Google Git
Sign in
go / vulndb / c68acc56282cfaa857f8142bcedb59c3d57128f3
commitc68acc56282cfaa857f8142bcedb59c3d57128f3[log] [tgz]
authorJonathan Amsterdam <jba@google.com>Mon May 15 14:55:29 2023 -0400
committerJonathan Amsterdam <jba@google.com>Wed May 24 15:32:51 2023 +0000
tree299eb3ccc40581137435576992226bfc9c055209
parent37153dbef6b2ac5686aed16836aa43eac32dab84 [diff]
data/reports: add GO-2023-1765.yaml

Aliases: CVE-2023-1732, GHSA-2q89-485c-9j2x

There were two edits in the fix CL that are not reflected in the
report: the ones in packages kem/kyber/templates and
kem/sike/templates. These contain Go files with a "//+ build ignore"
tag. They are actually templates that are probably used
to generated the other .go files.

I tried to add a comment to that effect to the yaml file,
but vulnreport removed it.

Fixes golang/vulndb#1765

Change-Id: Ib48fae330230687178ea4b61e6202150e6f89d1b
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/494940
Run-TryBot: Jonathan Amsterdam <jba@google.com>
Reviewed-by: Tatiana Bradley <tatianabradley@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
2 files changed
tree: 299eb3ccc40581137435576992226bfc9c055209
  1. .github/
  2. cmd/
  3. data/
  4. deploy/
  5. devtools/
  6. doc/
  7. internal/
  8. terraform/
  9. webconfig/
  10. .gitignore
  11. all_test.go
  12. checks.bash
  13. CONTRIBUTING.md
  14. go.mod
  15. go.sum
  16. LICENSE
  17. PATENTS
  18. README.md
  19. tools_test.go
README.md

The Go Vulnerability Database

Go Reference

This repository contains the infrastructure and internal reports to create the Go Vulnerability Database.

Check out https://go.dev/security/vuln for more information about the Go vulnerability management system.

Reporting a vulnerability or feedback

Click here to report a public vulnerability in the Go ecosystem, or give feedback about the project.

Privacy Policy

The privacy policy for govulncheck can be found at https://vuln.go.dev/privacy.

License

Unless otherwise noted, the Go source files are distributed under the BSD-style license found in the LICENSE file.

Database entries are distributed under the terms of the CC-BY-4.0 license. See go.dev/security/vuln/database for information on how to access these entries.