High severityNVD Advisory· Published Nov 17, 2023· Updated Aug 2, 2024
CVE-2023-46402
CVE-2023-46402
Description
git-urls 1.0.0 allows ReDOS (Regular Expression Denial of Service) in urls.go.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
github.com/whilp/git-urlsGo | <= 1.0.1 | — |
Affected products
60- git-urls/git-urlsdescription
- osv-coords59 versionspkg:apk/chainguard/argo-cd-2.7pkg:apk/chainguard/argo-cd-2.7-compatpkg:apk/chainguard/argo-cd-2.7-repo-serverpkg:apk/chainguard/argo-cd-2.8pkg:apk/chainguard/argo-cd-2.8-compatpkg:apk/chainguard/argo-cd-2.8-repo-serverpkg:apk/chainguard/argo-cd-2.9pkg:apk/chainguard/argo-cd-2.9-compatpkg:apk/chainguard/argo-cd-2.9-repo-serverpkg:apk/chainguard/argo-eventspkg:apk/chainguard/argo-events-compatpkg:apk/chainguard/argo-events-fipspkg:apk/chainguard/argo-events-fips-compatpkg:apk/chainguard/argo-workflow-clipkg:apk/chainguard/argo-workflow-controllerpkg:apk/chainguard/argo-workflow-controller-compatpkg:apk/chainguard/argo-workflow-executorpkg:apk/chainguard/argo-workflow-executor-compatpkg:apk/chainguard/argo-workflowspkg:apk/chainguard/argo-workflows-known-hostspkg:apk/chainguard/argo-workflows-uipkg:apk/chainguard/flux-notification-controllerpkg:apk/chainguard/flux-notification-controller-0pkg:apk/chainguard/flux-notification-controller-0.37pkg:apk/chainguard/flux-notification-controller-bitnami-compatpkg:apk/chainguard/flux-notification-controller-iamguarded-compatpkg:apk/chainguard/melangepkg:apk/chainguard/melange-microvm-initpkg:apk/chainguard/pulumi-kubernetes-operatorpkg:apk/chainguard/snyk-clipkg:apk/chainguard/taskpkg:apk/wolfi/argo-cd-2.7pkg:apk/wolfi/argo-cd-2.7-compatpkg:apk/wolfi/argo-cd-2.7-repo-serverpkg:apk/wolfi/argo-cd-2.8pkg:apk/wolfi/argo-cd-2.8-compatpkg:apk/wolfi/argo-cd-2.8-repo-serverpkg:apk/wolfi/argo-cd-2.9pkg:apk/wolfi/argo-cd-2.9-compatpkg:apk/wolfi/argo-cd-2.9-repo-serverpkg:apk/wolfi/argo-eventspkg:apk/wolfi/argo-events-compatpkg:apk/wolfi/argo-workflow-clipkg:apk/wolfi/argo-workflow-controllerpkg:apk/wolfi/argo-workflow-controller-compatpkg:apk/wolfi/argo-workflow-executorpkg:apk/wolfi/argo-workflow-executor-compatpkg:apk/wolfi/argo-workflowspkg:apk/wolfi/argo-workflows-known-hostspkg:apk/wolfi/argo-workflows-uipkg:apk/wolfi/flux-notification-controllerpkg:apk/wolfi/flux-notification-controller-bitnami-compatpkg:apk/wolfi/flux-notification-controller-iamguarded-compatpkg:apk/wolfi/melangepkg:apk/wolfi/melange-microvm-initpkg:apk/wolfi/pulumi-kubernetes-operatorpkg:apk/wolfi/snyk-clipkg:apk/wolfi/taskpkg:golang/github.com/whilp/git-urls
< 2.7.15-r2+ 58 more
- (no CPE)range: < 2.7.15-r2
- (no CPE)range: < 2.7.15-r2
- (no CPE)range: < 2.7.15-r2
- (no CPE)range: < 2.8.7-r2
- (no CPE)range: < 2.8.7-r2
- (no CPE)range: < 2.8.7-r2
- (no CPE)range: < 2.9.3-r1
- (no CPE)range: < 2.9.3-r1
- (no CPE)range: < 2.9.3-r1
- (no CPE)range: < 1.9.2-r1
- (no CPE)range: < 1.9.2-r1
- (no CPE)range: < 1.9.2-r1
- (no CPE)range: < 1.9.2-r1
- (no CPE)range: < 3.5.2-r1
- (no CPE)range: < 3.5.2-r1
- (no CPE)range: < 3.5.2-r1
- (no CPE)range: < 3.5.2-r1
- (no CPE)range: < 3.5.2-r1
- (no CPE)range: < 3.5.2-r1
- (no CPE)range: < 3.5.2-r1
- (no CPE)range: < 3.5.2-r1
- (no CPE)range: < 1.1.0-r6
- (no CPE)range: < 0.33.0-r4
- (no CPE)range: < 0.29.0-r4
- (no CPE)range: < 1.1.0-r6
- (no CPE)range: < 1.1.0-r6
- (no CPE)range: < 0.5.3-r1
- (no CPE)range: < 0.5.3-r1
- (no CPE)range: < 1.14.0-r1
- (no CPE)range: < 1.1297.1-r1
- (no CPE)range: < 3.40.1-r0
- (no CPE)range: < 2.7.15-r2
- (no CPE)range: < 2.7.15-r2
- (no CPE)range: < 2.7.15-r2
- (no CPE)range: < 2.8.7-r2
- (no CPE)range: < 2.8.7-r2
- (no CPE)range: < 2.8.7-r2
- (no CPE)range: < 2.9.3-r1
- (no CPE)range: < 2.9.3-r1
- (no CPE)range: < 2.9.3-r1
- (no CPE)range: < 1.9.2-r1
- (no CPE)range: < 1.9.2-r1
- (no CPE)range: < 3.5.2-r1
- (no CPE)range: < 3.5.2-r1
- (no CPE)range: < 3.5.2-r1
- (no CPE)range: < 3.5.2-r1
- (no CPE)range: < 3.5.2-r1
- (no CPE)range: < 3.5.2-r1
- (no CPE)range: < 3.5.2-r1
- (no CPE)range: < 3.5.2-r1
- (no CPE)range: < 1.1.0-r6
- (no CPE)range: < 1.1.0-r6
- (no CPE)range: < 1.1.0-r6
- (no CPE)range: < 0.5.3-r1
- (no CPE)range: < 0.5.3-r1
- (no CPE)range: < 1.14.0-r1
- (no CPE)range: < 1.1297.1-r1
- (no CPE)range: < 3.40.1-r0
- (no CPE)range: <= 1.0.1
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.