diff --git a/advisories/github-reviewed/2026/05/GHSA-8rm2-7qqf-34qm/GHSA-8rm2-7qqf-34qm.json b/advisories/github-reviewed/2026/05/GHSA-8rm2-7qqf-34qm/GHSA-8rm2-7qqf-34qm.json index 7c4b75803d752..3022b0a1187ac 100644 --- a/advisories/github-reviewed/2026/05/GHSA-8rm2-7qqf-34qm/GHSA-8rm2-7qqf-34qm.json +++ b/advisories/github-reviewed/2026/05/GHSA-8rm2-7qqf-34qm/GHSA-8rm2-7qqf-34qm.json @@ -1,7 +1,7 @@ { "schema_version": "1.4.0", "id": "GHSA-8rm2-7qqf-34qm", - "modified": "2026-05-05T19:34:05Z", + "modified": "2026-05-05T19:34:06Z", "published": "2026-05-05T19:34:05Z", "aliases": [ "CVE-2026-42154" @@ -27,12 +27,81 @@ { "introduced": "0" }, + { + "fixed": "0.305.3" + } + ] + } + ], + "database_specific": { + "last_known_affected_version_range": "<= 0.305.2" + } + }, + { + "package": { + "ecosystem": "Go", + "name": "github.com/prometheus/prometheus" + }, + "ranges": [ + { + "type": "ECOSYSTEM", + "events": [ + { + "introduced": "0.306.0" + }, { "fixed": "0.311.3" } ] } - ] + ], + "database_specific": { + "last_known_affected_version_range": "<= 0.311.2" + } + }, + { + "package": { + "ecosystem": "Go", + "name": "github.com/prometheus/prometheus" + }, + "ranges": [ + { + "type": "ECOSYSTEM", + "events": [ + { + "introduced": "1.0.0" + }, + { + "fixed": "3.5.3" + } + ] + } + ], + "database_specific": { + "last_known_affected_version_range": "<= 3.5.2" + } + }, + { + "package": { + "ecosystem": "Go", + "name": "github.com/prometheus/prometheus" + }, + "ranges": [ + { + "type": "ECOSYSTEM", + "events": [ + { + "introduced": "3.6.0" + }, + { + "fixed": "3.11.3" + } + ] + } + ], + "database_specific": { + "last_known_affected_version_range": "<= 3.11.2" + } } ], "references": [