Google Git
Sign in
go / vulndb / e34491744b7084da74169c9411a2db319f130152^! / .
commite34491744b7084da74169c9411a2db319f130152[log] [tgz]
authorNeal Patel <nealpatel@google.com>Thu Apr 03 15:06:34 2025 -0400
committerGopher Robot <gobot@golang.org>Tue Apr 08 14:04:08 2025 -0700
tree265d0ef6c4d4aea0852c289f8dd310b72a7a83ea
parent631d4890562cb465af94eedb3119e82685ea893c [diff]
data/reports: fix symbol misnomer in GO-2025-3553

  - data/reports/GO-2025-3553.yaml

Updates golang/vulndb#3553
Fixes golang/vulndb#3590

Change-Id: Id56eff50d331918001104cad128a9b9ab3faa61d
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/662735
Auto-Submit: Neal Patel <nealpatel@google.com>
Reviewed-by: Zvonimir Pavlinovic <zpavlinovic@google.com>
LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com>
Commit-Queue: Neal Patel <nealpatel@google.com>

diff --git a/data/osv/GO-2025-3553.json b/data/osv/GO-2025-3553.json
index 502b69e..cc14a7a 100644
--- a/data/osv/GO-2025-3553.json
+++ b/data/osv/GO-2025-3553.json

@@ -50,7 +50,7 @@
           {
             "path": "github.com/golang-jwt/jwt/v4",
             "symbols": [
-              "ParseUnverified"
+              "Parser.ParseUnverified"
             ]
           }
         ]
@@ -79,7 +79,7 @@
           {
             "path": "github.com/golang-jwt/jwt/v5",
             "symbols": [
-              "ParseUnverified"
+              "Parser.ParseUnverified"
             ]
           }
         ]

diff --git a/data/reports/GO-2025-3553.yaml b/data/reports/GO-2025-3553.yaml
index 45e4398..bc43f0c 100644
--- a/data/reports/GO-2025-3553.yaml
+++ b/data/reports/GO-2025-3553.yaml

@@ -9,7 +9,7 @@
       packages:
         - package: github.com/golang-jwt/jwt/v4
           symbols:
-            - ParseUnverified
+            - Parser.ParseUnverified
     - module: github.com/golang-jwt/jwt/v5
       versions:
         - introduced: 5.0.0-rc.1
@@ -18,7 +18,7 @@
       packages:
         - package: github.com/golang-jwt/jwt/v5
           symbols:
-            - ParseUnverified
+            - Parser.ParseUnverified
 summary: Excessive memory allocation during header parsing in github.com/golang-jwt/jwt
 cves:
     - CVE-2025-30204