avahi.advisories.yaml

schema-version: 2.0.2

package:
  name: avahi

advisories:
  - id: CGA-wh9g-9xfr-658j
    aliases:
      - CVE-2021-26720
      - GHSA-jhxr-wvf5-hrp6
    events:
      - timestamp: 2023-06-20T14:47:42Z
        type: detection
        data:
          type: manual
      - timestamp: 2023-06-20T16:14:51Z
        type: false-positive-determination
        data:
          type: component-vulnerability-mismatch
          note: The CVE is only present in a Debian-specific packaging script.

  - id: CGA-h88c-2gpj-jff4
    aliases:
      - CVE-2021-3468
      - GHSA-43rm-fv4g-cmj8
    events:
      - timestamp: 2023-06-20T14:47:42Z
        type: detection
        data:
          type: manual
      - timestamp: 2023-06-20T16:14:33Z
        type: fixed
        data:
          fixed-version: 0.8-r1

  - id: CGA-p7w9-rr5h-r6q3
    aliases:
      - CVE-2023-38469
      - GHSA-cg96-q9gq-2pr7
    events:
      - timestamp: 2024-02-09T01:57:54Z
        type: fixed
        data:
          fixed-version: 0.9_rc1-r0

  - id: CGA-px63-w5ph-wr78
    aliases:
      - CVE-2023-38470
      - GHSA-mg8v-g9mc-p4f8
    events:
      - timestamp: 2024-02-09T01:58:09Z
        type: fixed
        data:
          fixed-version: 0.9_rc1-r0

  - id: CGA-9v95-w22g-6294
    aliases:
      - CVE-2023-38471
      - GHSA-h3x3-j454-4phv
    events:
      - timestamp: 2024-02-09T01:58:28Z
        type: fixed
        data:
          fixed-version: 0.9_rc1-r0

  - id: CGA-h7pp-jxxp-p9gx
    aliases:
      - CVE-2023-38472
      - GHSA-4g3h-v9fp-pgm4
    events:
      - timestamp: 2024-02-09T01:58:44Z
        type: fixed
        data:
          fixed-version: 0.9_rc1-r0

  - id: CGA-vq95-vcgf-2j38
    aliases:
      - CVE-2023-38473
      - GHSA-5qm6-j92f-79jp
    events:
      - timestamp: 2024-02-09T01:58:56Z
        type: fixed
        data:
          fixed-version: 0.9_rc1-r0