-
Notifications
You must be signed in to change notification settings - Fork 61
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
data/reports: unexclude 20 reports (24)
- data/reports/GO-2022-0827.yaml - data/reports/GO-2022-0828.yaml - data/reports/GO-2022-0829.yaml - data/reports/GO-2022-0830.yaml - data/reports/GO-2022-0831.yaml - data/reports/GO-2022-0832.yaml - data/reports/GO-2022-0833.yaml - data/reports/GO-2022-0834.yaml - data/reports/GO-2022-0835.yaml - data/reports/GO-2022-0838.yaml - data/reports/GO-2022-0839.yaml - data/reports/GO-2022-0840.yaml - data/reports/GO-2022-0844.yaml - data/reports/GO-2022-0845.yaml - data/reports/GO-2022-0846.yaml - data/reports/GO-2022-0847.yaml - data/reports/GO-2022-0852.yaml - data/reports/GO-2022-0853.yaml - data/reports/GO-2022-0854.yaml - data/reports/GO-2022-0855.yaml Updates #827 Updates #828 Updates #829 Updates #830 Updates #831 Updates #832 Updates #833 Updates #834 Updates #835 Updates #838 Updates #839 Updates #840 Updates #844 Updates #845 Updates #846 Updates #847 Updates #852 Updates #853 Updates #854 Updates #855 Change-Id: Idb54775613f8c9096bcc50d304cc813b203df6a2 Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/607226 LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com> Reviewed-by: Damien Neil <dneil@google.com> Auto-Submit: Tatiana Bradley <tatianabradley@google.com>
- Loading branch information
Showing
60 changed files
with
1,855 additions
and
160 deletions.
There are no files selected for viewing
This file was deleted.
Oops, something went wrong.
This file was deleted.
Oops, something went wrong.
This file was deleted.
Oops, something went wrong.
This file was deleted.
Oops, something went wrong.
This file was deleted.
Oops, something went wrong.
This file was deleted.
Oops, something went wrong.
This file was deleted.
Oops, something went wrong.
This file was deleted.
Oops, something went wrong.
This file was deleted.
Oops, something went wrong.
This file was deleted.
Oops, something went wrong.
This file was deleted.
Oops, something went wrong.
This file was deleted.
Oops, something went wrong.
This file was deleted.
Oops, something went wrong.
This file was deleted.
Oops, something went wrong.
This file was deleted.
Oops, something went wrong.
This file was deleted.
Oops, something went wrong.
This file was deleted.
Oops, something went wrong.
This file was deleted.
Oops, something went wrong.
This file was deleted.
Oops, something went wrong.
This file was deleted.
Oops, something went wrong.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,52 @@ | ||
| { | ||
| "schema_version": "1.3.1", | ||
| "id": "GO-2022-0827", | ||
| "modified": "0001-01-01T00:00:00Z", | ||
| "published": "0001-01-01T00:00:00Z", | ||
| "aliases": [ | ||
| "CVE-2021-29652", | ||
| "GHSA-fv82-r8qv-ch4v" | ||
| ], | ||
| "summary": "pomerium_signature is not verified in middleware in github.com/pomerium/pomerium", | ||
| "details": "pomerium_signature is not verified in middleware in github.com/pomerium/pomerium", | ||
| "affected": [ | ||
| { | ||
| "package": { | ||
| "name": "github.com/pomerium/pomerium", | ||
| "ecosystem": "Go" | ||
| }, | ||
| "ranges": [ | ||
| { | ||
| "type": "SEMVER", | ||
| "events": [ | ||
| { | ||
| "introduced": "0.10.0" | ||
| }, | ||
| { | ||
| "fixed": "0.13.4" | ||
| } | ||
| ] | ||
| } | ||
| ], | ||
| "ecosystem_specific": {} | ||
| } | ||
| ], | ||
| "references": [ | ||
| { | ||
| "type": "ADVISORY", | ||
| "url": "https://github.com/pomerium/pomerium/security/advisories/GHSA-fv82-r8qv-ch4v" | ||
| }, | ||
| { | ||
| "type": "ADVISORY", | ||
| "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-29652" | ||
| }, | ||
| { | ||
| "type": "FIX", | ||
| "url": "https://github.com/pomerium/pomerium/pull/2048" | ||
| } | ||
| ], | ||
| "database_specific": { | ||
| "url": "https://pkg.go.dev/vuln/GO-2022-0827", | ||
| "review_status": "UNREVIEWED" | ||
| } | ||
| } |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,64 @@ | ||
| { | ||
| "schema_version": "1.3.1", | ||
| "id": "GO-2022-0828", | ||
| "modified": "0001-01-01T00:00:00Z", | ||
| "published": "0001-01-01T00:00:00Z", | ||
| "aliases": [ | ||
| "CVE-2020-10696", | ||
| "GHSA-fx8w-mjvm-hvpc" | ||
| ], | ||
| "summary": "Path Traversal in Buildah in github.com/containers/buildah", | ||
| "details": "Path Traversal in Buildah in github.com/containers/buildah", | ||
| "affected": [ | ||
| { | ||
| "package": { | ||
| "name": "github.com/containers/buildah", | ||
| "ecosystem": "Go" | ||
| }, | ||
| "ranges": [ | ||
| { | ||
| "type": "SEMVER", | ||
| "events": [ | ||
| { | ||
| "introduced": "0" | ||
| }, | ||
| { | ||
| "fixed": "1.14.4" | ||
| } | ||
| ] | ||
| } | ||
| ], | ||
| "ecosystem_specific": {} | ||
| } | ||
| ], | ||
| "references": [ | ||
| { | ||
| "type": "ADVISORY", | ||
| "url": "https://github.com/advisories/GHSA-fx8w-mjvm-hvpc" | ||
| }, | ||
| { | ||
| "type": "ADVISORY", | ||
| "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-10696" | ||
| }, | ||
| { | ||
| "type": "FIX", | ||
| "url": "https://github.com/containers/buildah/pull/2245" | ||
| }, | ||
| { | ||
| "type": "WEB", | ||
| "url": "https://access.redhat.com/security/cve/cve-2020-10696" | ||
| }, | ||
| { | ||
| "type": "WEB", | ||
| "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1817651" | ||
| }, | ||
| { | ||
| "type": "WEB", | ||
| "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-10696" | ||
| } | ||
| ], | ||
| "database_specific": { | ||
| "url": "https://pkg.go.dev/vuln/GO-2022-0828", | ||
| "review_status": "UNREVIEWED" | ||
| } | ||
| } |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,51 @@ | ||
| { | ||
| "schema_version": "1.3.1", | ||
| "id": "GO-2022-0829", | ||
| "modified": "0001-01-01T00:00:00Z", | ||
| "published": "0001-01-01T00:00:00Z", | ||
| "aliases": [ | ||
| "GHSA-gwj5-wp6r-5q9f" | ||
| ], | ||
| "summary": "Cronos vulnerable to DoS through unintended Contract Selfdestruct in github.com/crypto-org-chain/cronos", | ||
| "details": "Cronos vulnerable to DoS through unintended Contract Selfdestruct in github.com/crypto-org-chain/cronos", | ||
| "affected": [ | ||
| { | ||
| "package": { | ||
| "name": "github.com/crypto-org-chain/cronos", | ||
| "ecosystem": "Go" | ||
| }, | ||
| "ranges": [ | ||
| { | ||
| "type": "SEMVER", | ||
| "events": [ | ||
| { | ||
| "introduced": "0" | ||
| }, | ||
| { | ||
| "fixed": "0.8.0" | ||
| } | ||
| ] | ||
| } | ||
| ], | ||
| "ecosystem_specific": {} | ||
| } | ||
| ], | ||
| "references": [ | ||
| { | ||
| "type": "ADVISORY", | ||
| "url": "https://github.com/crypto-org-chain/cronos/security/advisories/GHSA-gwj5-wp6r-5q9f" | ||
| }, | ||
| { | ||
| "type": "FIX", | ||
| "url": "https://github.com/crypto-org-chain/cronos/commit/2f2cc88b501b47149690fdef05afbbbe5bc116c9" | ||
| }, | ||
| { | ||
| "type": "WEB", | ||
| "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-35936" | ||
| } | ||
| ], | ||
| "database_specific": { | ||
| "url": "https://pkg.go.dev/vuln/GO-2022-0829", | ||
| "review_status": "UNREVIEWED" | ||
| } | ||
| } |
Oops, something went wrong.