Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

bump/main #43

Merged
merged 1 commit into from
Nov 18, 2024
Merged

bump/main #43

merged 1 commit into from
Nov 18, 2024

Conversation

github-actions[bot]
Copy link
Contributor

Automated changes by create-pull-request GitHub action

@qmonnet qmonnet closed this Nov 14, 2024
@qmonnet qmonnet reopened this Nov 14, 2024
@github-actions GitHub Actions
Copy link
Contributor Author

Outdated packages (gnu64):
priority nix_package version_local version_nixpkgs version_upstream
15 libunistring 1.2 1.2 1.3
12 libxml2 2.13.4 2.13.4 2.13.5
12 gcc 13.3.0 13.3.0 14.2.0;14.2
11 llvm 19.1.1 19.1.1 19.1.3
10 isl 0.20 0.24 0.27
7 openssl 3.3.2 1.1.1w 3.4.0
7 openssl 3.3.2 3.3.2 3.4.0
7 libnl 3.10.0 3.10.0 3.11.0
6 nghttp2 1.63.0 1.63.0 1.64.0
6 libssh2 1.11.0 1.11.0 1.11.1
5 curl 8.10.1 8.10.1 8.11.0
5 ncurses 6.4.20221231 6.4.20221231 6.5
4 elfutils 0.191 0.191 0.192
4 sqlite 3.46.1 3.46.1 3.47.0;3.47.0.0
4 expat 2.6.3 2.6.3 2.6.4
4 kmod 31 31 33
4 numactl 2.0.18 2.0.18 2.0.19
3 libbpf 1.4.6 1.4.6 1.5.0
2 dpdk 24.07 23.11 24.07

@github-actions GitHub Actions
Copy link
Contributor Author

Vulnerable packages (gnu64):

vuln_id url package severity version_local version_nixpkgs version_upstream package_repology sortcol classify
CVE-2024-9143 https://nvd.nist.gov/vuln/detail/CVE-2024-9143 openssl 4.3 3.3.2 3.3.2 3.4.0 openssl 2024A0000009143 err_not_vulnerable_based_on_repology
OSV-2024-1209 https://osv.dev/OSV-2024-1209 libxml2 2.13.4 2.13.4 2.13.5 libxml2 2024A0000001209 err_not_vulnerable_based_on_repology
OSV-2024-817 https://osv.dev/OSV-2024-817 libpcap 1.10.5 1.10.5 1.10.5 libpcap 2024A0000000817 err_not_vulnerable_based_on_repology
OSV-2024-395 https://osv.dev/OSV-2024-395 libpcap 1.10.5 1.10.5 1.10.5 libpcap 2024A0000000395 err_not_vulnerable_based_on_repology
OSV-2023-1307 https://osv.dev/OSV-2023-1307 libbpf 1.4.6 1.4.6 1.5.0 libbpf 2023A0000001307 err_not_vulnerable_based_on_repology
OSV-2023-877 https://osv.dev/OSV-2023-877 libbpf 1.4.6 1.4.6 1.5.0 libbpf 2023A0000000877 err_not_vulnerable_based_on_repology
MAL-2022-6425 https://osv.dev/MAL-2022-6425 tbb 2021.11.0 2022A0000006425 err_missing_repology_version
MAL-2022-4301 https://osv.dev/MAL-2022-4301 libidn2 2.3.7 2.3.7 2.3.7 libidn2 2022A0000004301 err_not_vulnerable_based_on_repology
OSV-2021-777 https://osv.dev/OSV-2021-777 libxml2 2.13.4 2.13.4 2.13.5 libxml2 2021A0000000777 err_not_vulnerable_based_on_repology
RUSTSEC-2019-0006 https://osv.dev/RUSTSEC-2019-0006 ncurses 6.4.20221231 6.4.20221231 6.5 ncurses 2019A0000000006 err_not_vulnerable_based_on_repology
CVE-2016-2781 https://nvd.nist.gov/vuln/detail/CVE-2016-2781 coreutils 6.5 9.5 9.5 9.5 coreutils 2016A0000002781 fix_not_available

@qmonnet qmonnet closed this Nov 17, 2024
@qmonnet qmonnet reopened this Nov 17, 2024
@github-actions GitHub Actions
Copy link
Contributor Author

Outdated packages (gnu64):
priority nix_package version_local version_nixpkgs version_upstream
15 libunistring 1.2 1.2 1.3
12 libxml2 2.13.4 2.13.4 2.13.5
12 gcc 13.3.0 13.3.0 14.2.0;14.2
10 isl 0.20 0.24 0.27
7 libnl 3.10.0 3.10.0 3.11.0
7 openssl 3.3.2 1.1.1w 3.4.0
7 openssl 3.3.2 3.3.2 3.4.0
5 ncurses 6.4.20221231 6.4.20221231 6.5
4 elfutils 0.191 0.191 0.192
4 sqlite 3.46.1 3.46.1 3.47.0;3.47.0.0
4 numactl 2.0.18 2.0.18 2.0.19
4 kmod 31 31 33
3 libbpf 1.4.7 1.4.7 1.5.0
2 dpdk 24.07 23.11 24.07

@github-actions GitHub Actions
Copy link
Contributor Author

Vulnerable packages (gnu64):

vuln_id url package severity version_local version_nixpkgs version_upstream package_repology sortcol classify
CVE-2024-9143 https://nvd.nist.gov/vuln/detail/CVE-2024-9143 openssl 4.3 3.3.2 3.3.2 3.4.0 openssl 2024A0000009143 err_not_vulnerable_based_on_repology
OSV-2024-1209 https://osv.dev/OSV-2024-1209 libxml2 2.13.4 2.13.4 2.13.5 libxml2 2024A0000001209 err_not_vulnerable_based_on_repology
OSV-2024-817 https://osv.dev/OSV-2024-817 libpcap 1.10.5 1.10.5 1.10.5 libpcap 2024A0000000817 err_not_vulnerable_based_on_repology
OSV-2024-395 https://osv.dev/OSV-2024-395 libpcap 1.10.5 1.10.5 1.10.5 libpcap 2024A0000000395 err_not_vulnerable_based_on_repology
CVE-2023-48795 https://nvd.nist.gov/vuln/detail/CVE-2023-48795 libssh2 5.9 1.11.1 1.11.1 1.11.1 libssh2 2023A0000048795 fix_not_available
CVE-2023-6992 https://nvd.nist.gov/vuln/detail/CVE-2023-6992 zlib 5.5 1.3.1 1.3.1 1.3.1 zlib 2023A0000006992 err_not_vulnerable_based_on_repology
CVE-2023-4039 https://nvd.nist.gov/vuln/detail/CVE-2023-4039 gcc 4.8 13.3.0 13.3.0 14.2.0 gcc 2023A0000004039 fix_not_available
OSV-2023-1307 https://osv.dev/OSV-2023-1307 libbpf 1.4.7 1.4.7 1.5.0 libbpf 2023A0000001307 err_not_vulnerable_based_on_repology
OSV-2023-877 https://osv.dev/OSV-2023-877 libbpf 1.4.7 1.4.7 1.5.0 libbpf 2023A0000000877 err_not_vulnerable_based_on_repology
MAL-2022-6425 https://osv.dev/MAL-2022-6425 tbb 2021.11.0 2022A0000006425 err_missing_repology_version
MAL-2022-4301 https://osv.dev/MAL-2022-4301 libidn2 2.3.7 2.3.7 2.3.7 libidn2 2022A0000004301 err_not_vulnerable_based_on_repology
OSV-2021-777 https://osv.dev/OSV-2021-777 libxml2 2.13.4 2.13.4 2.13.5 libxml2 2021A0000000777 err_not_vulnerable_based_on_repology
RUSTSEC-2019-0006 https://osv.dev/RUSTSEC-2019-0006 ncurses 6.4.20221231 6.4.20221231 6.5 ncurses 2019A0000000006 err_not_vulnerable_based_on_repology
CVE-2016-2781 https://nvd.nist.gov/vuln/detail/CVE-2016-2781 coreutils 6.5 9.5 9.5 9.5 coreutils 2016A0000002781 fix_not_available

@qmonnet qmonnet added this pull request to the merge queue Nov 18, 2024
Merged via the queue into main with commit 2d11084 Nov 18, 2024
3 checks passed
@qmonnet qmonnet deleted the bump/main branch November 18, 2024 10:02
@qmonnet qmonnet mentioned this pull request Nov 18, 2024
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
automated dependencies
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@qmonnet