From c3faa7c9b19e56b419e70dc89aef47030bda7b2d Mon Sep 17 00:00:00 2001 From: Maceo Thompson Date: Thu, 30 Mar 2023 16:53:18 -0400 Subject: [PATCH] data/excluded: batch add GO-2023-1683, GO-2023-1682, GO-2023-1676, GO-2023-1680 Updates GO-2023-1670 to include argo-cd in addition to argo-cd/v2 Fixes golang/vulndb#1683 Fixes golang/vulndb#1682 Fixes golang/vulndb#1679 Fixes golang/vulndb#1676 Fixes golang/vulndb#1680 Change-Id: Ic59ceca938e3fbc1cd2e8b6421a166e3534e0731 Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/480716 Run-TryBot: Maceo Thompson Reviewed-by: Tatiana Bradley TryBot-Result: Gopher Robot --- data/excluded/GO-2023-1670.yaml | 1 + data/excluded/GO-2023-1676.yaml | 7 +++++++ data/excluded/GO-2023-1680.yaml | 7 +++++++ data/excluded/GO-2023-1682.yaml | 7 +++++++ data/excluded/GO-2023-1683.yaml | 7 +++++++ 5 files changed, 29 insertions(+) create mode 100644 data/excluded/GO-2023-1676.yaml create mode 100644 data/excluded/GO-2023-1680.yaml create mode 100644 data/excluded/GO-2023-1682.yaml create mode 100644 data/excluded/GO-2023-1683.yaml diff --git a/data/excluded/GO-2023-1670.yaml b/data/excluded/GO-2023-1670.yaml index e17ca7d2..1340fe1f 100644 --- a/data/excluded/GO-2023-1670.yaml +++ b/data/excluded/GO-2023-1670.yaml @@ -1,6 +1,7 @@ excluded: EFFECTIVELY_PRIVATE modules: - module: github.com/argoproj/argo-cd/v2 + - module: github.com/argoproj/argo-cd cves: - CVE-2022-41354 ghsas: diff --git a/data/excluded/GO-2023-1676.yaml b/data/excluded/GO-2023-1676.yaml new file mode 100644 index 00000000..83aa448b --- /dev/null +++ b/data/excluded/GO-2023-1676.yaml @@ -0,0 +1,7 @@ +excluded: EFFECTIVELY_PRIVATE +modules: + - module: github.com/openshift/assisted-installer +cves: + - CVE-2021-3684 +ghsas: + - GHSA-g8xm-p2h4-v6jp diff --git a/data/excluded/GO-2023-1680.yaml b/data/excluded/GO-2023-1680.yaml new file mode 100644 index 00000000..b7a6ee96 --- /dev/null +++ b/data/excluded/GO-2023-1680.yaml @@ -0,0 +1,7 @@ +excluded: NOT_GO_CODE +modules: + - module: github.com/grafana/grafana +cves: + - CVE-2019-13068 +ghsas: + - GHSA-7phr-6cc9-4m5q diff --git a/data/excluded/GO-2023-1682.yaml b/data/excluded/GO-2023-1682.yaml new file mode 100644 index 00000000..d1e9656e --- /dev/null +++ b/data/excluded/GO-2023-1682.yaml @@ -0,0 +1,7 @@ +excluded: EFFECTIVELY_PRIVATE +modules: + - module: github.com/opencontainers/runc +cves: + - CVE-2023-25809 +ghsas: + - GHSA-m8cg-xc2p-r3fc diff --git a/data/excluded/GO-2023-1683.yaml b/data/excluded/GO-2023-1683.yaml new file mode 100644 index 00000000..ce9c8a8c --- /dev/null +++ b/data/excluded/GO-2023-1683.yaml @@ -0,0 +1,7 @@ +excluded: EFFECTIVELY_PRIVATE +modules: + - module: github.com/opencontainers/runc +cves: + - CVE-2023-28642 +ghsas: + - GHSA-g2j6-57v7-gm8c