-
Notifications
You must be signed in to change notification settings - Fork 61
New issue
Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? # to your account
x/vulndb: potential Go vuln in github.com/authzed/spicedb: CVE-2022-21646 #295
Labels
cve-year-2022
excluded: EFFECTIVELY_PRIVATE
This vulnerability exists in a package can be imported, but isn't meant to be outside that module.
Comments
Vulnerability in tool. |
neild
added
excluded: EFFECTIVELY_PRIVATE
This vulnerability exists in a package can be imported, but isn't meant to be outside that module.
and removed
NotGoVuln
labels
Aug 11, 2022
This was referenced Apr 13, 2023
Closed
This was referenced Apr 10, 2024
Closed
Change https://go.dev/cl/592766 mentions this issue: |
This was referenced Jun 20, 2024
Closed
Change https://go.dev/cl/607215 mentions this issue: |
gopherbot
pushed a commit
that referenced
this issue
Aug 21, 2024
- data/reports/GO-2022-0231.yaml - data/reports/GO-2022-0249.yaml - data/reports/GO-2022-0250.yaml - data/reports/GO-2022-0260.yaml - data/reports/GO-2022-0261.yaml - data/reports/GO-2022-0270.yaml - data/reports/GO-2022-0278.yaml - data/reports/GO-2022-0281.yaml - data/reports/GO-2022-0291.yaml - data/reports/GO-2022-0295.yaml - data/reports/GO-2022-0298.yaml - data/reports/GO-2022-0302.yaml - data/reports/GO-2022-0303.yaml - data/reports/GO-2022-0304.yaml - data/reports/GO-2022-0305.yaml - data/reports/GO-2022-0306.yaml - data/reports/GO-2022-0307.yaml - data/reports/GO-2022-0308.yaml - data/reports/GO-2022-0309.yaml - data/reports/GO-2022-0310.yaml Updates #231 Updates #249 Updates #250 Updates #260 Updates #261 Updates #270 Updates #278 Updates #281 Updates #291 Updates #295 Updates #298 Updates #302 Updates #303 Updates #304 Updates #305 Updates #306 Updates #307 Updates #308 Updates #309 Updates #310 Change-Id: Idffc4951124598d58d8ebf3b1c44fc141f192639 Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/607215 Reviewed-by: Damien Neil <dneil@google.com> Auto-Submit: Tatiana Bradley <tatianabradley@google.com> Commit-Queue: Tatiana Bradley <tatianabradley@google.com> LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com>
This was referenced Sep 18, 2024
Closed
# for free
to join this conversation on GitHub.
Already have an account?
# to comment
Labels
cve-year-2022
excluded: EFFECTIVELY_PRIVATE
This vulnerability exists in a package can be imported, but isn't meant to be outside that module.
In CVE-2022-21646, the reference URL github.com/authzed/spicedb (and possibly others) refers to something in Go.
See doc/triage.md for instructions on how to triage this report.
The text was updated successfully, but these errors were encountered: