Skip to content

Commit

Permalink
data/reports: unexclude 15 reports (12)
Browse files Browse the repository at this point in the history
  - data/reports/GO-2023-2340.yaml
  - data/reports/GO-2023-2341.yaml
  - data/reports/GO-2023-2344.yaml
  - data/reports/GO-2023-2351.yaml
  - data/reports/GO-2023-2355.yaml
  - data/reports/GO-2023-2376.yaml
  - data/reports/GO-2023-2377.yaml
  - data/reports/GO-2023-2378.yaml
  - data/reports/GO-2023-2381.yaml
  - data/reports/GO-2023-2388.yaml
  - data/reports/GO-2023-2397.yaml
  - data/reports/GO-2023-2398.yaml
  - data/reports/GO-2023-2414.yaml
  - data/reports/GO-2023-2422.yaml
  - data/reports/GO-2023-2426.yaml

Updates #2340
Updates #2341
Updates #2344
Updates #2351
Updates #2355
Updates #2376
Updates #2377
Updates #2378
Updates #2381
Updates #2388
Updates #2397
Updates #2398
Updates #2414
Updates #2422
Updates #2426

Change-Id: I279f769375f27873ced76b136c88665f610ac68c
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/606793
Auto-Submit: Tatiana Bradley <[email protected]>
Commit-Queue: Tatiana Bradley <[email protected]>
LUCI-TryBot-Result: Go LUCI <[email protected]>
Reviewed-by: Damien Neil <[email protected]>
  • Loading branch information
tatianab authored and gopherbot committed Aug 21, 2024
1 parent aa5cc8a commit 5ee8669
Show file tree
Hide file tree
Showing 45 changed files with 1,368 additions and 112 deletions.
8 changes: 0 additions & 8 deletions data/excluded/GO-2023-2340.yaml

This file was deleted.

8 changes: 0 additions & 8 deletions data/excluded/GO-2023-2341.yaml

This file was deleted.

8 changes: 0 additions & 8 deletions data/excluded/GO-2023-2344.yaml

This file was deleted.

8 changes: 0 additions & 8 deletions data/excluded/GO-2023-2351.yaml

This file was deleted.

8 changes: 0 additions & 8 deletions data/excluded/GO-2023-2355.yaml

This file was deleted.

8 changes: 0 additions & 8 deletions data/excluded/GO-2023-2376.yaml

This file was deleted.

8 changes: 0 additions & 8 deletions data/excluded/GO-2023-2377.yaml

This file was deleted.

6 changes: 0 additions & 6 deletions data/excluded/GO-2023-2378.yaml

This file was deleted.

8 changes: 0 additions & 8 deletions data/excluded/GO-2023-2381.yaml

This file was deleted.

6 changes: 0 additions & 6 deletions data/excluded/GO-2023-2388.yaml

This file was deleted.

6 changes: 0 additions & 6 deletions data/excluded/GO-2023-2397.yaml

This file was deleted.

6 changes: 0 additions & 6 deletions data/excluded/GO-2023-2398.yaml

This file was deleted.

8 changes: 0 additions & 8 deletions data/excluded/GO-2023-2414.yaml

This file was deleted.

8 changes: 0 additions & 8 deletions data/excluded/GO-2023-2422.yaml

This file was deleted.

8 changes: 0 additions & 8 deletions data/excluded/GO-2023-2426.yaml

This file was deleted.

52 changes: 52 additions & 0 deletions data/osv/GO-2023-2340.json
Original file line number Diff line number Diff line change
@@ -0,0 +1,52 @@
{
"schema_version": "1.3.1",
"id": "GO-2023-2340",
"modified": "0001-01-01T00:00:00Z",
"published": "0001-01-01T00:00:00Z",
"aliases": [
"CVE-2023-47630",
"GHSA-3hfq-cx9j-923w"
],
"summary": "Attacker can cause Kyverno user to unintentionally consume insecure image in github.com/kyverno/kyverno",
"details": "Attacker can cause Kyverno user to unintentionally consume insecure image in github.com/kyverno/kyverno",
"affected": [
{
"package": {
"name": "github.com/kyverno/kyverno",
"ecosystem": "Go"
},
"ranges": [
{
"type": "SEMVER",
"events": [
{
"introduced": "0"
},
{
"fixed": "1.10.5"
}
]
}
],
"ecosystem_specific": {}
}
],
"references": [
{
"type": "ADVISORY",
"url": "https://github.com/kyverno/kyverno/security/advisories/GHSA-3hfq-cx9j-923w"
},
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-47630"
},
{
"type": "WEB",
"url": "https://github.com/kyverno/kyverno/releases/tag/v1.11.0"
}
],
"database_specific": {
"url": "https://pkg.go.dev/vuln/GO-2023-2340",
"review_status": "UNREVIEWED"
}
}
110 changes: 110 additions & 0 deletions data/osv/GO-2023-2341.json
Original file line number Diff line number Diff line change
@@ -0,0 +1,110 @@
{
"schema_version": "1.3.1",
"id": "GO-2023-2341",
"modified": "0001-01-01T00:00:00Z",
"published": "0001-01-01T00:00:00Z",
"aliases": [
"CVE-2023-5528",
"GHSA-hq6q-c2x6-hmch"
],
"summary": "Kubernetes Improper Input Validation vulnerability in k8s.io/kubernetes",
"details": "Kubernetes Improper Input Validation vulnerability in k8s.io/kubernetes",
"affected": [
{
"package": {
"name": "k8s.io/kubernetes",
"ecosystem": "Go"
},
"ranges": [
{
"type": "SEMVER",
"events": [
{
"introduced": "0"
},
{
"fixed": "1.25.16"
},
{
"introduced": "1.26.0"
},
{
"fixed": "1.26.11"
},
{
"introduced": "1.27.0"
},
{
"fixed": "1.27.8"
},
{
"introduced": "1.28.0"
},
{
"fixed": "1.28.4"
}
]
}
],
"ecosystem_specific": {}
}
],
"references": [
{
"type": "ADVISORY",
"url": "https://github.com/advisories/GHSA-hq6q-c2x6-hmch"
},
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-5528"
},
{
"type": "WEB",
"url": "https://github.com/kubernetes/kubernetes/issues/121879"
},
{
"type": "WEB",
"url": "https://github.com/kubernetes/kubernetes/pull/121881"
},
{
"type": "WEB",
"url": "https://github.com/kubernetes/kubernetes/pull/121882"
},
{
"type": "WEB",
"url": "https://github.com/kubernetes/kubernetes/pull/121883"
},
{
"type": "WEB",
"url": "https://github.com/kubernetes/kubernetes/pull/121884"
},
{
"type": "WEB",
"url": "https://github.com/kubernetes/kubernetes/pull/121885"
},
{
"type": "WEB",
"url": "https://groups.google.com/g/kubernetes-security-announce/c/SL_d4NR8pzA"
},
{
"type": "WEB",
"url": "https://lists.fedoraproject.org/archives/list/[email protected]/message/3JH444PWZBINXLLFV7XLIJIZJHSK6UEZ"
},
{
"type": "WEB",
"url": "https://lists.fedoraproject.org/archives/list/[email protected]/message/4XZIX727JIKF5RQW7RVVBLWXBCDIBJA7"
},
{
"type": "WEB",
"url": "https://lists.fedoraproject.org/archives/list/[email protected]/message/7MPGMITSZXUCAVO7Q75675SOLXC2XXU4"
},
{
"type": "WEB",
"url": "https://security.netapp.com/advisory/ntap-20240119-0009"
}
],
"database_specific": {
"url": "https://pkg.go.dev/vuln/GO-2023-2341",
"review_status": "UNREVIEWED"
}
}
81 changes: 81 additions & 0 deletions data/osv/GO-2023-2344.json
Original file line number Diff line number Diff line change
@@ -0,0 +1,81 @@
{
"schema_version": "1.3.1",
"id": "GO-2023-2344",
"modified": "0001-01-01T00:00:00Z",
"published": "0001-01-01T00:00:00Z",
"aliases": [
"CVE-2023-2980",
"GHSA-j327-c69h-4gh8"
],
"summary": "Abstrium Pydio Cells Resource Injection vulnerability in github.com/pydio/cells",
"details": "Abstrium Pydio Cells Resource Injection vulnerability in github.com/pydio/cells",
"affected": [
{
"package": {
"name": "github.com/pydio/cells",
"ecosystem": "Go"
},
"ranges": [
{
"type": "SEMVER",
"events": [
{
"introduced": "0"
}
]
}
],
"ecosystem_specific": {}
},
{
"package": {
"name": "github.com/pydio/cells/v4",
"ecosystem": "Go"
},
"ranges": [
{
"type": "SEMVER",
"events": [
{
"introduced": "0"
},
{
"fixed": "4.2.1"
}
]
}
],
"ecosystem_specific": {}
}
],
"references": [
{
"type": "ADVISORY",
"url": "https://github.com/advisories/GHSA-j327-c69h-4gh8"
},
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-2980"
},
{
"type": "WEB",
"url": "https://popalltheshells.medium.com/multiple-cves-affecting-pydio-cells-4-2-0-321e7e4712be"
},
{
"type": "WEB",
"url": "https://pydio.com/en/community/releases/pydio-cells/pydio-cells-enterprise-421"
},
{
"type": "WEB",
"url": "https://vuldb.com/?ctiid.230212"
},
{
"type": "WEB",
"url": "https://vuldb.com/?id.230212"
}
],
"database_specific": {
"url": "https://pkg.go.dev/vuln/GO-2023-2344",
"review_status": "UNREVIEWED"
}
}
Loading

0 comments on commit 5ee8669

Please sign in to comment.