data/reports: add vulnerable_at to GO-2021-0072.yaml
Aliases: CVE-2017-11468
Updates golang/vulndb#72
Change-Id: Ic6af2139bad830d6c359aa5125418b4bffff6009
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/462618
Run-TryBot: Tatiana Bradley <tatiana@golang.org>
TryBot-Result: Gopher Robot <gobot@golang.org>
Reviewed-by: Tatiana Bradley <tatiana@golang.org>
Reviewed-by: Damien Neil <dneil@google.com>
Auto-Submit: Tatiana Bradley <tatiana@golang.org>
diff --git a/data/osv/GO-2021-0072.json b/data/osv/GO-2021-0072.json
index 097924a..22c0afa 100644
--- a/data/osv/GO-2021-0072.json
+++ b/data/osv/GO-2021-0072.json
@@ -47,7 +47,6 @@
"Walk",
"blobStore.Enumerate",
"blobStore.Get",
- "blobStore.Get",
"linkedBlobStore.Enumerate",
"linkedBlobStore.Get",
"manifestStore.Enumerate",
diff --git a/data/reports/GO-2021-0072.yaml b/data/reports/GO-2021-0072.yaml
index 01ce67b..1f23edd 100644
--- a/data/reports/GO-2021-0072.yaml
+++ b/data/reports/GO-2021-0072.yaml
@@ -2,6 +2,7 @@
- module: github.com/docker/distribution
versions:
- fixed: 2.7.0-rc.0+incompatible
+ vulnerable_at: 2.6.2+incompatible
packages:
- package: github.com/docker/distribution/registry/handlers
symbols:
@@ -18,7 +19,6 @@
- PurgeUploads
- Walk
- blobStore.Enumerate
- - blobStore.Get
- linkedBlobStore.Enumerate
- linkedBlobStore.Get
- manifestStore.Enumerate