Publish Advisories

advisory-database[bot] · advisory-database[bot] · commit e5651fc40587 · 2025-11-05T22:11:45.000Z
GHSA-77r9-w39m-9xh5 GHSA-c2hv-4pfj-mm2r GHSA-p84v-gxvw-73pf GHSA-rwvp-r38j-9rgg GHSA-w2hg-2v4p-vmh6
diff --git a/advisories/github-reviewed/2025/10/GHSA-77r9-w39m-9xh5/GHSA-77r9-w39m-9xh5.json b/advisories/github-reviewed/2025/10/GHSA-77r9-w39m-9xh5/GHSA-77r9-w39m-9xh5.json
@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-77r9-w39m-9xh5",
-  "modified": "2025-10-13T22:09:32Z",
+  "modified": "2025-11-05T22:09:14Z",
   "published": "2025-10-13T20:09:53Z",
   "aliases": [
     "CVE-2025-61688"
@@ -72,6 +72,10 @@
     {
       "type": "PACKAGE",
       "url": "https://github.com/siderolabs/omni"
+    },
+    {
+      "type": "WEB",
+      "url": "https://pkg.go.dev/vuln/GO-2025-4022"
     }
   ],
   "database_specific": {
diff --git a/advisories/github-reviewed/2025/10/GHSA-c2hv-4pfj-mm2r/GHSA-c2hv-4pfj-mm2r.json b/advisories/github-reviewed/2025/10/GHSA-c2hv-4pfj-mm2r/GHSA-c2hv-4pfj-mm2r.json
@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-c2hv-4pfj-mm2r",
-  "modified": "2025-10-14T18:43:01Z",
+  "modified": "2025-11-05T22:10:52Z",
   "published": "2025-10-14T18:43:01Z",
   "aliases": [
     "CVE-2025-62157"
@@ -74,6 +74,10 @@
     {
       "type": "PACKAGE",
       "url": "https://github.com/argoproj/argo-workflows"
+    },
+    {
+      "type": "WEB",
+      "url": "https://pkg.go.dev/vuln/GO-2025-4024"
     }
   ],
   "database_specific": {
diff --git a/advisories/github-reviewed/2025/10/GHSA-p84v-gxvw-73pf/GHSA-p84v-gxvw-73pf.json b/advisories/github-reviewed/2025/10/GHSA-p84v-gxvw-73pf/GHSA-p84v-gxvw-73pf.json
@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-p84v-gxvw-73pf",
-  "modified": "2025-10-14T18:00:30Z",
+  "modified": "2025-11-05T22:10:23Z",
   "published": "2025-10-14T18:00:30Z",
   "aliases": [
     "CVE-2025-62156"
@@ -78,6 +78,10 @@
     {
       "type": "WEB",
       "url": "https://github.com/argoproj/argo-workflows/blob/946a2d6b9ac3309371fe47f49ae94c33ca7d488d/workflow/executor/executor.go#L993"
+    },
+    {
+      "type": "WEB",
+      "url": "https://pkg.go.dev/vuln/GO-2025-4023"
     }
   ],
   "database_specific": {
diff --git a/advisories/github-reviewed/2025/10/GHSA-rwvp-r38j-9rgg/GHSA-rwvp-r38j-9rgg.json b/advisories/github-reviewed/2025/10/GHSA-rwvp-r38j-9rgg/GHSA-rwvp-r38j-9rgg.json
@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-rwvp-r38j-9rgg",
-  "modified": "2025-10-11T00:32:44Z",
+  "modified": "2025-11-05T22:09:47Z",
   "published": "2025-10-10T12:30:57Z",
   "aliases": [
     "CVE-2025-11579"
@@ -47,6 +47,10 @@
     {
       "type": "PACKAGE",
       "url": "https://github.com/nwaples/rardecode"
+    },
+    {
+      "type": "WEB",
+      "url": "https://pkg.go.dev/vuln/GO-2025-4020"
     }
   ],
   "database_specific": {
diff --git a/advisories/github-reviewed/2025/10/GHSA-w2hg-2v4p-vmh6/GHSA-w2hg-2v4p-vmh6.json b/advisories/github-reviewed/2025/10/GHSA-w2hg-2v4p-vmh6/GHSA-w2hg-2v4p-vmh6.json
@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-w2hg-2v4p-vmh6",
-  "modified": "2025-10-02T21:21:33Z",
+  "modified": "2025-11-05T22:08:31Z",
   "published": "2025-10-02T21:21:33Z",
   "aliases": [
     "CVE-2025-54287"
@@ -89,6 +89,10 @@
     {
       "type": "PACKAGE",
       "url": "https://github.com/canonical/lxd"
+    },
+    {
+      "type": "WEB",
+      "url": "https://pkg.go.dev/vuln/GO-2025-4004"
     }
   ],
   "database_specific": {

Original file line number	Diff line number	Diff line change
`@@ -1,7 +1,7 @@`
`1`	`1`	`{`
`2`	`2`	`"schema_version": "1.4.0",`
`3`	`3`	`"id": "GHSA-77r9-w39m-9xh5",`
`4`		`- "modified": "2025-10-13T22:09:32Z",`
	`4`	`+ "modified": "2025-11-05T22:09:14Z",`
`5`	`5`	`"published": "2025-10-13T20:09:53Z",`
`6`	`6`	`"aliases": [`
`7`	`7`	`"CVE-2025-61688"`
`@@ -72,6 +72,10 @@`
`72`	`72`	`{`
`73`	`73`	`"type": "PACKAGE",`
`74`	`74`	`"url": "https://github.com/siderolabs/omni"`
	`75`	`+ },`
	`76`	`+ {`
	`77`	`+ "type": "WEB",`
	`78`	`+ "url": "https://pkg.go.dev/vuln/GO-2025-4022"`
`75`	`79`	`}`
`76`	`80`	`],`
`77`	`81`	`"database_specific": {`
Original file line number	Diff line number	Diff line change
`@@ -1,7 +1,7 @@`
`1`	`1`	`{`
`2`	`2`	`"schema_version": "1.4.0",`
`3`	`3`	`"id": "GHSA-c2hv-4pfj-mm2r",`
`4`		`- "modified": "2025-10-14T18:43:01Z",`
	`4`	`+ "modified": "2025-11-05T22:10:52Z",`
`5`	`5`	`"published": "2025-10-14T18:43:01Z",`
`6`	`6`	`"aliases": [`
`7`	`7`	`"CVE-2025-62157"`
`@@ -74,6 +74,10 @@`
`74`	`74`	`{`
`75`	`75`	`"type": "PACKAGE",`
`76`	`76`	`"url": "https://github.com/argoproj/argo-workflows"`
	`77`	`+ },`
	`78`	`+ {`
	`79`	`+ "type": "WEB",`
	`80`	`+ "url": "https://pkg.go.dev/vuln/GO-2025-4024"`
`77`	`81`	`}`
`78`	`82`	`],`
`79`	`83`	`"database_specific": {`
Original file line number	Diff line number	Diff line change
`@@ -1,7 +1,7 @@`
`1`	`1`	`{`
`2`	`2`	`"schema_version": "1.4.0",`
`3`	`3`	`"id": "GHSA-p84v-gxvw-73pf",`
`4`		`- "modified": "2025-10-14T18:00:30Z",`
	`4`	`+ "modified": "2025-11-05T22:10:23Z",`
`5`	`5`	`"published": "2025-10-14T18:00:30Z",`
`6`	`6`	`"aliases": [`
`7`	`7`	`"CVE-2025-62156"`
`@@ -78,6 +78,10 @@`
`78`	`78`	`{`
`79`	`79`	`"type": "WEB",`
`80`	`80`	`"url": "https://github.com/argoproj/argo-workflows/blob/946a2d6b9ac3309371fe47f49ae94c33ca7d488d/workflow/executor/executor.go#L993"`
	`81`	`+ },`
	`82`	`+ {`
	`83`	`+ "type": "WEB",`
	`84`	`+ "url": "https://pkg.go.dev/vuln/GO-2025-4023"`
`81`	`85`	`}`
`82`	`86`	`],`
`83`	`87`	`"database_specific": {`
Original file line number	Diff line number	Diff line change
`@@ -1,7 +1,7 @@`
`1`	`1`	`{`
`2`	`2`	`"schema_version": "1.4.0",`
`3`	`3`	`"id": "GHSA-rwvp-r38j-9rgg",`
`4`		`- "modified": "2025-10-11T00:32:44Z",`
	`4`	`+ "modified": "2025-11-05T22:09:47Z",`
`5`	`5`	`"published": "2025-10-10T12:30:57Z",`
`6`	`6`	`"aliases": [`
`7`	`7`	`"CVE-2025-11579"`
`@@ -47,6 +47,10 @@`
`47`	`47`	`{`
`48`	`48`	`"type": "PACKAGE",`
`49`	`49`	`"url": "https://github.com/nwaples/rardecode"`
	`50`	`+ },`
	`51`	`+ {`
	`52`	`+ "type": "WEB",`
	`53`	`+ "url": "https://pkg.go.dev/vuln/GO-2025-4020"`
`50`	`54`	`}`
`51`	`55`	`],`
`52`	`56`	`"database_specific": {`
Original file line number	Diff line number	Diff line change
`@@ -1,7 +1,7 @@`
`1`	`1`	`{`
`2`	`2`	`"schema_version": "1.4.0",`
`3`	`3`	`"id": "GHSA-w2hg-2v4p-vmh6",`
`4`		`- "modified": "2025-10-02T21:21:33Z",`
	`4`	`+ "modified": "2025-11-05T22:08:31Z",`
`5`	`5`	`"published": "2025-10-02T21:21:33Z",`
`6`	`6`	`"aliases": [`
`7`	`7`	`"CVE-2025-54287"`
`@@ -89,6 +89,10 @@`
`89`	`89`	`{`
`90`	`90`	`"type": "PACKAGE",`
`91`	`91`	`"url": "https://github.com/canonical/lxd"`
	`92`	`+ },`
	`93`	`+ {`
	`94`	`+ "type": "WEB",`
	`95`	`+ "url": "https://pkg.go.dev/vuln/GO-2025-4004"`
`92`	`96`	`}`
`93`	`97`	`],`
`94`	`98`	`"database_specific": {`