Merge pull request #1561 from github/ad-m-ss-GHSA-hcpj-qp55-gfph

advisory-database[bot] · web-flow · commit e7c48e0b44a6 · 2023-01-04T19:33:12.000Z
diff --git a/advisories/github-reviewed/2022/12/GHSA-hcpj-qp55-gfph/GHSA-hcpj-qp55-gfph.json b/advisories/github-reviewed/2022/12/GHSA-hcpj-qp55-gfph/GHSA-hcpj-qp55-gfph.json
@@ -1,7 +1,7 @@
 {
   "schema_version": "1.3.0",
   "id": "GHSA-hcpj-qp55-gfph",
-  "modified": "2022-12-06T14:33:52Z",
+  "modified": "2023-01-04T18:40:19Z",
   "published": "2022-12-06T06:30:17Z",
   "aliases": [
     "CVE-2022-24439"
@@ -28,18 +28,25 @@
               "introduced": "0"
             },
             {
-              "last_affected": "3.1.29"
+              "fixed": "3.1.30"
             }
           ]
         }
-      ]
+      ],
+      "database_specific": {
+        "last_known_affected_version_range": "<= 3.1.29"
+      }
     }
   ],
   "references": [
     {
       "type": "ADVISORY",
       "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-24439"
     },
+    {
+      "type": "WEB",
+      "url": "https://github.com/gitpython-developers/GitPython/issues/1515"
+    },
     {
       "type": "PACKAGE",
       "url": "https://github.com/gitpython-developers/GitPython"
@@ -48,6 +55,10 @@
       "type": "WEB",
       "url": "https://github.com/gitpython-developers/GitPython/blob/bec61576ae75803bc4e60d8de7a629c194313d1c/git/repo/base.py#L1249"
     },
+    {
+      "type": "WEB",
+      "url": "https://github.com/gitpython-developers/GitPython/releases/tag/3.1.30"
+    },
     {
       "type": "WEB",
       "url": "https://security.snyk.io/vuln/SNYK-PYTHON-GITPYTHON-3113858"

Original file line number	Diff line number	Diff line change
`@@ -1,7 +1,7 @@`
`1`	`1`	`{`
`2`	`2`	`"schema_version": "1.3.0",`
`3`	`3`	`"id": "GHSA-hcpj-qp55-gfph",`
`4`		`- "modified": "2022-12-06T14:33:52Z",`
	`4`	`+ "modified": "2023-01-04T18:40:19Z",`
`5`	`5`	`"published": "2022-12-06T06:30:17Z",`
`6`	`6`	`"aliases": [`
`7`	`7`	`"CVE-2022-24439"`
`@@ -28,18 +28,25 @@`
`28`	`28`	`"introduced": "0"`
`29`	`29`	`},`
`30`	`30`	`{`
`31`		`- "last_affected": "3.1.29"`
	`31`	`+ "fixed": "3.1.30"`
`32`	`32`	`}`
`33`	`33`	`]`
`34`	`34`	`}`
`35`		`- ]`
	`35`	`+ ],`
	`36`	`+ "database_specific": {`
	`37`	`+ "last_known_affected_version_range": "<= 3.1.29"`
	`38`	`+ }`
`36`	`39`	`}`
`37`	`40`	`],`
`38`	`41`	`"references": [`
`39`	`42`	`{`
`40`	`43`	`"type": "ADVISORY",`
`41`	`44`	`"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-24439"`
`42`	`45`	`},`
	`46`	`+ {`
	`47`	`+ "type": "WEB",`
	`48`	`+ "url": "https://github.com/gitpython-developers/GitPython/issues/1515"`
	`49`	`+ },`
`43`	`50`	`{`
`44`	`51`	`"type": "PACKAGE",`
`45`	`52`	`"url": "https://github.com/gitpython-developers/GitPython"`
`@@ -48,6 +55,10 @@`
`48`	`55`	`"type": "WEB",`
`49`	`56`	`"url": "https://github.com/gitpython-developers/GitPython/blob/bec61576ae75803bc4e60d8de7a629c194313d1c/git/repo/base.py#L1249"`
`50`	`57`	`},`
	`58`	`+ {`
	`59`	`+ "type": "WEB",`
	`60`	`+ "url": "https://github.com/gitpython-developers/GitPython/releases/tag/3.1.30"`
	`61`	`+ },`
`51`	`62`	`{`
`52`	`63`	`"type": "WEB",`
`53`	`64`	`"url": "https://security.snyk.io/vuln/SNYK-PYTHON-GITPYTHON-3113858"`