-
Notifications
You must be signed in to change notification settings - Fork 9
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
Showing
5 changed files
with
17 additions
and
6 deletions.
There are no files selected for viewing
Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.
Oops, something went wrong.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -5,8 +5,8 @@ fixtures/locks-e2e/1-go.mod: found 7 packages | |
| Using db Go (%% vulnerabilities, including withdrawn - last updated %%) | ||
|
|
||
| golang.org/x/[email protected] is affected by the following vulnerabilities: | ||
| GHSA-j3p8-6mrq-6g7h: Golang TIFF decoder vulnerable to excessive CPU consumption (https://github.com/advisories/GHSA-j3p8-6mrq-6g7h) | ||
| GHSA-qgc7-mgm3-q253: Uncontrolled Resource Consumption in golang.org/x/image (https://github.com/advisories/GHSA-qgc7-mgm3-q253) | ||
| GO-2023-1989: Excessive resource consumption in golang.org/x/image/tiff | ||
| GO-2023-1990: Excessive CPU consumption when decoding 0-height images in golang.org/x/image/tiff | ||
| GHSA-x92r-3vfx-4cv3: Golang TIFF decoder does not place a limit on the size of compressed tile data (https://github.com/advisories/GHSA-x92r-3vfx-4cv3) | ||
|
|
||
| 3 known vulnerabilities found in fixtures/locks-e2e/1-go.mod | ||
Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.
Oops, something went wrong.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -39,5 +39,6 @@ fixtures/locks-e2e/2-go.mod: found 73 packages | |
| GHSA-ppp9-7jff-5vj2: golang.org/x/text/language Out-of-bounds Read vulnerability (https://github.com/advisories/GHSA-ppp9-7jff-5vj2) | ||
| google.golang.org/[email protected] is affected by the following vulnerabilities: | ||
| GHSA-m425-mq94-257g: gRPC-Go HTTP/2 Rapid Reset vulnerability (https://github.com/advisories/GHSA-m425-mq94-257g) | ||
| GHSA-qppj-fm5r-hxr3: swift-nio-http2 vulnerable to HTTP/2 Stream Cancellation Attack (https://github.com/advisories/GHSA-qppj-fm5r-hxr3) | ||
|
|
||
| 27 known vulnerabilities found in fixtures/locks-e2e/2-go.mod | ||
| 28 known vulnerabilities found in fixtures/locks-e2e/2-go.mod | ||
Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.
Oops, something went wrong.