From 5ff1b8e992b05b816edc8fa28fdedc790fb74045 Mon Sep 17 00:00:00 2001 From: Damien Neil Date: Thu, 14 Sep 2023 12:44:59 -0700 Subject: [PATCH] data/excluded: batch add 10 excluded reports Adds excluded reports: - data/excluded/GO-2023-2049.yaml - data/excluded/GO-2023-2035.yaml - data/excluded/GO-2023-2062.yaml - data/excluded/GO-2023-2057.yaml - data/excluded/GO-2023-2032.yaml - data/excluded/GO-2023-2061.yaml - data/excluded/GO-2023-2060.yaml - data/excluded/GO-2023-2033.yaml - data/excluded/GO-2023-2028.yaml - data/excluded/GO-2023-2025.yaml Fixes golang/vulndb#2049 Fixes golang/vulndb#2035 Fixes golang/vulndb#2062 Fixes golang/vulndb#2057 Fixes golang/vulndb#2032 Fixes golang/vulndb#2061 Fixes golang/vulndb#2060 Fixes golang/vulndb#2033 Fixes golang/vulndb#2028 Fixes golang/vulndb#2025 Change-Id: Idbe9559172056824d0c5e78e610e0d348cab640d Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/528596 Reviewed-by: Zvonimir Pavlinovic LUCI-TryBot-Result: Go LUCI --- data/excluded/GO-2023-2025.yaml | 8 ++++++++ data/excluded/GO-2023-2028.yaml | 8 ++++++++ data/excluded/GO-2023-2032.yaml | 8 ++++++++ data/excluded/GO-2023-2033.yaml | 8 ++++++++ data/excluded/GO-2023-2035.yaml | 6 ++++++ data/excluded/GO-2023-2049.yaml | 8 ++++++++ data/excluded/GO-2023-2057.yaml | 6 ++++++ data/excluded/GO-2023-2060.yaml | 8 ++++++++ data/excluded/GO-2023-2061.yaml | 8 ++++++++ data/excluded/GO-2023-2062.yaml | 6 ++++++ 10 files changed, 74 insertions(+) create mode 100644 data/excluded/GO-2023-2025.yaml create mode 100644 data/excluded/GO-2023-2028.yaml create mode 100644 data/excluded/GO-2023-2032.yaml create mode 100644 data/excluded/GO-2023-2033.yaml create mode 100644 data/excluded/GO-2023-2035.yaml create mode 100644 data/excluded/GO-2023-2049.yaml create mode 100644 data/excluded/GO-2023-2057.yaml create mode 100644 data/excluded/GO-2023-2060.yaml create mode 100644 data/excluded/GO-2023-2061.yaml create mode 100644 data/excluded/GO-2023-2062.yaml diff --git a/data/excluded/GO-2023-2025.yaml b/data/excluded/GO-2023-2025.yaml new file mode 100644 index 00000000..ef1e4afa --- /dev/null +++ b/data/excluded/GO-2023-2025.yaml @@ -0,0 +1,8 @@ +id: GO-2023-2025 +excluded: EFFECTIVELY_PRIVATE +modules: + - module: github.com/gravitl/netmaker +cves: + - CVE-2023-32079 +ghsas: + - GHSA-826j-8wp2-4x6q diff --git a/data/excluded/GO-2023-2028.yaml b/data/excluded/GO-2023-2028.yaml new file mode 100644 index 00000000..14926021 --- /dev/null +++ b/data/excluded/GO-2023-2028.yaml @@ -0,0 +1,8 @@ +id: GO-2023-2028 +excluded: EFFECTIVELY_PRIVATE +modules: + - module: github.com/openfga/openfga +cves: + - CVE-2023-40579 +ghsas: + - GHSA-jcf2-mxr2-gmqp diff --git a/data/excluded/GO-2023-2032.yaml b/data/excluded/GO-2023-2032.yaml new file mode 100644 index 00000000..b40fd551 --- /dev/null +++ b/data/excluded/GO-2023-2032.yaml @@ -0,0 +1,8 @@ +id: GO-2023-2032 +excluded: NOT_GO_CODE +modules: + - module: github.com/spinnaker/spinnaker +cves: + - CVE-2023-39348 +ghsas: + - GHSA-rq5c-hvw6-8pr7 diff --git a/data/excluded/GO-2023-2033.yaml b/data/excluded/GO-2023-2033.yaml new file mode 100644 index 00000000..6ee71e24 --- /dev/null +++ b/data/excluded/GO-2023-2033.yaml @@ -0,0 +1,8 @@ +id: GO-2023-2033 +excluded: EFFECTIVELY_PRIVATE +modules: + - module: github.com/ansible-semaphore/semaphore +cves: + - CVE-2023-39059 +ghsas: + - GHSA-3r32-cp7v-5wq4 diff --git a/data/excluded/GO-2023-2035.yaml b/data/excluded/GO-2023-2035.yaml new file mode 100644 index 00000000..a6292cae --- /dev/null +++ b/data/excluded/GO-2023-2035.yaml @@ -0,0 +1,6 @@ +id: GO-2023-2035 +excluded: NOT_IMPORTABLE +modules: + - module: github.com/bnb-chain/tss-lib +ghsas: + - GHSA-h24c-6p6p-m3vx diff --git a/data/excluded/GO-2023-2049.yaml b/data/excluded/GO-2023-2049.yaml new file mode 100644 index 00000000..eee77431 --- /dev/null +++ b/data/excluded/GO-2023-2049.yaml @@ -0,0 +1,8 @@ +id: GO-2023-2049 +excluded: NOT_IMPORTABLE +modules: + - module: github.com/argoproj/argo-cd +cves: + - CVE-2023-40029 +ghsas: + - GHSA-fwr2-64vr-xv9m diff --git a/data/excluded/GO-2023-2057.yaml b/data/excluded/GO-2023-2057.yaml new file mode 100644 index 00000000..6e8afbcf --- /dev/null +++ b/data/excluded/GO-2023-2057.yaml @@ -0,0 +1,6 @@ +id: GO-2023-2057 +excluded: NOT_GO_CODE +modules: + - module: github.com/mozilla-mobile/mozilla-vpn-client +cves: + - CVE-2023-4104 diff --git a/data/excluded/GO-2023-2060.yaml b/data/excluded/GO-2023-2060.yaml new file mode 100644 index 00000000..230ec33c --- /dev/null +++ b/data/excluded/GO-2023-2060.yaml @@ -0,0 +1,8 @@ +id: GO-2023-2060 +excluded: EFFECTIVELY_PRIVATE +modules: + - module: github.com/k3s-io/k3s +cves: + - CVE-2023-32187 +ghsas: + - GHSA-m4hf-6vgr-75r2 diff --git a/data/excluded/GO-2023-2061.yaml b/data/excluded/GO-2023-2061.yaml new file mode 100644 index 00000000..9a590396 --- /dev/null +++ b/data/excluded/GO-2023-2061.yaml @@ -0,0 +1,8 @@ +id: GO-2023-2061 +excluded: EFFECTIVELY_PRIVATE +modules: + - module: github.com/rancher/rke2 +cves: + - CVE-2023-32186 +ghsas: + - GHSA-p45j-vfv5-wprq diff --git a/data/excluded/GO-2023-2062.yaml b/data/excluded/GO-2023-2062.yaml new file mode 100644 index 00000000..0f445009 --- /dev/null +++ b/data/excluded/GO-2023-2062.yaml @@ -0,0 +1,6 @@ +id: GO-2023-2062 +excluded: NOT_GO_CODE +modules: + - module: github.com/grpc/grpc +cves: + - CVE-2023-4785