Skip to content

Commit

Permalink
data: preserve refs added by CVE program
Browse files Browse the repository at this point in the history
Preserve (but do not publish to OSV) references added to CVE records
by the CVE program. Does not affect our published data.

Change-Id: I63eebf2c63d2cd2d3475709f93e764db9b5fa3f3
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/541121
Reviewed-by: Damien Neil <[email protected]>
LUCI-TryBot-Result: Go LUCI <[email protected]>
  • Loading branch information
tatianab committed Nov 9, 2023
1 parent d04c521 commit 4b9c218
Show file tree
Hide file tree
Showing 22 changed files with 96 additions and 0 deletions.
3 changes: 3 additions & 0 deletions data/cve/v5/GO-2023-1571.json
Original file line number Diff line number Diff line change
Expand Up @@ -388,6 +388,9 @@
},
{
"url": "https://lists.fedoraproject.org/archives/list/[email protected]/message/XX3IMUTZKRQ73PBZM4E2JP4BKYH4C6XE/"
},
{
"url": "https://www.couchbase.com/alerts/"
}
],
"credits": [
Expand Down
9 changes: 9 additions & 0 deletions data/cve/v5/GO-2023-1572.json
Original file line number Diff line number Diff line change
Expand Up @@ -69,6 +69,15 @@
},
{
"url": "https://pkg.go.dev/vuln/GO-2023-1572"
},
{
"url": "https://lists.fedoraproject.org/archives/list/[email protected]/message/KO54NBDUJXKAZNGCFOEYL2LKK2RQP6K6/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/[email protected]/message/XWH6Q7NVM4MV3GWFEU4PA67AWZHVFJQ2/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/[email protected]/message/XZTEP6JYILRBNDTNWTEQ5D4QUUVQBESK/"
}
],
"credits": [
Expand Down
9 changes: 9 additions & 0 deletions data/cve/v5/GO-2023-1989.json
Original file line number Diff line number Diff line change
Expand Up @@ -66,6 +66,15 @@
},
{
"url": "https://security.netapp.com/advisory/ntap-20230831-0009/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/[email protected]/message/KO54NBDUJXKAZNGCFOEYL2LKK2RQP6K6/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/[email protected]/message/XWH6Q7NVM4MV3GWFEU4PA67AWZHVFJQ2/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/[email protected]/message/XZTEP6JYILRBNDTNWTEQ5D4QUUVQBESK/"
}
],
"credits": [
Expand Down
9 changes: 9 additions & 0 deletions data/cve/v5/GO-2023-1990.json
Original file line number Diff line number Diff line change
Expand Up @@ -66,6 +66,15 @@
},
{
"url": "https://security.netapp.com/advisory/ntap-20230831-0009/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/[email protected]/message/KO54NBDUJXKAZNGCFOEYL2LKK2RQP6K6/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/[email protected]/message/XWH6Q7NVM4MV3GWFEU4PA67AWZHVFJQ2/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/[email protected]/message/XZTEP6JYILRBNDTNWTEQ5D4QUUVQBESK/"
}
],
"credits": [
Expand Down
3 changes: 3 additions & 0 deletions data/cve/v5/GO-2023-2041.json
Original file line number Diff line number Diff line change
Expand Up @@ -81,6 +81,9 @@
},
{
"url": "https://pkg.go.dev/vuln/GO-2023-2041"
},
{
"url": "https://security.netapp.com/advisory/ntap-20231020-0009/"
}
],
"credits": [
Expand Down
3 changes: 3 additions & 0 deletions data/cve/v5/GO-2023-2042.json
Original file line number Diff line number Diff line change
Expand Up @@ -55,6 +55,9 @@
},
{
"url": "https://pkg.go.dev/vuln/GO-2023-2042"
},
{
"url": "https://security.netapp.com/advisory/ntap-20231020-0004/"
}
],
"credits": [
Expand Down
3 changes: 3 additions & 0 deletions data/cve/v5/GO-2023-2043.json
Original file line number Diff line number Diff line change
Expand Up @@ -78,6 +78,9 @@
},
{
"url": "https://pkg.go.dev/vuln/GO-2023-2043"
},
{
"url": "https://security.netapp.com/advisory/ntap-20231020-0009/"
}
],
"credits": [
Expand Down
3 changes: 3 additions & 0 deletions data/cve/v5/GO-2023-2044.json
Original file line number Diff line number Diff line change
Expand Up @@ -60,6 +60,9 @@
},
{
"url": "https://pkg.go.dev/vuln/GO-2023-2044"
},
{
"url": "https://security.netapp.com/advisory/ntap-20231020-0004/"
}
],
"credits": [
Expand Down
3 changes: 3 additions & 0 deletions data/cve/v5/GO-2023-2045.json
Original file line number Diff line number Diff line change
Expand Up @@ -60,6 +60,9 @@
},
{
"url": "https://pkg.go.dev/vuln/GO-2023-2045"
},
{
"url": "https://security.netapp.com/advisory/ntap-20231020-0004/"
}
],
"credits": [
Expand Down
12 changes: 12 additions & 0 deletions data/cve/v5/GO-2023-2095.json
Original file line number Diff line number Diff line change
Expand Up @@ -61,6 +61,18 @@
},
{
"url": "https://pkg.go.dev/vuln/GO-2023-2095"
},
{
"url": "https://security.netapp.com/advisory/ntap-20231020-0001/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/[email protected]/message/KSEGD2IWKNUO3DWY4KQGUQM5BISRWHQE/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/[email protected]/message/CLB4TW7KALB3EEQWNWCN7OUIWWVWWCG2/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/[email protected]/message/XFOIBB4YFICHDM7IBOP7PWXW3FX4HLL2/"
}
]
}
Expand Down
9 changes: 9 additions & 0 deletions data/cve/v5/GO-2023-2102.json
Original file line number Diff line number Diff line change
Expand Up @@ -137,6 +137,15 @@
},
{
"url": "https://pkg.go.dev/vuln/GO-2023-2102"
},
{
"url": "https://lists.fedoraproject.org/archives/list/[email protected]/message/KSEGD2IWKNUO3DWY4KQGUQM5BISRWHQE/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/[email protected]/message/CLB4TW7KALB3EEQWNWCN7OUIWWVWWCG2/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/[email protected]/message/XFOIBB4YFICHDM7IBOP7PWXW3FX4HLL2/"
}
]
}
Expand Down
1 change: 1 addition & 0 deletions data/reports/GO-2023-1571.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -135,3 +135,4 @@ cve_metadata:
- https://lists.fedoraproject.org/archives/list/[email protected]/message/RLBQ3A7ROLEQXQLXFDLNJ7MYPKG5GULE/
- https://lists.fedoraproject.org/archives/list/[email protected]/message/RGW7GE2Z32ZT47UFAQFDRQE33B7Q7LMT/
- https://lists.fedoraproject.org/archives/list/[email protected]/message/XX3IMUTZKRQ73PBZM4E2JP4BKYH4C6XE/
- https://www.couchbase.com/alerts/
4 changes: 4 additions & 0 deletions data/reports/GO-2023-1572.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -29,3 +29,7 @@ references:
cve_metadata:
id: CVE-2022-41727
cwe: 'CWE-400: Uncontrolled Resource Consumption'
references:
- https://lists.fedoraproject.org/archives/list/[email protected]/message/KO54NBDUJXKAZNGCFOEYL2LKK2RQP6K6/
- https://lists.fedoraproject.org/archives/list/[email protected]/message/XWH6Q7NVM4MV3GWFEU4PA67AWZHVFJQ2/
- https://lists.fedoraproject.org/archives/list/[email protected]/message/XZTEP6JYILRBNDTNWTEQ5D4QUUVQBESK/
3 changes: 3 additions & 0 deletions data/reports/GO-2023-1989.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -29,3 +29,6 @@ cve_metadata:
cwe: 'CWE-770: Allocation of Resources Without Limits or Throttling'
references:
- https://security.netapp.com/advisory/ntap-20230831-0009/
- https://lists.fedoraproject.org/archives/list/[email protected]/message/KO54NBDUJXKAZNGCFOEYL2LKK2RQP6K6/
- https://lists.fedoraproject.org/archives/list/[email protected]/message/XWH6Q7NVM4MV3GWFEU4PA67AWZHVFJQ2/
- https://lists.fedoraproject.org/archives/list/[email protected]/message/XZTEP6JYILRBNDTNWTEQ5D4QUUVQBESK/
3 changes: 3 additions & 0 deletions data/reports/GO-2023-1990.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -31,3 +31,6 @@ cve_metadata:
cwe: 'CWE-834: Excessive Iteration'
references:
- https://security.netapp.com/advisory/ntap-20230831-0009/
- https://lists.fedoraproject.org/archives/list/[email protected]/message/KO54NBDUJXKAZNGCFOEYL2LKK2RQP6K6/
- https://lists.fedoraproject.org/archives/list/[email protected]/message/XWH6Q7NVM4MV3GWFEU4PA67AWZHVFJQ2/
- https://lists.fedoraproject.org/archives/list/[email protected]/message/XZTEP6JYILRBNDTNWTEQ5D4QUUVQBESK/
2 changes: 2 additions & 0 deletions data/reports/GO-2023-2041.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -32,3 +32,5 @@ references:
cve_metadata:
id: CVE-2023-39318
cwe: 'CWE-79: Improper Neutralization of Input During Web Page Generation (''Cross-site Scripting'')'
references:
- https://security.netapp.com/advisory/ntap-20231020-0009/
2 changes: 2 additions & 0 deletions data/reports/GO-2023-2042.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -23,3 +23,5 @@ references:
cve_metadata:
id: CVE-2023-39320
cwe: 'CWE-94: Improper Control of Generation of Code (''Code Injection'')'
references:
- https://security.netapp.com/advisory/ntap-20231020-0004/
2 changes: 2 additions & 0 deletions data/reports/GO-2023-2043.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -31,3 +31,5 @@ references:
cve_metadata:
id: CVE-2023-39319
cwe: 'CWE-79: Improper Neutralization of Input During Web Page Generation (''Cross-site Scripting'')'
references:
- https://security.netapp.com/advisory/ntap-20231020-0009/
2 changes: 2 additions & 0 deletions data/reports/GO-2023-2044.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -22,3 +22,5 @@ references:
cve_metadata:
id: CVE-2023-39321
cwe: 'CWE-400: Uncontrolled Resource Consumption'
references:
- https://security.netapp.com/advisory/ntap-20231020-0004/
2 changes: 2 additions & 0 deletions data/reports/GO-2023-2045.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -26,3 +26,5 @@ references:
cve_metadata:
id: CVE-2023-39322
cwe: 'CWE-400: Uncontrolled Resource Consumption'
references:
- https://security.netapp.com/advisory/ntap-20231020-0004/
5 changes: 5 additions & 0 deletions data/reports/GO-2023-2095.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -23,3 +23,8 @@ references:
cve_metadata:
id: CVE-2023-39323
cwe: 'CWE 94: Improper Control of Generation of Code (''Code Injection'')'
references:
- https://security.netapp.com/advisory/ntap-20231020-0001/
- https://lists.fedoraproject.org/archives/list/[email protected]/message/KSEGD2IWKNUO3DWY4KQGUQM5BISRWHQE/
- https://lists.fedoraproject.org/archives/list/[email protected]/message/CLB4TW7KALB3EEQWNWCN7OUIWWVWWCG2/
- https://lists.fedoraproject.org/archives/list/[email protected]/message/XFOIBB4YFICHDM7IBOP7PWXW3FX4HLL2/
4 changes: 4 additions & 0 deletions data/reports/GO-2023-2102.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -69,3 +69,7 @@ references:
cve_metadata:
id: CVE-2023-39325
cwe: 'CWE-400: Uncontrolled Resource Consumption'
references:
- https://lists.fedoraproject.org/archives/list/[email protected]/message/KSEGD2IWKNUO3DWY4KQGUQM5BISRWHQE/
- https://lists.fedoraproject.org/archives/list/[email protected]/message/CLB4TW7KALB3EEQWNWCN7OUIWWVWWCG2/
- https://lists.fedoraproject.org/archives/list/[email protected]/message/XFOIBB4YFICHDM7IBOP7PWXW3FX4HLL2/

0 comments on commit 4b9c218

Please sign in to comment.