From a0c7902054ac7d5da378a417bfe8ad5968299529 Mon Sep 17 00:00:00 2001 From: William Desportes Date: Wed, 10 May 2023 10:22:56 +0200 Subject: [PATCH 1/2] Improve GHSA-q2qj-628g-vhfw --- .../GHSA-q2qj-628g-vhfw.json | 48 ++++++++++++++++++- 1 file changed, 47 insertions(+), 1 deletion(-) diff --git a/advisories/github-reviewed/2023/04/GHSA-q2qj-628g-vhfw/GHSA-q2qj-628g-vhfw.json b/advisories/github-reviewed/2023/04/GHSA-q2qj-628g-vhfw/GHSA-q2qj-628g-vhfw.json index 803dd8865b726..121d3163b577a 100644 --- a/advisories/github-reviewed/2023/04/GHSA-q2qj-628g-vhfw/GHSA-q2qj-628g-vhfw.json +++ b/advisories/github-reviewed/2023/04/GHSA-q2qj-628g-vhfw/GHSA-q2qj-628g-vhfw.json @@ -1,7 +1,7 @@ { "schema_version": "1.4.0", "id": "GHSA-q2qj-628g-vhfw", - "modified": "2023-04-18T22:20:42Z", + "modified": "2023-04-18T22:20:44Z", "published": "2023-04-18T22:20:42Z", "aliases": [ "CVE-2023-30536" @@ -33,6 +33,44 @@ ] } ] + }, + { + "package": { + "ecosystem": "Packagist", + "name": "slim/psr7" + }, + "ranges": [ + { + "type": "ECOSYSTEM", + "events": [ + { + "introduced": "0" + }, + { + "fixed": "1.4.1" + } + ] + } + ] + }, + { + "package": { + "ecosystem": "Packagist", + "name": "slim/psr7" + }, + "ranges": [ + { + "type": "ECOSYSTEM", + "events": [ + { + "introduced": "0" + }, + { + "fixed": "1.5.1" + } + ] + } + ] } ], "references": [ @@ -44,6 +82,14 @@ "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-30536" }, + { + "type": "WEB", + "url": "https://github.com/slimphp/Slim-Psr7/pull/286" + }, + { + "type": "WEB", + "url": "https://github.com/slimphp/Slim-Psr7/pull/287" + }, { "type": "WEB", "url": "https://github.com/slimphp/Slim-Psr7/commit/ed1d553225dd190875d8814c47460daed4b550bb" From 3b85f7304b02c37bc71cdb00e7e0ceb157de235b Mon Sep 17 00:00:00 2001 From: William Desportes Date: Wed, 10 May 2023 11:27:57 +0200 Subject: [PATCH 2/2] Improve GHSA-q2qj-628g-vhfw --- .../GHSA-q2qj-628g-vhfw.json | 22 +++++++++---------- 1 file changed, 10 insertions(+), 12 deletions(-) diff --git a/advisories/github-reviewed/2023/04/GHSA-q2qj-628g-vhfw/GHSA-q2qj-628g-vhfw.json b/advisories/github-reviewed/2023/04/GHSA-q2qj-628g-vhfw/GHSA-q2qj-628g-vhfw.json index 121d3163b577a..8bf9be56d209d 100644 --- a/advisories/github-reviewed/2023/04/GHSA-q2qj-628g-vhfw/GHSA-q2qj-628g-vhfw.json +++ b/advisories/github-reviewed/2023/04/GHSA-q2qj-628g-vhfw/GHSA-q2qj-628g-vhfw.json @@ -25,13 +25,16 @@ "type": "ECOSYSTEM", "events": [ { - "introduced": "0" + "introduced": "1.6.0" }, { "fixed": "1.6.1" } ] } + ], + "versions": [ + "1.6.0" ] }, { @@ -44,13 +47,16 @@ "type": "ECOSYSTEM", "events": [ { - "introduced": "0" + "introduced": "1.5.0" }, { - "fixed": "1.4.1" + "fixed": "1.5.1" } ] } + ], + "versions": [ + "1.5.0" ] }, { @@ -66,7 +72,7 @@ "introduced": "0" }, { - "fixed": "1.5.1" + "fixed": "1.4.1" } ] } @@ -82,14 +88,6 @@ "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-30536" }, - { - "type": "WEB", - "url": "https://github.com/slimphp/Slim-Psr7/pull/286" - }, - { - "type": "WEB", - "url": "https://github.com/slimphp/Slim-Psr7/pull/287" - }, { "type": "WEB", "url": "https://github.com/slimphp/Slim-Psr7/commit/ed1d553225dd190875d8814c47460daed4b550bb"