Lucene search

`goreleaser release --debug` shows secrets

🗓️ 30 Jan 2024 20:52:57Reported by GoogleType

osv🔗 osv.dev👁 20 Views

Goreleaser release debug displays secrets in log

Reporter	Title	Published	Views	Family All 12
Prion	Code injection	30 Jan 202417:15	–	prion
RedhatCVE	CVE-2024-23840	30 Jan 202422:53	–	redhatcve
OSV	CVE-2024-23840	30 Jan 202417:15	–	osv
OSV	Information leak in github.com/goreleaser/goreleaser	13 Feb 202418:22	–	osv
OSV	CGA-FCXP-MJF3-H283	6 Jun 202412:27	–	osv
Wolfi	CVE-2024-23840 vulnerabilities	30 Jan 202417:15	–	wolfi
Veracode	Sensitive Information Into Log File	31 Jan 202406:31	–	veracode
Cvelist	CVE-2024-23840 `goreleaser release --debug` shows secrets	30 Jan 202416:39	–	cvelist
NVD	CVE-2024-23840	30 Jan 202417:15	–	nvd
Chainguard	CVE-2024-23840 vulnerabilities	30 Jan 202417:15	–	cgr

Source	Link
github	www.github.com/goreleaser/goreleaser/security/advisories/GHSA-h3q2-8whx-c29h
nvd	www.nvd.nist.gov/vuln/detail/CVE-2024-23840
github	www.github.com/goreleaser/goreleaser/commit/d5b6a533ca1dc3366983d5d31ee2d2b6232b83c0
github	www.github.com/goreleaser/goreleaser

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

30 Jan 2024 20:57Current

5.5Medium risk

Vulners AI Score5.5

CVSS35.5

EPSS0.0006