Ecosyste.ms: Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / hillu/local-log4j-vuln-scanner issues and pull requests

#60 - Virustotal 2 security vendors and no sandboxes flagged this file as malicious

Issue - State: closed - Opened by isleeps over 1 year ago - 1 comment

#59 - Crash when jar file is zero bytes

Issue - State: closed - Opened by a087228 almost 3 years ago - 2 comments

#58 - Add config for CVE_2022_23307 , apache chainsaw vulnerability

Pull Request - State: open - Opened by andrewdriver123 about 3 years ago

#57 - installation with go install

Issue - State: closed - Opened by vitikyalapatii about 3 years ago - 2 comments

#56 - Henrik

Pull Request - State: open - Opened by henrikor about 3 years ago - 1 comment

#55 - detect CVE_2021_44832 in JDBC-Appender up to 2.17.0

Pull Request - State: closed - Opened by ljakob about 3 years ago

#54 - x86 support?

Issue - State: open - Opened by EmissaryVX about 3 years ago - 3 comments

#53 - Scanner now fork a new goroutine for each archive

Pull Request - State: closed - Opened by chrisolms about 3 years ago - 1 comment

#52 - detect CVE_2021_44832 in JDBC-Appender up to 2.17.0

Pull Request - State: closed - Opened by ljakob about 3 years ago - 1 comment

#51 - Unable to scan network filesystems

Issue - State: closed - Opened by sjquinney about 3 years ago - 5 comments

#50 - Scans network shares on macOS

Issue - State: closed - Opened by staze about 3 years ago - 9 comments

#49 - Fix excludes when quiet is turned on

Pull Request - State: closed - Opened by simoesp about 3 years ago - 1 comment

#48 - Add 2.16.0 (CVE-2021-45105) and 2.17.0 (CVE-2021-44832) as vulnerable

Pull Request - State: closed - Opened by ghost about 3 years ago - 2 comments

#47 - Just curious - why do you do f.Seek(0, END) twice?

Issue - State: closed - Opened by dladlk about 3 years ago - 1 comment

#46 - Feature request: -exclude with wildcards

Issue - State: open - Opened by fpschultze about 3 years ago - 1 comment

#45 - How to use filter.go

Issue - State: closed - Opened by natschel about 3 years ago - 4 comments

#44 - add 2.16 as vulnerable

Pull Request - State: open - Opened by L0u15 about 3 years ago - 1 comment

#43 - CVE-2021-45105 should mark 2.16 as vulnerable

Issue - State: closed - Opened by damoon about 3 years ago - 4 comments

#42 - Even with exclude, tool scans folders

Issue - State: closed - Opened by GElkayam about 3 years ago - 4 comments

#41 - apache log4j 2.17 already out, please add

Issue - State: closed - Opened by Jordy694 about 3 years ago - 1 comment

#40 - Delete main.go

Pull Request - State: closed - Opened by In3x0rabl3 about 3 years ago - 2 comments

#39 - Added (recursive) .zip and .tar.gz scanning support

Pull Request - State: closed - Opened by kutsal about 3 years ago - 1 comment

#38 - Patcher does not seem to fix WAR files

Issue - State: closed - Opened by Ghepardo about 3 years ago - 1 comment

#37 - Strange "indicator" message from scanner

Issue - State: closed - Opened by Ghepardo about 3 years ago - 1 comment

#36 - New magic number check failure

Issue - State: closed - Opened by Ghepardo about 3 years ago - 2 comments

#35 - Treat 2.12.2 as fixed version

Issue - State: closed - Opened by leepfrog-ger about 3 years ago

#33 - fix close function

Pull Request - State: closed - Opened by wcc526 about 3 years ago - 1 comment

#32 - Quick check for log4-core jndi.class

Pull Request - State: closed - Opened by wcc526 about 3 years ago - 1 comment

#31 - Add CVE 2021-45046 to filters and update module locations to my GitHub and local

Pull Request - State: closed - Opened by timkatje about 3 years ago - 1 comment

#30 - Make magic numbers quietable

Pull Request - State: closed - Opened by hawson about 3 years ago

#29 - Can't read magic from JAR file member

Issue - State: closed - Opened by sjquinney about 3 years ago - 1 comment

#28 - Added --log to scanner usage string

Pull Request - State: closed - Opened by cypriani about 3 years ago

#27 - Misnamed executable for patching

Issue - State: closed - Opened by Ghepardo about 3 years ago - 1 comment

#26 - command line option for jar file matching

Issue - State: open - Opened by danielgrahl about 3 years ago - 7 comments

#25 - Scanner cannot find vulnerabilites when class is esclazz

Issue - State: closed - Opened by ccoltx about 3 years ago - 3 comments

#24 - The binary created for Linux made compatible with Alpine linux

Pull Request - State: closed - Opened by emrahkaya about 3 years ago - 2 comments

#23 - Added file hash for log4j 2.15.0 to cover CVE 2021-45046 in scans.

Pull Request - State: closed - Opened by komalley97 about 3 years ago

#21 - Detection of CVE 2021-45046?

Issue - State: closed - Opened by ZerhackerJagi about 3 years ago - 5 comments

#20 - (-)-exclude flag

Issue - State: closed - Opened by planetmija about 3 years ago - 2 comments

#19 - README.md improvements

Pull Request - State: closed - Opened by martin-schlossarek about 3 years ago

#18 - unable to unzip jar files

Issue - State: closed - Opened by t0xic-coder about 3 years ago - 10 comments

#17 - ignore-v1 not working

Issue - State: closed - Opened by RealKelsar about 3 years ago - 1 comment

#16 - Direct errors to STDERR

Pull Request - State: closed - Opened by ruskilli about 3 years ago - 2 comments

#15 - Added log file capability

Pull Request - State: closed - Opened by lbruder about 3 years ago - 1 comment

#14 - Add --quiet --v1 options, update README

Pull Request - State: closed - Opened by hawson about 3 years ago - 2 comments

#13 - GOFLAGS="-trimpath" for reproducible builds

Pull Request - State: closed - Opened by simon04 about 3 years ago

#12 - Usage instructions?

Issue - State: closed - Opened by adamjgrant about 3 years ago - 2 comments

#11 - Flagging 1.X Versions

Issue - State: closed - Opened by theonlykernel about 3 years ago - 5 comments

#10 - Segfaults on CentOS 7/8

Issue - State: closed - Opened by pastascript about 3 years ago - 1 comment

#9 - add --exclude flag for excluding directories

Pull Request - State: closed - Opened by martin-schlossarek about 3 years ago - 1 comment

#8 - add version log4j 1.2.15.v201012070815

Pull Request - State: closed - Opened by ljakob about 3 years ago - 3 comments

#7 - Virustotal 17 security vendors and 1 sandbox flagged this file as malicious

Issue - State: closed - Opened by askvpb about 3 years ago - 18 comments

#6 - Scanning of a directory ending .war leads in an error

Issue - State: closed - Opened by karstenlehmann about 3 years ago - 2 comments

#5 - add ear files

Pull Request - State: closed - Opened by ljakob about 3 years ago - 1 comment

#4 - [Feature Request] Arm64 build in releases

Issue - State: closed - Opened by KittyBorgX about 3 years ago - 4 comments

#3 - Use defer fr.Close()

Pull Request - State: closed - Opened by simon04 about 3 years ago - 1 comment

#2 - Fix false positive log4j-core-2.15.0.jar

Pull Request - State: closed - Opened by simon04 about 3 years ago - 1 comment

#1 - False positive log4j-core-2.15.0.jar

Issue - State: closed - Opened by simon04 about 3 years ago - 2 comments