From d0dc7c6e8a786e8a065e9d24e57796c6f6899e97 Mon Sep 17 00:00:00 2001
From: "octo-sts[bot]" <157150467+octo-sts[bot]@users.noreply.github.com>
Date: Fri, 22 Mar 2024 08:28:42 +0100
Subject: [PATCH] Adding Advisory GHSA-xw73-rw38-6vjc for k3d (#3198)

Co-authored-by: octo-sts[bot] <101908552+octo-sts@users.noreply.github.com>
---
 k3d.advisories.yaml | 57 ++++++++++++++++++++++++++++++---------------
 1 file changed, 38 insertions(+), 19 deletions(-)

diff --git a/k3d.advisories.yaml b/k3d.advisories.yaml
index 1451e274f..241336167 100644
--- a/k3d.advisories.yaml
+++ b/k3d.advisories.yaml
@@ -998,6 +998,23 @@ advisories:
         data:
           fixed-version: 5.6.0-r6
 
+  - id: CVE-2024-24557
+    aliases:
+      - GHSA-xw73-rw38-6vjc
+    events:
+      - timestamp: 2024-03-22T07:06:05Z
+        type: detection
+        data:
+          type: scan/v1
+          data:
+            subpackageName: k3d
+            componentID: 22f44d686d875f84
+            componentName: github.com/docker/docker
+            componentVersion: v24.0.7+incompatible
+            componentType: go-module
+            componentLocation: /usr/bin/k3d
+            scanner: grype
+
   - id: CVE-2024-24783
     aliases:
       - GHSA-3q2c-pvp5-3cqp
@@ -1025,6 +1042,27 @@ advisories:
         data:
           fixed-version: 5.6.0-r7
 
+  - id: CVE-2024-24786
+    aliases:
+      - GHSA-8r3f-844c-mc37
+    events:
+      - timestamp: 2024-03-14T07:08:28Z
+        type: detection
+        data:
+          type: scan/v1
+          data:
+            subpackageName: k3d
+            componentID: 6ae545edc2d9ee4a
+            componentName: google.golang.org/protobuf
+            componentVersion: v1.31.0
+            componentType: go-module
+            componentLocation: /usr/bin/k3d
+            scanner: grype
+      - timestamp: 2024-03-16T20:28:53Z
+        type: fixed
+        data:
+          fixed-version: 5.6.0-r8
+
   - id: GHSA-76wf-9vgp-pj7w
     events:
       - timestamp: 2024-02-17T17:00:05Z
@@ -1059,25 +1097,6 @@ advisories:
         data:
           fixed-version: 5.6.0-r6
 
-  - id: GHSA-8r3f-844c-mc37
-    events:
-      - timestamp: 2024-03-14T07:08:28Z
-        type: detection
-        data:
-          type: scan/v1
-          data:
-            subpackageName: k3d
-            componentID: 6ae545edc2d9ee4a
-            componentName: google.golang.org/protobuf
-            componentVersion: v1.31.0
-            componentType: go-module
-            componentLocation: /usr/bin/k3d
-            scanner: grype
-      - timestamp: 2024-03-16T20:28:53Z
-        type: fixed
-        data:
-          fixed-version: 5.6.0-r8
-
   - id: GHSA-jq35-85cj-fj4p
     events:
       - timestamp: 2024-02-14T12:26:39Z