data/reports: add GO-2023-1765.yaml

Aliases: CVE-2023-1732, GHSA-2q89-485c-9j2x

There were two edits in the fix CL that are not reflected in the
report: the ones in packages kem/kyber/templates and
kem/sike/templates. These contain Go files with a "//+ build ignore"
tag. They are actually templates that are probably used
to generated the other .go files.

I tried to add a comment to that effect to the yaml file,
but vulnreport removed it.

Fixes golang/vulndb#1765

Change-Id: Ib48fae330230687178ea4b61e6202150e6f89d1b
Run-TryBot: Jonathan Amsterdam <>
Reviewed-by: Tatiana Bradley <>
TryBot-Result: Gopher Robot <>
2 files changed
tree: 299eb3ccc40581137435576992226bfc9c055209
  1. .github/
  2. cmd/
  3. data/
  4. deploy/
  5. devtools/
  6. doc/
  7. internal/
  8. terraform/
  9. webconfig/
  10. .gitignore
  11. all_test.go
  12. checks.bash
  14. go.mod
  15. go.sum
  19. tools_test.go

The Go Vulnerability Database

Go Reference

This repository contains the infrastructure and internal reports to create the Go Vulnerability Database.

Check out for more information about the Go vulnerability management system.

Reporting a vulnerability or feedback

Click here to report a public vulnerability in the Go ecosystem, or give feedback about the project.

Privacy Policy

The privacy policy for govulncheck can be found at


Unless otherwise noted, the Go source files are distributed under the BSD-style license found in the LICENSE file.

Database entries are distributed under the terms of the CC-BY-4.0 license. See for information on how to access these entries.