diff --git a/scorecard.advisories.yaml b/scorecard.advisories.yaml index d31c8d2ba..93026cc80 100644 --- a/scorecard.advisories.yaml +++ b/scorecard.advisories.yaml @@ -196,6 +196,23 @@ advisories: componentLocation: /usr/bin/scorecard scanner: grype + - id: CVE-2024-24557 + aliases: + - GHSA-xw73-rw38-6vjc + events: + - timestamp: 2024-03-22T13:33:30Z + type: detection + data: + type: scan/v1 + data: + subpackageName: scorecard + componentID: 8fd9f63738b717a6 + componentName: github.com/docker/docker + componentVersion: v24.0.4+incompatible + componentType: go-module + componentLocation: /usr/bin/scorecard + scanner: grype + - id: CVE-2024-24783 aliases: - GHSA-3q2c-pvp5-3cqp @@ -223,7 +240,9 @@ advisories: data: fixed-version: 4.13.1-r2 - - id: GHSA-8r3f-844c-mc37 + - id: CVE-2024-24786 + aliases: + - GHSA-8r3f-844c-mc37 events: - timestamp: 2024-03-14T13:19:32Z type: detection diff --git a/temporal-server.advisories.yaml b/temporal-server.advisories.yaml index 3c7fa00bb..77b7ff37c 100644 --- a/temporal-server.advisories.yaml +++ b/temporal-server.advisories.yaml @@ -119,3 +119,35 @@ advisories: type: fixed data: fixed-version: 1.23.0-r0 + + - id: CVE-2024-27304 + aliases: + - GHSA-mrww-27vc-gghv + events: + - timestamp: 2024-03-22T18:37:58Z + type: detection + data: + type: scan/v1 + data: + subpackageName: temporal-server + componentID: b4b041513ae9fdd7 + componentName: github.com/jackc/pgx/v5 + componentVersion: v5.4.3 + componentType: go-module + componentLocation: /usr/bin/temporal-server + scanner: grype + + - id: GHSA-7jwh-3vrq-q3m8 + events: + - timestamp: 2024-03-22T18:37:55Z + type: detection + data: + type: scan/v1 + data: + subpackageName: temporal-server + componentID: b4b041513ae9fdd7 + componentName: github.com/jackc/pgx/v5 + componentVersion: v5.4.3 + componentType: go-module + componentLocation: /usr/bin/temporal-server + scanner: grype