Adding fixed events for opensearch-2 (#7317)

* Adding Fixed Advisory GHSA-8xfc-gm6g-vgpv for opensearch-2 * Adding Fixed Advisory GHSA-v435-xc8x-wvr9 for opensearch-2 * Adding Fixed Advisory GHSA-m44j-cfrm-g8qc for opensearch-2 * Adding Fixed Advisory GHSA-4h8f-2wvx-gg5w for opensearch-2 --------- Co-authored-by: octo-sts[bot] <[email protected]>
wolfi-dev · Aug 25, 2024 · d0acee3 · d0acee3
1 parent 35d04ba
commit d0acee3
Showing 1 changed file with 16 additions and 0 deletions.
diff --git a/opensearch-2.advisories.yaml b/opensearch-2.advisories.yaml
@@ -25,6 +25,10 @@ advisories:
         type: pending-upstream-fix
         data:
           note: The subpackage opensearch-performance-analyzer compilation hardcodes the cloning a specific branch of opensearch-performance-analyzer-rca repository with the vulnerable libraries. This requires upstream changes to opensearch-performance-analyzer-rca repository.
+      - timestamp: 2024-08-25T00:38:32Z
+        type: fixed
+        data:
+          fixed-version: 2.16.0-r0
 
   - id: CGA-35r6-m6p6-xc93
     aliases:
@@ -47,6 +51,10 @@ advisories:
         type: pending-upstream-fix
         data:
           note: The subpackage opensearch-performance-analyzer compilation hardcodes the cloning a specific branch of opensearch-performance-analyzer-rca repository with the vulnerable libraries. This requires upstream changes to opensearch-performance-analyzer-rca repository.
+      - timestamp: 2024-08-25T00:38:31Z
+        type: fixed
+        data:
+          fixed-version: 2.16.0-r0
 
   - id: CGA-679f-cjh5-5f6q
     aliases:
@@ -155,6 +163,10 @@ advisories:
         type: pending-upstream-fix
         data:
           note: The subpackage opensearch-performance-analyzer compilation hardcodes the cloning a specific branch of opensearch-performance-analyzer-rca repository with the vulnerable libraries. This requires upstream changes to opensearch-performance-analyzer-rca repository.
+      - timestamp: 2024-08-25T00:38:32Z
+        type: fixed
+        data:
+          fixed-version: 2.16.0-r0
 
   - id: CGA-q576-4g28-x6p5
     aliases:
@@ -254,3 +266,7 @@ advisories:
         type: pending-upstream-fix
         data:
           note: The subpackage opensearch-performance-analyzer compilation hardcodes the cloning a specific branch of opensearch-performance-analyzer-rca repository with the vulnerable libraries. This requires upstream changes to opensearch-performance-analyzer-rca repository.
+      - timestamp: 2024-08-25T00:38:31Z
+        type: fixed
+        data:
+          fixed-version: 2.16.0-r0