x/vulndb: delete GO-2021-0140, which is a duplicate of GO-2021-0223
For golang/vulndb#140
For golang/vulndb#223
Change-Id: I20f8c547b5c9d53d1776bb499623469fad0a6318
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/421416
Reviewed-by: Julie Qiu <julieqiu@google.com>
Reviewed-by: Tatiana Bradley <tatiana@golang.org>
diff --git a/reports/GO-2021-0140.yaml b/reports/GO-2021-0140.yaml
deleted file mode 100644
index 1e6de73..0000000
--- a/reports/GO-2021-0140.yaml
+++ /dev/null
@@ -1,24 +0,0 @@
-packages:
- - module: std
- package: crypto/x509
- symbols:
- - Certificate.Verify
- versions:
- - fixed: 1.13.13
- - introduced: 1.14.0
- fixed: 1.14.5
-description: |
- X509 Certificate verification does not validate KeyUsages EKU
- requirements on Windows if VerifyOptions.Roots is nil.
-published: 2022-01-04T18:11:08Z
-cves:
- - CVE-2020-14039
-credit: Niall Newman
-os:
- - windows
-links:
- pr: https://go.dev/cl/242597
- commit: https://go.googlesource.com/go/+/82175e699a2e2cd83d3aa34949e9b922d66d52f5
- context:
- - https://go.dev/issue/39360
- - https://groups.google.com/g/golang-announce/c/XZNfaiwgt2w