Changes in Update Released on 10-August-2023
This Update includes the changes described in the following sections.
Issues/Bugs Addressed
The following issues were addressed in the Update:
| Issue ID | Issue Summary |
|---|---|
| SCA-49244 | Detection of OpenSC component. |
| SCA-49077, SCA-49076, SCA-49074, SCA-49072 | Added License detection capability and license evidence mechanism. |
| SCA-48974 | Alpine Zlib Missing Vulnerability |
Enhanced License Detection Capability for Components
License detection capability and license evidence mechanism for the following components was updated/added:
-
AdaCore-doc
-
Bitstream-Charter
-
Brian-Gladman-3-Clause
-
BSD-4.3RENO
-
BSD-4.3TAHOE
-
CFITSIO
-
checkmk
-
CMU-Mach
-
Cornell-Lossless-JPEG
-
DRL-1.0
-
FSFULLRWD
-
Graphics-Gems
-
HPND-Markus-Kuhn
-
HPND-export-US
-
IEC-Code-Components-EULA
-
IJG-short
-
JPL-image
-
Kazlib
-
Knuth-CTAN
-
libutil-David-Nugent
-
Linux-syscall-note
-
snprintf
-
Symlinks
-
TPDL
-
TTWL
-
w3m
-
xlock
-
Loop
-
Martin-Birgmeier
-
Minpack
-
MIT-Wu
-
mpi-permissive
-
NICTA-1.0
-
OFFIS
-
389-exception
-
Autoconf-exception-2.0
-
Autoconf-exception-3.0
-
Bison-exception-2.2
-
Bootloader-exception
-
Classpath-exception-2.0
-
CLISP-exception-2.0
New Component Detection Rules
- OpenSC
Addition of Missing Vulnerability Mappings
Missing vulnerability mappings for the following components were added:
- Zlib (Alpine)
Collector Status
The following table lists Collector Status information.
| Name | Date of Last Successful Run |
|---|---|
| npm | 8/7/2023 |
| crates | 8/25/2022 |
| cpan | 8/3/2023 |
| clojars | 8/3/2023 |
| rubygems | 8/3/2023 |
| maven-google | 8/4/2023 |
| cran | 8/5/2023 |
| hackage | 8/6/2023 |
| packagist | 8/6/2023 |
| go | 8/7/2023 |
| pypi | 7/31/2023 |
| nuget gallery | 8/1/2023 |
| maven2-ibiblio | 6/14/2023 |
| github | 7/14/2023 |
| fedora-koji | 8/8/2023 |
| alpine | 8/2/2023 |
| gitlab | 6/6/2023 |
| debian | 8/7/2023 |