From 36c313e6fc8020b004cb63082ec994f42c0a955c Mon Sep 17 00:00:00 2001 From: Tatiana Bradley Date: Thu, 4 Jan 2024 17:00:17 -0500 Subject: [PATCH] data/excluded: batch add 16 excluded reports Adds excluded reports: - data/excluded/GO-2024-2440.yaml - data/excluded/GO-2024-2443.yaml - data/excluded/GO-2024-2439.yaml - data/excluded/GO-2024-2450.yaml - data/excluded/GO-2024-2449.yaml - data/excluded/GO-2024-2447.yaml - data/excluded/GO-2024-2445.yaml - data/excluded/GO-2024-2442.yaml - data/excluded/GO-2024-2441.yaml - data/excluded/GO-2024-2434.yaml - data/excluded/GO-2024-2433.yaml - data/excluded/GO-2024-2432.yaml - data/excluded/GO-2024-2431.yaml - data/excluded/GO-2024-2430.yaml - data/excluded/GO-2024-2429.yaml - data/excluded/GO-2024-2428.yaml Fixes golang/vulndb#2440 Fixes golang/vulndb#2443 Fixes golang/vulndb#2439 Fixes golang/vulndb#2450 Fixes golang/vulndb#2449 Fixes golang/vulndb#2447 Fixes golang/vulndb#2445 Fixes golang/vulndb#2442 Fixes golang/vulndb#2441 Fixes golang/vulndb#2434 Fixes golang/vulndb#2433 Fixes golang/vulndb#2432 Fixes golang/vulndb#2431 Fixes golang/vulndb#2430 Fixes golang/vulndb#2429 Fixes golang/vulndb#2428 Change-Id: I6aca7d7d26750b6ca09ea0d199f96cdd6c6b8ca1 Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/554157 Auto-Submit: Tatiana Bradley Reviewed-by: Damien Neil LUCI-TryBot-Result: Go LUCI --- data/excluded/GO-2024-2428.yaml | 8 ++++++++ data/excluded/GO-2024-2429.yaml | 6 ++++++ data/excluded/GO-2024-2430.yaml | 8 ++++++++ data/excluded/GO-2024-2431.yaml | 8 ++++++++ data/excluded/GO-2024-2432.yaml | 8 ++++++++ data/excluded/GO-2024-2433.yaml | 8 ++++++++ data/excluded/GO-2024-2434.yaml | 8 ++++++++ data/excluded/GO-2024-2439.yaml | 6 ++++++ data/excluded/GO-2024-2440.yaml | 8 ++++++++ data/excluded/GO-2024-2441.yaml | 6 ++++++ data/excluded/GO-2024-2442.yaml | 6 ++++++ data/excluded/GO-2024-2443.yaml | 8 ++++++++ data/excluded/GO-2024-2445.yaml | 6 ++++++ data/excluded/GO-2024-2447.yaml | 6 ++++++ data/excluded/GO-2024-2449.yaml | 6 ++++++ data/excluded/GO-2024-2450.yaml | 8 ++++++++ 16 files changed, 114 insertions(+) create mode 100644 data/excluded/GO-2024-2428.yaml create mode 100644 data/excluded/GO-2024-2429.yaml create mode 100644 data/excluded/GO-2024-2430.yaml create mode 100644 data/excluded/GO-2024-2431.yaml create mode 100644 data/excluded/GO-2024-2432.yaml create mode 100644 data/excluded/GO-2024-2433.yaml create mode 100644 data/excluded/GO-2024-2434.yaml create mode 100644 data/excluded/GO-2024-2439.yaml create mode 100644 data/excluded/GO-2024-2440.yaml create mode 100644 data/excluded/GO-2024-2441.yaml create mode 100644 data/excluded/GO-2024-2442.yaml create mode 100644 data/excluded/GO-2024-2443.yaml create mode 100644 data/excluded/GO-2024-2445.yaml create mode 100644 data/excluded/GO-2024-2447.yaml create mode 100644 data/excluded/GO-2024-2449.yaml create mode 100644 data/excluded/GO-2024-2450.yaml diff --git a/data/excluded/GO-2024-2428.yaml b/data/excluded/GO-2024-2428.yaml new file mode 100644 index 00000000..a44b15e9 --- /dev/null +++ b/data/excluded/GO-2024-2428.yaml @@ -0,0 +1,8 @@ +id: GO-2024-2428 +excluded: EFFECTIVELY_PRIVATE +modules: + - module: k8s.io/ingress-nginx +cves: + - CVE-2023-5044 +ghsas: + - GHSA-fp9f-44c2-cw27 diff --git a/data/excluded/GO-2024-2429.yaml b/data/excluded/GO-2024-2429.yaml new file mode 100644 index 00000000..0591c4af --- /dev/null +++ b/data/excluded/GO-2024-2429.yaml @@ -0,0 +1,6 @@ +id: GO-2024-2429 +excluded: EFFECTIVELY_PRIVATE +modules: + - module: github.com/openkruise/kruise +cves: + - CVE-2023-30617 diff --git a/data/excluded/GO-2024-2430.yaml b/data/excluded/GO-2024-2430.yaml new file mode 100644 index 00000000..1f029eb0 --- /dev/null +++ b/data/excluded/GO-2024-2430.yaml @@ -0,0 +1,8 @@ +id: GO-2024-2430 +excluded: EFFECTIVELY_PRIVATE +modules: + - module: github.com/cubefs/cubefs +cves: + - CVE-2023-46738 +ghsas: + - GHSA-qc6v-g3xw-grmx diff --git a/data/excluded/GO-2024-2431.yaml b/data/excluded/GO-2024-2431.yaml new file mode 100644 index 00000000..d74e7e5a --- /dev/null +++ b/data/excluded/GO-2024-2431.yaml @@ -0,0 +1,8 @@ +id: GO-2024-2431 +excluded: EFFECTIVELY_PRIVATE +modules: + - module: github.com/cubefs/cubefs +cves: + - CVE-2023-46740 +ghsas: + - GHSA-4248-p65p-hcrm diff --git a/data/excluded/GO-2024-2432.yaml b/data/excluded/GO-2024-2432.yaml new file mode 100644 index 00000000..bacb8a8e --- /dev/null +++ b/data/excluded/GO-2024-2432.yaml @@ -0,0 +1,8 @@ +id: GO-2024-2432 +excluded: EFFECTIVELY_PRIVATE +modules: + - module: github.com/cubefs/cubefs +cves: + - CVE-2023-46739 +ghsas: + - GHSA-8579-7p32-f398 diff --git a/data/excluded/GO-2024-2433.yaml b/data/excluded/GO-2024-2433.yaml new file mode 100644 index 00000000..d04863be --- /dev/null +++ b/data/excluded/GO-2024-2433.yaml @@ -0,0 +1,8 @@ +id: GO-2024-2433 +excluded: EFFECTIVELY_PRIVATE +modules: + - module: github.com/cubefs/cubefs +cves: + - CVE-2023-46741 +ghsas: + - GHSA-8h2x-gr2c-c275 diff --git a/data/excluded/GO-2024-2434.yaml b/data/excluded/GO-2024-2434.yaml new file mode 100644 index 00000000..f8933c44 --- /dev/null +++ b/data/excluded/GO-2024-2434.yaml @@ -0,0 +1,8 @@ +id: GO-2024-2434 +excluded: EFFECTIVELY_PRIVATE +modules: + - module: github.com/cubefs/cubefs +cves: + - CVE-2023-46742 +ghsas: + - GHSA-vwch-g97w-hfg2 diff --git a/data/excluded/GO-2024-2439.yaml b/data/excluded/GO-2024-2439.yaml new file mode 100644 index 00000000..e370168f --- /dev/null +++ b/data/excluded/GO-2024-2439.yaml @@ -0,0 +1,6 @@ +id: GO-2024-2439 +excluded: NOT_GO_CODE +modules: + - module: github.com/labring/laf +cves: + - CVE-2023-50253 diff --git a/data/excluded/GO-2024-2440.yaml b/data/excluded/GO-2024-2440.yaml new file mode 100644 index 00000000..e94ae58a --- /dev/null +++ b/data/excluded/GO-2024-2440.yaml @@ -0,0 +1,8 @@ +id: GO-2024-2440 +excluded: NOT_IMPORTABLE +modules: + - module: github.com/buildkite/elastic-ci-stack-for-aws/v6 +cves: + - CVE-2023-43741 +ghsas: + - GHSA-r5hg-349q-mg2q diff --git a/data/excluded/GO-2024-2441.yaml b/data/excluded/GO-2024-2441.yaml new file mode 100644 index 00000000..492ce08d --- /dev/null +++ b/data/excluded/GO-2024-2441.yaml @@ -0,0 +1,6 @@ +id: GO-2024-2441 +excluded: EFFECTIVELY_PRIVATE +modules: + - module: github.com/karmada-io/karmada +ghsas: + - GHSA-7xg2-83f8-39mr diff --git a/data/excluded/GO-2024-2442.yaml b/data/excluded/GO-2024-2442.yaml new file mode 100644 index 00000000..96c369d0 --- /dev/null +++ b/data/excluded/GO-2024-2442.yaml @@ -0,0 +1,6 @@ +id: GO-2024-2442 +excluded: EFFECTIVELY_PRIVATE +modules: + - module: github.com/gravitational/teleport +ghsas: + - GHSA-76cc-p55w-63g3 diff --git a/data/excluded/GO-2024-2443.yaml b/data/excluded/GO-2024-2443.yaml new file mode 100644 index 00000000..2617f6dd --- /dev/null +++ b/data/excluded/GO-2024-2443.yaml @@ -0,0 +1,8 @@ +id: GO-2024-2443 +excluded: NOT_GO_CODE +modules: + - module: github.com/buildkite/elastic-ci-stack-for-aws/v6 +cves: + - CVE-2023-43116 +ghsas: + - GHSA-7c44-7j7v-w554 diff --git a/data/excluded/GO-2024-2445.yaml b/data/excluded/GO-2024-2445.yaml new file mode 100644 index 00000000..bbc9c23b --- /dev/null +++ b/data/excluded/GO-2024-2445.yaml @@ -0,0 +1,6 @@ +id: GO-2024-2445 +excluded: EFFECTIVELY_PRIVATE +modules: + - module: github.com/gravitational/teleport +ghsas: + - GHSA-c9v7-wmwj-vf6x diff --git a/data/excluded/GO-2024-2447.yaml b/data/excluded/GO-2024-2447.yaml new file mode 100644 index 00000000..7a7dd0be --- /dev/null +++ b/data/excluded/GO-2024-2447.yaml @@ -0,0 +1,6 @@ +id: GO-2024-2447 +excluded: EFFECTIVELY_PRIVATE +modules: + - module: github.com/gravitational/teleport +ghsas: + - GHSA-hw4x-mcx5-9q36 diff --git a/data/excluded/GO-2024-2449.yaml b/data/excluded/GO-2024-2449.yaml new file mode 100644 index 00000000..00f128eb --- /dev/null +++ b/data/excluded/GO-2024-2449.yaml @@ -0,0 +1,6 @@ +id: GO-2024-2449 +excluded: EFFECTIVELY_PRIVATE +modules: + - module: https://github.com/gravitational/teleport +ghsas: + - GHSA-vfxf-76hv-v4w4 diff --git a/data/excluded/GO-2024-2450.yaml b/data/excluded/GO-2024-2450.yaml new file mode 100644 index 00000000..2fe40638 --- /dev/null +++ b/data/excluded/GO-2024-2450.yaml @@ -0,0 +1,8 @@ +id: GO-2024-2450 +excluded: EFFECTIVELY_PRIVATE +modules: + - module: github.com/mattermost/mattermost/server/v8 +cves: + - CVE-2023-47858 +ghsas: + - GHSA-w88v-pjr8-cmv2