This repository was archived by the owner on Jan 7, 2026. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 89
Expand file tree
/
Copy pathaws-otel-collector.advisories.yaml
More file actions
159 lines (151 loc) · 4.44 KB
/
aws-otel-collector.advisories.yaml
File metadata and controls
159 lines (151 loc) · 4.44 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
schema-version: 2.0.2
package:
name: aws-otel-collector
advisories:
- id: CGA-3vq2-7hp9-jqqp
aliases:
- CVE-2025-68156
- GHSA-cfpf-hrx2-8rv6
events:
- timestamp: 2025-12-17T11:36:14Z
type: detection
data:
type: scan/v1
data:
subpackageName: aws-otel-collector
componentID: f5ad6dcca47cbc47
componentName: github.com/expr-lang/expr
componentVersion: v1.17.5
componentType: go-module
componentLocation: /usr/bin/awscollector
scanner: grype
- timestamp: 2025-12-18T22:06:54Z
type: fixed
data:
fixed-version: 0.46.0-r0
- id: CGA-c8wp-fj7p-86p4
aliases:
- CVE-2025-47910
- GHSA-8pjc-487g-w6p2
events:
- timestamp: 2025-09-24T11:23:02Z
type: detection
data:
type: scan/v1
data:
subpackageName: aws-otel-collector
componentID: 35ec1f58c2002c93
componentName: stdlib
componentVersion: go1.25.0
componentType: go-module
componentLocation: /usr/bin/healthcheck
scanner: grype
- timestamp: 2025-09-24T19:44:31Z
type: fixed
data:
fixed-version: 0.45.0-r1
- id: CGA-cv3v-cm55-c95v
aliases:
- CVE-2025-58181
- GHSA-j5w8-q4qc-rx2x
events:
- timestamp: 2025-11-21T09:57:58Z
type: detection
data:
type: scan/v1
data:
subpackageName: aws-otel-collector
componentID: 061d5d3bc9953946
componentName: golang.org/x/crypto
componentVersion: v0.40.0
componentType: go-module
componentLocation: /usr/bin/awscollector
scanner: grype
- timestamp: 2025-11-21T13:54:11Z
type: fixed
data:
fixed-version: 0.45.1-r1
- id: CGA-fghp-ch77-pm59
aliases:
- CVE-2025-47907
- GHSA-j5pm-7495-qmr3
events:
- timestamp: 2025-08-10T04:28:29Z
type: detection
data:
type: scan/v1
data:
subpackageName: aws-otel-collector
componentID: 16c4c1df53c7ef7e
componentName: stdlib
componentVersion: go1.24.5
componentType: go-module
componentLocation: /usr/bin/awscollector
scanner: grype
- timestamp: 2025-08-10T12:07:01Z
type: false-positive-determination
data:
type: vulnerable-code-not-included-in-package
note: Govulncheck found no affected symbols in the scanned Go binaries.
- id: CGA-q44c-gjh9-4xw3
aliases:
- CVE-2025-54388
- GHSA-x4rx-4gw3-53p4
events:
- timestamp: 2025-08-11T20:32:14Z
type: detection
data:
type: scan/v1
data:
subpackageName: aws-otel-collector
componentID: 43abed32193f5c6c
componentName: github.com/docker/docker
componentVersion: v28.2.2+incompatible
componentType: go-module
componentLocation: /usr/bin/awscollector
scanner: grype
- timestamp: 2025-08-14T13:05:03Z
type: fixed
data:
fixed-version: 0.44.0-r1
- id: CGA-rr62-pm3p-7636
aliases:
- CVE-2025-47914
- GHSA-f6x5-jh6r-wrfv
events:
- timestamp: 2025-11-21T09:57:57Z
type: detection
data:
type: scan/v1
data:
subpackageName: aws-otel-collector
componentID: 061d5d3bc9953946
componentName: golang.org/x/crypto
componentVersion: v0.40.0
componentType: go-module
componentLocation: /usr/bin/awscollector
scanner: grype
- timestamp: 2025-11-21T13:54:12Z
type: fixed
data:
fixed-version: 0.45.1-r1
- id: CGA-w86r-pffm-55cc
aliases:
- GHSA-fv92-fjc5-jj9h
events:
- timestamp: 2025-06-28T07:42:10Z
type: detection
data:
type: scan/v1
data:
subpackageName: aws-otel-collector
componentID: a5404c3ec13b2238
componentName: github.com/go-viper/mapstructure/v2
componentVersion: v2.2.1
componentType: go-module
componentLocation: /usr/bin/awscollector
scanner: grype
- timestamp: 2025-06-28T12:32:52Z
type: fixed
data:
fixed-version: 0.43.3-r2