github-actions[bot]
commented
2 months ago Report for roland
Version changes:
Security vulnerability report
50 derivations with active advisories 8 derivations left out due to whitelisting ------------------------------------------------------------------------ ShellCheck-0.10.0 /nix/store/1za6wfz4xd9g40js74dn8q2mh3lz8cpc-ShellCheck-0.10.0.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2021-28794 9.8 ------------------------------------------------------------------------ audiofile-0.3.6 /nix/store/nqmwnxdpz5nrl99xynbladnvg91v4v5s-audiofile-0.3.6.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2020-18781 5.5 ------------------------------------------------------------------------ cereal-0.5.8.3 /nix/store/np3610i7d2q36lpfkpwh0ck3726q1nra-cereal-0.5.8.3.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2020-11105 9.8 https://nvd.nist.gov/vuln/detail/CVE-2020-11104 5.3 ------------------------------------------------------------------------ commonmark-0.2.6 /nix/store/1hs5hp8j7pph4s8klq551xc1kgdidp0h-commonmark-0.2.6.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2019-10010 6.1 ------------------------------------------------------------------------ cups-2.4.10 /nix/store/63dk65qvihjm3610h07j3yyv1kj3mvlc-cups-2.4.10.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-26691 6.7 ------------------------------------------------------------------------ dbus-1 /nix/store/bgwdwl6iywf922llaqi643ly3zr28anb-dbus-1.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-42010 6.5 https://nvd.nist.gov/vuln/detail/CVE-2022-42011 6.5 https://nvd.nist.gov/vuln/detail/CVE-2022-42012 6.5 ------------------------------------------------------------------------ fuse-2.9.9-closefrom-glibc-2-34.patch?id=8a970396fca7aca2d5a761b8e7a8242f1eef14c9 /nix/store/z3gns24ib8rx8aq61k7ym7nvf4yp7s5r-fuse-2.9.9-closefrom-glibc-2-34.patch?id=8a970396fca7aca2d5a761b8e7a8242f1eef14c9.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2019-14860 6.5 https://nvd.nist.gov/vuln/detail/CVE-2019-14900 6.5 ------------------------------------------------------------------------ fuse-3.16.2 /nix/store/rgi9bjych5l0g3n0a58hkir1bymw427s-fuse-3.16.2.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2019-14860 6.5 https://nvd.nist.gov/vuln/detail/CVE-2019-14900 6.5 ------------------------------------------------------------------------ gcc-13.3.0 /nix/store/yx0had1kdvn0wh20m41wa27y1jarlazx-gcc-13.3.0.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2023-4039 4.8 ------------------------------------------------------------------------ git-2.45.2 /nix/store/49m8y9hwp80xif63g4lm7k534bqgzg2h-git-2.45.2.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-36882 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-30947 7.5 https://nvd.nist.gov/vuln/detail/CVE-2022-36883 7.5 https://nvd.nist.gov/vuln/detail/CVE-2022-38663 6.5 https://nvd.nist.gov/vuln/detail/CVE-2021-21684 6.1 https://nvd.nist.gov/vuln/detail/CVE-2020-2136 5.4 https://nvd.nist.gov/vuln/detail/CVE-2022-36884 5.3 https://nvd.nist.gov/vuln/detail/CVE-2019-1003010 4.3 ------------------------------------------------------------------------ go-1.21.0-linux-amd64-bootstrap /nix/store/pkv75cfaxf0z7bvk716n0m8carczr1sc-go-1.21.0-linux-amd64-bootstrap.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2023-39320 9.8 https://nvd.nist.gov/vuln/detail/CVE-2024-24790 9.8 https://nvd.nist.gov/vuln/detail/CVE-2023-39323 8.1 https://nvd.nist.gov/vuln/detail/CVE-2023-39321 7.5 https://nvd.nist.gov/vuln/detail/CVE-2023-39322 7.5 https://nvd.nist.gov/vuln/detail/CVE-2023-39325 7.5 https://nvd.nist.gov/vuln/detail/CVE-2023-44487 7.5 https://nvd.nist.gov/vuln/detail/CVE-2023-39318 6.1 https://nvd.nist.gov/vuln/detail/CVE-2023-39319 6.1 https://nvd.nist.gov/vuln/detail/CVE-2024-24789 5.5 https://nvd.nist.gov/vuln/detail/CVE-2023-49292 4.8 ------------------------------------------------------------------------ go-1.22.5 /nix/store/bbh04pw5g9w9vyadjhi43qkz8j72y1b6-go-1.22.5.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2023-49292 4.8 ------------------------------------------------------------------------ hedgehog-1.4 /nix/store/sy8ib28x8f2aadj32x0x1r0lxq17wp4z-hedgehog-1.4.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2021-4276 8.8 ------------------------------------------------------------------------ hedgehog-1.4-r8.cabal /nix/store/r4kbjr2x39i8a412x8ml2f3gps6n1gkk-hedgehog-1.4-r8.cabal.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2021-4276 8.8 ------------------------------------------------------------------------ http-client-0.7.17 /nix/store/pnfd9la8ncv07mk549fvry9p3w3p2wap-http-client-0.7.17.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2020-11021 7.5 ------------------------------------------------------------------------ jbig2dec-0.20 /nix/store/87lrha1km079g5z3vwg9bnxyapq19xzw-jbig2dec-0.20.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2023-46361 6.5 ------------------------------------------------------------------------ libmemcached-1.0.18 /nix/store/sa22sh7qxj9y907f8hrg32nqr8y7ylin-libmemcached-1.0.18.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2023-27478 6.5 ------------------------------------------------------------------------ libmpeg2-0.5.1 /nix/store/36ygm3r1ab2igbnaiidhx5d8mvgplraa-libmpeg2-0.5.1.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-37416 6.5 ------------------------------------------------------------------------ lodepng-3.10.1 /nix/store/ad547i3ajsxj8hc8kd0swnwsip4dj1g5-lodepng-3.10.1.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2019-17178 7.5 ------------------------------------------------------------------------ network-3.1.4.0 /nix/store/p4p62qmvyz7f7qjzksv67rk256k64fry-network-3.1.4.0.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2021-35048 9.8 https://nvd.nist.gov/vuln/detail/CVE-2021-35047 8.8 https://nvd.nist.gov/vuln/detail/CVE-2021-35049 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-24388 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-24389 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-24390 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-24391 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-24392 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-24393 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-24394 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-0486 7.8 https://nvd.nist.gov/vuln/detail/CVE-2022-0997 7.8 https://nvd.nist.gov/vuln/detail/CVE-2021-35050 7.5 ------------------------------------------------------------------------ network-3.1.4.0-r1.cabal /nix/store/1zk87dv2x5a74dc50ijim7kiblav857c-network-3.1.4.0-r1.cabal.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2021-35048 9.8 https://nvd.nist.gov/vuln/detail/CVE-2021-35047 8.8 https://nvd.nist.gov/vuln/detail/CVE-2021-35049 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-24388 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-24389 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-24390 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-24391 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-24392 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-24393 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-24394 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-0486 7.8 https://nvd.nist.gov/vuln/detail/CVE-2022-0997 7.8 https://nvd.nist.gov/vuln/detail/CVE-2021-35050 7.5 ------------------------------------------------------------------------ ninja-1.12.1 /nix/store/xk58a1f55055pyh45yyhrmsi0whjpfcj-ninja-1.12.1.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2021-4336 9.8 ------------------------------------------------------------------------ oh-my-zsh-2024-08-21 /nix/store/s8w3gxq855s694d9c1ilgv6m82rfadrx-oh-my-zsh-2024-08-21.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2021-3727 9.8 ------------------------------------------------------------------------ openvpn-2.6.12 /nix/store/q2ffz492yyakpp0bzpm59k72d7fjv434-openvpn-2.6.12.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2020-27569 7.5 ------------------------------------------------------------------------ pip-20.3.4-source /nix/store/f6q5zwzf99rpb6qxccpb6h79byb7c2wm-pip-20.3.4-source.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2021-3572 5.7 https://nvd.nist.gov/vuln/detail/CVE-2023-5752 3.3 ------------------------------------------------------------------------ polkit-1.pam /nix/store/6g10r1zrqrfqsn327qqbbjqrgw7svmp7-polkit-1.pam.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2021-4034 7.8 ------------------------------------------------------------------------ procps-3.3.17-binlore /nix/store/g2z4y9f8l7xqxs3ybm45pa8pvwlw39jj-procps-3.3.17-binlore.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2023-4016 3.3 ------------------------------------------------------------------------ procps-3.3.17-lore-override /nix/store/l2031imssh312023475g9iphnfz7kagi-procps-3.3.17-lore-override.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2023-4016 3.3 ------------------------------------------------------------------------ python-2.7.18.8 /nix/store/iql8ps09akbiljixk7n101q94wqfpr9i-python-2.7.18.8.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-48565 9.8 https://nvd.nist.gov/vuln/detail/CVE-2019-9674 7.5 https://nvd.nist.gov/vuln/detail/CVE-2022-0391 7.5 https://nvd.nist.gov/vuln/detail/CVE-2022-45061 7.5 https://nvd.nist.gov/vuln/detail/CVE-2022-48560 7.5 https://nvd.nist.gov/vuln/detail/CVE-2023-24329 7.5 https://nvd.nist.gov/vuln/detail/CVE-2023-36632 7.5 https://nvd.nist.gov/vuln/detail/CVE-2024-7592 7.5 https://nvd.nist.gov/vuln/detail/CVE-2022-26488 7.0 https://nvd.nist.gov/vuln/detail/CVE-2021-3733 6.5 https://nvd.nist.gov/vuln/detail/CVE-2022-48564 6.5 https://nvd.nist.gov/vuln/detail/CVE-2021-23336 5.9 https://nvd.nist.gov/vuln/detail/CVE-2022-48566 5.9 https://nvd.nist.gov/vuln/detail/CVE-2023-40217 5.3 ------------------------------------------------------------------------ quote-1.0.36 /nix/store/fxxymyvysn8adikf85djsd5386xrybsk-quote-1.0.36.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2020-16194 5.3 ------------------------------------------------------------------------ rubygems-3.5.16 /nix/store/f8md51g59h3brw293x618gxxzvsskyqz-rubygems-3.5.16.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-36073 8.8 ------------------------------------------------------------------------ safe-0.3.21 /nix/store/ynrkr73jzkr3y64ch561b175y6vq81y2-safe-0.3.21.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-28872 8.8 https://nvd.nist.gov/vuln/detail/CVE-2019-11644 7.8 https://nvd.nist.gov/vuln/detail/CVE-2022-38164 6.5 https://nvd.nist.gov/vuln/detail/CVE-2022-47524 5.4 https://nvd.nist.gov/vuln/detail/CVE-2021-44751 5.3 https://nvd.nist.gov/vuln/detail/CVE-2021-40834 4.3 https://nvd.nist.gov/vuln/detail/CVE-2021-40835 4.3 https://nvd.nist.gov/vuln/detail/CVE-2022-28868 4.3 https://nvd.nist.gov/vuln/detail/CVE-2022-28869 4.3 https://nvd.nist.gov/vuln/detail/CVE-2022-28870 4.3 https://nvd.nist.gov/vuln/detail/CVE-2022-28873 4.3 https://nvd.nist.gov/vuln/detail/CVE-2021-33596 4.1 https://nvd.nist.gov/vuln/detail/CVE-2021-33594 3.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33595 3.5 https://nvd.nist.gov/vuln/detail/CVE-2022-38163 3.5 ------------------------------------------------------------------------ safe-0.3.21-r1.cabal /nix/store/nyzbkimrj7dwpgihx2lilvplcxya7742-safe-0.3.21-r1.cabal.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-28872 8.8 https://nvd.nist.gov/vuln/detail/CVE-2019-11644 7.8 https://nvd.nist.gov/vuln/detail/CVE-2022-38164 6.5 https://nvd.nist.gov/vuln/detail/CVE-2022-47524 5.4 https://nvd.nist.gov/vuln/detail/CVE-2021-44751 5.3 https://nvd.nist.gov/vuln/detail/CVE-2021-40834 4.3 https://nvd.nist.gov/vuln/detail/CVE-2021-40835 4.3 https://nvd.nist.gov/vuln/detail/CVE-2022-28868 4.3 https://nvd.nist.gov/vuln/detail/CVE-2022-28869 4.3 https://nvd.nist.gov/vuln/detail/CVE-2022-28870 4.3 https://nvd.nist.gov/vuln/detail/CVE-2022-28873 4.3 https://nvd.nist.gov/vuln/detail/CVE-2021-33596 4.1 https://nvd.nist.gov/vuln/detail/CVE-2021-33594 3.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33595 3.5 https://nvd.nist.gov/vuln/detail/CVE-2022-38163 3.5 ------------------------------------------------------------------------ samba-4.20.4 /nix/store/qkzllm8p4arxcgd9296mgc7r8qgkwap9-samba-4.20.4.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-37966 8.1 https://nvd.nist.gov/vuln/detail/CVE-2022-38023 8.1 https://nvd.nist.gov/vuln/detail/CVE-2022-32743 7.5 https://nvd.nist.gov/vuln/detail/CVE-2022-37967 7.2 https://nvd.nist.gov/vuln/detail/CVE-2021-3670 6.5 https://nvd.nist.gov/vuln/detail/CVE-2022-1615 5.5 ------------------------------------------------------------------------ sassc-3.6.2 /nix/store/bz5pxag76y9x1pbqm85nirbza1m1p6bq-sassc-3.6.2.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-43357 7.5 ------------------------------------------------------------------------ setuptools-44.0.0-source /nix/store/cyd777rzwp70pqpgkqyprgscyivm8h23-setuptools-44.0.0-source.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-40897 5.9 ------------------------------------------------------------------------ unzip-6.0 /nix/store/6xmc6zv6avc0yznf7scn538gsglkj144-unzip-6.0.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2021-4217 3.3 ------------------------------------------------------------------------ vault-0.3.1.5 /nix/store/chdhghiyyhd3acm7fl42k84nrvcch6nd-vault-0.3.1.5.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2023-24999 8.1 https://nvd.nist.gov/vuln/detail/CVE-2020-13223 7.5 https://nvd.nist.gov/vuln/detail/CVE-2021-27400 7.5 https://nvd.nist.gov/vuln/detail/CVE-2023-6337 7.5 https://nvd.nist.gov/vuln/detail/CVE-2023-0620 6.7 https://nvd.nist.gov/vuln/detail/CVE-2023-0665 6.5 https://nvd.nist.gov/vuln/detail/CVE-2021-41802 5.4 https://nvd.nist.gov/vuln/detail/CVE-2023-2121 5.4 https://nvd.nist.gov/vuln/detail/CVE-2020-25594 5.3 https://nvd.nist.gov/vuln/detail/CVE-2021-3024 5.3 https://nvd.nist.gov/vuln/detail/CVE-2021-38554 5.3 https://nvd.nist.gov/vuln/detail/CVE-2022-41316 5.3 https://nvd.nist.gov/vuln/detail/CVE-2023-25000 4.7 ------------------------------------------------------------------------ vault-0.3.1.5-r7.cabal /nix/store/y2kxaf9kclbdjzlvbi0nnlk70vxzmjz4-vault-0.3.1.5-r7.cabal.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2023-24999 8.1 https://nvd.nist.gov/vuln/detail/CVE-2020-13223 7.5 https://nvd.nist.gov/vuln/detail/CVE-2021-27400 7.5 https://nvd.nist.gov/vuln/detail/CVE-2023-6337 7.5 https://nvd.nist.gov/vuln/detail/CVE-2023-0620 6.7 https://nvd.nist.gov/vuln/detail/CVE-2023-0665 6.5 https://nvd.nist.gov/vuln/detail/CVE-2021-41802 5.4 https://nvd.nist.gov/vuln/detail/CVE-2023-2121 5.4 https://nvd.nist.gov/vuln/detail/CVE-2020-25594 5.3 https://nvd.nist.gov/vuln/detail/CVE-2021-3024 5.3 https://nvd.nist.gov/vuln/detail/CVE-2021-38554 5.3 https://nvd.nist.gov/vuln/detail/CVE-2022-41316 5.3 https://nvd.nist.gov/vuln/detail/CVE-2023-25000 4.7 ------------------------------------------------------------------------ vim-9.1.0595 /nix/store/sl7hdpms2jvbrg4v832fq0ha9zk6fn8a-vim-9.1.0595.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2024-41957 5.3 https://nvd.nist.gov/vuln/detail/CVE-2024-41965 4.2 ------------------------------------------------------------------------ warp-3.3.31 /nix/store/h88c30zam2j3sjpnkp1jpzli4zfqjjfm-warp-3.3.31.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-3320 9.8 https://nvd.nist.gov/vuln/detail/CVE-2022-3512 8.8 https://nvd.nist.gov/vuln/detail/CVE-2022-4428 8.0 https://nvd.nist.gov/vuln/detail/CVE-2022-2145 7.8 https://nvd.nist.gov/vuln/detail/CVE-2022-2225 7.8 https://nvd.nist.gov/vuln/detail/CVE-2023-0652 7.8 https://nvd.nist.gov/vuln/detail/CVE-2023-1412 7.8 https://nvd.nist.gov/vuln/detail/CVE-2023-1862 7.3 https://nvd.nist.gov/vuln/detail/CVE-2023-2754 6.8 https://nvd.nist.gov/vuln/detail/CVE-2022-4457 5.5 https://nvd.nist.gov/vuln/detail/CVE-2023-0238 5.5 https://nvd.nist.gov/vuln/detail/CVE-2023-0654 3.7 ------------------------------------------------------------------------ wheel-0.37.1-source /nix/store/vrc80mbbiinxbgq34g4kzfbvawc0fw2l-wheel-0.37.1-source.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-40898 7.5 ------------------------------------------------------------------------ xdg-utils-1.2.1 /nix/store/vhw94idm5w60awv3hsfn3n9xcq6zhkh7-xdg-utils-1.2.1.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2020-27748 6.5 ------------------------------------------------------------------------ yaml-0.11.11.2 /nix/store/pwr3442i9dxxvcj5lrqpgsvx1l8d3n0x-yaml-0.11.11.2.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-3064 7.5 https://nvd.nist.gov/vuln/detail/CVE-2021-4235 5.5 ------------------------------------------------------------------------ yaml-0.11.11.2-r2.cabal /nix/store/li5zfhy5lbarhz35mxbh9jcj9jpp2p32-yaml-0.11.11.2-r2.cabal.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-3064 7.5 https://nvd.nist.gov/vuln/detail/CVE-2021-4235 5.5 ------------------------------------------------------------------------ yara-4.5.0 /nix/store/zv9sd3iv4dblgn97nk5xiglzcnab53pi-yara-4.5.0.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2021-45429 5.5 ------------------------------------------------------------------------ yasm-1.3.0 /nix/store/adwjqivygd0j1xlsrzkkggrq5xx7ccqw-yasm-1.3.0.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2021-33454 5.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33455 5.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33456 5.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33457 5.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33458 5.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33459 5.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33460 5.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33461 5.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33462 5.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33463 5.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33464 5.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33465 5.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33466 5.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33467 5.5 https://nvd.nist.gov/vuln/detail/CVE-2021-33468 5.5 https://nvd.nist.gov/vuln/detail/CVE-2023-30402 5.5 https://nvd.nist.gov/vuln/detail/CVE-2023-31972 5.5 https://nvd.nist.gov/vuln/detail/CVE-2023-31973 5.5 https://nvd.nist.gov/vuln/detail/CVE-2023-31974 5.5 https://nvd.nist.gov/vuln/detail/CVE-2023-51258 5.5 https://nvd.nist.gov/vuln/detail/CVE-2023-31975 3.3 ------------------------------------------------------------------------ zlib-0.6.3.0 /nix/store/bni5w41r1sai6sqgabrpcxa616pjzzpv-zlib-0.6.3.0.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-37434 9.8 https://nvd.nist.gov/vuln/detail/CVE-2023-45853 9.8 https://nvd.nist.gov/vuln/detail/CVE-2023-6992 5.5 ------------------------------------------------------------------------ zlib-0.6.3.0-r5.cabal /nix/store/p95cyzydb0nvph1pbrxz0q3izfyzs4wx-zlib-0.6.3.0-r5.cabal.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2022-37434 9.8 https://nvd.nist.gov/vuln/detail/CVE-2023-45853 9.8 https://nvd.nist.gov/vuln/detail/CVE-2023-6992 5.5 ------------------------------------------------------------------------ zlib-1.3.1 /nix/store/80v1w8rwan51q42869dpgrwilxvg4783-zlib-1.3.1.drv CVE CVSSv3 https://nvd.nist.gov/vuln/detail/CVE-2023-6992 5.5 use --show-whitelisted to see derivations with only whitelisted CVEs
This PR contains the following updates:
🔧 This Pull Request updates lock files to use the latest dependency versions.
Configuration
📅 Schedule: Branch creation - "before 4am" (UTC), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
â™» Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.
This PR was generated by Mend Renovate. View the repository job log.