Skip to content
This repository has been archived by the owner on Jan 19, 2023. It is now read-only.

Bug: https://ossindex.sonatype.org/vuln/7ea56ad4-8a8b-4e51-8ed9-5aad83d8efb1?component-type=maven&component-name=junit.junit #127

Closed
marcphilipp opened this issue Nov 17, 2020 · 3 comments
Closed

Bug: https://ossindex.sonatype.org/vuln/7ea56ad4-8a8b-4e51-8ed9-5aad83d8efb1?component-type=maven&component-name=junit.junit #127

marcphilipp opened this issue Nov 17, 2020 · 3 comments
Labels
bug Something isn't working

Comments

@marcphilipp
Copy link

Vulnerability URL
https://ossindex.sonatype.org/vuln/7ea56ad4-8a8b-4e51-8ed9-5aad83d8efb1?component-type=maven&component-name=junit.junit

Description
The vulnerability was fixed in 4.13.1 but shows 4.13.1 as being affected.

Source
GHSA-269g-pwp5-87pp
@marcphilipp marcphilipp added the bug Something isn't working label Nov 17, 2020
@marcphilipp marcphilipp mentioned this issue Nov 17, 2020
Closed
@bjansen bjansen mentioned this issue Nov 18, 2020
Closed
@ken-duck
Copy link
Contributor

Sorry for the delay. This appears to be a case where the CVE was changed but OSS Index did not notice the range change. Thanks for bringing it to our attention, this should be fixed in the public repo by tomorrow.

@marcphilipp
Copy link
Author

Thanks, it's gone now. 👍

@ken-duck
Copy link
Contributor

Outstanding. Thanks for the update (and the initial report!)

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
bug Something isn't working
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@marcphilipp @ken-duck