From 89e9f48bf8ba50fa870878d6b66e297a23c37d58 Mon Sep 17 00:00:00 2001 From: cookesan <6601329+cookesan@users.noreply.github.com> Date: Tue, 30 Jun 2026 16:43:19 -0400 Subject: [PATCH] Add PickleScan pkgutil fixed references --- .../GHSA-vvpj-8cmc-gx39/GHSA-vvpj-8cmc-gx39.json | 14 +++++++++++++- 1 file changed, 13 insertions(+), 1 deletion(-) diff --git a/advisories/github-reviewed/2026/03/GHSA-vvpj-8cmc-gx39/GHSA-vvpj-8cmc-gx39.json b/advisories/github-reviewed/2026/03/GHSA-vvpj-8cmc-gx39/GHSA-vvpj-8cmc-gx39.json index 589c9da17130b..a07e7512ee13e 100644 --- a/advisories/github-reviewed/2026/03/GHSA-vvpj-8cmc-gx39/GHSA-vvpj-8cmc-gx39.json +++ b/advisories/github-reviewed/2026/03/GHSA-vvpj-8cmc-gx39/GHSA-vvpj-8cmc-gx39.json @@ -51,6 +51,18 @@ { "type": "WEB", "url": "https://www.vulncheck.com/advisories/picklescan-universal-blocklist-bypass-via-pkgutil-resolve-name" + }, + { + "type": "WEB", + "url": "https://github.com/mmaitre314/picklescan/releases/tag/v1.0.4" + }, + { + "type": "WEB", + "url": "https://github.com/mmaitre314/picklescan/tree/v1.0.4" + }, + { + "type": "PACKAGE", + "url": "https://pypi.org/project/picklescan/1.0.4/" } ], "database_specific": { @@ -63,4 +75,4 @@ "github_reviewed_at": "2026-03-03T20:04:20Z", "nvd_published_at": null } -} \ No newline at end of file +}