Missing Advisory CVE-2022-21724

OSSIndex / vulns

Report missing advisories and corrections on OSS Index

17 stars 12 forks source link

Missing Advisory CVE-2022-21724 #239

Closed nibiwodong closed 1 year ago

nibiwodong commented 2 years ago

To facilitate future automation, please use the following format

Advisory details

  URL: https://nvd.nist.gov/vuln/detail/CVE-2022-21724
  format: maven
  namespace: org.postgresql
  name: postgresql
  versions: <42.2.25   or  42.3.0<version <42.3.2

More information Any additional information that might be useful/interesting

UnitedHaxor commented 2 years ago

Hi, any news here?

ken-duck commented 2 years ago

Hi! Many apologies for the delay, but I respond with good news.

OSS Index is going through a major upgrade, as described here: https://ossindex.sonatype.org/updates-notice

The most clear and obvious benefit is far fewer false negatives and false positives, and vulnerabilities will be added to the system on a much more frequent and rapid basis. Once the upgrade is completed you should see most (if not all) of the reported data issues be resolved.

ken-duck commented 1 year ago

Closing old issues. This particular issue was resolved by the aforementioned upgrade.