Merge pull request #3307 from CVEProject/int-main

12/3 Update main from int-main

Author: alinh-mitre

package-lock.json

@@ -16,8 +16,8 @@
   },
   "dependencies": {
     "@cityssm/bulma-sticky-table": "^2.1.0",
-    "@fortawesome/fontawesome-svg-core": "^6.5.1",
-    "@fortawesome/free-brands-svg-icons": "^6.5.1",
+    "@fortawesome/fontawesome-svg-core": "^6.5.2",
+    "@fortawesome/free-brands-svg-icons": "^6.5.2",
     "@fortawesome/free-regular-svg-icons": "^6.5.1",
     "@fortawesome/free-solid-svg-icons": "^6.5.1",
     "@fortawesome/vue-fontawesome": "^3.0.5",

package.json

@@ -14956,7 +14956,7 @@
     "shortName": "Checkmk",
     "cnaID": "CNA-2022-0055",
     "organizationName": "Checkmk GmbH",
-    "scope": "All products of Checkmk GmbH including Checkmk and Checkmk Appliance",
+    "scope": "All products of Checkmk GmbH including Checkmk and Checkmk Appliance, Nagvis, Robotmk, and packages published on <a href='https://exchange.checkmk.com/' target='_blank'>exchange.checkmk.com</a>",
     "contact": [
       {
         "email": [
@@ -24283,5 +24283,67 @@
       ]
     },
     "country": "USA"
+  },
+  {
+    "shortName": "graphql-java",
+    "cnaID": "CNA-2024-0079",
+    "organizationName": "GraphQL Java",
+    "scope": "GraphQL Java, Java DataLoader, GraphQL Java Extended Scalars, and GraphQL Java Extended Validation",
+    "contact": [
+      {
+        "email": [
+          {
+            "label": "Email",
+            "emailAddr": "cve@graphql-java.com"
+          }
+        ],
+        "contact": [
+          {
+            "label": "Reporting a Vulnerability page",
+            "url": "https://github.com/graphql-java/graphql-java/security#reporting-a-vulnerability"
+          }
+        ],
+        "form": []
+      }
+    ],
+    "disclosurePolicy": [
+      {
+        "label": "Policy",
+        "language": "",
+        "url": "https://www.graphql-java.com/security"
+      }
+    ],
+    "securityAdvisories": {
+      "alerts": [],
+      "advisories": [
+        {
+          "label": "Advisories",
+          "url": "https://www.graphql-java.com/security/#common-vulnerabilities-and-exposures-cves"
+        }
+      ]
+    },
+    "resources": [],
+    "CNA": {
+      "isRoot": false,
+      "root": {
+        "shortName": "redhat",
+        "organizationName": "Red Hat, Inc."
+      },
+      "type": [
+        "Vendor",
+        "Open Source"
+      ],
+      "TLR": {
+        "shortName": "mitre",
+        "organizationName": "MITRE Corporation"
+      },
+      "roles": [
+        {
+          "helpText": "",
+          "role": "CNA"
+        }
+      ]
+    },
+    "country": "Australia"
   }
 ]

public/images/news/BlueskySocial.png

@@ -1,6 +1,6 @@
 {
-  "shouldDisplay":false,
-  "publishCount": 5,
+  "shouldDisplay":true,
+  "publishCount": 6,
   "collapsed": false,
   "notificationContents": [
     {
@@ -9,16 +9,16 @@
     },
     {
       "contentType": "paragraph",
-      "content": "The CVE ID Lookup on this website will be unavailable on June 4, 2024, from 1:00 PM - 3:00 PM EDT, for maintenance.<br/>"
+      "content": "On December 4, 2024, CVE Services will be unavailable from 1:00 – 3:00 PM EST, UTC-5, to undergo maintenance and deployment of "
     },
     {
       "contentType": "externalLink",
-      "link": "https://cve.mitre.org/cve/search_cve_list.html",
-      "linkText": "CVE List keyword search"
+      "link": "https://github.com/CVEProject/cve-schema/releases/tag/v5.1.1-rc2",
+      "linkText": "CVE Record Format Version 5.1.1"
     },
     {
       "contentType": "paragraph",
-      "content": "hosted on the legacy cve.mitre.org website will remain available during this time."
+      "content": ", which adds new features for CVE Numbering Authorities (CNAs). The CVE ID Lookup on this website will also be unavailable during this timeframe."
     }
   ]
 }

public/images/news/cwe-top-25-logo.png

@@ -1173,7 +1173,7 @@
         },
         {
           "month": "December",
-          "value": "TBA"
+          "value": "1"
         }
       ]
     },