Adding detection events for superset (#11016)

* Adding Advisory GHSA-gmj6-6f8f-6699 for superset * Adding Advisory GHSA-q2x7-8rv6-6q7h for superset --------- Co-authored-by: octo-sts[bot] <[email protected]>
wolfi-dev · Dec 24, 2024 · 224d502 · 224d502
1 parent 4f4071b
commit 224d502
Showing 1 changed file with 36 additions and 0 deletions.
diff --git a/superset.advisories.yaml b/superset.advisories.yaml
@@ -139,6 +139,24 @@ advisories:
         data:
           fixed-version: 4.0.1-r0
 
+  - id: CGA-9x7g-9rfp-4xhm
+    aliases:
+      - CVE-2024-56201
+      - GHSA-gmj6-6f8f-6699
+    events:
+      - timestamp: 2024-12-24T09:26:53Z
+        type: detection
+        data:
+          type: scan/v1
+          data:
+            subpackageName: superset
+            componentID: 4db7f3b565b3bffd
+            componentName: jinja2
+            componentVersion: 3.1.4
+            componentType: python
+            componentLocation: /usr/share/superset/venv/lib/python3.11/site-packages/jinja2-3.1.4.dist-info/METADATA, /usr/share/superset/venv/lib/python3.11/site-packages/jinja2-3.1.4.dist-info/RECORD
+            scanner: grype
+
   - id: CGA-c7v3-5cq2-7m57
     aliases:
       - CVE-2024-49766
@@ -227,6 +245,24 @@ advisories:
         data:
           fixed-version: 4.0.1-r0
 
+  - id: CGA-p9v5-jpj2-q3ww
+    aliases:
+      - CVE-2024-56326
+      - GHSA-q2x7-8rv6-6q7h
+    events:
+      - timestamp: 2024-12-24T09:26:57Z
+        type: detection
+        data:
+          type: scan/v1
+          data:
+            subpackageName: superset
+            componentID: 4db7f3b565b3bffd
+            componentName: jinja2
+            componentVersion: 3.1.4
+            componentType: python
+            componentLocation: /usr/share/superset/venv/lib/python3.11/site-packages/jinja2-3.1.4.dist-info/METADATA, /usr/share/superset/venv/lib/python3.11/site-packages/jinja2-3.1.4.dist-info/RECORD
+            scanner: grype
+
   - id: CGA-xrq9-4hfh-g5jh
     aliases:
       - CVE-2024-6345