mirror of
https://github.com/fleetdm/fleet
synced 2026-04-26 07:57:29 +00:00
c557bcb782
Update our `security/status.md` file after analyzing currently reported vulnerabilities. https://github.com/fleetdm/fleet/actions/runs/20115346825 <img width="1711" height="645" alt="Screenshot 2025-12-10 at 7 41 00 PM" src="https://github.com/user-attachments/assets/97e17b58-50a8-4556-9ceb-bcb6701d7d61" />
58 lines
1.5 KiB
JSON
58 lines
1.5 KiB
JSON
{
|
|
"@context": "https://openvex.dev/ns/v0.2.0",
|
|
"@id": "https://openvex.dev/docs/public/vex-f8c19c3ccf1d0a0d11064148d5f0b464260d62d948c23bd8034664a0a9dfa91d",
|
|
"author": "@lucasmrod",
|
|
"timestamp": "2025-12-10T19:26:35.526636-03:00",
|
|
"last_updated": "2025-12-10T19:26:44.598903-03:00",
|
|
"version": 2,
|
|
"statements": [
|
|
{
|
|
"vulnerability": {
|
|
"name": "CVE-2025-61729",
|
|
"aliases": [
|
|
"https://pkg.go.dev/vuln/GO-2025-4155"
|
|
]
|
|
},
|
|
"timestamp": "2025-12-10T19:26:35.526637-03:00",
|
|
"products": [
|
|
{
|
|
"@id": "fleetctl@v4.77.0"
|
|
},
|
|
{
|
|
"@id": "fleetctl@v4.76.0"
|
|
},
|
|
{
|
|
"@id": "fleetctl@v4.76.1"
|
|
},
|
|
{
|
|
"@id": "fleetctl@v4.75.0"
|
|
},
|
|
{
|
|
"@id": "fleetctl@v4.75.1"
|
|
},
|
|
{
|
|
"@id": "pkg:golang/stdlib@1.25.3"
|
|
}
|
|
],
|
|
"status": "affected",
|
|
"status_notes": "This is not a CRITICAL CVE, but we still recommend upgrading to 4.78.* when it's available",
|
|
"action_statement": "No action statement provided",
|
|
"action_statement_timestamp": "2025-12-10T19:26:35.526637-03:00"
|
|
},
|
|
{
|
|
"vulnerability": {
|
|
"name": "CVE-2025-61729",
|
|
"aliases": [
|
|
"https://pkg.go.dev/vuln/GO-2025-4155"
|
|
]
|
|
},
|
|
"timestamp": "2025-12-10T19:26:44.598904-03:00",
|
|
"products": [
|
|
{
|
|
"@id": "fleetctl@v4.78.*"
|
|
}
|
|
],
|
|
"status": "fixed"
|
|
}
|
|
]
|
|
}
|