Adding Advisory GHSA-w32m-9786-jp63 for sftpgo-plugin-auth (#10334)

Co-authored-by: octo-sts[bot] <[email protected]>
wolfi-dev · Dec 19, 2024 · a080601 · a080601
1 parent 31ccd7e
commit a080601
Showing 1 changed file with 18 additions and 0 deletions.
diff --git a/sftpgo-plugin-auth.advisories.yaml b/sftpgo-plugin-auth.advisories.yaml
@@ -25,3 +25,21 @@ advisories:
         type: fixed
         data:
           fixed-version: 1.0.10-r1
+
+  - id: CGA-cv2m-g2v8-fwmh
+    aliases:
+      - CVE-2024-45338
+      - GHSA-w32m-9786-jp63
+    events:
+      - timestamp: 2024-12-19T12:34:34Z
+        type: detection
+        data:
+          type: scan/v1
+          data:
+            subpackageName: sftpgo-plugin-auth
+            componentID: 0f0e18210337fba3
+            componentName: golang.org/x/net
+            componentVersion: v0.31.0
+            componentType: go-module
+            componentLocation: /usr/bin/sftpgo-plugin-auth
+            scanner: grype