From 93c120727a787a4529f65ede4b68e5cffbf7d64b Mon Sep 17 00:00:00 2001
From: Simon Hollingshead <me@simonhollingshead.com>
Date: Sat, 18 Apr 2026 15:10:14 +0100
Subject: [PATCH] Improve GHSA-cq8v-f236-94qc

---
 .../GHSA-cq8v-f236-94qc.json                  | 24 +++++++++++++++----
 1 file changed, 20 insertions(+), 4 deletions(-)

diff --git a/advisories/github-reviewed/2026/04/GHSA-cq8v-f236-94qc/GHSA-cq8v-f236-94qc.json b/advisories/github-reviewed/2026/04/GHSA-cq8v-f236-94qc/GHSA-cq8v-f236-94qc.json
index 7ef280bff38ea..928e0afca3338 100644
--- a/advisories/github-reviewed/2026/04/GHSA-cq8v-f236-94qc/GHSA-cq8v-f236-94qc.json
+++ b/advisories/github-reviewed/2026/04/GHSA-cq8v-f236-94qc/GHSA-cq8v-f236-94qc.json
@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-cq8v-f236-94qc",
-  "modified": "2026-04-14T01:03:36Z",
+  "modified": "2026-04-14T01:03:37Z",
   "published": "2026-04-14T01:03:36Z",
   "aliases": [],
   "summary": "Rand is unsound with a custom logger using rand::rng()",
@@ -20,6 +20,25 @@
             {
               "introduced": "0.7.0"
             },
+            {
+              "fixed": "0.8.6"
+            }
+          ]
+        }
+      ]
+    },
+    {
+      "package": {
+        "ecosystem": "crates.io",
+        "name": "rand"
+      },
+      "ranges": [
+        {
+          "type": "ECOSYSTEM",
+          "events": [
+            {
+              "introduced": "0.9.0"
+            },
             {
               "fixed": "0.9.3"
             }
@@ -44,9 +63,6 @@
             }
           ]
         }
-      ],
-      "versions": [
-        "0.10.0"
       ]
     }
   ],