Skip to main content

Changes in Update Released on 25-July-2024

This update includes the changes described in the following sections.

Issues/Bugs Addressed

The following issues were addressed in the Update:

Issue IDIssue Summary
SCA-53928Fixed False Positive vulnerability (CVE-2022-25758) reported on scss-tokenizer 0.4.3 (component id: 13388895)
SCA-53168Addition of vulnerability mappings to the component moment.js (component id: 3530129) (CVE-2022-24785 ,CVE-2022-31129)
SCA-53075Addition/Updating components, versions, licenses. Details are in the sections below

New/Update Component Requests

  • SNMP++ API (component id : 32304497)
  • ata-project (component id : 32304498)
  • foundation-icon-fonts-3 (component id : 32304496)
  • vistadb (component id : 32304499)
  • Updated component URL for jquery-validation (component id: 247443)

New/Update component_version Requests

  • SNMP++ API (component id : 32304497) - Versions from 3.0 to 3.5.2
  • ata-project (component id : 32304498) - Version 1.0
  • foundation-icon-fonts-3 (component id : 32304496) - Version 3
  • vistadb (component id : 32304499) - Version 5.0 to 6.5
  • nsis (component id: 6422) - Version 2.47 to 3.10

New/Update License Requests

  • Rebex General License(license-id: 2304)
  • SNMP++ License(license-id: 2302)
  • VistaDB License(license-id: 2303)

New/Update License Mappings Requests

  • Added Rebex General License for rebex.ftp (component id: 22421074)
  • Added OpenSSL License for openssl (component id: 58316) versions 0.9.0 to 1.1.1w and added Apache-2.0 for openssl versions 3.0.0 and above

Collector Status

The following table lists Collector Status information.

NameDate of Last Successful Run
alpine7/24/2024
clojars7/18/2024
cocoapods7/23/2024
Conan7/18/2024
cpan7/18/2024
cran7/20/2024
crates8/25/2022
debian7/22/2024
fedora-koji7/18/2024
github7/22/2024
gitlab6/6/2023
go7/24/2024
hackage7/21/2024
maven2-ibiblio7/3/2024
maven-google7/19/2024
npm7/23/2024
nuget gallery7/11/2024
packagist7/21/2024
pypi7/15/2024
rubygems7/18/2024