata/RHSA-2018:0475",
"https://github.com/kubernetes/kubernetes/issues/60813",
"https://github.com/bgeesaman/subpath-exploit/",
"http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00041.html",
},
},
{
ID: "CVE-2017-1002102",
Path: "2017/1002xxx/CVE-2017-1002102.json",
BlobHash: "0cc34b8d285c1bcca9e23488088138fa92dd35d7",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://access.redhat.com/errata/RHSA-2018:0475",
"https://github.com/kubernetes/kubernetes/issues/60814",
},
},
{
ID: "CVE-2017-10868",
Path: "2017/10xxx/CVE-2017-10868.json",
BlobHash: "40c59280c218983748803e23264c99c42dad0bcf",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/h2o/h2o/issues/1459",
"https://jvn.jp/en/jp/JVN84182676/index.html",
},
},
{
ID: "CVE-2017-10869",
Path: "2017/10xxx/CVE-2017-10869.json",
BlobHash: "0009cbdc8d02be0391670e6bb017f95f533f59b6",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/h2o/h2o/issues/1460",
"https://jvn.jp/en/jp/JVN84182676/index.html",
},
},
{
ID: "CVE-2017-10872",
Path: "2017/10xxx/CVE-2017-10872.json",
BlobHash: "6d844466776fc894414a92d578ce5c84790e2b8b",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/h2o/h2o/issues/1543",
"https://jvn.jp/en/jp/JVN84182676/index.html",
},
},
{
ID: "CVE-2017-10908",
Path: "2017/10xxx/CVE-2017-10908.json",
BlobHash: "21924f0076822602a678bcbf7cd22669d4fd1a9e",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/h2o/h2o/issues/1544",
"https://jvn.jp/en/jp/JVN84182676/index.html",
},
},
{
ID: "CVE-2017-14178",
Path: "2017/14xxx/CVE-2017-14178.json",
BlobHash: "9b2bf5cbcc763d491a503ac41067282c665e9abc",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-14178.html",
"https://launchpad.net/bugs/1730255",
"https://github.com/snapcore/snapd/pull/4194",
},
},
{
ID: "CVE-2017-14623",
Path: "2017/14xxx/CVE-2017-14623.json",
BlobHash: "f524aeead96962abc23351d740022553e73757ad",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/go-ldap/ldap/pull/126",
"https://github.com/go-ldap/ldap/commit/95ede1266b237bf8e9aa5dce0b3250e51bfefe66",
},
},
{
ID: "CVE-2017-14992",
Path: "2017/14xxx/CVE-2017-14992.json",
BlobHash: "366ff53d9a34d20004a471ca091b29cec6683a1c",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://blog.cloudpassage.com/2017/10/13/discovering-docker-cve-2017-14992/",
"https://github.com/moby/moby/issues/35075",
},
},
{
ID: "CVE-2017-15104",
Path: "2017/15xxx/CVE-2017-15104.json",
BlobHash: "a7df93ede38ff481692b22f5712a90ee83b711cf",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://access.redhat.com/errata/RHSA-2017:3481",
"https://bugzilla.redhat.com/show_bug.cgi?id=1510149",
"https://access.redhat.com/security/cve/CVE-2017-15104",
"https://github.com/heketi/heketi/releases/tag/v5.0.1",
},
},
{
ID: "CVE-2017-16539",
Path: "2017/16xxx/CVE-2017-16539.json",
BlobHash: "342b31363374a3a6d961be5d73aaeeb7744dbdd4",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://marc.info/?l=linux-scsi&m=150985455801444&w=2",
"https://github.com/moby/moby/pull/35399/commits/a21ecdf3c8a343a7c94e4c4d01b178c87ca7aaa1",
"https://marc.info/?l=linux-scsi&m=150985062200941&w=2",
"https://github.com/moby/moby/pull/35399",
"https://twitter.com/ewindisch/status/926443521820774401",
},
},
{
ID: "CVE-2017-17697",
Path: "2017/17xxx/CVE-2017-17697.json",
BlobHash: "274e9aad2132a7c49c11a1d9265628c3f447edc7",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/vmware/harbor/issues/3755",
},
},
{
ID: "CVE-2017-2428",
Path: "2017/2xxx/CVE-2017-2428.json",
BlobHash: "2d3da11d967f8a98955fa00d3b879bf3bf93d9ff",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"http://www.securityfocus.com/bid/97146",
"https://support.apple.com/HT207601",
"https://support.apple.com/HT207615",
"http://www.securitytracker.com/id/1038138",
"https://github.com/nghttp2/nghttp2/releases/tag/v1.17.0",
"https://support.apple.com/HT207602",
"https://support.apple.com/HT207617",
},
},
{
ID: "CVE-2017-7297",
Path: "2017/7xxx/CVE-2017-7297.json",
BlobHash: "80de817b1932c2418c6fc3627767d44227b54e48",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"http://www.securityfocus.com/bid/97180",
"https://github.com/rancher/rancher/issues/8296",
},
},
{
ID: "CVE-2017-7481",
Path: "2017/7xxx/CVE-2017-7481.json",
BlobHash: "e2b8ae7ce6b93ece51f2ed17bb5113b55e8bbb6e",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://access.redhat.com/errata/RHSA-2017:1599",
"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7481",
"https://access.redhat.com/errata/RHSA-2017:1334",
"http://www.securityfocus.com/bid/98492",
"https://github.com/ansible/ansible/commit/ed56f51f185a1ffd7ea57130d260098686fcc7c2",
"https://access.redhat.com/errata/RHSA-2017:1244",
"https://access.redhat.com/errata/RHSA-2017:1499",
"https://access.redhat.com/errata/RHSA-2017:2524",
"https://access.redhat.com/errata/RHSA-2017:1476",
"https://usn.ubuntu.com/4072-1/",
"https://lists.debian.org/debian-lts-announce/2021/01/msg00023.html",
},
},
{
ID: "CVE-2017-7550",
Path: "2017/7xxx/CVE-2017-7550.json",
BlobHash: "ad7744ea58016c1de5573869da0544f1d8e0b16c",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://bugzilla.redhat.com/show_bug.cgi?id=1473645",
"https://github.com/ansible/ansible/issues/30874",
"https://access.redhat.com/errata/RHSA-2017:2966",
},
},
{
ID: "CVE-2017-7860",
Path: "2017/7xxx/CVE-2017-7860.json",
BlobHash: "13a2228e63f0f46795b242bd8cb4ad797cb9cbe2",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=661",
"http://www.securityfocus.com/bid/97695",
"https://github.com/grpc/grpc/pull/9833",
},
},
{
ID: "CVE-2017-7861",
Path: "2017/7xxx/CVE-2017-7861.json",
BlobHash: "453130af5b5b8010111e42cc388fbc5f43aa889e",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"http://www.securityfocus.com/bid/97694",
"https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=655",
"https://github.com/grpc/grpc/pull/9833",
},
},
{
ID: "CVE-2017-8359",
Path: "2017/8xxx/CVE-2017-8359.json",
BlobHash: "5e8f0f8ef3da14ba375263bc03884a3410ac6fcb",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=726",
"http://www.securityfocus.com/bid/98280",
"https://github.com/grpc/grpc/pull/10353",
},
},
{
ID: "CVE-2017-9431",
Path: "2017/9xxx/CVE-2017-9431.json",
BlobHash: "2d6834e7c3d19ddb7baffd0160fd61e30779fdf5",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/grpc/grpc/pull/10492",
"https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=1018",
},
},
{
ID: "CVE-2018-0608",
Path: "2018/0xxx/CVE-2018-0608.json",
BlobHash: "045fec41d17861f86b541869d397c5e280854bb6",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"http://jvn.jp/en/jp/JVN93226941/index.html",
"https://github.com/h2o/h2o/issues/1775",
},
},
{
ID: "CVE-2018-1000400",
Path: "2018/1000xxx/CVE-2018-1000400.json",
BlobHash: "055327cc1b43bc98c8260ca9ca9e7f89c7ae1b78",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/kubernetes-incubator/cri-o/pull/1558/files",
"http://www.securityfocus.com/bid/104262",
},
},
{
ID: "CVE-2018-1000538",
Path: "2018/1000xxx/CVE-2018-1000538.json",
BlobHash: "4693085bc7714393c2fd0e1980970276c9b71687",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/minio/minio/commit/9c8b7306f55f2c8c0a5c7cea9a8db9d34be8faa7#diff-e8c3bc9bc83b5516d0cc806cd461d08bL220",
"https://github.com/minio/minio/pull/5957",
},
},
{
ID: "CVE-2018-1000803",
Path: "2018/1000xxx/CVE-2018-1000803.json",
BlobHash: "bbc1d2ebc7f13f350461116c8aecfb6a0c37f33b",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/go-gitea/gitea/pull/4664/files#diff-146e0c2b5bb1ea96c9fb73d509456e57",
"https://github.com/go-gitea/gitea/pull/4664",
},
},
{
ID: "CVE-2018-1000816",
Path: "2018/1000xxx/CVE-2018-1000816.json",
BlobHash: "196777c6a21062d6742ad28759a97637e00fae1b",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/grafana/grafana/issues/13667",
},
},
{
ID: "CVE-2018-1002100",
Path: "2018/1002xxx/CVE-2018-1002100.json",
BlobHash: "273200b8208ce84c1b7d42550668a98582c7b8ef",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/kubernetes/kubernetes/issues/61297",
"https://hansmi.ch/articles/2018-04-openshift-s2i-security",
"https://bugzilla.redhat.com/show_bug.cgi?id=1564305",
},
},
{
ID: "CVE-2018-1002101",
Path: "2018/1002xxx/CVE-2018-1002101.json",
BlobHash: "c2cd4cfd92f5f066c2bf9308363a395b2a8449fd",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/kubernetes/kubernetes/issues/65750",
"http://www.securityfocus.com/bid/106238",
"https://security.netapp.com/advisory/ntap-20190416-0008/",
},
},
{
ID: "CVE-2018-1002102",
Path: "2018/1002xxx/CVE-2018-1002102.json",
BlobHash: "96adf20e2429475ae67e72233f65159e2aad09a7",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/kubernetes/kubernetes/issues/85867",
"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/Q56CULSH7F7BC4NPS67ZS23ZCLL5TIVK/",
},
},
{
ID: "CVE-2018-1002103",
Path: "2018/1002xxx/CVE-2018-1002103.json",
BlobHash: "d1edbbcfd99863eb063b5d1f04ade5374143ac11",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/kubernetes/minikube/issues/3208",
},
},
{
ID: "CVE-2018-1002104",
Path: "2018/1002xxx/CVE-2018-1002104.json",
BlobHash: "1c10a1a861a08030cabafb1f0972a657871acf6c",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/kubernetes/ingress-nginx/pull/3125",
},
},
{
ID: "CVE-2018-1002105",
Path: "2018/1002xxx/CVE-2018-1002105.json",
BlobHash: "153ef110d19435a06c78b5f7499c1b6c9a991723",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://groups.google.com/forum/#!topic/kubernetes-announce/GVllWCg6L88",
"https://www.exploit-db.com/exploits/46053/",
"https://access.redhat.com/errata/RHSA-2018:3549",
"https://access.redhat.com/errata/RHSA-2018:3752",
"https://www.exploit-db.com/exploits/46052/",
"https://access.redhat.com/errata/RHSA-2018:3624",
"https://www.coalfire.com/The-Coalfire-Blog/December-2018/Kubernetes-Vulnerability-What-You-Can-Should-Do",
"https://github.com/kubernetes/kubernetes/issues/71411",
"https://access.redhat.com/errata/RHSA-2018:3742",
"https://access.redhat.com/errata/RHSA-2018:3754",
"https://access.redhat.com/errata/RHSA-2018:3537",
"https://github.com/evict/poc_CVE-2018-1002105",
"https://access.redhat.com/errata/RHSA-2018:3598",
"https://access.redhat.com/errata/RHSA-2018:3551",
"http://www.securityfocus.com/bid/106068",
"https://security.netapp.com/advisory/ntap-20190416-0001/",
"http://www.openwall.com/lists/oss-security/2019/06/28/2",
"http://www.openwall.com/lists/oss-security/2019/07/06/3",
"http://www.openwall.com/lists/oss-security/2019/07/06/4",
"http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00041.html",
},
},
{
ID: "CVE-2018-1002207",
Path: "2018/1002xxx/CVE-2018-1002207.json",
BlobHash: "7a69b2918e654203b3d9cee5e6e57d3eda432b42",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://snyk.io/research/zip-slip-vulnerability",
"https://github.com/snyk/zip-slip-vulnerability",
"https://github.com/mholt/archiver/pull/65",
"https://github.com/mholt/archiver/commit/e4ef56d48eb029648b0e895bb0b6a393ef0829c3",
"https://snyk.io/vuln/SNYK-GOLANG-GITHUBCOMMHOLTARCHIVERCMDARCHIVER-50071",
},
},
{
ID: "CVE-2018-10055",
Path: "2018/10xxx/CVE-2018-10055.json",
BlobHash: "bfd0b709d180b3fac635c4311cf647adedf2e831",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/tensorflow/tensorflow/blob/master/tensorflow/security/advisory/tfsa-2018-006.md",
},
},
{
ID: "CVE-2018-10856",
Path: "2018/10xxx/CVE-2018-10856.json",
BlobHash: "fe414baee5a3a73b4ecc1a07731b0a58ef32e40f",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10856",
"https://github.com/projectatomic/libpod/commit/bae80a0b663925ec751ad2784ca32989403cdc24",
"https://access.redhat.com/errata/RHSA-2018:2037",
},
},
{
ID: "CVE-2018-10892",
Path: "2018/10xxx/CVE-2018-10892.json",
BlobHash: "9a297de39e022e08c46b9f04c88f3327867b27aa",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/moby/moby/pull/37404",
"https://access.redhat.com/errata/RHSA-2018:2729",
"https://access.redhat.com/errata/RHSA-2018:2482",
"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10892",
"http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00084.html",
"https://access.redhat.com/errata/RHBA-2018:2796",
},
},
{
ID: "CVE-2018-10937",
Path: "2018/10xxx/CVE-2018-10937.json",
BlobHash: "261e46299b2721df16561fae93500096b92c25a6",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10937",
"http://www.securityfocus.com/bid/105190",
"https://github.com/openshift/console/pull/461",
"https://github.com/openshift/console/commit/d56666852da6e7309a2e63a49f49a72ff66d309c",
},
},
{
ID: "CVE-2018-1098",
Path: "2018/1xxx/CVE-2018-1098.json",
BlobHash: "01249fce90e1e575fce9c7ab134de1591496b169",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://bugzilla.redhat.com/show_bug.cgi?id=1552714",
"https://github.com/coreos/etcd/issues/9353",
"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UPGYHMSKDPW5GAMI7BEP3XQRVRLLBJKS/",
"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JX7QTIT465BQGRGNCE74RATRQLKT2QE4/",
},
},
{
ID: "CVE-2018-1099",
Path: "2018/1xxx/CVE-2018-1099.json",
BlobHash: "1a69ba6fc3592810102632fdd4a8e7aed9f6b1cb",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://bugzilla.redhat.com/show_bug.cgi?id=1552717",
"https://github.com/coreos/etcd/issues/9353",
"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UPGYHMSKDPW5GAMI7BEP3XQRVRLLBJKS/",
"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JX7QTIT465BQGRGNCE74RATRQLKT2QE4/",
},
},
{
ID: "CVE-2018-12099",
Path: "2018/12xxx/CVE-2018-12099.json",
BlobHash: "6b867dd20b28bc782c927bdcb6c8164529d1e0bf",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/grafana/grafana/pull/11813",
"https://github.com/grafana/grafana/releases/tag/v5.2.0-beta1",
"https://security.netapp.com/advisory/ntap-20190416-0004/",
},
},
{
ID: "CVE-2018-12608",
Path: "2018/12xxx/CVE-2018-12608.json",
BlobHash: "04e2d2cfa0ade3aa12257cb6f58974336446df17",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/moby/moby/pull/33182",
},
},
{
ID: "CVE-2018-12678",
Path: "2018/12xxx/CVE-2018-12678.json",
BlobHash: "fdc164ad2138c176976779e1ffaaf333eed7a191",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/portainer/portainer/pull/1979",
"https://github.com/portainer/portainer/releases/tag/1.18.0",
},
},
{
ID: "CVE-2018-12976",
Path: "2018/12xxx/CVE-2018-12976.json",
BlobHash: "6a92a4c19239879e39ebc5154d61f738960426c9",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://groups.google.com/forum/#!msg/golang-announce/4rpTbfzYB1k/no6MEwlQAwAJ",
"https://github.com/golang/gddo/commit/daffe1f90ec57f8ed69464f9094753fc6452e983",
},
},
{
ID: "CVE-2018-14474",
Path: "2018/14xxx/CVE-2018-14474.json",
BlobHash: "d1a361cbe7eb0eb35921ab6cd10e2a51faffd079",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/s-gv/orangeforum/commit/1f6313cb3a1e755880fc1354f3e1efc4dd2dd4aa",
},
},
{
ID: "CVE-2018-15178",
Path: "2018/15xxx/CVE-2018-15178.json",
BlobHash: "a57c17640dc4de6fa83a45e5ef93f9431abf4c92",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/gogs/gogs/issues/5364",
"https://github.com/gogs/gogs/pull/5365",
},
},
{
ID: "CVE-2018-15192",
Path: "2018/15xxx/CVE-2018-15192.json",
BlobHash: "e94118c0b7ae432eba835137ddaca3f65be53a52",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/gogs/gogs/issues/5366",
"https://github.com/go-gitea/gitea/issues/4624",
},
},
{
ID: "CVE-2018-15193",
Path: "2018/15xxx/CVE-2018-15193.json",
BlobHash: "0da82c7f418abe22cf2aee3964211d3d3966cfd5",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/gogs/gogs/issues/5367",
},
},
{
ID: "CVE-2018-15598",
Path: "2018/15xxx/CVE-2018-15598.json",
BlobHash: "edb153e30e0b8b71c8fc3857fcd7ab3b989802da",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/containous/traefik/pull/3790",
"https://github.com/containous/traefik/pull/3790/commits/368bd170913078732bde58160f92f202f370278b",
"https://github.com/containous/traefik/releases/tag/v1.6.6",
"https://github.com/containous/traefik/pull/3790/commits/113250ce5735d554c502ca16fb03bb9119ca79f1",
},
},
{
ID: "CVE-2018-15664",
Path: "2018/15xxx/CVE-2018-15664.json",
BlobHash: "cd288bf64f1c706476bbdda4277d751f029d2e06",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://bugzilla.suse.com/show_bug.cgi?id=1096726",
"https://github.com/moby/moby/pull/39252",
"http://www.openwall.com/lists/oss-security/2019/05/28/1",
"http://www.securityfocus.com/bid/108507",
"http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00066.html",
"https://usn.ubuntu.com/4048-1/",
"https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-15664",
"https://access.redhat.com/errata/RHSA-2019:1910",
"http://www.openwall.com/lists/oss-security/2019/08/21/1",
"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00001.html",
},
},
{
ID: "CVE-2018-15747",
Path: "2018/15xxx/CVE-2018-15747.json",
BlobHash: "abb866308a8fdcfcf8d915e56024d8bdb9bf9521",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/prasmussen/glot-code-runner/issues/15",
},
},
{
ID: "CVE-2018-15869",
Path: "2018/15xxx/CVE-2018-15869.json",
BlobHash: "bddc4e3d6a904e86f183f314f744743ea14ad283",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"http://www.securityfocus.com/bid/105172",
"https://github.com/hashicorp/packer/issues/6584",
},
},
{
ID: "CVE-2018-16316",
Path: "2018/16xxx/CVE-2018-16316.json",
BlobHash: "53d8827f84704705acf59957d84f0979be815f38",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/portainer/portainer/commit/1ad150c99460a35224d6adfe48ddda9ee056b7d2",
},
},
{
ID: "CVE-2018-16359",
Path: "2018/16xxx/CVE-2018-16359.json",
BlobHash: "c42eb49fc474c15d577dbc3ccc64de8164e152bd",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://bugs.chromium.org/p/project-zero/issues/detail?id=1632",
"https://github.com/google/gvisor/commit/001a4c2493b13a43d62c7511fb509a959ae4abc2",
},
},
{
ID: "CVE-2018-16398",
Path: "2018/16xxx/CVE-2018-16398.json",
BlobHash: "232319722bf894c43c9d7d8affffff8161b0dd2a",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/twistlock/authz/issues/50",
"https://github.com/twistlock/authz/issues/51",
},
},
{
ID: "CVE-2018-16409",
Path: "2018/16xxx/CVE-2018-16409.json",
BlobHash: "39f379ecda7f8971a7ca7e02925776cd65515f98",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/gogs/gogs/issues/5372",
},
},
{
ID: "CVE-2018-16733",
Path: "2018/16xxx/CVE-2018-16733.json",
BlobHash: "2c31ccc6fc823bcdc7ad873e55ab4cfa8bfc226a",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/ethereum/go-ethereum/commit/106d196ec4a6451efedc60ab15957f231fa85639",
},
},
{
ID: "CVE-2018-16859",
Path: "2018/16xxx/CVE-2018-16859.json",
BlobHash: "678f6a27e55ee773abf1427413a47e878fbe8ae8",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/ansible/ansible/pull/49142",
"https://access.redhat.com/errata/RHSA-2018:3770",
"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16859",
"https://access.redhat.com/errata/RHSA-2018:3771",
"http://www.securityfocus.com/bid/106004",
"https://access.redhat.com/errata/RHSA-2018:3773",
"https://access.redhat.com/errata/RHSA-2018:3772",
"http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00021.html",
"http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00077.html",
"http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00020.html",
},
},
{
ID: "CVE-2018-16876",
Path: "2018/16xxx/CVE-2018-16876.json",
BlobHash: "5380288314b1345acd95ec6a54e23d564badb9ac",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://access.redhat.com/errata/RHSA-2018:3838",
"https://access.redhat.com/errata/RHSA-2019:0564",
"http://www.securityfocus.com/bid/106225",
"https://access.redhat.com/errata/RHSA-2018:3836",
"https://access.redhat.com/errata/RHSA-2018:3835",
"https://github.com/ansible/ansible/pull/49569",
"https://access.redhat.com/errata/RHSA-2018:3837",
"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16876",
"https://www.debian.org/security/2019/dsa-4396",
"https://access.redhat.com/errata/RHSA-2019:0590",
"http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00021.html",
"http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00077.html",
"https://usn.ubuntu.com/4072-1/",
"http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00020.html",
},
},
{
ID: "CVE-2018-17031",
Path: "2018/17xxx/CVE-2018-17031.json",
BlobHash: "7bab8a1dc52969e53cac17f0637c761926dc26a8",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/gogs/gogs/issues/5397",
},
},
{
ID: "CVE-2018-17456",
Path: "2018/17xxx/CVE-2018-17456.json",
BlobHash: "5335a4699d4dcd8179960df573f4745a593613d4",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://www.exploit-db.com/exploits/45631/",
"http://www.securityfocus.com/bid/105523",
"http://www.securitytracker.com/id/1041811",
"https://www.debian.org/security/2018/dsa-4311",
"https://access.redhat.com/errata/RHSA-2018:3505",
"https://github.com/git/git/commit/1a7fd1fb2998002da6e9ff2ee46e1bdd25ee8404",
"https://www.exploit-db.com/exploits/45548/",
"https://access.redhat.com/errata/RHSA-2018:3541",
"https://github.com/git/git/commit/a124133e1e6ab5c7a9fef6d0e6bcb084e3455b46",
"https://access.redhat.com/errata/RHSA-2018:3408",
"https://marc.info/?l=git&m=153875888916397&w=2",
"https://www.openwall.com/lists/oss-security/2018/10/06/3",
"https://usn.ubuntu.com/3791-1/",
"https://seclists.org/bugtraq/2019/Mar/30",
"http://www.securityfocus.com/bid/107511",
"http://packetstormsecurity.com/files/152173/Sourcetree-Git-Arbitrary-Code-Execution-URL-Handling.html",
"https://access.redhat.com/errata/RHSA-2020:0316",
"http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00003.html",
},
},
{
ID: "CVE-2018-17572",
Path: "2018/17xxx/CVE-2018-17572.json",
BlobHash: "e91cbd3483163459057b92a35e691421d94c1118",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://gist.github.com/Raghavrao29/1cb84f1f2d8ce993fd7b2d1366d35f48",
"https://github.com/influxdata/influxdb/releases/tag/v0.9.6",
},
},
{
ID: "CVE-2018-18264",
Path: "2018/18xxx/CVE-2018-18264.json",
BlobHash: "9d1fca97635951f2ed39a0f726787f404f1a339b",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://sysdig.com/blog/privilege-escalation-kubernetes-dashboard/",
"http://www.securityfocus.com/bid/106493",
"https://groups.google.com/forum/#!topic/kubernetes-announce/yBrFf5nmvfI",
"https://github.com/kubernetes/dashboard/releases/tag/v1.10.1",
"https://github.com/kubernetes/dashboard/pull/3400",
"https://github.com/kubernetes/dashboard/pull/3289",
},
},
{
ID: "CVE-2018-18553",
Path: "2018/18xxx/CVE-2018-18553.json",
BlobHash: "f0cced225e5b727eee78018a67090affecf7c7ae",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/leanote/leanote/issues/822",
},
},
{
ID: "CVE-2018-18623",
Path: "2018/18xxx/CVE-2018-18623.json",
BlobHash: "59f314eb5b689b83359e92d05d8df451707f8eca",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/grafana/grafana/pull/11813",
"https://security.netapp.com/advisory/ntap-20200608-0008/",
},
},
{
ID: "CVE-2018-18624",
Path: "2018/18xxx/CVE-2018-18624.json",
BlobHash: "774fe9ebe536fc3fc5e5f20b188595ac44c80084",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/grafana/grafana/pull/11813",
"https://security.netapp.com/advisory/ntap-20200608-0008/",
},
},
{
ID: "CVE-2018-18625",
Path: "2018/18xxx/CVE-2018-18625.json",
BlobHash: "e427129bbe49ac34bfec64e93c5235be9cb906b3",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/grafana/grafana/pull/11813",
"https://security.netapp.com/advisory/ntap-20200608-0008/",
},
},
{
ID: "CVE-2018-18925",
Path: "2018/18xxx/CVE-2018-18925.json",
BlobHash: "094fea40676b8ff3b0f8f28ce482c38bfa9c0dc8",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/gogs/gogs/issues/5469",
},
},
{
ID: "CVE-2018-18926",
Path: "2018/18xxx/CVE-2018-18926.json",
BlobHash: "9f8984abcd9be9d1192ec0eb53771cedeb0ccb7e",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/go-gitea/gitea/issues/5140",
},
},
{
ID: "CVE-2018-19114",
Path: "2018/19xxx/CVE-2018-19114.json",
BlobHash: "76e9d3b69b0961db9efaf478f1666d2518cdce18",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/lifei6671/mindoc/issues/384",
},
},
{
ID: "CVE-2018-19148",
Path: "2018/19xxx/CVE-2018-19148.json",
BlobHash: "5230ee0573997298a29e85e471f230e9ee5ee320",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/mholt/caddy/pull/2015",
"https://github.com/mholt/caddy/issues/1303",
"https://github.com/mholt/caddy/issues/2334",
},
},
{
ID: "CVE-2018-19184",
Path: "2018/19xxx/CVE-2018-19184.json",
BlobHash: "ae25d83c06c8683e86c63fbed23c14fad844bca6",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/ethereum/go-ethereum/issues/18069",
},
},
{
ID: "CVE-2018-19295",
Path: "2018/19xxx/CVE-2018-19295.json",
BlobHash: "17864661bfc1bde9f3b20836ec844f88c0c00d2a",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/sylabs/singularity/releases/tag/2.6.1",
},
},
{
ID: "CVE-2018-19333",
Path: "2018/19xxx/CVE-2018-19333.json",
BlobHash: "c234aa4daf9af3a2c9119b1da9ea3f33b467067d",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://justi.cz/security/2018/11/14/gvisor-lpe.html",
"https://github.com/google/gvisor/commit/0e277a39c8b6f905e289b75e8ad0594e6b3562ca",
},
},
{
ID: "CVE-2018-19367",
Path: "2018/19xxx/CVE-2018-19367.json",
BlobHash: "a3340712dbc79533ebb2e6332efd6314c6325cc8",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/lichti/shodan-portainer/",
"https://github.com/portainer/portainer/issues/2475",
},
},
{
ID: "CVE-2018-19466",
Path: "2018/19xxx/CVE-2018-19466.json",
BlobHash: "06c52909067b881c6cef8398f6f7eb99d81a99e0",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/portainer/portainer/pull/2488",
"https://github.com/portainer/portainer/releases",
"https://github.com/MauroEldritch/lempo",
},
},
{
ID: "CVE-2018-19653",
Path: "2018/19xxx/CVE-2018-19653.json",
BlobHash: "7c7de73314eb58e4e50ff65a3f93c8e97e0001e6",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://groups.google.com/forum/#!topic/consul-tool/7TCw06oio0I",
"https://github.com/hashicorp/consul/pull/5069",
},
},
{
ID: "CVE-2018-19786",
Path: "2018/19xxx/CVE-2018-19786.json",
BlobHash: "44fc7dda05c3e2fddb648168a0287f4345aeeadb",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/hashicorp/vault/blob/master/CHANGELOG.md#100-december-3rd-2018",
},
},
{
ID: "CVE-2018-19793",
Path: "2018/19xxx/CVE-2018-19793.json",
BlobHash: "52f5a3da668af5c966cdaba22f3c98998a424994",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/iwannay/jiacrontab/issues/28",
},
},
{
ID: "CVE-2018-20303",
Path: "2018/20xxx/CVE-2018-20303.json",
BlobHash: "2779443b720a0c9de37b3f3f9e3e11d9a551758d",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/gogs/gogs/commit/ff93d9dbda5cebe90d86e4b7dfb2c6b8642970ce",
"https://pentesterlab.com/exercises/cve-2018-18925/",
"https://github.com/gogs/gogs/issues/5558",
},
},
{
ID: "CVE-2018-20421",
Path: "2018/20xxx/CVE-2018-20421.json",
BlobHash: "44708b3178d64441e737723c276c09be2a68458c",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/ethereum/go-ethereum/issues/18289",
},
},
{
ID: "CVE-2018-20699",
Path: "2018/20xxx/CVE-2018-20699.json",
BlobHash: "dacf7cf3d7d29ae5e23e75ba7131ec150742a6aa",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/docker/engine/pull/70",
"https://github.com/moby/moby/pull/37967",
"https://access.redhat.com/errata/RHSA-2019:0487",
},
},
{
ID: "CVE-2018-20744",
Path: "2018/20xxx/CVE-2018-20744.json",
BlobHash: "1cefda4afbed2d638e20c35d2c933d0b5f040517",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"http://www.securityfocus.com/bid/106834",
"https://github.com/rs/cors/issues/55",
"https://www.usenix.org/system/files/conference/usenixsecurity18/sec18-chen.pdf",
},
},
{
ID: "CVE-2018-21034",
Path: "2018/21xxx/CVE-2018-21034.json",
BlobHash: "56d67bbf8f84d7891fe18cb9e5e4ccf57d2c950f",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/argoproj/argo-cd/blob/a1afe44066fcd0a0ab90a02a23177164bbad42cf/util/diff/diff.go#L399",
"https://github.com/argoproj/argo-cd/issues/470",
"https://github.com/argoproj/argo-cd/pull/3088",
"https://www.soluble.ai/blog/argo-cves-2020",
},
},
{
ID: "CVE-2018-21233",
Path: "2018/21xxx/CVE-2018-21233.json",
BlobHash: "9937c0c3e6b76e59e2ca443213aff777788924a4",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/tensorflow/tensorflow/blob/master/tensorflow/security/advisory/tfsa-2018-001.md",
"https://github.com/tensorflow/tensorflow/commit/49f73c55d56edffebde4bca4a407ad69c1cae433",
},
},
{
ID: "CVE-2018-7575",
Path: "2018/7xxx/CVE-2018-7575.json",
BlobHash: "9343295dfee30eb28e116826e8850d64aabf441a",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/tensorflow/tensorflow/blob/master/tensorflow/security/advisory/tfsa-2018-004.md",
},
},
{
ID: "CVE-2018-7576",
Path: "2018/7xxx/CVE-2018-7576.json",
BlobHash: "2453c5b8afea3b098674f54d18903bead7dd5f7a",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/tensorflow/tensorflow/blob/master/tensorflow/security/advisory/tfsa-2018-002.md",
},
},
{
ID: "CVE-2018-7577",
Path: "2018/7xxx/CVE-2018-7577.json",
BlobHash: "8157d1ce7a37342f460099bf7dbf3a5a99b1f91b",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/tensorflow/tensorflow/blob/master/tensorflow/security/advisory/tfsa-2018-005.md",
},
},
{
ID: "CVE-2018-8825",
Path: "2018/8xxx/CVE-2018-8825.json",
BlobHash: "17abad64af8aa7178a1f18c852d2ead398d566ca",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/tensorflow/tensorflow/blob/master/tensorflow/security/advisory/tfsa-2018-003.md",
},
},
{
ID: "CVE-2018-9057",
Path: "2018/9xxx/CVE-2018-9057.json",
BlobHash: "b752bd349b89c035a8dfe9beb1e00500b3eabe64",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/terraform-providers/terraform-provider-aws/pull/3934",
},
},
{
ID: "CVE-2019-1000002",
Path: "2019/1000xxx/CVE-2019-1000002.json",
BlobHash: "025ede9d25a3d3f4675742a15bf6613c65329185",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/go-gitea/gitea/pull/5631",
},
},
{
ID: "CVE-2019-1002100",
Path: "2019/1002xxx/CVE-2019-1002100.json",
BlobHash: "e0b89cbfecc6bda0ddc9328c14c464d0f530d569",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"http://www.securityfocus.com/bid/107290",
"https://groups.google.com/forum/#!topic/kubernetes-announce/vmUUNkYfG9g",
"https://github.com/kubernetes/kubernetes/issues/74534",
"https://security.netapp.com/advisory/ntap-20190416-0002/",
"https://access.redhat.com/errata/RHSA-2019:1851",
"https://access.redhat.com/errata/RHSA-2019:3239",
},
},
{
ID: "CVE-2019-1002101",
Path: "2019/1002xxx/CVE-2019-1002101.json",
BlobHash: "fc334f7e1f3d69f0a0aa7f96aeb508e914eb608e",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/kubernetes/kubernetes/pull/75037",
"http://www.securityfocus.com/bid/107652",
"https://access.redhat.com/errata/RHBA-2019:0620",
"https://access.redhat.com/errata/RHBA-2019:0619",
"https://access.redhat.com/errata/RHBA-2019:0636",
"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BPV2RE5RMOGUVP5WJMXKQJZUBBLAFZPZ/",
"http://www.openwall.com/lists/oss-security/2019/06/21/1",
"http://www.openwall.com/lists/oss-security/2019/08/05/5",
"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QZB7E3DOZ5WDG46XAIU6K32CXHXPXB2F/",
"https://www.twistlock.com/labs-blog/disclosing-directory-traversal-vulnerability-kubernetes-copy-cve-2019-1002101/",
},
},
{
ID: "CVE-2019-1010003",
Path: "2019/1010xxx/CVE-2019-1010003.json",
BlobHash: "42d5629bcde21ead9f2a00a657cac5e87d417353",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/leanote/leanote/issues/719",
},
},
{
ID: "CVE-2019-1010261",
Path: "2019/1010xxx/CVE-2019-1010261.json",
BlobHash: "f3831638d12b38f33ea883beef62a45010809b5c",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/go-gitea/gitea/pull/5905",
},
},
{
ID: "CVE-2019-1010275",
Path: "2019/1010xxx/CVE-2019-1010275.json",
BlobHash: "fe4e49a7a24105b11d76a66df4c7b4d0b29326bf",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/helm/helm/releases/tag/v2.7.2",
"https://github.com/helm/helm/pull/3152",
"https://github.com/helm/helm/pull/3152/files/1096813bf9a425e2aa4ac755b6c991b626dfab50",
},
},
{
ID: "CVE-2019-1010314",
Path: "2019/1010xxx/CVE-2019-1010314.json",
BlobHash: "ee33fb655d9cdb556729967d0e5795044a74797e",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/go-gitea/gitea/releases",
},
},
{
ID: "CVE-2019-10152",
Path: "2019/10xxx/CVE-2019-10152.json",
BlobHash: "8caa697ce18f612e3f89e82105107920bc18512b",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10152",
"https://github.com/containers/libpod/issues/3211",
"https://github.com/containers/libpod/pull/3214",
"https://github.com/containers/libpod/blob/master/RELEASE_NOTES.md#140",
"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00001.html",
},
},
{
ID: "CVE-2019-10156",
Path: "2019/10xxx/CVE-2019-10156.json",
BlobHash: "9bca6bd659046577d701e51ccbb3e127e06ff77d",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10156",
"https://github.com/ansible/ansible/pull/57188",
"https://lists.debian.org/debian-lts-announce/2019/09/msg00016.html",
"https://access.redhat.com/errata/RHSA-2019:3744",
"https://access.redhat.com/errata/RHSA-2019:3789",
"https://lists.debian.org/debian-lts-announce/2021/01/msg00023.html",
},
},
{
ID: "CVE-2019-10165",
Path: "2019/10xxx/CVE-2019-10165.json",
BlobHash: "ebeba6c38254ff460ab6b1a5da153d9c47c9407a",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10165",
"https://github.com/openshift/cluster-kube-apiserver-operator/pull/499/",
"https://github.com/openshift/cluster-openshift-apiserver-operator/pull/205",
},
},
{
ID: "CVE-2019-10200",
Path: "2019/10xxx/CVE-2019-10200.json",
BlobHash: "dbc0d981d4cc09a63bde8bfd9c87f6a6b23f287d",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://bugzilla.redhat.com/show_bug.cgi?id=1730161",
"https://github.com/openshift/cluster-kube-apiserver-operator/pull/524",
},
},
{
ID: "CVE-2019-1020009",
Path: "2019/1020xxx/CVE-2019-1020009.json",
BlobHash: "1ae26a4c91f2bc53ee44fadd4374e20e2c72832a",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/kolide/fleet/security/advisories/GHSA-6g7f-8qm4-f7h8",
},
},
{
ID: "CVE-2019-1020014",
Path: "2019/1020xxx/CVE-2019-1020014.json",
BlobHash: "8ea048b124de215f7cae83a713d807802ad5ce13",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/docker/docker-credential-helpers/commit/1c9f7ede70a5ab9851f4c9cb37d317fd89cd318a",
"https://github.com/docker/docker-credential-helpers/releases/tag/v0.6.3",
"https://usn.ubuntu.com/4103-1/",
"https://usn.ubuntu.com/4103-2/",
"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6VVFB6UWUK2GQQN7DVUU6GRRAL637A73/",
},
},
{
ID: "CVE-2019-1020015",
Path: "2019/1020xxx/CVE-2019-1020015.json",
BlobHash: "83816b3b659ad58e520ed2e8a6927f856602c108",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/hasura/graphql-engine/commit/f2f14e727b051e3003ba44b9b63eab8186b291ac",
},
},
{
ID: "CVE-2019-10217",
Path: "2019/10xxx/CVE-2019-10217.json",
BlobHash: "7fbf95dcee87cd58c34f9947cc3d51ebbc4c1e64",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10217",
"https://github.com/ansible/ansible/issues/56269",
"https://github.com/ansible/ansible/pull/59427",
"http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00021.html",
"http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00026.html",
},
},
{
ID: "CVE-2019-10223",
Path: "2019/10xxx/CVE-2019-10223.json",
BlobHash: "f06bcfd6195f7257a34b188fd665a3b9cdfe61c6",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"http://www.openwall.com/lists/oss-security/2019/08/15/8",
"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10223",
"https://github.com/kubernetes/kube-state-metrics/releases/tag/v1.7.2",
"https://www.openwall.com/lists/oss-security/2019/08/09/1",
},
},
{
ID: "CVE-2019-10743",
Path: "2019/10xxx/CVE-2019-10743.json",
BlobHash: "78dfc1f5c94cf1480c02ac5ef1f8c3bcaaedfa0b",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://snyk.io/research/zip-slip-vulnerability",
"https://snyk.io/vuln/SNYK-GOLANG-GITHUBCOMMHOLTARCHIVERCMDARC-174728,",
"https://github.com/mholt/archiver/pull/169",
},
},
{
ID: "CVE-2019-11043",
Path: "2019/11xxx/CVE-2019-11043.json",
BlobHash: "efbcf584e1363faeb3eb773648d2ce43da0e9335",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/neex/phuip-fpizdam",
"https://bugs.php.net/bug.php?id=78599",
"https://usn.ubuntu.com/4166-1/",
"https://www.debian.org/security/2019/dsa-4552",
"https://www.debian.org/security/2019/dsa-4553",
"https://usn.ubuntu.com/4166-2/",
"https://support.f5.com/csp/article/K75408500?utm_source=f5support&utm_medium=RSS",
"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T62LF4ZWVV7OMMIZFO6IFO5QLZKK7YRD/",
"https://security.netapp.com/advisory/ntap-20191031-0003/",
"https://access.redhat.com/errata/RHSA-2019:3286",
"https://access.redhat.com/errata/RHSA-2019:3287",
"https://access.redhat.com/errata/RHSA-2019:3299",
"https://access.redhat.com/errata/RHSA-2019:3300",
"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3W23TP6X4H7LB645FYZLUPNIRD5W3EPU/",
"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FSNBUSPKMLUHHOADROKNG5GDWDCRHT5M/",
"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00011.html",
"https://access.redhat.com/errata/RHSA-2019:3724",
"https://access.redhat.com/errata/RHSA-2019:3735",
"https://access.redhat.com/errata/RHSA-2019:3736",
"https://www.synology.com/security/advisory/Synology_SA_19_36",
"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00014.html",
"https://support.apple.com/kb/HT210919",
"https://seclists.org/bugtraq/2020/Jan/44",
"http://seclists.org/fulldisclosure/2020/Jan/40",
"https://access.redhat.com/errata/RHSA-2020:0322",
"http://packetstormsecurity.com/files/156642/PHP-FPM-7.x-Remote-Code-Execution.html",
},
},
{
ID: "CVE-2019-11228",
Path: "2019/11xxx/CVE-2019-11228.json",
BlobHash: "91ad8aad6f9734cd90b3f06f6e2613b7154004e9",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/go-gitea/gitea/releases/tag/v1.8.0-rc3",
"https://github.com/go-gitea/gitea/releases/tag/v1.7.6",
},
},
{
ID: "CVE-2019-11229",
Path: "2019/11xxx/CVE-2019-11229.json",
BlobHash: "7dc2899d18260f82d6cfa35ae699107ac55affc6",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/go-gitea/gitea/releases/tag/v1.8.0-rc3",
"https://github.com/go-gitea/gitea/releases/tag/v1.7.6",
"http://packetstormsecurity.com/files/160833/Gitea-1.7.5-Remote-Code-Execution.html",
},
},
{
ID: "CVE-2019-11243",
Path: "2019/11xxx/CVE-2019-11243.json",
BlobHash: "240224e18d72e19314d8e206100446f0a275b49e",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/kubernetes/kubernetes/issues/76797",
"http://www.securityfocus.com/bid/108053",
"https://security.netapp.com/advisory/ntap-20190509-0002/",
},
},
{
ID: "CVE-2019-11244",
Path: "2019/11xxx/CVE-2019-11244.json",
BlobHash: "ee426f62fc258992ee5c5add5afa24866183049f",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/kubernetes/kubernetes/issues/76676",
"http://www.securityfocus.com/bid/108064",
"https://security.netapp.com/advisory/ntap-20190509-0002/",
"https://access.redhat.com/errata/RHSA-2019:3942",
"https://access.redhat.com/errata/RHSA-2020:0020",
"https://access.redhat.com/errata/RHSA-2020:0074",
},
},
{
ID: "CVE-2019-11245",
Path: "2019/11xxx/CVE-2019-11245.json",
BlobHash: "ada2d8773e54a20b336e667f6090b889da32e60e",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/kubernetes/kubernetes/issues/78308",
"https://security.netapp.com/advisory/ntap-20190919-0003/",
},
},
{
ID: "CVE-2019-11246",
Path: "2019/11xxx/CVE-2019-11246.json",
BlobHash: "d77d041f1845f282f19721f1b2c7eb293aa8f7c3",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/kubernetes/kubernetes/pull/76788",
"https://groups.google.com/forum/#!topic/kubernetes-security-announce/NLs2TGbfPdo",
"https://security.netapp.com/advisory/ntap-20190919-0003/",
},
},
{
ID: "CVE-2019-11247",
Path: "2019/11xxx/CVE-2019-11247.json",
BlobHash: "026587a117d05ad182dd6e2d9e96f2d0865cb2b9",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/kubernetes/kubernetes/issues/80983",
"https://groups.google.com/d/msg/kubernetes-security-announce/vUtEcSEY6SM/v2ZZxsmtFQAJ",
"https://access.redhat.com/errata/RHSA-2019:2690",
"https://security.netapp.com/advisory/ntap-20190919-0003/",
"https://access.redhat.com/errata/RHBA-2019:2816",
"https://access.redhat.com/errata/RHBA-2019:2824",
"https://access.redhat.com/errata/RHSA-2019:2769",
},
},
{
ID: "CVE-2019-11248",
Path: "2019/11xxx/CVE-2019-11248.json",
BlobHash: "00d4505f9edf499002ad21d1106879358cd7299a",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/kubernetes/kubernetes/issues/81023",
"https://groups.google.com/d/msg/kubernetes-security-announce/pKELclHIov8/BEDtRELACQAJ",
"https://security.netapp.com/advisory/ntap-20190919-0003/",
},
},
{
ID: "CVE-2019-11249",
Path: "2019/11xxx/CVE-2019-11249.json",
BlobHash: "47f2be6cfd55d6f91c805f77435fea5eda2c972c",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://groups.google.com/d/msg/kubernetes-security-announce/vUtEcSEY6SM/v2ZZxsmtFQAJ",
"https://github.com/kubernetes/kubernetes/issues/80984",
"https://security.netapp.com/advisory/ntap-20190919-0003/",
"https://access.redhat.com/errata/RHBA-2019:2816",
"https://access.redhat.com/errata/RHBA-2019:2794",
"https://access.redhat.com/errata/RHBA-2019:2824",
"https://access.redhat.com/errata/RHSA-2019:3239",
"https://access.redhat.com/errata/RHSA-2019:3811",
},
},
{
ID: "CVE-2019-11251",
Path: "2019/11xxx/CVE-2019-11251.json",
BlobHash: "4c8f81bc45c5b6ae61871ed463956147eb35057b",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/kubernetes/kubernetes/issues/87773",
"https://groups.google.com/d/msg/kubernetes-announce/YYtEFdFimZ4/nZnOezZuBgAJ",
},
},
{
ID: "CVE-2019-11252",
Path: "2019/11xxx/CVE-2019-11252.json",
BlobHash: "92b566eb58a6bfab63e2bc67c35d85e6342ab81d",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/kubernetes/kubernetes/pull/88684",
},
},
{
ID: "CVE-2019-11255",
Path: "2019/11xxx/CVE-2019-11255.json",
BlobHash: "a1bac48c650c8fc51190ab12dca53f9dad7dc2fb",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/kubernetes/kubernetes/issues/85233",
"https://groups.google.com/forum/#!topic/kubernetes-security-announce/aXiYN0q4uIw",
"https://access.redhat.com/errata/RHSA-2019:4099",
"https://access.redhat.com/errata/RHSA-2019:4096",
"https://access.redhat.com/errata/RHSA-2019:4054",
"https://access.redhat.com/errata/RHSA-2019:4225",
"https://security.netapp.com/advisory/ntap-20200810-0003/",
},
},
{
ID: "CVE-2019-11328",
Path: "2019/11xxx/CVE-2019-11328.json",
BlobHash: "e84895b0fa29fcacb03922f45e8a8917dba0d2a9",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/sylabs/singularity/releases/tag/v3.2.0",
"http://www.openwall.com/lists/oss-security/2019/05/16/1",
"http://www.securityfocus.com/bid/108360",
"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LNU5BUHFOTYUZVHFUSX2VG4S3RCPUEMA/",
"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5O3TPL5OOTIZEI4H6IQBCCISBARJ6WL3/",
"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LIHV7DSEVTB5SUPEZ2UXGS3Q6WMEQSO2/",
"http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00028.html",
"http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00059.html",
},
},
{
ID: "CVE-2019-11405",
Path: "2019/11xxx/CVE-2019-11405.json",
BlobHash: "b428a95b1dec6aeb4a742a930834a5af2ae4e696",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/OpenAPITools/openapi-generator/issues/2253",
"https://github.com/OpenAPITools/openapi-generator/pull/2248",
"https://github.com/OpenAPITools/openapi-generator/pull/2697",
},
},
{
ID: "CVE-2019-11471",
Path: "2019/11xxx/CVE-2019-11471.json",
BlobHash: "2efee46b4fef111a80fbca929f440c6d1e99d951",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/strukturag/libheif/issues/123",
"https://github.com/strukturag/libheif/commit/995a4283d8ed2d0d2c1ceb1a577b993df2f0e014",
},
},
{
ID: "CVE-2019-11502",
Path: "2019/11xxx/CVE-2019-11502.json",
BlobHash: "f2a4e1adde7ef761a7ce10889105fb109b82b80c",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://www.openwall.com/lists/oss-security/2019/04/18/4",
"https://github.com/snapcore/snapd/commit/bdbfeebef03245176ae0dc323392bb0522a339b1",
"http://www.openwall.com/lists/oss-security/2019/04/25/7",
},
},
{
ID: "CVE-2019-11503",
Path: "2019/11xxx/CVE-2019-11503.json",
BlobHash: "59e3c0411f4ccd201662e0650f62acd0f328bdd6",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://www.openwall.com/lists/oss-security/2019/04/18/4",
"https://github.com/snapcore/snapd/pull/6642",
"http://www.openwall.com/lists/oss-security/2019/04/25/7",
"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6VACEKVQ7UAZ32WO4ZKCFW6YOBSYJ76L/",
"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VPU6APEZHAA7N2AI57OT4J2P7NKHFOLM/",
},
},
{
ID: "CVE-2019-11576",
Path: "2019/11xxx/CVE-2019-11576.json",
BlobHash: "3b90488fb237206082010ff8265beab7ec0dcb8a",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://blog.gitea.io/2019/04/gitea-1.8.0-is-released/",
"https://github.com/go-gitea/gitea/pull/6674",
},
},
{
ID: "CVE-2019-11641",
Path: "2019/11xxx/CVE-2019-11641.json",
BlobHash: "d91faee964c8eee67eb31bbdfb95e258ecba0dbe",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/threatstream/agave/issues/1",
},
},
{
ID: "CVE-2019-11881",
Path: "2019/11xxx/CVE-2019-11881.json",
BlobHash: "ec2bf57ca5fd5f3c95d06c8fe5f052a9b2b5958a",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/MauroEldritch/VanCleef",
"https://github.com/rancher/rancher/issues/20216",
},
},
{
ID: "CVE-2019-11938",
Path: "2019/11xxx/CVE-2019-11938.json",
BlobHash: "0398da0e1431d14677d55020500d17943ef4fb93",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/facebook/fbthrift/commit/08c2d412adb214c40bb03be7587057b25d053030",
"https://github.com/facebook/fbthrift/commit/71c97ffdcb61cccf1f8267774e873e21ebd3ebd3",
"https://www.facebook.com/security/advisories/cve-2019-11938",
},
},
{
ID: "CVE-2019-12291",
Path: "2019/12xxx/CVE-2019-12291.json",
BlobHash: "ff4c4bccd23c52a9d1034ef7218d31bafba28423",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/hashicorp/consul/issues/5888",
},
},
{
ID: "CVE-2019-12452",
Path: "2019/12xxx/CVE-2019-12452.json",
BlobHash: "3bfedf7f9b1c3dd830d1ab48ef930747ece63146",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/containous/traefik/issues/4917",
"https://github.com/containous/traefik/pull/4918",
"https://docs.traefik.io/configuration/api/#security",
},
},
{
ID: "CVE-2019-12494",
Path: "2019/12xxx/CVE-2019-12494.json",
BlobHash: "258fadf0b886fa7a254e061157499782629f282f",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/gardener/vpn/issues/40",
"https://github.com/gardener/gardener/pull/874",
"https://groups.google.com/forum/#!topic/gardener/pH6dNIEhv-A",
},
},
{
ID: "CVE-2019-12618",
Path: "2019/12xxx/CVE-2019-12618.json",
BlobHash: "383b97a16200129465fb17e8585798806cdbe0ad",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://www.hashicorp.com/blog/category/nomad",
"https://github.com/hashicorp/nomad/issues/5783",
"https://www.hashicorp.com/blog/hashicorp-nomad-0-9-2",
},
},
{
ID: "CVE-2019-12995",
Path: "2019/12xxx/CVE-2019-12995.json",
BlobHash: "c026aab113dc55ebe03006aef81b4cc16296ebc7",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://istio.io/about/notes/",
"https://github.com/istio/istio/issues/15084",
"https://github.com/istio/istio.io/pull/4555",
},
},
{
ID: "CVE-2019-12999",
Path: "2019/12xxx/CVE-2019-12999.json",
BlobHash: "e76cd1687069c4af03dba8a65ba9c448776f8467",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/lightningnetwork/lnd/commits/master",
"https://github.com/lightningnetwork/lnd/releases/tag/v0.7.0-beta",
"https://lists.linuxfoundation.org/pipermail/lightning-dev/2019-September/002174.html",
},
},
{
ID: "CVE-2019-13068",
Path: "2019/13xxx/CVE-2019-13068.json",
BlobHash: "0a67265314aad32b9195fc1ecc63ecdbefff63a0",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/grafana/grafana/issues/17718",
"https://github.com/grafana/grafana/releases/tag/v6.2.5",
"https://security.netapp.com/advisory/ntap-20190710-0001/",
},
},
{
ID: "CVE-2019-13126",
Path: "2019/13xxx/CVE-2019-13126.json",
BlobHash: "55b267640f33a4f3a1b70bfebd68b670a156af55",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://www.twistlock.com/labs-blog/finding-dos-vulnerability-nats-go-fuzz-cve-2019-13126/",
"https://github.com/nats-io/nats-server/pull/1053",
},
},
{
ID: "CVE-2019-13139",
Path: "2019/13xxx/CVE-2019-13139.json",
BlobHash: "affbd0b23c6d4cf05cf0493a761621959e397d5d",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/moby/moby/pull/38944",
"https://docs.docker.com/engine/release-notes/#18094",
"https://staaldraad.github.io/post/2019-07-16-cve-2019-13139-docker-build/",
"https://www.debian.org/security/2019/dsa-4521",
"https://security.netapp.com/advisory/ntap-20190910-0001/",
"https://seclists.org/bugtraq/2019/Sep/21",
"https://access.redhat.com/errata/RHBA-2019:3092",
},
},
{
ID: "CVE-2019-13915",
Path: "2019/13xxx/CVE-2019-13915.json",
BlobHash: "c28c5b8ac1b46a51ff649b09511457f9a062f05d",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/b3log/wide/issues/355",
},
},
{
ID: "CVE-2019-14243",
Path: "2019/14xxx/CVE-2019-14243.json",
BlobHash: "3d6ca6baefdec4c629814fd8742cb6c70c524b05",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://caddy.community/t/dos-in-http-proxyprotocol-plugin/6014",
"https://github.com/mastercactapus/proxyprotocol/issues/1",
"https://github.com/mastercactapus/caddy-proxyprotocol/issues/8",
"https://github.com/mastercactapus/proxyprotocol/compare/ef496d7...5c4a101",
"https://github.com/mastercactapus/proxyprotocol/commit/5c4a101121fc3e868026189c7a73f7f19eef90ac",
"https://github.com/mastercactapus/proxyprotocol/releases/tag/v0.0.2",
},
},
{
ID: "CVE-2019-14255",
Path: "2019/14xxx/CVE-2019-14255.json",
BlobHash: "080feaf39dde048b5eb8714ce9ceffe57771af2c",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/cactus/go-camo/security/advisories/GHSA-xrmp-4542-q746",
},
},
{
ID: "CVE-2019-14271",
Path: "2019/14xxx/CVE-2019-14271.json",
BlobHash: "525144ea9bf237401b83dde566e97ee338088a56",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/moby/moby/issues/39449",
"https://docs.docker.com/engine/release-notes/",
"https://security.netapp.com/advisory/ntap-20190828-0003/",
"http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00084.html",
"https://www.debian.org/security/2019/dsa-4521",
"https://seclists.org/bugtraq/2019/Sep/21",
},
},
{
ID: "CVE-2019-14544",
Path: "2019/14xxx/CVE-2019-14544.json",
BlobHash: "d44e03d3e369947b16ff48b95f754d0097b04422",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/gogs/gogs/issues/5764",
},
},
{
ID: "CVE-2019-14846",
Path: "2019/14xxx/CVE-2019-14846.json",
BlobHash: "e4504fea8a94bc8abf1a26c600394ecb42552d4f",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14846",
"https://github.com/ansible/ansible/pull/63366",
"https://access.redhat.com/errata/RHSA-2019:3203",
"https://access.redhat.com/errata/RHSA-2019:3202",
"https://access.redhat.com/errata/RHSA-2019:3207",
"https://access.redhat.com/errata/RHSA-2019:3201",
"https://access.redhat.com/errata/RHSA-2020:0756",
"http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00021.html",
"http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00026.html",
"https://lists.debian.org/debian-lts-announce/2020/05/msg00005.html",
"https://lists.debian.org/debian-lts-announce/2021/01/msg00023.html",
},
},
{
ID: "CVE-2019-14864",
Path: "2019/14xxx/CVE-2019-14864.json",
BlobHash: "05c5029f208e31be80468e1b08210407c44a0b76",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14864",
"https://github.com/ansible/ansible/issues/63522",
"https://github.com/ansible/ansible/pull/63527",
"http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00021.html",
"http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00026.html",
},
},
{
ID: "CVE-2019-14904",
Path: "2019/14xxx/CVE-2019-14904.json",
BlobHash: "79f65d4b41ccb1e253ab9a62354e27963949b935",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://bugzilla.redhat.com/show_bug.cgi?id=1776944",
"https://github.com/ansible/ansible/pull/65686",
"https://lists.debian.org/debian-lts-announce/2021/01/msg00023.html",
},
},
{
ID: "CVE-2019-14940",
Path: "2019/14xxx/CVE-2019-14940.json",
BlobHash: "795b8ab72afb7caeb2b9fcc94851e0881bfb2e7d",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/spdk/spdk/releases/tag/v19.07",
},
},
{
ID: "CVE-2019-14993",
Path: "2019/14xxx/CVE-2019-14993.json",
BlobHash: "dcb624b1dd02901374a40c981cbf752d066361d0",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://discuss.istio.io/t/upcoming-security-updates-in-istio-1-2-4-and-1-1-13/3383",
"https://github.com/envoyproxy/envoy/issues/7728",
"https://istio.io/blog/2019/istio-security-003-004/",
"https://gcc.gnu.org/bugzilla/show_bug.cgi?id=86164",
},
},
{
ID: "CVE-2019-15043",
Path: "2019/15xxx/CVE-2019-15043.json",
BlobHash: "5d64b3160b773e51ecf38ba83cfffa33b3a0988c",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://community.grafana.com/t/release-notes-v6-3-x/19202",
"https://github.com/grafana/grafana/releases",
"https://community.grafana.com/t/grafana-5-4-5-and-6-3-4-security-update/20569",
"https://grafana.com/blog/2019/08/29/grafana-5.4.5-and-6.3.4-released-with-important-security-fix/",
"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RF5ARGYX3WYB7H2FDR7VAWTEQ27UX3FU/",
"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UO4NBL7PKW4OSFRVZENGC42EWEJV2YAH/",
"https://security.netapp.com/advisory/ntap-20191004-0004/",
"http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00060.html",
"http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00083.html",
"http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00009.html",
},
},
{
ID: "CVE-2019-15119",
Path: "2019/15xxx/CVE-2019-15119.json",
BlobHash: "0afdb67cace7095df25df975e881acd7b2512bb3",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/cnlh/nps/issues/176",
"https://github.com/cnlh/nps/commit/7178b3380720e910d283036a8d39879a94105515",
},
},
{
ID: "CVE-2019-15225",
Path: "2019/15xxx/CVE-2019-15225.json",
BlobHash: "e4acf6d62c653e50bebe75585582a4c5ee8ab2a4",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/envoyproxy/envoy/issues/7728",
},
},
{
ID: "CVE-2019-15226",
Path: "2019/15xxx/CVE-2019-15226.json",
BlobHash: "d728ca5f8ba329e8d0d40bb6af1f115dfd186e04",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/envoyproxy/envoy/commits/master",
"https://github.com/envoyproxy/envoy/commit/afc39bea36fd436e54262f150c009e8d72db5014",
"https://github.com/envoyproxy/envoy/issues/8520",
},
},
{
ID: "CVE-2019-15562",
Path: "2019/15xxx/CVE-2019-15562.json",
BlobHash: "163789d5a1fd4f7430975ced3ca5b6ce4519089c",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/jinzhu/gorm/releases/tag/v1.9.10",
"https://github.com/go-gorm/gorm/pull/2519",
"https://github.com/go-gorm/gorm/pull/2674",
"https://github.com/go-gorm/gorm/issues/2517#issuecomment-638145427",
},
},
{
ID: "CVE-2019-15716",
Path: "2019/15xxx/CVE-2019-15716.json",
BlobHash: "7469952f2a930ae410f6a261b4551adc302a1b76",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/wtfutil/wtf/compare/v0.18.0...v0.19.0",
"https://github.com/wtfutil/wtf/issues/517",
"https://github.com/wtfutil/wtf/blob/67658e172c9470e93e4122d6e2c90d01db12b0ac/cfg/config_files.go#L71-L72",
},
},
{
ID: "CVE-2019-16060",
Path: "2019/16xxx/CVE-2019-16060.json",
BlobHash: "9c378b379f482d7725baafb194a1acade28a4bbd",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/airbrake/airbrake-ruby/issues/468",
},
},
{
ID: "CVE-2019-16097",
Path: "2019/16xxx/CVE-2019-16097.json",
BlobHash: "4facc31796c17f1bb3e241cab3accb974b68c73f",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/goharbor/harbor/commit/b6db8a8a106259ec9a2c48be8a380cb3b37cf517",
"https://github.com/goharbor/harbor/compare/v1.8.2...v1.9.0-rc1",
"https://unit42.paloaltonetworks.com/critical-vulnerability-in-harbor-enables-privilege-escalation-from-zero-to-admin-cve-2019-16097/",
"https://github.com/goharbor/harbor/releases/tag/v1.8.3",
"https://github.com/goharbor/harbor/releases/tag/v1.7.6",
"http://www.vmware.com/security/advisories/VMSA-2019-0015.html",
},
},
{
ID: "CVE-2019-16146",
Path: "2019/16xxx/CVE-2019-16146.json",
BlobHash: "f7415bce429210272f7f522d58dc0a5aa197a9d2",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/gophish/gophish/pull/1547",
},
},
{
ID: "CVE-2019-16214",
Path: "2019/16xxx/CVE-2019-16214.json",
BlobHash: "3c00f5013f369e52474a4b47c61c47dad3433c57",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://blog.openzeppelin.com/libra-vulnerability-summary/",
"https://blog.openzeppelin.com/libra-vulnerability-release/",
"https://github.com/libra/libra/commit/7efb0221989f17fdf7f8486730898ed947a1e19e",
},
},
{
ID: "CVE-2019-16355",
Path: "2019/16xxx/CVE-2019-16355.json",
BlobHash: "6c3717f918447251a41e2bf059f6aed70ef9e5bf",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/astaxie/beego/issues/3763",
},
},
{
ID: "CVE-2019-16778",
Path: "2019/16xxx/CVE-2019-16778.json",
BlobHash: "79c8ece60183840c81f4be3dd5b3f0c34073cdd6",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/tensorflow/tensorflow/security/advisories/GHSA-844w-j86r-4x2j",
"https://github.com/tensorflow/tensorflow/commit/db4f9717c41bccc3ce10099ab61996b246099892",
"https://github.com/tensorflow/tensorflow/blob/master/tensorflow/security/advisory/tfsa-2019-002.md",
},
},
{
ID: "CVE-2019-16919",
Path: "2019/16xxx/CVE-2019-16919.json",
BlobHash: "c83a62ca2397e93022bc1737ae1bb03add793d6f",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://landscape.cncf.io/selected=harbor",
"http://www.vmware.com/security/advisories/VMSA-2019-0016.html",
"https://github.com/goharbor/harbor/security/advisories/GHSA-x2r2-w9c7-h624",
},
},
{
ID: "CVE-2019-18466",
Path: "2019/18xxx/CVE-2019-18466.json",
BlobHash: "e153cc928f291572de44893ea69a82169e3fd99a",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://bugzilla.redhat.com/show_bug.cgi?id=1744588",
"https://github.com/containers/libpod/issues/3829",
"https://github.com/containers/libpod/commit/5c09c4d2947a759724f9d5aef6bac04317e03f7e",
"https://github.com/containers/libpod/compare/v1.5.1...v1.6.0",
"https://access.redhat.com/errata/RHSA-2019:4269",
"http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00040.html",
},
},
{
ID: "CVE-2019-18657",
Path: "2019/18xxx/CVE-2019-18657.json",
BlobHash: "9dd98b50e92943e0863c8d1703dad082c14de3bc",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/ClickHouse/ClickHouse/pull/6466",
"https://github.com/ClickHouse/ClickHouse/blob/master/CHANGELOG.md",
"https://github.com/ClickHouse/ClickHouse/pull/7526/files",
},
},
{
ID: "CVE-2019-18801",
Path: "2019/18xxx/CVE-2019-18801.json",
BlobHash: "f32ec181fdf01f62dafabf2952f91bdde06b559c",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/envoyproxy/envoy/commits/master",
"https://groups.google.com/forum/#!forum/envoy-users",
"https://blog.envoyproxy.io",
"https://github.com/envoyproxy/envoy/security/advisories/GHSA-gxvv-x4p2-rppp",
"https://access.redhat.com/errata/RHSA-2019:4222",
},
},
{
ID: "CVE-2019-18802",
Path: "2019/18xxx/CVE-2019-18802.json",
BlobHash: "69c5764c6435584d082e1ebe62c8d77dafe9e038",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/envoyproxy/envoy/commits/master",
"https://groups.google.com/forum/#!forum/envoy-users",
"https://blog.envoyproxy.io",
"https://github.com/envoyproxy/envoy/security/advisories/GHSA-356m-vhw2-wcm4",
"http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00034.html",
},
},
{
ID: "CVE-2019-18817",
Path: "2019/18xxx/CVE-2019-18817.json",
BlobHash: "7e1cfb65da95dc7c8a0915cb6f3791112fe33299",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://istio.io/news/2019/announcing-1.3.5/",
"https://github.com/istio/istio/issues/18229",
},
},
{
ID: "CVE-2019-18836",
Path: "2019/18xxx/CVE-2019-18836.json",
BlobHash: "7b94362aea5c82e2d167c886763553dabb569120",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://groups.google.com/forum/#!forum/envoy-users",
"https://blog.envoyproxy.io",
"https://github.com/envoyproxy/envoy/security/advisories/GHSA-3xvf-4396-cj46",
"https://github.com/istio/istio/issues/18229",
},
},
{
ID: "CVE-2019-18838",
Path: "2019/18xxx/CVE-2019-18838.json",
BlobHash: "45f3cb1518e31e5c0311ff0c8a07edea3650fba7",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/envoyproxy/envoy/commits/master",
"https://groups.google.com/forum/#!forum/envoy-users",
"https://blog.envoyproxy.io",
"https://github.com/envoyproxy/envoy/security/advisories/GHSA-f2rv-4w6x-rwhc",
},
},
{
ID: "CVE-2019-18923",
Path: "2019/18xxx/CVE-2019-18923.json",
BlobHash: "5ab89fec75b1e5e9fc68200be2ecf3d081ad3b3c",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/cactus/go-camo/blob/505862f7bf14c8b6ff945734d5f3fdcd929e45dd/pkg/camo/proxy.go#L453-L460",
"https://github.com/cactus/go-camo/security/advisories/GHSA-jg2r-qf99-4wvr",
},
},
{
ID: "CVE-2019-19023",
Path: "2019/19xxx/CVE-2019-19023.json",
BlobHash: "c65ec8265c7c221b10038390e54f83fb8fb57380",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/goharbor/harbor/security/advisories",
"https://tanzu.vmware.com/security/cve-2019-19023",
},
},
{
ID: "CVE-2019-19025",
Path: "2019/19xxx/CVE-2019-19025.json",
BlobHash: "319b42d2220549d97aa1b196a71bf1af6443dedb",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/goharbor/harbor/security/advisories",
"https://tanzu.vmware.com/security/cve-2019-19025",
"https://github.com/goharbor/harbor/security/advisories/GHSA-gcqm-v682-ccw6",
},
},
{
ID: "CVE-2019-19026",
Path: "2019/19xxx/CVE-2019-19026.json",
BlobHash: "2e2be398442b195e408aa00ef0c50504e1aafb4d",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/goharbor/harbor/security/advisories",
"https://tanzu.vmware.com/security/cve-2019-19026",
"https://github.com/goharbor/harbor/security/advisories/GHSA-rh89-vvrg-fg64",
},
},
{
ID: "CVE-2019-19029",
Path: "2019/19xxx/CVE-2019-19029.json",
BlobHash: "9388b463ac82baa9b6b4c6248f707695b541ce02",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/goharbor/harbor/security/advisories",
"https://tanzu.vmware.com/security/cve-2019-19029",
"https://github.com/goharbor/harbor/security/advisories/GHSA-qcfv-8v29-469w",
},
},
{
ID: "CVE-2019-19316",
Path: "2019/19xxx/CVE-2019-19316.json",
BlobHash: "99e80ea26c6c3f1a43ef4c11e5f52939348b3c5f",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/hashicorp/terraform/security/advisories/GHSA-4rvg-555h-r626",
},
},
{
ID: "CVE-2019-19335",
Path: "2019/19xxx/CVE-2019-19335.json",
BlobHash: "e24b07367bb61f813bd8ad8e608a13068089b290",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-19335",
},
},
{
ID: "CVE-2019-19349",
Path: "2019/19xxx/CVE-2019-19349.json",
BlobHash: "81759decb9c3b14e63d99ec2c01550a77f193dd3",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://bugzilla.redhat.com/show_bug.cgi?id=1793284",
"https://bugzilla.redhat.com/show_bug.cgi?id=1791534",
},
},
{
ID: "CVE-2019-19350",
Path: "2019/19xxx/CVE-2019-19350.json",
BlobHash: "be7fda55b07cb415a2c5f586189a00586cca7082",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://bugzilla.redhat.com/show_bug.cgi?id=1791534",
"https://bugzilla.redhat.com/show_bug.cgi?id=1793283",
},
},
{
ID: "CVE-2019-19724",
Path: "2019/19xxx/CVE-2019-19724.json",
BlobHash: "159f7d803636dd2ef6313aa2471fa8dff9eb7f9d",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/sylabs/singularity/releases/tag/v3.5.2",
"http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00025.html",
"http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00059.html",
},
},
{
ID: "CVE-2019-19922",
Path: "2019/19xxx/CVE-2019-19922.json",
BlobHash: "6daf82d954d5ad555580ded4e6b34216e5ab1fb2",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.3.9",
"https://github.com/torvalds/linux/commit/de53fd7aedb100f03e5d2231cfce0e4993282425",
"https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=de53fd7aedb100f03e5d2231cfce0e4993282425",
"https://relistan.com/the-kernel-may-be-slowing-down-your-app",
"https://github.com/kubernetes/kubernetes/issues/67577",
"https://usn.ubuntu.com/4226-1/",
"https://lists.debian.org/debian-lts-announce/2020/01/msg00013.html",
"https://security.netapp.com/advisory/ntap-20200204-0002/",
},
},
{
ID: "CVE-2019-20329",
Path: "2019/20xxx/CVE-2019-20329.json",
BlobHash: "ad4ce06fbbd574a6742e8d43184caf2e721de2de",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/open-lambda/open-lambda/issues/92",
"https://github.com/open-lambda/open-lambda/blob/9f7f935195ca74700c60ebc1ecfdaefad40d144b/src/common/config.go#L135",
"https://github.com/open-lambda/open-lambda/blob/9f7f935195ca74700c60ebc1ecfdaefad40d144b/src/server/lambdaServer.go#L92-L97",
},
},
{
ID: "CVE-2019-20372",
Path: "2019/20xxx/CVE-2019-20372.json",
BlobHash: "cb8234e84e0802f06ee40be40c766b10d17b0974",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://bertjwregeer.keybase.pub/2019-12-10%20-%20error_page%20request%20smuggling.pdf",
"http://nginx.org/en/CHANGES",
"https://duo.com/docs/dng-notes#version-1.5.4-january-2020",
"https://github.com/kubernetes/ingress-nginx/pull/4859",
"https://github.com/nginx/nginx/commit/c1be55f97211d38b69ac0c2027e6812ab8b1b94e",
"https://usn.ubuntu.com/4235-1/",
"https://usn.ubuntu.com/4235-2/",
"https://security.netapp.com/advisory/ntap-20200127-0003/",
"http://lists.opensuse.org/opensuse-security-announce/2020-02/msg00013.html",
},
},
{
ID: "CVE-2019-20377",
Path: "2019/20xxx/CVE-2019-20377.json",
BlobHash: "5ce3ea7ffb45e199b7fb3a9c26fa416c35433fa9",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/tophubs/TopList/issues/32",
},
},
{
ID: "CVE-2019-20894",
Path: "2019/20xxx/CVE-2019-20894.json",
BlobHash: "e2b7f6503920679af3592d2acaa6c3ef5b83baf7",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/containous/traefik/issues/5312",
},
},
{
ID: "CVE-2019-20933",
Path: "2019/20xxx/CVE-2019-20933.json",
BlobHash: "53d3419759649147083c4e39c29cb795407d6823",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/influxdata/influxdb/issues/12927",
"https://github.com/influxdata/influxdb/compare/v1.7.5...v1.7.6",
"https://github.com/influxdata/influxdb/commit/761b557315ff9c1642cf3b0e5797cd3d983a24c0",
"https://lists.debian.org/debian-lts-announce/2020/12/msg00030.html",
"https://www.debian.org/security/2021/dsa-4823",
},
},
{
ID: "CVE-2019-25014",
Path: "2019/25xxx/CVE-2019-25014.json",
BlobHash: "d4cc6a06989f1abc359b4c47bf3c807cc898a458",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/istio/istio/compare/1.4.2...1.5.0-alpha.0",
"https://bugzilla.redhat.com/show_bug.cgi?id=1919066",
},
},
{
ID: "CVE-2019-3552",
Path: "2019/3xxx/CVE-2019-3552.json",
BlobHash: "c40a70560ec0e411812acff3a1bada2ecb3ce47c",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/facebook/fbthrift/commit/c5d6e07588cd03061bc54d451a7fa6e84883d62b",
"http://www.securityfocus.com/bid/108279",
"https://lists.apache.org/thread.html/rd0e44e8ef71eeaaa3cf3d1b8b41eb25894372e2995ec908ce7624d26@%3Ccommits.pulsar.apache.org%3E",
},
},
{
ID: "CVE-2019-3553",
Path: "2019/3xxx/CVE-2019-3553.json",
BlobHash: "0d36004a8d58b25beb7a744d44fbcfb4c293deaf",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/facebook/fbthrift/commit/c9a903e5902834e95bbd4ab0e9fa53ba0189f351",
"https://github.com/facebook/fbthrift/commit/3f156207e8a6583d88999487e954320dc18955e6",
"https://www.facebook.com/security/advisories/cve-2019-3553",
},
},
{
ID: "CVE-2019-3558",
Path: "2019/3xxx/CVE-2019-3558.json",
BlobHash: "0a56ef93e603a8315c031e2e2ae979339406e18c",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/facebook/fbthrift/commit/c5d6e07588cd03061bc54d451a7fa6e84883d62b",
"https://www.facebook.com/security/advisories/cve-2019-3558",
"http://www.securityfocus.com/bid/108274",
"https://lists.apache.org/thread.html/rd0e44e8ef71eeaaa3cf3d1b8b41eb25894372e2995ec908ce7624d26@%3Ccommits.pulsar.apache.org%3E",
},
},
{
ID: "CVE-2019-3559",
Path: "2019/3xxx/CVE-2019-3559.json",
BlobHash: "044998de6792e20e43bdc95fe51c581edef9fdc5",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/facebook/fbthrift/commit/a56346ceacad28bf470017a6bda1d5518d0bd943",
"https://www.facebook.com/security/advisories/cve-2019-3559",
"https://lists.apache.org/thread.html/rd0e44e8ef71eeaaa3cf3d1b8b41eb25894372e2995ec908ce7624d26@%3Ccommits.pulsar.apache.org%3E",
},
},
{
ID: "CVE-2019-3565",
Path: "2019/3xxx/CVE-2019-3565.json",
BlobHash: "52d4975f9164deaf7c50b81b00f369d7def6e55f",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://github.com/facebook/fbthrift/commit/01686e15ec77ccb4d49a77d5bce3a01601e54d64",
"https://www.facebook.com/security/advisories/cve-2019-3565",
"http://www.securityfocus.com/bid/108280",
"https://lists.apache.org/thread.html/rd0e44e8ef71eeaaa3cf3d1b8b41eb25894372e2995ec908ce7624d26@%3Ccommits.pulsar.apache.org%3E",
},
},
{
ID: "CVE-2019-3826",
Path: "2019/3xxx/CVE-2019-3826.json",
BlobHash: "7c4bf71bc274679b9929c35618ac44685eeb066d",
CommitHash: "17294f1a2af61a2a2df52ac89cbd7c516f0c4e6a",
CVEState: "PUBLIC",
TriageState: "FalsePositive",
ReferenceURLs: []string{
"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3826",
"https://github.com/prometheus/prometheus/pull/5163",
"https://github.com/prometheus/prometheus/commit/62e591f9",
"https://access.redhat.com/errata/RHBA-2019:0327",
"https://lists.apache.org/thread.html/rdf2a0d94c3b5b523aeff7741ae71347415276062811b687f30ea6573@%3Ccommits.zookeeper.apache.org%3E",
"https://lists.apache.org/thread.html/r8e3f7da12bf5750b0a02e69a78a61073a2ac950eed7451ce70a65177@%3Ccommits.zookeeper.apache.org%3E",
"https://lists.apache.org/thread.html/r48d5019bd42e0770f7e5351e420a63a41ff1f16924942442c6aff6a8@%3Ccommits.zookeeper.apache.org%3E",
"https://advisory.checkmarx.net/advisory/CX-2019-4297",
},
},
{
ID: "CVE-2019-3828",
Path: "2019/3xxx/CVE-2019-3828.json",
BlobHash: "ecf1efff5e523cf410bd7dad7d181a88090d7377",