advisory-database
advisory-database copied to clipboard
github
nuget: different package names fo same packages
Description
Hello all! Thanks for your work!
I detected that some nuget vulnerabilities use different package names for same packages.
e.g. Microsoft.NETCore.App.Runtime.linux-arm and Microsoft.NetCore.App.Runtime.linux-arm (NET and Net).
Example for Microsoft.NETCore.App.Runtime.linux-arm:
➜ grep -r '"name": "Microsoft.NetCore.App.Runtime.linux-arm"'
./advisories/github-reviewed/2024/05/GHSA-7fcr-8qw6-92fr/GHSA-7fcr-8qw6-92fr.json: "name": "Microsoft.NetCore.App.Runtime.linux-arm"
./advisories/github-reviewed/2024/05/GHSA-7fcr-8qw6-92fr/GHSA-7fcr-8qw6-92fr.json: "name": "Microsoft.NetCore.App.Runtime.linux-arm"
./advisories/github-reviewed/2023/01/GHSA-8f7f-vqg5-jrv9/GHSA-8f7f-vqg5-jrv9.json: "name": "Microsoft.NetCore.App.Runtime.linux-arm"
./advisories/github-reviewed/2023/06/GHSA-jx7q-xxmw-44vf/GHSA-jx7q-xxmw-44vf.json: "name": "Microsoft.NetCore.App.Runtime.linux-arm"
./advisories/github-reviewed/2023/06/GHSA-jx7q-xxmw-44vf/GHSA-jx7q-xxmw-44vf.json: "name": "Microsoft.NetCore.App.Runtime.linux-arm"
./advisories/github-reviewed/2023/06/GHSA-555c-2p6r-68mm/GHSA-555c-2p6r-68mm.json: "name": "Microsoft.NetCore.App.Runtime.linux-arm"
./advisories/github-reviewed/2023/06/GHSA-555c-2p6r-68mm/GHSA-555c-2p6r-68mm.json: "name": "Microsoft.NetCore.App.Runtime.linux-arm"
./advisories/github-reviewed/2023/06/GHSA-x469-cv7m-77r9/GHSA-x469-cv7m-77r9.json: "name": "Microsoft.NetCore.App.Runtime.linux-arm"
➜ grep -r '"name": "Microsoft.NETCore.App.Runtime.linux-arm"'
./advisories/github-reviewed/2022/05/GHSA-3gp9-h8hw-pxpw/GHSA-3gp9-h8hw-pxpw.json: "name": "Microsoft.NETCore.App.Runtime.linux-arm"
./advisories/github-reviewed/2022/05/GHSA-3gp9-h8hw-pxpw/GHSA-3gp9-h8hw-pxpw.json: "name": "Microsoft.NETCore.App.Runtime.linux-arm"
./advisories/github-reviewed/2022/05/GHSA-g5vf-38cp-4px9/GHSA-g5vf-38cp-4px9.json: "name": "Microsoft.NETCore.App.Runtime.linux-arm"
./advisories/github-reviewed/2022/05/GHSA-5v8v-66v8-mwm7/GHSA-5v8v-66v8-mwm7.json: "name": "Microsoft.NETCore.App.Runtime.linux-arm"
./advisories/github-reviewed/2022/05/GHSA-5v8v-66v8-mwm7/GHSA-5v8v-66v8-mwm7.json: "name": "Microsoft.NETCore.App.Runtime.linux-arm"
./advisories/github-reviewed/2022/05/GHSA-5v8v-66v8-mwm7/GHSA-5v8v-66v8-mwm7.json: "name": "Microsoft.NETCore.App.Runtime.linux-arm"
./advisories/github-reviewed/2022/05/GHSA-3w5p-jhp5-c29q/GHSA-3w5p-jhp5-c29q.json: "name": "Microsoft.NETCore.App.Runtime.linux-arm"
./advisories/github-reviewed/2022/10/GHSA-rh58-r7jh-xhx3/GHSA-rh58-r7jh-xhx3.json: "name": "Microsoft.NETCore.App.Runtime.linux-arm"
./advisories/github-reviewed/2022/10/GHSA-rh58-r7jh-xhx3/GHSA-rh58-r7jh-xhx3.json: "name": "Microsoft.NETCore.App.Runtime.linux-arm"
./advisories/github-reviewed/2022/10/GHSA-c6w8-7mp3-34j9/GHSA-c6w8-7mp3-34j9.json: "name": "Microsoft.NETCore.App.Runtime.linux-arm"
./advisories/github-reviewed/2022/10/GHSA-c6w8-7mp3-34j9/GHSA-c6w8-7mp3-34j9.json: "name": "Microsoft.NETCore.App.Runtime.linux-arm"
./advisories/github-reviewed/2022/10/GHSA-c6w8-7mp3-34j9/GHSA-c6w8-7mp3-34j9.json: "name": "Microsoft.NETCore.App.Runtime.linux-arm"
./advisories/github-reviewed/2022/10/GHSA-vgwq-hfqc-58wv/GHSA-vgwq-hfqc-58wv.json: "name": "Microsoft.NETCore.App.Runtime.linux-arm"
./advisories/github-reviewed/2022/10/GHSA-vgwq-hfqc-58wv/GHSA-vgwq-hfqc-58wv.json: "name": "Microsoft.NETCore.App.Runtime.linux-arm"
./advisories/github-reviewed/2024/03/GHSA-5fxj-whcv-crrc/GHSA-5fxj-whcv-crrc.json: "name": "Microsoft.NETCore.App.Runtime.linux-arm"
./advisories/github-reviewed/2024/03/GHSA-5fxj-whcv-crrc/GHSA-5fxj-whcv-crrc.json: "name": "Microsoft.NETCore.App.Runtime.linux-arm"
./advisories/github-reviewed/2023/09/GHSA-h3hv-63q5-jgpr/GHSA-h3hv-63q5-jgpr.json: "name": "Microsoft.NETCore.App.Runtime.linux-arm"
./advisories/github-reviewed/2023/09/GHSA-h3hv-63q5-jgpr/GHSA-h3hv-63q5-jgpr.json: "name": "Microsoft.NETCore.App.Runtime.linux-arm"
It would be great to have one name for these packages.
Thank you in advance Best regards, Dmitriy.
