From 06599d955f0c55902496d306e100005f10dbf85b Mon Sep 17 00:00:00 2001 From: Jonathan Amsterdam Date: Mon, 2 Oct 2023 12:44:22 -0400 Subject: [PATCH] data/excluded: batch add 18 excluded reports Adds excluded reports: - data/excluded/GO-2023-2088.yaml - data/excluded/GO-2023-2092.yaml - data/excluded/GO-2023-2093.yaml - data/excluded/GO-2023-2091.yaml - data/excluded/GO-2023-2090.yaml - data/excluded/GO-2023-2089.yaml - data/excluded/GO-2023-2087.yaml - data/excluded/GO-2023-2085.yaml - data/excluded/GO-2023-2084.yaml - data/excluded/GO-2023-2080.yaml - data/excluded/GO-2023-2079.yaml - data/excluded/GO-2023-2078.yaml - data/excluded/GO-2023-2076.yaml - data/excluded/GO-2023-2075.yaml Fixes golang/vulndb#2088 Fixes golang/vulndb#2092 Fixes golang/vulndb#2093 Fixes golang/vulndb#2091 Fixes golang/vulndb#2090 Fixes golang/vulndb#2089 Fixes golang/vulndb#2087 Fixes golang/vulndb#2085 Fixes golang/vulndb#2084 Fixes golang/vulndb#2080 Fixes golang/vulndb#2079 Fixes golang/vulndb#2078 Fixes golang/vulndb#2076 Fixes golang/vulndb#2075 Change-Id: Ic9d1d4a5c78392855a9cffe527f85cd7d3bf2d7a Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/531705 Run-TryBot: Jonathan Amsterdam Reviewed-by: Tatiana Bradley TryBot-Result: Gopher Robot --- data/excluded/GO-2023-2075.yaml | 8 ++++++++ data/excluded/GO-2023-2076.yaml | 8 ++++++++ data/excluded/GO-2023-2078.yaml | 8 ++++++++ data/excluded/GO-2023-2079.yaml | 8 ++++++++ data/excluded/GO-2023-2080.yaml | 8 ++++++++ data/excluded/GO-2023-2084.yaml | 8 ++++++++ data/excluded/GO-2023-2085.yaml | 8 ++++++++ data/excluded/GO-2023-2087.yaml | 8 ++++++++ data/excluded/GO-2023-2088.yaml | 8 ++++++++ data/excluded/GO-2023-2089.yaml | 8 ++++++++ data/excluded/GO-2023-2090.yaml | 8 ++++++++ data/excluded/GO-2023-2091.yaml | 8 ++++++++ data/excluded/GO-2023-2092.yaml | 6 ++++++ data/excluded/GO-2023-2093.yaml | 8 ++++++++ 14 files changed, 110 insertions(+) create mode 100644 data/excluded/GO-2023-2075.yaml create mode 100644 data/excluded/GO-2023-2076.yaml create mode 100644 data/excluded/GO-2023-2078.yaml create mode 100644 data/excluded/GO-2023-2079.yaml create mode 100644 data/excluded/GO-2023-2080.yaml create mode 100644 data/excluded/GO-2023-2084.yaml create mode 100644 data/excluded/GO-2023-2085.yaml create mode 100644 data/excluded/GO-2023-2087.yaml create mode 100644 data/excluded/GO-2023-2088.yaml create mode 100644 data/excluded/GO-2023-2089.yaml create mode 100644 data/excluded/GO-2023-2090.yaml create mode 100644 data/excluded/GO-2023-2091.yaml create mode 100644 data/excluded/GO-2023-2092.yaml create mode 100644 data/excluded/GO-2023-2093.yaml diff --git a/data/excluded/GO-2023-2075.yaml b/data/excluded/GO-2023-2075.yaml new file mode 100644 index 00000000..63acbfe3 --- /dev/null +++ b/data/excluded/GO-2023-2075.yaml @@ -0,0 +1,8 @@ +id: GO-2023-2075 +excluded: EFFECTIVELY_PRIVATE +modules: + - module: github.com/kiali/kiali +cves: + - CVE-2022-3962 +ghsas: + - GHSA-6f4m-j56w-55c3 diff --git a/data/excluded/GO-2023-2076.yaml b/data/excluded/GO-2023-2076.yaml new file mode 100644 index 00000000..d6bfa919 --- /dev/null +++ b/data/excluded/GO-2023-2076.yaml @@ -0,0 +1,8 @@ +id: GO-2023-2076 +excluded: EFFECTIVELY_PRIVATE +modules: + - module: github.com/openshift/apiserver-library-go +cves: + - CVE-2023-1260 +ghsas: + - GHSA-92hx-3mh6-hc49 diff --git a/data/excluded/GO-2023-2078.yaml b/data/excluded/GO-2023-2078.yaml new file mode 100644 index 00000000..51b03e89 --- /dev/null +++ b/data/excluded/GO-2023-2078.yaml @@ -0,0 +1,8 @@ +id: GO-2023-2078 +excluded: EFFECTIVELY_PRIVATE +modules: + - module: github.com/cilium/cilium +cves: + - CVE-2023-39347 +ghsas: + - GHSA-gj2r-phwg-6rww diff --git a/data/excluded/GO-2023-2079.yaml b/data/excluded/GO-2023-2079.yaml new file mode 100644 index 00000000..3933fbe2 --- /dev/null +++ b/data/excluded/GO-2023-2079.yaml @@ -0,0 +1,8 @@ +id: GO-2023-2079 +excluded: EFFECTIVELY_PRIVATE +modules: + - module: github.com/cilium/cilium +cves: + - CVE-2023-41332 +ghsas: + - GHSA-24m5-r6hv-ccgp diff --git a/data/excluded/GO-2023-2080.yaml b/data/excluded/GO-2023-2080.yaml new file mode 100644 index 00000000..45eeb9b4 --- /dev/null +++ b/data/excluded/GO-2023-2080.yaml @@ -0,0 +1,8 @@ +id: GO-2023-2080 +excluded: EFFECTIVELY_PRIVATE +modules: + - module: github.com/cilium/cilium +cves: + - CVE-2023-41333 +ghsas: + - GHSA-4xp2-w642-7mcx diff --git a/data/excluded/GO-2023-2084.yaml b/data/excluded/GO-2023-2084.yaml new file mode 100644 index 00000000..e70ba046 --- /dev/null +++ b/data/excluded/GO-2023-2084.yaml @@ -0,0 +1,8 @@ +id: GO-2023-2084 +excluded: EFFECTIVELY_PRIVATE +modules: + - module: github.com/openfga/openfga +cves: + - CVE-2023-43645 +ghsas: + - GHSA-2hm9-h873-pgqh diff --git a/data/excluded/GO-2023-2085.yaml b/data/excluded/GO-2023-2085.yaml new file mode 100644 index 00000000..cf013c96 --- /dev/null +++ b/data/excluded/GO-2023-2085.yaml @@ -0,0 +1,8 @@ +id: GO-2023-2085 +excluded: EFFECTIVELY_PRIVATE +modules: + - module: github.com/argoproj/argo-cd/v2 +cves: + - CVE-2023-40026 +ghsas: + - GHSA-6jqw-jwf5-rp8h diff --git a/data/excluded/GO-2023-2087.yaml b/data/excluded/GO-2023-2087.yaml new file mode 100644 index 00000000..cb5d0c5d --- /dev/null +++ b/data/excluded/GO-2023-2087.yaml @@ -0,0 +1,8 @@ +id: GO-2023-2087 +excluded: EFFECTIVELY_PRIVATE +modules: + - module: github.com/mattermost/mattermost-server/v6 +cves: + - CVE-2023-5196 +ghsas: + - GHSA-33r7-wjfc-7w98 diff --git a/data/excluded/GO-2023-2088.yaml b/data/excluded/GO-2023-2088.yaml new file mode 100644 index 00000000..576575b5 --- /dev/null +++ b/data/excluded/GO-2023-2088.yaml @@ -0,0 +1,8 @@ +id: GO-2023-2088 +excluded: NOT_IMPORTABLE +modules: + - module: github.com/hashicorp/vault +cves: + - CVE-2023-5077 +ghsas: + - GHSA-86c6-3g63-5w64 diff --git a/data/excluded/GO-2023-2089.yaml b/data/excluded/GO-2023-2089.yaml new file mode 100644 index 00000000..459d2b0d --- /dev/null +++ b/data/excluded/GO-2023-2089.yaml @@ -0,0 +1,8 @@ +id: GO-2023-2089 +excluded: EFFECTIVELY_PRIVATE +modules: + - module: github.com/mattermost/mattermost-server/v6 +cves: + - CVE-2023-5195 +ghsas: + - GHSA-9hwp-cj7m-wjw4 diff --git a/data/excluded/GO-2023-2090.yaml b/data/excluded/GO-2023-2090.yaml new file mode 100644 index 00000000..94a73434 --- /dev/null +++ b/data/excluded/GO-2023-2090.yaml @@ -0,0 +1,8 @@ +id: GO-2023-2090 +excluded: EFFECTIVELY_PRIVATE +modules: + - module: github.com/mattermost/mattermost-server/v6 +cves: + - CVE-2023-5194 +ghsas: + - GHSA-h69v-mvh9-hfrq diff --git a/data/excluded/GO-2023-2091.yaml b/data/excluded/GO-2023-2091.yaml new file mode 100644 index 00000000..a8179c23 --- /dev/null +++ b/data/excluded/GO-2023-2091.yaml @@ -0,0 +1,8 @@ +id: GO-2023-2091 +excluded: EFFECTIVELY_PRIVATE +modules: + - module: github.com/mattermost/mattermost-server/v6 +cves: + - CVE-2023-5193 +ghsas: + - GHSA-h8wh-f7gw-fwpr diff --git a/data/excluded/GO-2023-2092.yaml b/data/excluded/GO-2023-2092.yaml new file mode 100644 index 00000000..6602bc91 --- /dev/null +++ b/data/excluded/GO-2023-2092.yaml @@ -0,0 +1,6 @@ +id: GO-2023-2092 +excluded: NOT_A_VULNERABILITY +modules: + - module: github.com/cometbft/cometbft +ghsas: + - GHSA-hq58-p9mv-338c diff --git a/data/excluded/GO-2023-2093.yaml b/data/excluded/GO-2023-2093.yaml new file mode 100644 index 00000000..ba439b36 --- /dev/null +++ b/data/excluded/GO-2023-2093.yaml @@ -0,0 +1,8 @@ +id: GO-2023-2093 +excluded: EFFECTIVELY_PRIVATE +modules: + - module: github.com/mattermost/mattermost-server/v6 +cves: + - CVE-2023-5159 +ghsas: + - GHSA-rp65-jpc7-8h8p