From bef24a76b800097c5e5bef34e80fcf14f2650fb3 Mon Sep 17 00:00:00 2001
From: "octo-sts[bot]" <101908552+octo-sts@users.noreply.github.com>
Date: Fri, 22 Mar 2024 07:06:22 +0000
Subject: [PATCH] Adding Advisory GHSA-mq39-4gv4-mvpx for buf

---
 buf.advisories.yaml | 17 +++++++++++++++++
 1 file changed, 17 insertions(+)

diff --git a/buf.advisories.yaml b/buf.advisories.yaml
index 1d024aed0..f77ac3a82 100644
--- a/buf.advisories.yaml
+++ b/buf.advisories.yaml
@@ -41,3 +41,20 @@ advisories:
         type: fixed
         data:
           fixed-version: 1.30.0-r0
+
+  - id: CVE-2024-29018
+    aliases:
+      - GHSA-mq39-4gv4-mvpx
+    events:
+      - timestamp: 2024-03-22T07:06:18Z
+        type: detection
+        data:
+          type: scan/v1
+          data:
+            subpackageName: buf
+            componentID: 092d335917925f4e
+            componentName: github.com/docker/docker
+            componentVersion: v25.0.4+incompatible
+            componentType: go-module
+            componentLocation: /usr/bin/buf
+            scanner: grype