f0441fd318
data/reports: add vulnerable_at to GO-2020-0007.yaml
...
Aliases: CVE-2017-18367, GHSA-58v3-j75h-xr49
Updates golang/vulndb#7
Change-Id: I566617e7fd9df18d0fe377847b02d8cbd5ce6ac0
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/465176
TryBot-Result: Gopher Robot <gobot@golang.org>
Reviewed-by: Damien Neil <dneil@google.com>
Run-TryBot: Tatiana Bradley <tatianabradley@google.com>
Reviewed-by: Tim King <taking@google.com>
2023-02-06 16:20:01 +00:00
b76345a101
data/reports: add vulnerable_at to GO-2021-0101.yaml
...
Aliases: CVE-2019-0210, GHSA-jq7p-26h5-w78r
Updates golang/vulndb#101
Change-Id: I1b688d09c2608cdd6f13d987c796c0e419179e63
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/465183
TryBot-Result: Gopher Robot <gobot@golang.org>
Reviewed-by: Tim King <taking@google.com>
Run-TryBot: Tatiana Bradley <tatianabradley@google.com>
2023-02-06 16:18:38 +00:00
6fdbe6f389
data/reports: add vulnerable_at to GO-2021-0104.yaml
...
Aliases: CVE-2021-28681, GHSA-74xm-qj29-cq8p
Updates golang/vulndb#104
Change-Id: I542dbf322397998463555c5eeac3c950ab2a93c2
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/465182
Run-TryBot: Tatiana Bradley <tatianabradley@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
Reviewed-by: Tim King <taking@google.com>
2023-02-06 16:18:04 +00:00
a5f78dd22d
data/reports: add vulnerable_at to GO-2021-0106.yaml
...
Aliases: CVE-2020-36566, GHSA-jpf8-h7h7-3ppm
Updates golang/vulndb#106
Change-Id: I20ed408d1797c564aeaedb83603786daefde1c75
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/465181
TryBot-Result: Gopher Robot <gobot@golang.org>
Reviewed-by: Tim King <taking@google.com>
Run-TryBot: Tatiana Bradley <tatianabradley@google.com>
2023-02-06 16:16:46 +00:00
a9d74d0f79
data/reports: add vulnerable_at to GO-2021-0113.yaml
...
Aliases: CVE-2021-38561, GHSA-ppp9-7jff-5vj2
Updates golang/vulndb#113
Change-Id: I1b6108e968286216b1e353987e59da0fb9c0acc5
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/465180
Reviewed-by: Tim King <taking@google.com>
Run-TryBot: Tatiana Bradley <tatianabradley@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
2023-02-06 16:15:44 +00:00
2fc0ee00d2
data/reports: add vulnerable_at to GO-2021-0227.yaml
...
Aliases: CVE-2020-29652
Updates golang/vulndb#227
Change-Id: I596dd614fab9ec50299d151bf395ca3439601e76
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/465179
Reviewed-by: Tim King <taking@google.com>
Run-TryBot: Tatiana Bradley <tatianabradley@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
2023-02-06 16:15:26 +00:00
751df622de
data/reports: add vulnerable_at to some reports
...
Change-Id: I731920f60f900b06dbc3512c4624dac81caaf2f0
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/465184
Run-TryBot: Tatiana Bradley <tatianabradley@google.com>
Reviewed-by: Tim King <taking@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
2023-02-06 16:14:36 +00:00
b9638e6227
all_test: remove TestMissingReports
...
Updates golang/go#56139
Change-Id: I6288b65cb073730b6069512b0259a0a1e09519ed
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/464935
Reviewed-by: Tatiana Bradley <tatianabradley@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
Run-TryBot: Zvonimir Pavlinovic <zpavlinovic@google.com>
2023-02-02 21:53:37 +00:00
7876d99c1c
data/reports: add vulnerable_at to GO-2020-0027.yaml
...
Additionally fix packages and symbols
Aliases: CVE-2018-6558, GHSA-qj26-7grj-whg3
Updates golang/vulndb#27
Change-Id: I11bcc36c230158c5e5a334da84d063a7e5e69fb5
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/464895
Auto-Submit: Tatiana Bradley <tatianabradley@google.com>
Run-TryBot: Tatiana Bradley <tatianabradley@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
Reviewed-by: Tim King <taking@google.com>
Reviewed-by: Tatiana Bradley <tatianabradley@google.com>
2023-02-02 19:37:40 +00:00
47fa79d681
data/reports: apply vulnreport fix to 0113
...
Change-Id: If8300491d03b08130a7fe616ef85f09491810e6e
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/464024
Run-TryBot: Tim King <taking@google.com>
Reviewed-by: Tatiana Bradley <tatianabradley@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
2023-02-02 17:52:29 +00:00
ed38bf91cc
data/reports: apply vulnreport fix to 1184
...
Change-Id: I2627e1036d0168e67d37ef09f17448c3243ee6c1
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/464026
TryBot-Result: Gopher Robot <gobot@golang.org>
Reviewed-by: Tatiana Bradley <tatianabradley@google.com>
Run-TryBot: Tim King <taking@google.com>
2023-02-02 17:11:54 +00:00
1ecf85566b
data/reports: apply vulnreport fix to 1185 1502
...
Change-Id: I45470468a49e8ab01d1c6bb8dc694da154709470
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/464029
Reviewed-by: Tatiana Bradley <tatianabradley@google.com>
Run-TryBot: Tim King <taking@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
2023-02-02 17:11:34 +00:00
7c2e4ff07b
data/reports: apply vulnreport fix to 0368 0940 1100
...
Change-Id: I294e92cc4d96d25fbb667cb3f34a2ee72433431b
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/464028
TryBot-Result: Gopher Robot <gobot@golang.org>
Reviewed-by: Tatiana Bradley <tatianabradley@google.com>
Run-TryBot: Tim King <taking@google.com>
2023-02-02 17:11:07 +00:00
2ba7d24a0e
data/reports: apply vulnreport fix to 1113
...
Change-Id: I87e18155e7787b8b5fe026b3e838289027797c7f
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/464027
Run-TryBot: Tim King <taking@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
Reviewed-by: Tatiana Bradley <tatianabradley@google.com>
2023-02-02 17:06:34 +00:00
bea303a059
data/reports: apply vulnreport fix to 1143
...
Change-Id: I02e9942cdac8ef12afd5bbb787117d6b88f0d60f
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/464025
Run-TryBot: Tim King <taking@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
Reviewed-by: Tatiana Bradley <tatianabradley@google.com>
2023-02-02 17:05:35 +00:00
6bbce1a38b
data/excluded: batch add GO-2023-1493
...
Fixes golang/vulndb#1493
Change-Id: If2d97c53bd18bdc44b5b3cf5976678454d7e20cd
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/464476
Auto-Submit: Tatiana Bradley <tatianabradley@google.com>
Auto-Submit: Julie Qiu <julieqiu@google.com>
Reviewed-by: Julie Qiu <julieqiu@google.com>
Run-TryBot: Julie Qiu <julie@golang.org>
Reviewed-by: Tatiana Bradley <tatianabradley@google.com>
Run-TryBot: Julie Qiu <julieqiu@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
2023-02-02 16:38:32 +00:00
141e74cebf
data/reports: update GO-2023-1295.yaml
...
Add missing symbols
Fixes golang/vulndb#1295
Change-Id: I76718ce23a11c2ea4dc64fee322ebea67e9f11bd
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/464537
Auto-Submit: Julie Qiu <julieqiu@google.com>
Run-TryBot: Julie Qiu <julieqiu@google.com>
Reviewed-by: Julie Qiu <julieqiu@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
Auto-Submit: Tatiana Bradley <tatianabradley@google.com>
Reviewed-by: Tatiana Bradley <tatianabradley@google.com>
2023-02-02 16:37:57 +00:00
c0964740b2
data/reports: update GO-2023-1494.yaml
...
For golang/vulndb#1494
Change-Id: I6d91b7a4c1cb73f3124ab024a6d33190aaf71bdb
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/464536
Auto-Submit: Julie Qiu <julieqiu@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
Run-TryBot: Julie Qiu <julieqiu@google.com>
Reviewed-by: Julie Qiu <julieqiu@google.com>
Reviewed-by: Tatiana Bradley <tatianabradley@google.com>
Auto-Submit: Tatiana Bradley <tatianabradley@google.com>
2023-02-02 16:37:54 +00:00
a06b976966
data/reports: add GO-2023-1497.yaml
...
Aliases: CVE-2022-23538, GHSA-7p8m-22h4-9pj7
Fixes golang/vulndb#1497
Change-Id: I9238971a6292d3bdc10bffbef99cb7fc10c5dd40
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/464304
Auto-Submit: Julie Qiu <julieqiu@google.com>
Reviewed-by: Julie Qiu <julieqiu@google.com>
Run-TryBot: Julie Qiu <julieqiu@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
Reviewed-by: Tatiana Bradley <tatianabradley@google.com>
2023-02-01 23:23:36 +00:00
97c35d169f
data/reports: add GO-2023-1494.yaml
...
Aliases: CVE-2014-125064, GHSA-g7mw-9pf9-p2pm
Fixes golang/vulndb#1494
Change-Id: Ib99a2e0d06d5163fe17db7e095514d827fda3caf
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/464303
Run-TryBot: Julie Qiu <julieqiu@google.com>
Reviewed-by: Julie Qiu <julieqiu@google.com>
Auto-Submit: Julie Qiu <julieqiu@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
Reviewed-by: Tatiana Bradley <tatianabradley@google.com>
2023-02-01 23:23:34 +00:00
25617d6e34
data/reports: add GO-2023-1295.yaml
...
Aliases: CVE-2020-36645, GHSA-3hc7-2xcc-7p8f
Fixes golang/vulndb#1295
Change-Id: I9947d523e7f9aa3b28e0a5b7641e140a858d1216
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/464302
TryBot-Result: Gopher Robot <gobot@golang.org>
Run-TryBot: Julie Qiu <julieqiu@google.com>
Auto-Submit: Julie Qiu <julieqiu@google.com>
Reviewed-by: Tatiana Bradley <tatianabradley@google.com>
Run-TryBot: Julie Qiu <julie@golang.org>
Reviewed-by: Julie Qiu <julieqiu@google.com>
2023-02-01 23:19:27 +00:00
06fe3c11c9
data/reports: apply vulnreport fix to populate SkipFix
...
Adding todos for SkipFix fields where needed.
Change-Id: I224e8f9b1cc7a02136c3f9608296dc4378f65cc9
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/464017
TryBot-Result: Gopher Robot <gobot@golang.org>
Run-TryBot: Tim King <taking@google.com>
Reviewed-by: Tatiana Bradley <tatianabradley@google.com>
2023-02-01 22:18:28 +00:00
2d19bb57ae
internal/report: adds SkipFix field to Package
...
New SkipFix field on report.Package indicates that a package
should not be automatically updated by vulnreport fix.
vulnreport fix now automatically adds a todo message if this
field and Module.VulnerableAt are both empty.
Lint rules will come later.
Change-Id: I574539362cf334cdc9fee59f036e1de8e5b5bd6e
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/464016
Reviewed-by: Tatiana Bradley <tatianabradley@google.com>
Run-TryBot: Tim King <taking@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
2023-02-01 21:39:14 +00:00
766e59ff3a
data/reports: add vulnerable_at to GO-2022-0435.yaml
...
Aliases: CVE-2022-28327
Updates golang/vulndb#435
Change-Id: Ibe158f3a76cee5dcbcb2e50ba841384c01ab5a7e
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/463678
Run-TryBot: Tatiana Bradley <tatianabradley@google.com>
Reviewed-by: Tatiana Bradley <tatianabradley@google.com>
Reviewed-by: Tim King <taking@google.com>
Auto-Submit: Tatiana Bradley <tatianabradley@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
2023-02-01 21:25:25 +00:00
30aee1cbc9
data/reports: add missing alias to GO-2023-1495.yaml
...
Aliases: CVE-2022-41721, GHSA-fxg5-wq6x-vr4w
Updates golang/vulndb#1495
Fixes golang/vulndb#1507
Change-Id: I1dec284a79c4e52195d1e07a2d878bb840d50041
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/464318
Auto-Submit: Julie Qiu <julieqiu@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
Reviewed-by: Tatiana Bradley <tatianabradley@google.com>
Reviewed-by: Julie Qiu <julieqiu@google.com>
Run-TryBot: Julie Qiu <julieqiu@google.com>
Run-TryBot: Tatiana Bradley <tatianabradley@google.com>
2023-01-31 21:39:17 +00:00
c9eaa27075
data/reports: add missing alias to GO-2022-1144.yaml
...
Aliases: CVE-2022-41717, GHSA-xrjj-mj9h-534m
Updates golang/vulndb#1144
Fixes golang/vulndb#1501
Change-Id: Ib2313bdf9ae45f2f138fcc637392606a60be5759
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/464317
Reviewed-by: Tatiana Bradley <tatianabradley@google.com>
Run-TryBot: Tatiana Bradley <tatianabradley@google.com>
Auto-Submit: Julie Qiu <julieqiu@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
Run-TryBot: Julie Qiu <julieqiu@google.com>
Reviewed-by: Julie Qiu <julieqiu@google.com>
2023-01-31 21:39:15 +00:00
395ce963e4
data/excluded: batch add excluded reports
...
Add reports:
- GO-2023-1509
- GO-2023-1506
- GO-2023-1504
- GO-2023-1502
- GO-2023-1492
- GO-2023-1491
- GO-2023-1388
- GO-2023-1377
- GO-2023-1500
- GO-2023-1499
- GO-2023-1498
- GO-2023-1496
- GO-2023-1468
- GO-2023-1466
- GO-2023-1463
- GO-2023-1283
Fixes golang/vulndb#1509
Fixes golang/vulndb#1506
Fixes golang/vulndb#1504
Fixes golang/vulndb#1502
Fixes golang/vulndb#1492
Fixes golang/vulndb#1491
Fixes golang/vulndb#1388
Fixes golang/vulndb#1377
Fixes golang/vulndb#1500
Fixes golang/vulndb#1499
Fixes golang/vulndb#1498
Fixes golang/vulndb#1496
Fixes golang/vulndb#1468
Fixes golang/vulndb#1466
Fixes golang/vulndb#1463
Fixes golang/vulndb#1283
Change-Id: Ibe656933231f6f86ad496bd2d1a6c1c506c504cc
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/464316
Reviewed-by: Tatiana Bradley <tatianabradley@google.com>
Run-TryBot: Tatiana Bradley <tatianabradley@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
Reviewed-by: Julie Qiu <julieqiu@google.com>
Run-TryBot: Julie Qiu <julieqiu@google.com>
Auto-Submit: Julie Qiu <julieqiu@google.com>
2023-01-31 21:39:06 +00:00
a7f50feb26
data/reports: fix GO-2021-0085.yaml
...
Add vulnerable_at, symbols, and fix packages
Aliases: CVE-2019-16884, GHSA-fgv8-vj5c-2ppq
Updates golang/vulndb#85
Change-Id: I38fafcb65c74a36cde3add37858ea3fbd606ae51
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/463682
Reviewed-by: Tatiana Bradley <tatianabradley@google.com>
Run-TryBot: Tatiana Bradley <tatianabradley@google.com>
Auto-Submit: Tatiana Bradley <tatianabradley@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
Reviewed-by: Tim King <taking@google.com>
2023-01-31 19:20:18 +00:00
1a1bb5a2f1
data/reports: add vulnerable_at to GO-2021-0412.yaml
...
Aliases: CVE-2022-24778, GHSA-8v99-48m9-c8pm
Updates golang/vulndb#412
Change-Id: I2bcb4d456b3cffec1439d117221391e1f63e1035
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/463681
Run-TryBot: Tatiana Bradley <tatianabradley@google.com>
Auto-Submit: Tatiana Bradley <tatianabradley@google.com>
Reviewed-by: Tim King <taking@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
2023-01-31 19:20:11 +00:00
9c48f25872
data/reports: fix GO-2021-0228.yaml
...
Add vulnerable_at and missing affected package
Aliases: CVE-2020-7664, GHSA-vpx7-vm66-qx8r
Updates golang/vulndb#228
Change-Id: I768700d8f98d738f05119a1ad2dceb9c301b0ea1
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/463680
TryBot-Result: Gopher Robot <gobot@golang.org>
Auto-Submit: Tatiana Bradley <tatianabradley@google.com>
Run-TryBot: Tatiana Bradley <tatianabradley@google.com>
Reviewed-by: Tim King <taking@google.com>
Reviewed-by: Tatiana Bradley <tatianabradley@google.com>
2023-01-31 19:20:06 +00:00
b83913cf72
data/reports: add vulnerable_at for GO-2022-0433 and GO-2022-0434
...
Change-Id: Icea2d1b82309992a3e70073e05347f36860bbaac
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/463679
Reviewed-by: Tim King <taking@google.com>
Auto-Submit: Tatiana Bradley <tatianabradley@google.com>
Run-TryBot: Tatiana Bradley <tatianabradley@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
Reviewed-by: Tatiana Bradley <tatianabradley@google.com>
2023-01-31 19:20:00 +00:00
1a27ba156b
go.mod: updating go.mod
...
Adding the updates for go.mod that `gotip test ./...` currently do.
Change-Id: I948048dfd679b81ae50d04dd508d36291e09dfe5
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/464195
Run-TryBot: Tim King <taking@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
Reviewed-by: Damien Neil <dneil@google.com>
2023-01-31 18:09:03 +00:00
1adc0c4d16
vulnreport: skip report symbols on std lib
...
Skip checkReportSymbols if some symbol is in a standard library
at a different Go version than the current runtime. Prevents
vulnreport fix from deleting symbols due to using a newer go
version.
Change-Id: I8be06da38408cba80a201b8724e73a5c3f5ca470
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/463499
TryBot-Result: Gopher Robot <gobot@golang.org>
Run-TryBot: Tim King <taking@google.com>
Reviewed-by: Tatiana Bradley <tatianabradley@google.com>
2023-01-30 19:16:58 +00:00
b414c4d4ff
data/reports: add vulnerable_at to GO-2021-0238.yaml
...
Aliases: CVE-2021-33194
Updates golang/vulndb#238
Change-Id: I63ad9814791f782d90c2f1e0fad0df235e68456a
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/463677
TryBot-Result: Gopher Robot <gobot@golang.org>
Reviewed-by: Tatiana Bradley <tatianabradley@google.com>
Run-TryBot: Tatiana Bradley <tatianabradley@google.com>
Auto-Submit: Tatiana Bradley <tatianabradley@google.com>
Reviewed-by: Tim King <taking@google.com>
2023-01-30 17:43:37 +00:00
b1e824a89e
data/reports: add vulnerable_at to GO-2021-0237.yaml
...
Aliases: CVE-2021-32721, GHSA-mj9r-wwm8-7q52
Updates golang/vulndb#237
Change-Id: I964cb407244c5b7b41b369400ff5ef0b15e32f7f
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/463676
TryBot-Result: Gopher Robot <gobot@golang.org>
Run-TryBot: Tatiana Bradley <tatianabradley@google.com>
Reviewed-by: Tatiana Bradley <tatianabradley@google.com>
Reviewed-by: Tim King <taking@google.com>
Auto-Submit: Tatiana Bradley <tatianabradley@google.com>
2023-01-30 17:40:55 +00:00
a697eb6fae
data/reports: apply vulnreport fix to 1187, 1201, 1213
...
Change-Id: Iff1f384ec351ee17e835f55118e0e1b945e26302
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/463114
Reviewed-by: Tatiana Bradley <tatianabradley@google.com>
Run-TryBot: Tim King <taking@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
2023-01-30 16:20:24 +00:00
e2604b9ce8
data/reports: apply vulnreport fix to 0969
...
Change-Id: I77763e5c6ac5a8d9e2199a65068fae8e2d0c8ee5
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/463113
Run-TryBot: Tim King <taking@google.com>
Reviewed-by: Tatiana Bradley <tatianabradley@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
2023-01-30 16:20:19 +00:00
135e1ab04d
data/reports: apply vulnreport fix to 1117, 1118, 1130, 1155, 1165, and 1166
...
Change-Id: I3dd3f463ba0f42e56d85cce7fb545ebc70294fef
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/463112
Reviewed-by: Tatiana Bradley <tatianabradley@google.com>
Run-TryBot: Tim King <taking@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
2023-01-30 16:20:14 +00:00
7253c1fd2a
data/reports: run vulncheck fix on 0009, 0019, and 1083.
...
Change-Id: Ic5448c39a22b488eba8d306b1021b1d1f9cb25db
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/463111
Run-TryBot: Tim King <taking@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
Reviewed-by: Tatiana Bradley <tatianabradley@google.com>
2023-01-30 16:20:07 +00:00
a0624c70de
data/reports: apply vulnreport fix to 0380 and 0384
...
Change-Id: Ifffda89da2ac3d170e9ff21931a90bb837427605
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/463109
Run-TryBot: Tim King <taking@google.com>
Reviewed-by: Tatiana Bradley <tatianabradley@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
2023-01-30 16:20:01 +00:00
01a6ab5ffb
data/reports: apply vulnreport fix to 1027
...
Change-Id: Ibc88ba493a4dab08b30fcf98cfcb5c2f0531cdfb
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/463110
TryBot-Result: Gopher Robot <gobot@golang.org>
Reviewed-by: Tatiana Bradley <tatianabradley@google.com>
Run-TryBot: Tim King <taking@google.com>
2023-01-30 16:19:51 +00:00
ac4f51fe65
internal/worker: remove unused module_proxy.go
...
Follows [internal/worker: remove scan-modules code](https://go-review.googlesource.com/c/vulndb/+/459836 ).
Change-Id: I2e25e083b7b2b4d3128146b533d88796b83828ea
GitHub-Last-Rev: c6b5b29f48golang/vulndb#1510
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/463102
Reviewed-by: Tatiana Bradley <tatianabradley@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
Reviewed-by: Damien Neil <dneil@google.com>
Auto-Submit: Tatiana Bradley <tatianabradley@google.com>
Run-TryBot: Tatiana Bradley <tatianabradley@google.com>
2023-01-25 22:31:12 +00:00
21d453b184
data/reports: add vulnerable_at to GO-2021-0083.yaml
...
Aliases: CVE-2019-12496
Updates golang/vulndb#83
Change-Id: I37939aee2d68b200f4d9641f63517f782b5469a3
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/462776
TryBot-Result: Gopher Robot <gobot@golang.org>
Run-TryBot: Tatiana Bradley <tatianabradley@google.com>
Reviewed-by: Tatiana Bradley <tatianabradley@google.com>
Reviewed-by: Damien Neil <dneil@google.com>
Auto-Submit: Tatiana Bradley <tatianabradley@google.com>
2023-01-25 22:31:11 +00:00
2bbd554692
data/reports: add vulnerable_at for GO-2021-0081.yaml
...
Aliases: CVE-2019-10214, GHSA-85p9-j7c9-v4gr
Updates golang/vulndb#81
Change-Id: If55281df99825e2698ae3ed1f49dc500f22999f3
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/462775
TryBot-Result: Gopher Robot <gobot@golang.org>
Auto-Submit: Tatiana Bradley <tatianabradley@google.com>
Run-TryBot: Tatiana Bradley <tatianabradley@google.com>
Reviewed-by: Tatiana Bradley <tatianabradley@google.com>
Reviewed-by: Damien Neil <dneil@google.com>
2023-01-25 22:31:09 +00:00
7d8b5f3fe8
data/reports: batch add vulnerable_at
...
Change-Id: Id7e733dd37ca9462d6001d7db510cfdf7e0cc80b
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/462716
TryBot-Result: Gopher Robot <gobot@golang.org>
Reviewed-by: Damien Neil <dneil@google.com>
Auto-Submit: Tatiana Bradley <tatianabradley@google.com>
Run-TryBot: Tatiana Bradley <tatianabradley@google.com>
Reviewed-by: Tatiana Bradley <tatianabradley@google.com>
2023-01-25 22:31:08 +00:00
baa84c3bee
data/reports: fix symbol in GO-2021-0075.yaml
...
Aliases: CVE-2018-12018
Updates golang/vulndb#75
Change-Id: I27f2aa6acc633b17019466e8eb037106fe522448
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/462715
Reviewed-by: Damien Neil <dneil@google.com>
Auto-Submit: Tatiana Bradley <tatianabradley@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
Reviewed-by: Tatiana Bradley <tatianabradley@google.com>
Run-TryBot: Tatiana Bradley <tatianabradley@google.com>
2023-01-25 22:31:07 +00:00
4d8402125c
internal/database: replace os.MkdirTemp with T.TempDir
...
Updates [#45402 ](https://go.dev/issue/45402 ).
Change-Id: I7e14a6923af21fd5ce4979c648734155a3468558
GitHub-Last-Rev: 81004b22c5golang/vulndb#1508
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/463098
Reviewed-by: Tatiana Bradley <tatianabradley@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
Run-TryBot: Tim King <taking@google.com>
Reviewed-by: Tim King <taking@google.com>
2023-01-24 16:03:49 +00:00
0f90384bc1
all: pull the most recent version of vuln
...
Also update some reports that are affected due to the recent changes to
vuln.
Change-Id: Ib59498928930615ad328d1135407d1fa581d0cad
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/462735
Reviewed-by: Tatiana Bradley <tatiana@golang.org>
Run-TryBot: Zvonimir Pavlinovic <zpavlinovic@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
2023-01-19 16:55:28 +00:00
768c201e6d
data/reports: add vulnerable_at to GO-2021-0078.yaml
...
Aliases: CVE-2018-17075
Updates golang/vulndb#78
Change-Id: I9ebe78fc9cb8e9ab29251d6e915a9503e7d3cac2
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/462621
Auto-Submit: Tatiana Bradley <tatiana@golang.org>
Run-TryBot: Tatiana Bradley <tatiana@golang.org>
TryBot-Result: Gopher Robot <gobot@golang.org>
Reviewed-by: Damien Neil <dneil@google.com>
Reviewed-by: Tatiana Bradley <tatiana@golang.org>
2023-01-19 16:25:42 +00:00
632cc58464
data/reports: fix GO-2021-0076.yaml
...
Add vulnerable_at and incompatible versions
Aliases: CVE-2018-14632
Updates golang/vulndb#76
Change-Id: I30d6ba338b1560080b374fc3c8062fa2ff7bf275
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/462620
Reviewed-by: Tatiana Bradley <tatiana@golang.org>
Reviewed-by: Damien Neil <dneil@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
Run-TryBot: Tatiana Bradley <tatiana@golang.org>
Auto-Submit: Tatiana Bradley <tatiana@golang.org>
2023-01-18 21:23:48 +00:00
Tatiana Bradley
Zvonimir Pavlinovic
Tim King
Julie Qiu
Oleksandr Redko