Ecosyste.ms: Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / hillu/local-log4j-vuln-scanner issues and pull requests

#59 - Crash when jar file is zero bytes

Issue - State: closed - Opened by a087228 over 2 years ago - 2 comments

#58 - Add config for CVE_2022_23307 , apache chainsaw vulnerability

Pull Request - State: open - Opened by andrewdriver123 over 2 years ago

#57 - installation with go install

Issue - State: closed - Opened by vitikyalapatii over 2 years ago - 2 comments

#56 - Henrik

Pull Request - State: open - Opened by henrikor over 2 years ago - 1 comment

#55 - detect CVE_2021_44832 in JDBC-Appender up to 2.17.0

Pull Request - State: closed - Opened by ljakob over 2 years ago

#54 - x86 support?

Issue - State: open - Opened by EmissaryVX over 2 years ago - 3 comments

#53 - Scanner now fork a new goroutine for each archive

Pull Request - State: closed - Opened by chrisolms over 2 years ago - 1 comment

#52 - detect CVE_2021_44832 in JDBC-Appender up to 2.17.0

Pull Request - State: closed - Opened by ljakob over 2 years ago - 1 comment

#51 - Unable to scan network filesystems

Issue - State: closed - Opened by sjquinney over 2 years ago - 5 comments

#50 - Scans network shares on macOS

Issue - State: closed - Opened by staze over 2 years ago - 9 comments

#49 - Fix excludes when quiet is turned on

Pull Request - State: closed - Opened by simoesp over 2 years ago - 1 comment

#48 - Add 2.16.0 (CVE-2021-45105) and 2.17.0 (CVE-2021-44832) as vulnerable

Pull Request - State: closed - Opened by ghost over 2 years ago - 2 comments

#47 - Just curious - why do you do f.Seek(0, END) twice?

Issue - State: closed - Opened by dladlk almost 3 years ago - 1 comment

#46 - Feature request: -exclude with wildcards

Issue - State: open - Opened by fpschultze almost 3 years ago - 1 comment

#45 - How to use filter.go

Issue - State: closed - Opened by natschel almost 3 years ago - 4 comments

#44 - add 2.16 as vulnerable

Pull Request - State: open - Opened by L0u15 almost 3 years ago - 1 comment

#43 - CVE-2021-45105 should mark 2.16 as vulnerable

Issue - State: closed - Opened by damoon almost 3 years ago - 4 comments

#42 - Even with exclude, tool scans folders

Issue - State: closed - Opened by GElkayam almost 3 years ago - 4 comments

#41 - apache log4j 2.17 already out, please add

Issue - State: closed - Opened by Jordy694 almost 3 years ago - 1 comment

#40 - Delete main.go

Pull Request - State: closed - Opened by In3x0rabl3 almost 3 years ago - 2 comments

#39 - Added (recursive) .zip and .tar.gz scanning support

Pull Request - State: closed - Opened by kutsal almost 3 years ago - 1 comment

#38 - Patcher does not seem to fix WAR files

Issue - State: closed - Opened by Ghepardo almost 3 years ago - 1 comment

#37 - Strange "indicator" message from scanner

Issue - State: closed - Opened by Ghepardo almost 3 years ago - 1 comment

#36 - New magic number check failure

Issue - State: closed - Opened by Ghepardo almost 3 years ago - 2 comments

#35 - Treat 2.12.2 as fixed version

Issue - State: closed - Opened by leepfrog-ger almost 3 years ago

#33 - fix close function

Pull Request - State: closed - Opened by wcc526 almost 3 years ago - 1 comment

#32 - Quick check for log4-core jndi.class

Pull Request - State: closed - Opened by wcc526 almost 3 years ago - 1 comment

#31 - Add CVE 2021-45046 to filters and update module locations to my GitHub and local

Pull Request - State: closed - Opened by timkatje almost 3 years ago - 1 comment

#30 - Make magic numbers quietable

Pull Request - State: closed - Opened by hawson almost 3 years ago

#29 - Can't read magic from JAR file member

Issue - State: closed - Opened by sjquinney almost 3 years ago - 1 comment

#28 - Added --log to scanner usage string

Pull Request - State: closed - Opened by cypriani almost 3 years ago

#27 - Misnamed executable for patching

Issue - State: closed - Opened by Ghepardo almost 3 years ago - 1 comment

#26 - command line option for jar file matching

Issue - State: open - Opened by danielgrahl almost 3 years ago - 7 comments

#25 - Scanner cannot find vulnerabilites when class is esclazz

Issue - State: closed - Opened by ccoltx almost 3 years ago - 3 comments

#24 - The binary created for Linux made compatible with Alpine linux

Pull Request - State: closed - Opened by emrahkaya almost 3 years ago - 2 comments

#23 - Added file hash for log4j 2.15.0 to cover CVE 2021-45046 in scans.

Pull Request - State: closed - Opened by komalley97 almost 3 years ago

#21 - Detection of CVE 2021-45046?

Issue - State: closed - Opened by ZerhackerJagi almost 3 years ago - 5 comments

#20 - (-)-exclude flag

Issue - State: closed - Opened by planetmija almost 3 years ago - 2 comments

#19 - README.md improvements

Pull Request - State: closed - Opened by martin-schlossarek almost 3 years ago

#18 - unable to unzip jar files

Issue - State: closed - Opened by t0xic-coder almost 3 years ago - 10 comments

#17 - ignore-v1 not working

Issue - State: closed - Opened by RealKelsar almost 3 years ago - 1 comment

#16 - Direct errors to STDERR

Pull Request - State: closed - Opened by ruskilli almost 3 years ago - 2 comments

#15 - Added log file capability

Pull Request - State: closed - Opened by lbruder almost 3 years ago - 1 comment

#14 - Add --quiet --v1 options, update README

Pull Request - State: closed - Opened by hawson almost 3 years ago - 2 comments

#13 - GOFLAGS="-trimpath" for reproducible builds

Pull Request - State: closed - Opened by simon04 almost 3 years ago

#12 - Usage instructions?

Issue - State: closed - Opened by adamjgrant almost 3 years ago - 2 comments

#11 - Flagging 1.X Versions

Issue - State: closed - Opened by theonlykernel almost 3 years ago - 5 comments

#10 - Segfaults on CentOS 7/8

Issue - State: closed - Opened by pastascript almost 3 years ago - 1 comment

#9 - add --exclude flag for excluding directories

Pull Request - State: closed - Opened by martin-schlossarek almost 3 years ago - 1 comment

#8 - add version log4j 1.2.15.v201012070815

Pull Request - State: closed - Opened by ljakob almost 3 years ago - 3 comments

#7 - Virustotal 17 security vendors and 1 sandbox flagged this file as malicious

Issue - State: closed - Opened by askvpb almost 3 years ago - 18 comments

#6 - Scanning of a directory ending .war leads in an error

Issue - State: closed - Opened by karstenlehmann almost 3 years ago - 2 comments

#5 - add ear files

Pull Request - State: closed - Opened by ljakob almost 3 years ago - 1 comment

#4 - [Feature Request] Arm64 build in releases

Issue - State: closed - Opened by KittyBorgX almost 3 years ago - 4 comments

#3 - Use defer fr.Close()

Pull Request - State: closed - Opened by simon04 almost 3 years ago - 1 comment

#2 - Fix false positive log4j-core-2.15.0.jar

Pull Request - State: closed - Opened by simon04 almost 3 years ago - 1 comment

#1 - False positive log4j-core-2.15.0.jar

Issue - State: closed - Opened by simon04 almost 3 years ago - 2 comments