go
/
vulndb
зеркало из https://github.com/golang/vulndb.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
2 079 коммитов 1 ветка 0 Теги 50 MiB
Граф коммитов

6 Коммитов

Автор SHA1 Сообщение Дата
Tatiana Bradley 69d9a200a8 data: apply REVIEWED status to all existing reports and osv 
Change-Id: I862c5bb24b9c08c29f0d437fd1be61da0319ef0d
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/585517
LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com>
Reviewed-by: Damien Neil <dneil@google.com>
 2024-05-20 16:03:47 +00:00
Tatiana Bradley 4d4a361097 internal/{osv,report}, data: publish summaries to OSV 
Modify ToOSV to publish the summary from the YAML report to OSV, and
apply this change to each existing OSV report.

For golang/go#56443

Change-Id: Iee78fe75f42fe9a52c6e4023ee9ad8dfa5feba8d
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/501203
Run-TryBot: Tatiana Bradley <tatianabradley@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
Reviewed-by: Damien Neil <dneil@google.com>
 2023-06-12 18:45:41 +00:00
Tatiana Bradley 69f5b83308 data/reports: add -0 suffix to stdlib report versions 
For std and cmd reports with an introduced at 1.x.0 version, add the
suffix "-0" so that the vuln will be considered introduced before any
rc versions.

Change-Id: I4c69a7895b453f759924cefaa283570ee42b4858
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/494218
TryBot-Result: Gopher Robot <gobot@golang.org>
Reviewed-by: Damien Neil <dneil@google.com>
Reviewed-by: Tatiana Bradley <tatianabradley@google.com>
Run-TryBot: Tatiana Bradley <tatianabradley@google.com>
 2023-05-11 15:31:00 +00:00
Tatiana Bradley 264b406b71 internal/osv, all: move DatabaseSpecific osv field 
Moves DatabaseSpecific to be a field of the top-level osv.Entry, instead
of a subfield of the Affected field.

Change-Id: I8c80f8af268b51d57833268b89947838c53e407a
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/481136
Run-TryBot: Tatiana Bradley <tatianabradley@google.com>
Reviewed-by: Julie Qiu <julieqiu@google.com>
Reviewed-by: Tatiana Bradley <tatianabradley@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
 2023-04-03 15:57:51 +00:00
Julie Qiu c9eaa27075 data/reports: add missing alias to GO-2022-1144.yaml 
Aliases: CVE-2022-41717, GHSA-xrjj-mj9h-534m

Updates golang/vulndb#1144
Fixes golang/vulndb#1501

Change-Id: Ib2313bdf9ae45f2f138fcc637392606a60be5759
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/464317
Reviewed-by: Tatiana Bradley <tatianabradley@google.com>
Run-TryBot: Tatiana Bradley <tatianabradley@google.com>
Auto-Submit: Julie Qiu <julieqiu@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
Run-TryBot: Julie Qiu <julieqiu@google.com>
Reviewed-by: Julie Qiu <julieqiu@google.com>
 2023-01-31 21:39:15 +00:00
Tatiana Bradley 92d928682a data/reports: add GO-2022-1144.yaml 
Aliases: CVE-2022-41717

Updates golang/vulndb#1144

Change-Id: I7ac8c7020a91486cea5dbf5895f7566b6cd94919
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/456057
Reviewed-by: Tatiana Bradley <tatiana@golang.org>
TryBot-Result: Gopher Robot <gobot@golang.org>
Reviewed-by: Damien Neil <dneil@google.com>
Run-TryBot: Tatiana Bradley <tatiana@golang.org>
 2022-12-08 19:01:21 +00:00