Automatic vulnerability report update

tiiuae · Dec 21, 2024 · fd3d333 · fd3d333
1 parent 0c7c6a8
commit fd3d333
Show file tree

Hide file tree

Showing 2 changed files with 14 additions and 35 deletions.
diff --git a/reports/main/data.csv b/reports/main/data.csv
@@ -32,6 +32,7 @@
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2024-47540","https://nvd.nist.gov/vuln/detail/CVE-2024-47540","gstreamer","9.8","1.24.7","1.24.7","1.24.10","gstreamer","2024A0000047540","False","","fix_update_to_version_upstream",""
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2024-47539","https://nvd.nist.gov/vuln/detail/CVE-2024-47539","gstreamer","9.8","1.24.7","1.24.7","1.24.10","gstreamer","2024A0000047539","False","","fix_update_to_version_upstream",""
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2024-47538","https://nvd.nist.gov/vuln/detail/CVE-2024-47538","gstreamer","9.8","1.24.7","1.24.7","1.24.10","gstreamer","2024A0000047538","False","","fix_update_to_version_upstream",""
+"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2024-47537","https://nvd.nist.gov/vuln/detail/CVE-2024-47537","gstreamer","9.8","1.24.7","1.24.7","1.24.10","gstreamer","2024A0000047537","False","","fix_update_to_version_upstream",""
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2024-24790","https://nvd.nist.gov/vuln/detail/CVE-2024-24790","go","9.8","1.21.0-linux-amd64-bootstrap","1.23.3","1.23.4","go","2024A0000024790","False","","fix_update_to_version_nixpkgs","https://github.com/NixOS/nixpkgs/pull/319485 
 https://github.com/NixOS/nixpkgs/pull/331906 
 https://github.com/NixOS/nixpkgs/pull/354124 
@@ -48,7 +49,7 @@ https://github.com/NixOS/nixpkgs/pull/361606"
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2024-11168","https://nvd.nist.gov/vuln/detail/CVE-2024-11168","python","","2.7.18.8","3.13.1","3.13.1","python","2024A0000011168","False","","err_not_vulnerable_based_on_repology",""
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2024-10041","https://nvd.nist.gov/vuln/detail/CVE-2024-10041","linux-pam","4.7","1.6.1","","","","2024A0000010041","False","","err_missing_repology_version",""
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2024-9287","https://nvd.nist.gov/vuln/detail/CVE-2024-9287","python","","2.7.18.8","3.13.1","3.13.1","python","2024A0000009287","False","","err_not_vulnerable_based_on_repology",""
-"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","MAL-2024-9233","https://osv.dev/MAL-2024-9233","foldl","","1.4.17","1.4.17","1.4.17","haskell:foldl","2024A0000009233","False","","err_not_vulnerable_based_on_repology",""
+"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","MAL-2024-9233","https://osv.dev/MAL-2024-9233","foldl","","1.4.17","1.4.17","1.4.18","haskell:foldl","2024A0000009233","False","","err_not_vulnerable_based_on_repology",""
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2024-9143","https://nvd.nist.gov/vuln/detail/CVE-2024-9143","openssl","4.3","3.3.2","3.3.2","3.4.0","openssl","2024A0000009143","False","","err_not_vulnerable_based_on_repology",""
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2024-8365","https://nvd.nist.gov/vuln/detail/CVE-2024-8365","vault","6.5","0.3.1.5-r8.cabal","0.3.1.5","0.3.1.5","haskell:vault","2024A0000008365","False","","err_not_vulnerable_based_on_repology",""
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2024-8365","https://nvd.nist.gov/vuln/detail/CVE-2024-8365","vault","6.5","0.3.1.5","0.3.1.5","0.3.1.5","haskell:vault","2024A0000008365","False","","err_not_vulnerable_based_on_repology",""
@@ -204,7 +205,7 @@ https://github.com/NixOS/nixpkgs/pull/239571"
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","OSV-2023-390","https://osv.dev/OSV-2023-390","qemu","","9.1.1","9.1.2","9.2.0","qemu","2023A0000000390","False","Unclear if this is still valid.","err_not_vulnerable_based_on_repology",""
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","OSV-2023-364","https://osv.dev/OSV-2023-364","hunspell","","1.7.2","1.7.2","1.7.2","hunspell","2023A0000000364","False","","err_not_vulnerable_based_on_repology",""
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","OSV-2023-327","https://osv.dev/OSV-2023-327","hunspell","","1.7.2","1.7.2","1.7.2","hunspell","2023A0000000327","False","","err_not_vulnerable_based_on_repology",""
-"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","OSV-2023-298","https://osv.dev/OSV-2023-298","cairo","","1.18.2","1.17.13","1.17.13","ruby:cairo","2023A0000000298","False","","err_not_vulnerable_based_on_repology",""
+"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","OSV-2023-298","https://osv.dev/OSV-2023-298","cairo","","1.18.2","1.17.13","1.17.14","ruby:cairo","2023A0000000298","False","","err_not_vulnerable_based_on_repology",""
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","CVE-2023-0238","https://nvd.nist.gov/vuln/detail/CVE-2023-0238","warp","5.5","3.3.31","3.4.3","3.4.7","haskell:warp","2023A0000000238","False","","err_not_vulnerable_based_on_repology",""
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","OSV-2023-197","https://osv.dev/OSV-2023-197","p11-kit","","0.25.5","0.25.5","0.25.5","p11-kit","2023A0000000197","False","","err_not_vulnerable_based_on_repology",""
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","current","OSV-2023-137","https://osv.dev/OSV-2023-137","harfbuzz","","10.0.1","","","","2023A0000000137","True","Based on https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=56510#c2, the issue is fixed in range https://github.com/harfbuzz/harfbuzz/compare/67e01c1292821e7b6fc2ab13acddb84ab41b2187...60841e26187576bff477c1a09ee2ffe544844abc all of which have been merged in 7.1.0.","err_missing_repology_version",""
@@ -634,6 +635,7 @@ https://github.com/NixOS/nixpkgs/pull/363310"
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2024-47540","https://nvd.nist.gov/vuln/detail/CVE-2024-47540","gstreamer","9.8","1.24.7","1.24.7","1.24.10","gstreamer","2024A0000047540","False","","fix_update_to_version_upstream",""
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2024-47539","https://nvd.nist.gov/vuln/detail/CVE-2024-47539","gstreamer","9.8","1.24.7","1.24.7","1.24.10","gstreamer","2024A0000047539","False","","fix_update_to_version_upstream",""
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2024-47538","https://nvd.nist.gov/vuln/detail/CVE-2024-47538","gstreamer","9.8","1.24.7","1.24.7","1.24.10","gstreamer","2024A0000047538","False","","fix_update_to_version_upstream",""
+"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2024-47537","https://nvd.nist.gov/vuln/detail/CVE-2024-47537","gstreamer","9.8","1.24.7","1.24.7","1.24.10","gstreamer","2024A0000047537","False","","fix_update_to_version_upstream",""
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2024-24790","https://nvd.nist.gov/vuln/detail/CVE-2024-24790","go","9.8","1.21.0-linux-amd64-bootstrap","1.23.3","1.23.4","go","2024A0000024790","False","","fix_update_to_version_nixpkgs","https://github.com/NixOS/nixpkgs/pull/319485 
 https://github.com/NixOS/nixpkgs/pull/331906 
 https://github.com/NixOS/nixpkgs/pull/354124 
@@ -650,7 +652,7 @@ https://github.com/NixOS/nixpkgs/pull/361606"
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2024-11168","https://nvd.nist.gov/vuln/detail/CVE-2024-11168","python","","2.7.18.8","3.13.1","3.13.1","python","2024A0000011168","False","","err_not_vulnerable_based_on_repology",""
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2024-10041","https://nvd.nist.gov/vuln/detail/CVE-2024-10041","linux-pam","4.7","1.6.1","","","","2024A0000010041","False","","err_missing_repology_version",""
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2024-9287","https://nvd.nist.gov/vuln/detail/CVE-2024-9287","python","","2.7.18.8","3.13.1","3.13.1","python","2024A0000009287","False","","err_not_vulnerable_based_on_repology",""
-"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","MAL-2024-9233","https://osv.dev/MAL-2024-9233","foldl","","1.4.17","1.4.17","1.4.17","haskell:foldl","2024A0000009233","False","","err_not_vulnerable_based_on_repology",""
+"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","MAL-2024-9233","https://osv.dev/MAL-2024-9233","foldl","","1.4.17","1.4.17","1.4.18","haskell:foldl","2024A0000009233","False","","err_not_vulnerable_based_on_repology",""
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2024-9143","https://nvd.nist.gov/vuln/detail/CVE-2024-9143","openssl","4.3","3.3.2","3.3.2","3.4.0","openssl","2024A0000009143","False","","err_not_vulnerable_based_on_repology",""
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2024-8365","https://nvd.nist.gov/vuln/detail/CVE-2024-8365","vault","6.5","0.3.1.5-r8.cabal","0.3.1.5","0.3.1.5","haskell:vault","2024A0000008365","False","","err_not_vulnerable_based_on_repology",""
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2024-8365","https://nvd.nist.gov/vuln/detail/CVE-2024-8365","vault","6.5","0.3.1.5","0.3.1.5","0.3.1.5","haskell:vault","2024A0000008365","False","","err_not_vulnerable_based_on_repology",""
@@ -806,7 +808,7 @@ https://github.com/NixOS/nixpkgs/pull/239571"
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","OSV-2023-390","https://osv.dev/OSV-2023-390","qemu","","9.1.2","9.1.2","9.2.0","qemu","2023A0000000390","False","Unclear if this is still valid.","err_not_vulnerable_based_on_repology",""
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","OSV-2023-364","https://osv.dev/OSV-2023-364","hunspell","","1.7.2","1.7.2","1.7.2","hunspell","2023A0000000364","False","","err_not_vulnerable_based_on_repology",""
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","OSV-2023-327","https://osv.dev/OSV-2023-327","hunspell","","1.7.2","1.7.2","1.7.2","hunspell","2023A0000000327","False","","err_not_vulnerable_based_on_repology",""
-"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","OSV-2023-298","https://osv.dev/OSV-2023-298","cairo","","1.18.2","1.17.13","1.17.13","ruby:cairo","2023A0000000298","False","","err_not_vulnerable_based_on_repology",""
+"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","OSV-2023-298","https://osv.dev/OSV-2023-298","cairo","","1.18.2","1.17.13","1.17.14","ruby:cairo","2023A0000000298","False","","err_not_vulnerable_based_on_repology",""
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","CVE-2023-0238","https://nvd.nist.gov/vuln/detail/CVE-2023-0238","warp","5.5","3.3.31","3.4.3","3.4.7","haskell:warp","2023A0000000238","False","","err_not_vulnerable_based_on_repology",""
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","OSV-2023-197","https://osv.dev/OSV-2023-197","p11-kit","","0.25.5","0.25.5","0.25.5","p11-kit","2023A0000000197","False","","err_not_vulnerable_based_on_repology",""
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","lock_updated","OSV-2023-137","https://osv.dev/OSV-2023-137","harfbuzz","","10.0.1","","","","2023A0000000137","True","Based on https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=56510#c2, the issue is fixed in range https://github.com/harfbuzz/harfbuzz/compare/67e01c1292821e7b6fc2ab13acddb84ab41b2187...60841e26187576bff477c1a09ee2ffe544844abc all of which have been merged in 7.1.0.","err_missing_repology_version",""
@@ -1236,6 +1238,7 @@ https://github.com/NixOS/nixpkgs/pull/363310"
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","CVE-2024-47540","https://nvd.nist.gov/vuln/detail/CVE-2024-47540","gstreamer","9.8","1.24.7","1.24.7","1.24.10","gstreamer","2024A0000047540","False","","fix_update_to_version_upstream",""
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","CVE-2024-47539","https://nvd.nist.gov/vuln/detail/CVE-2024-47539","gstreamer","9.8","1.24.7","1.24.7","1.24.10","gstreamer","2024A0000047539","False","","fix_update_to_version_upstream",""
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","CVE-2024-47538","https://nvd.nist.gov/vuln/detail/CVE-2024-47538","gstreamer","9.8","1.24.7","1.24.7","1.24.10","gstreamer","2024A0000047538","False","","fix_update_to_version_upstream",""
+"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","CVE-2024-47537","https://nvd.nist.gov/vuln/detail/CVE-2024-47537","gstreamer","9.8","1.24.7","1.24.7","1.24.10","gstreamer","2024A0000047537","False","","fix_update_to_version_upstream",""
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","CVE-2024-24790","https://nvd.nist.gov/vuln/detail/CVE-2024-24790","go","9.8","1.21.0-linux-amd64-bootstrap","1.23.3","1.23.4","go","2024A0000024790","False","","fix_update_to_version_nixpkgs","https://github.com/NixOS/nixpkgs/pull/319485 
 https://github.com/NixOS/nixpkgs/pull/331906 
 https://github.com/NixOS/nixpkgs/pull/354124 
@@ -1252,7 +1255,7 @@ https://github.com/NixOS/nixpkgs/pull/361606"
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","CVE-2024-11168","https://nvd.nist.gov/vuln/detail/CVE-2024-11168","python","","2.7.18.8","3.13.1","3.13.1","python","2024A0000011168","False","","err_not_vulnerable_based_on_repology",""
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","CVE-2024-10041","https://nvd.nist.gov/vuln/detail/CVE-2024-10041","linux-pam","4.7","1.6.1","","","","2024A0000010041","False","","err_missing_repology_version",""
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","CVE-2024-9287","https://nvd.nist.gov/vuln/detail/CVE-2024-9287","python","","2.7.18.8","3.13.1","3.13.1","python","2024A0000009287","False","","err_not_vulnerable_based_on_repology",""
-"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","MAL-2024-9233","https://osv.dev/MAL-2024-9233","foldl","","1.4.17","1.4.17","1.4.17","haskell:foldl","2024A0000009233","False","","err_not_vulnerable_based_on_repology",""
+"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","MAL-2024-9233","https://osv.dev/MAL-2024-9233","foldl","","1.4.17","1.4.17","1.4.18","haskell:foldl","2024A0000009233","False","","err_not_vulnerable_based_on_repology",""
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","CVE-2024-9143","https://nvd.nist.gov/vuln/detail/CVE-2024-9143","openssl","4.3","3.3.2","3.3.2","3.4.0","openssl","2024A0000009143","False","","err_not_vulnerable_based_on_repology",""
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","CVE-2024-8365","https://nvd.nist.gov/vuln/detail/CVE-2024-8365","vault","6.5","0.3.1.5-r8.cabal","0.3.1.5","0.3.1.5","haskell:vault","2024A0000008365","False","","err_not_vulnerable_based_on_repology",""
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","CVE-2024-8365","https://nvd.nist.gov/vuln/detail/CVE-2024-8365","vault","6.5","0.3.1.5","0.3.1.5","0.3.1.5","haskell:vault","2024A0000008365","False","","err_not_vulnerable_based_on_repology",""
@@ -1408,7 +1411,7 @@ https://github.com/NixOS/nixpkgs/pull/239571"
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","OSV-2023-390","https://osv.dev/OSV-2023-390","qemu","","9.1.2","9.1.2","9.2.0","qemu","2023A0000000390","False","Unclear if this is still valid.","err_not_vulnerable_based_on_repology",""
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","OSV-2023-364","https://osv.dev/OSV-2023-364","hunspell","","1.7.2","1.7.2","1.7.2","hunspell","2023A0000000364","False","","err_not_vulnerable_based_on_repology",""
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","OSV-2023-327","https://osv.dev/OSV-2023-327","hunspell","","1.7.2","1.7.2","1.7.2","hunspell","2023A0000000327","False","","err_not_vulnerable_based_on_repology",""
-"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","OSV-2023-298","https://osv.dev/OSV-2023-298","cairo","","1.18.2","1.17.13","1.17.13","ruby:cairo","2023A0000000298","False","","err_not_vulnerable_based_on_repology",""
+"packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","OSV-2023-298","https://osv.dev/OSV-2023-298","cairo","","1.18.2","1.17.13","1.17.14","ruby:cairo","2023A0000000298","False","","err_not_vulnerable_based_on_repology",""
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","CVE-2023-0238","https://nvd.nist.gov/vuln/detail/CVE-2023-0238","warp","5.5","3.3.31","3.4.3","3.4.7","haskell:warp","2023A0000000238","False","","err_not_vulnerable_based_on_repology",""
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","OSV-2023-197","https://osv.dev/OSV-2023-197","p11-kit","","0.25.5","0.25.5","0.25.5","p11-kit","2023A0000000197","False","","err_not_vulnerable_based_on_repology",""
 "packages.x86_64-linux.lenovo-x1-carbon-gen11-debug","github:tiiuae/ghaf?ref=main","nix_unstable","OSV-2023-137","https://osv.dev/OSV-2023-137","harfbuzz","","10.0.1","","","","2023A0000000137","True","Based on https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=56510#c2, the issue is fixed in range https://github.com/harfbuzz/harfbuzz/compare/67e01c1292821e7b6fc2ab13acddb84ab41b2187...60841e26187576bff477c1a09ee2ffe544844abc all of which have been merged in 7.1.0.","err_missing_repology_version",""