data/excluded: batch add 14 excluded reports

timothy-king · timothy-king · commit 74276ae69126 · 2023-09-11T19:35:01.000Z
Adds excluded reports: - data/excluded/GO-2023-2055.yaml - data/excluded/GO-2023-2047.yaml - data/excluded/GO-2023-2040.yaml - data/excluded/GO-2023-2053.yaml - data/excluded/GO-2023-2051.yaml - data/excluded/GO-2023-2050.yaml - data/excluded/GO-2023-2038.yaml - data/excluded/GO-2023-2037.yaml - data/excluded/GO-2023-2036.yaml - data/excluded/GO-2023-2034.yaml - data/excluded/GO-2023-2026.yaml - data/excluded/GO-2023-2023.yaml - data/excluded/GO-2023-2022.yaml - data/excluded/GO-2023-2020.yaml Fixes #2055 Fixes #2047 Fixes #2040 Fixes #2053 Fixes #2051 Fixes #2050 Fixes #2038 Fixes #2037 Fixes #2036 Fixes #2034 Fixes #2026 Fixes #2023 Fixes #2022 Fixes #2020 Change-Id: I22f318178894bb19980305260f4d6acbcb7b278d Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/527176 Run-TryBot: Tim King <taking@google.com> TryBot-Result: Gopher Robot <gobot@golang.org> LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com> Reviewed-by: Damien Neil <dneil@google.com>
diff --git a/data/excluded/GO-2023-2020.yaml b/data/excluded/GO-2023-2020.yaml
@@ -0,0 +1,8 @@
+id: GO-2023-2020
+excluded: EFFECTIVELY_PRIVATE
+modules:
+    - module: github.com/prometheus/alertmanager
+cves:
+    - CVE-2023-40577
+ghsas:
+    - GHSA-v86x-5fm3-5p7j
diff --git a/data/excluded/GO-2023-2022.yaml b/data/excluded/GO-2023-2022.yaml
@@ -0,0 +1,8 @@
+id: GO-2023-2022
+excluded: EFFECTIVELY_PRIVATE
+modules:
+    - module: github.com/gravitl/netmaker
+cves:
+    - CVE-2023-32077
+ghsas:
+    - GHSA-8x8h-hcq8-jwwx
diff --git a/data/excluded/GO-2023-2023.yaml b/data/excluded/GO-2023-2023.yaml
@@ -0,0 +1,8 @@
+id: GO-2023-2023
+excluded: EFFECTIVELY_PRIVATE
+modules:
+    - module: github.com/gravitl/netmaker
+cves:
+    - CVE-2023-32078
+ghsas:
+    - GHSA-256m-j5qw-38f4
diff --git a/data/excluded/GO-2023-2026.yaml b/data/excluded/GO-2023-2026.yaml
@@ -0,0 +1,6 @@
+id: GO-2023-2026
+excluded: EFFECTIVELY_PRIVATE
+modules:
+    - module: github.com/IceWhaleTech/CasaOS
+cves:
+    - CVE-2023-37469
diff --git a/data/excluded/GO-2023-2034.yaml b/data/excluded/GO-2023-2034.yaml
@@ -0,0 +1,6 @@
+id: GO-2023-2034
+excluded: EFFECTIVELY_PRIVATE
+modules:
+    - module: github.com/snapcore/snapd
+cves:
+    - CVE-2023-1523
diff --git a/data/excluded/GO-2023-2036.yaml b/data/excluded/GO-2023-2036.yaml
@@ -0,0 +1,8 @@
+id: GO-2023-2036
+excluded: EFFECTIVELY_PRIVATE
+modules:
+    - module: github.com/usememos/memos
+cves:
+    - CVE-2023-4697
+ghsas:
+    - GHSA-5j6p-59cj-j6cp
diff --git a/data/excluded/GO-2023-2037.yaml b/data/excluded/GO-2023-2037.yaml
@@ -0,0 +1,8 @@
+id: GO-2023-2037
+excluded: EFFECTIVELY_PRIVATE
+modules:
+    - module: github.com/usememos/memos
+cves:
+    - CVE-2023-4698
+ghsas:
+    - GHSA-96gq-6ch5-mm54
diff --git a/data/excluded/GO-2023-2038.yaml b/data/excluded/GO-2023-2038.yaml
@@ -0,0 +1,8 @@
+id: GO-2023-2038
+excluded: EFFECTIVELY_PRIVATE
+modules:
+    - module: github.com/usememos/memos
+cves:
+    - CVE-2023-4696
+ghsas:
+    - GHSA-j2gj-g3p9-7mrr
diff --git a/data/excluded/GO-2023-2040.yaml b/data/excluded/GO-2023-2040.yaml
@@ -0,0 +1,6 @@
+id: GO-2023-2040
+excluded: NOT_A_VULNERABILITY
+modules:
+    - module: github.com/SimonWaldherr/zplgfa
+cves:
+    - CVE-2023-36307
diff --git a/data/excluded/GO-2023-2047.yaml b/data/excluded/GO-2023-2047.yaml
@@ -0,0 +1,6 @@
+id: GO-2023-2047
+excluded: NOT_IMPORTABLE
+modules:
+    - module: github.com/cosmos/cosmos-sdk
+ghsas:
+    - GHSA-23px-mw2p-46qm
diff --git a/data/excluded/GO-2023-2050.yaml b/data/excluded/GO-2023-2050.yaml
@@ -0,0 +1,6 @@
+id: GO-2023-2050
+excluded: EFFECTIVELY_PRIVATE
+modules:
+    - module: github.com/argoproj/argo-cd
+cves:
+    - CVE-2023-40584
diff --git a/data/excluded/GO-2023-2051.yaml b/data/excluded/GO-2023-2051.yaml
@@ -0,0 +1,8 @@
+id: GO-2023-2051
+excluded: EFFECTIVELY_PRIVATE
+modules:
+    - module: github.com/answerdev/answer
+cves:
+    - CVE-2023-4815
+ghsas:
+    - GHSA-pj2h-85jq-g5vg
diff --git a/data/excluded/GO-2023-2053.yaml b/data/excluded/GO-2023-2053.yaml
@@ -0,0 +1,8 @@
+id: GO-2023-2053
+excluded: EFFECTIVELY_PRIVATE
+modules:
+    - module: github.com/turt2live/matrix-media-repo
+cves:
+    - CVE-2023-41318
+ghsas:
+    - GHSA-5crw-6j7v-xc72
diff --git a/data/excluded/GO-2023-2055.yaml b/data/excluded/GO-2023-2055.yaml
@@ -0,0 +1,8 @@
+id: GO-2023-2055
+excluded: NOT_IMPORTABLE
+modules:
+    - module: github.com/hashicorp/terraform
+cves:
+    - CVE-2023-4782
+ghsas:
+    - GHSA-h626-pv66-hhm7
