-
**What package is missing from Amazon Linux 2023? Please describe and include package name.**
niginx 1.26
**Is this an update to existing package or new package request?**
update from 1.24
**Is th…
-
Running the local scanner on the testcase at https://github.com/Nix-Security-WG/nix-security-tracker/tree/c35f957fc02b101ee06eb5096d7f05cd87e539d73be45b19d4b97520173c48defa4c6747156d6dcf, it reports […
-
### Describe the bug
There are lots of CVEs in the lock file. Some of these might be dev-deps because osv-scanner isnt that smart, however some are in real deps.
#5076 for using a smarter t…
-
## CVE-2023-3635 - Medium Severity Vulnerability
Vulnerable Library - okio-1.15.0.jar
A modern I/O API for Java
Library home page: https://github.com/square/okio
Path to dependency file: /client/pom…
-
Vulnerable Library - kotlin-reflect-1.3.21.jar
Kotlin Full Reflection Library
Path to dependency file: /test/fixtures/find-files/gradle-kts/build.gradle.kts
Path to vulnerable library: /home/wss-sca…
-
## CVE-2020-35728 - High Severity Vulnerability
Vulnerable Library - jackson-databind-2.9.10.1.jar
General data-binding functionality for Jackson: works on core streaming API
Library home page: http…
-
## CVE-2020-9546 - Critical Severity Vulnerability
Vulnerable Library - jackson-databind-2.9.10.1.jar
General data-binding functionality for Jackson: works on core streaming API
Library home page: h…
-
## CVE-2020-14062 - High Severity Vulnerability
Vulnerable Library - jackson-databind-2.9.10.1.jar
General data-binding functionality for Jackson: works on core streaming API
Library home page: http…
-
## CVE-2020-14061 - High Severity Vulnerability
Vulnerable Library - jackson-databind-2.9.10.1.jar
General data-binding functionality for Jackson: works on core streaming API
Library home page: http…
-
## CVE-2020-11112 - High Severity Vulnerability
Vulnerable Library - jackson-databind-2.9.10.1.jar
General data-binding functionality for Jackson: works on core streaming API
Library home page: http…