diff --git a/data/osv/GO-2024-2666.json b/data/osv/GO-2024-2666.json new file mode 100644 index 00000000..3fb34fc5 --- /dev/null +++ b/data/osv/GO-2024-2666.json @@ -0,0 +1,55 @@ +{ + "schema_version": "1.3.1", + "id": "GO-2024-2666", + "modified": "0001-01-01T00:00:00Z", + "published": "0001-01-01T00:00:00Z", + "aliases": [ + "CVE-2024-28860", + "GHSA-pwqm-x5x6-5586" + ], + "summary": "Insecure IPsec transparent encryption in github.com/cilium/cilium", + "details": "Insecure IPsec transparent encryption in github.com/cilium/cilium", + "affected": [ + { + "package": { + "name": "github.com/cilium/cilium", + "ecosystem": "Go" + }, + "ranges": [ + { + "type": "SEMVER", + "events": [ + { + "introduced": "0" + }, + { + "fixed": "1.13.14" + }, + { + "introduced": "1.14.0" + }, + { + "fixed": "1.14.9" + }, + { + "introduced": "1.15.0" + }, + { + "fixed": "1.15.3" + } + ] + } + ], + "ecosystem_specific": {} + } + ], + "references": [ + { + "type": "ADVISORY", + "url": "https://github.com/cilium/cilium/security/advisories/GHSA-pwqm-x5x6-5586" + } + ], + "database_specific": { + "url": "https://pkg.go.dev/vuln/GO-2024-2666" + } +} \ No newline at end of file diff --git a/data/reports/GO-2024-2666.yaml b/data/reports/GO-2024-2666.yaml new file mode 100644 index 00000000..c6977b19 --- /dev/null +++ b/data/reports/GO-2024-2666.yaml @@ -0,0 +1,17 @@ +id: GO-2024-2666 +modules: + - module: github.com/cilium/cilium + versions: + - fixed: 1.13.14 + - introduced: 1.14.0 + fixed: 1.14.9 + - introduced: 1.15.0 + fixed: 1.15.3 + vulnerable_at: 1.15.0 +summary: Insecure IPsec transparent encryption in github.com/cilium/cilium +cves: + - CVE-2024-28860 +ghsas: + - GHSA-pwqm-x5x6-5586 +references: + - advisory: https://github.com/cilium/cilium/security/advisories/GHSA-pwqm-x5x6-5586