Vulnerability Library

ID
Packages
Summary
Affected versions
Last modified
Fix
GHSA-qjrq-hm79-49ww
  • Go/github.com/ginuerzh/gost
ginuerzh/gost vulnerable to Timing Attack
  • See details.
2023-05-30T06:42:29Z No fix available
GHSA-pvrc-wvj2-f59p
  • Go/github.com/pomerium/pomerium
  • Go/github.com/pomerium/pomerium
  • Go/github.com/pomerium/pomerium
  • Go/github.com/pomerium/pomerium
  • Go/github.com/pomerium/pomerium
  • Go/github.com/pomerium/pomerium
Pomerium vulnerable to Incorrect Authorization with specially crafted requests
  • See details.
2023-05-26T22:00:39Z Fix available
GHSA-j4rf-7357-f4cg
  • Go/github.com/apptainer/apptainer
Unpatched extfs vulnerabilities are exploitable through suid-mode Apptainer and Singularity
  • See details.
2023-05-26T21:19:25Z Fix available
GHSA-33hq-f2mf-jm3c
  • Go/github.com/kyverno/kyverno
kyverno seccomp control can be circumvented
  • See details.
2023-05-26T21:00:44Z Fix available
GHSA-frqx-jfcm-6jjr
  • Go/github.com/sigstore/rekor
malformed proposed intoto entries can cause a panic
  • See details.
2023-05-26T19:39:03Z Fix available
GHSA-g82w-58jf-gcxx
  • Go/sigs.k8s.io/secrets-store-csi-driver
secrets-store-csi-driver discloses service account tokens in logs
  • See details.
2023-05-26T13:59:19Z Fix available
GHSA-jv3f-7m33-qp65
  • Go/github.com/minio/console
Minio console object names with RIGHT-TO-LEFT OVERRIDE unicode character can be exploited
  • See details.
2023-05-26T13:57:27Z Fix available
GHSA-92wq-q9pq-gw47
  • Go/github.com/dgraph-io/dgraph
Dgraph Audit Log Encryption Vulnerability
  • See details.
2023-05-25T19:07:49Z Fix available
GHSA-863x-868h-968x
  • Go/k8s.io/ingress-nginx
Ingress-nginx `path` sanitization can be bypassed with newline character
  • See details.
2023-05-24T21:55:34Z Fix available
GHSA-2q89-485c-9j2x
  • Go/github.com/cloudflare/circl
Improper random reading in CIRCL
  • See details.
2023-05-24T18:31:42Z Fix available
GO-2023-1772
  • Go/github.com/distribution/distribution
  • See details.
2023-05-24T18:13:11Z Fix available
GHSA-w7jw-q4fg-qc4c
  • Go/github.com/goreleaser/nfpm/v2
  • Go/github.com/goreleaser/nfpm
nfpm has incorrect default permissions
  • See details.
2023-05-24T17:30:16Z Fix available
GO-2022-0244
  • Go/github.com/satori/go.uuid
  • See details.
2023-05-24T17:06:25Z Fix available
GO-2023-1737
  • Go/github.com/gin-gonic/gin
  • See details.
2023-05-24T17:06:25Z No fix available
GO-2023-1765
  • Go/github.com/cloudflare/circl
  • See details.
2023-05-24T15:32:51Z Fix available
GHSA-7g2v-2frm-rg94
  • Go/github.com/mattermost/mattermost-server/v6
  • Go/github.com/mattermost/mattermost-server/v6
  • Go/github.com/mattermost/mattermost-server/v6
  • Go/github.com/mattermost/mattermost-server/v6
Mattermost Incorrect Authorization vulnerability
  • See details.
2023-05-23T22:39:22Z Fix available