data/excluded: batch add 18 excluded reports

Adds excluded reports: - data/excluded/GO-2023-2149.yaml - data/excluded/GO-2023-2144.yaml - data/excluded/GO-2023-2150.yaml - data/excluded/GO-2023-2139.yaml - data/excluded/GO-2023-2138.yaml - data/excluded/GO-2023-2136.yaml - data/excluded/GO-2023-2135.yaml - data/excluded/GO-2023-2134.yaml - data/excluded/GO-2023-2127.yaml - data/excluded/GO-2023-2126.yaml - data/excluded/GO-2023-2125.yaml - data/excluded/GO-2023-2124.yaml - data/excluded/GO-2023-2123.yaml - data/excluded/GO-2023-2122.yaml - data/excluded/GO-2023-2121.yaml - data/excluded/GO-2023-2120.yaml - data/excluded/GO-2023-2118.yaml - data/excluded/GO-2023-2117.yaml Fixes #2149 Fixes #2144 Fixes #2150 Fixes #2139 Fixes #2138 Fixes #2136 Fixes #2135 Fixes #2134 Fixes #2127 Fixes #2126 Fixes #2125 Fixes #2124 Fixes #2123 Fixes #2122 Fixes #2121 Fixes #2120 Fixes #2118 Fixes #2117 Change-Id: I9a95b1624334bc3bde76f15c278c16eb8e2eaa87 Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/537395 Run-TryBot: Tatiana Bradley <tatianabradley@google.com> Auto-Submit: Tatiana Bradley <tatianabradley@google.com> TryBot-Result: Gopher Robot <gobot@golang.org> Reviewed-by: Damien Neil <dneil@google.com>
golang · Oct 24, 2023 · 66da60b · 66da60b
1 parent 86364d3
commit 66da60b
Show file tree

Hide file tree

Showing 18 changed files with 138 additions and 0 deletions.
diff --git a/data/excluded/GO-2023-2117.yaml b/data/excluded/GO-2023-2117.yaml
@@ -0,0 +1,6 @@
+id: GO-2023-2117
+excluded: DEPENDENT_VULNERABILITY
+modules:
+    - module: github.com/traefik/traefik
+ghsas:
+    - GHSA-7v4p-328v-8v5g
diff --git a/data/excluded/GO-2023-2118.yaml b/data/excluded/GO-2023-2118.yaml
@@ -0,0 +1,6 @@
+id: GO-2023-2118
+excluded: DEPENDENT_VULNERABILITY
+modules:
+    - module: github.com/kumahq/kuma
+ghsas:
+    - GHSA-9wmc-rg4h-28wv
diff --git a/data/excluded/GO-2023-2120.yaml b/data/excluded/GO-2023-2120.yaml
@@ -0,0 +1,8 @@
+id: GO-2023-2120
+excluded: EFFECTIVELY_PRIVATE
+modules:
+    - module: github.com/grafana/grafana
+cves:
+    - CVE-2023-4822
+ghsas:
+    - GHSA-fw9c-75hh-89p6
diff --git a/data/excluded/GO-2023-2121.yaml b/data/excluded/GO-2023-2121.yaml
@@ -0,0 +1,8 @@
+id: GO-2023-2121
+excluded: EFFECTIVELY_PRIVATE
+modules:
+    - module: github.com/openfga/openfga
+cves:
+    - CVE-2023-45810
+ghsas:
+    - GHSA-hr4f-6jh8-f2vq
diff --git a/data/excluded/GO-2023-2122.yaml b/data/excluded/GO-2023-2122.yaml
@@ -0,0 +1,8 @@
+id: GO-2023-2122
+excluded: EFFECTIVELY_PRIVATE
+modules:
+    - module: github.com/arduino/arduino-create-agent
+cves:
+    - CVE-2023-43800
+ghsas:
+    - GHSA-4x5q-q7wc-q22p
diff --git a/data/excluded/GO-2023-2123.yaml b/data/excluded/GO-2023-2123.yaml
@@ -0,0 +1,8 @@
+id: GO-2023-2123
+excluded: EFFECTIVELY_PRIVATE
+modules:
+    - module: github.com/arduino/arduino-create-agent
+cves:
+    - CVE-2023-43801
+ghsas:
+    - GHSA-mjq6-pv9c-qppq
diff --git a/data/excluded/GO-2023-2124.yaml b/data/excluded/GO-2023-2124.yaml
@@ -0,0 +1,8 @@
+id: GO-2023-2124
+excluded: EFFECTIVELY_PRIVATE
+modules:
+    - module: github.com/arduino/arduino-create-agent
+cves:
+    - CVE-2023-43802
+ghsas:
+    - GHSA-75j7-w798-cwwx
diff --git a/data/excluded/GO-2023-2125.yaml b/data/excluded/GO-2023-2125.yaml
@@ -0,0 +1,8 @@
+id: GO-2023-2125
+excluded: EFFECTIVELY_PRIVATE
+modules:
+    - module: k8s.io/kops
+cves:
+    - CVE-2023-1943
+ghsas:
+    - GHSA-8gwj-m6vh-2g6j
diff --git a/data/excluded/GO-2023-2126.yaml b/data/excluded/GO-2023-2126.yaml
@@ -0,0 +1,8 @@
+id: GO-2023-2126
+excluded: EFFECTIVELY_PRIVATE
+modules:
+    - module: github.com/arduino/arduino-create-agent
+cves:
+    - CVE-2023-43803
+ghsas:
+    - GHSA-m5jc-r4gf-c6p8
diff --git a/data/excluded/GO-2023-2127.yaml b/data/excluded/GO-2023-2127.yaml
@@ -0,0 +1,8 @@
+id: GO-2023-2127
+excluded: EFFECTIVELY_PRIVATE
+modules:
+    - module: github.com/ethereum/go-ethereum
+cves:
+    - CVE-2023-42319
+ghsas:
+    - GHSA-v9jh-j8px-98vq
diff --git a/data/excluded/GO-2023-2134.yaml b/data/excluded/GO-2023-2134.yaml
@@ -0,0 +1,8 @@
+id: GO-2023-2134
+excluded: EFFECTIVELY_PRIVATE
+modules:
+    - module: github.com/artifacthub/hub
+cves:
+    - CVE-2023-45822
+ghsas:
+    - GHSA-9pc8-m4vp-ggvf
diff --git a/data/excluded/GO-2023-2135.yaml b/data/excluded/GO-2023-2135.yaml
@@ -0,0 +1,8 @@
+id: GO-2023-2135
+excluded: EFFECTIVELY_PRIVATE
+modules:
+    - module: github.com/artifacthub/hub
+cves:
+    - CVE-2023-45821
+ghsas:
+    - GHSA-g6pq-x539-7w4j
diff --git a/data/excluded/GO-2023-2136.yaml b/data/excluded/GO-2023-2136.yaml
@@ -0,0 +1,8 @@
+id: GO-2023-2136
+excluded: EFFECTIVELY_PRIVATE
+modules:
+    - module: github.com/artifacthub/hub
+cves:
+    - CVE-2023-45823
+ghsas:
+    - GHSA-hmq4-c2r4-5q8h
diff --git a/data/excluded/GO-2023-2138.yaml b/data/excluded/GO-2023-2138.yaml
@@ -0,0 +1,8 @@
+id: GO-2023-2138
+excluded: EFFECTIVELY_PRIVATE
+modules:
+    - module: github.com/loft-sh/devspace
+cves:
+    - CVE-2020-15391
+ghsas:
+    - GHSA-6h8c-gw33-cjm2
diff --git a/data/excluded/GO-2023-2139.yaml b/data/excluded/GO-2023-2139.yaml
@@ -0,0 +1,8 @@
+id: GO-2023-2139
+excluded: EFFECTIVELY_PRIVATE
+modules:
+    - module: istio.io/istio
+cves:
+    - CVE-2019-18817
+ghsas:
+    - GHSA-vc7h-cmp3-4hw5
diff --git a/data/excluded/GO-2023-2144.yaml b/data/excluded/GO-2023-2144.yaml
@@ -0,0 +1,8 @@
+id: GO-2023-2144
+excluded: NOT_GO_CODE
+modules:
+    - module: github.com/leanote/leanote
+cves:
+    - CVE-2021-4263
+ghsas:
+    - GHSA-6cmv-2548-82v4
diff --git a/data/excluded/GO-2023-2149.yaml b/data/excluded/GO-2023-2149.yaml
@@ -0,0 +1,6 @@
+id: GO-2023-2149
+excluded: NOT_GO_CODE
+modules:
+    - module: gitlab.nic.cz/knot/knot-resolver
+cves:
+    - CVE-2023-46317
diff --git a/data/excluded/GO-2023-2150.yaml b/data/excluded/GO-2023-2150.yaml
@@ -0,0 +1,8 @@
+id: GO-2023-2150
+excluded: EFFECTIVELY_PRIVATE
+modules:
+    - module: github.com/free5gc/udm
+cves:
+    - CVE-2023-46324
+ghsas:
+    - GHSA-cqvv-r3g3-26rf