Skip to content

Commit

Permalink
data/excluded: reclassify GO-2022-0368.yaml as dependent
Browse files Browse the repository at this point in the history 
GO-2022-0368 is dependent on GO-2020-0008. Remove the CVE, which actually
refers to the upstream vuln, and re-classify as DEPENDENT_VULNERABILITY.

Aliases: GHSA-gv9j-4w24-q7vx

Updates #368, #8

Change-Id: Ide59a0ef1c529d66fb5511cafeea9559b372ca07
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/451280
Run-TryBot: Tatiana Bradley <tatiana@golang.org>
Reviewed-by: Damien Neil <dneil@google.com>
TryBot-Result: Gopher Robot <gobot@golang.org>
Reviewed-by: Tatiana Bradley <tatiana@golang.org>
  • Loading branch information
@tatianab
tatianab authored and Tatiana Bradley committed Nov 18, 2022
1 parent d524846 commit cf2c79e
Showing 1 changed file with 2 additions and 4 deletions.
6 changes: 2 additions & 4 deletions data/excluded/GO-2022-0368.yaml
View file
Original file line number Diff line number Diff line change
@@ -1,7 +1,5 @@
excluded: EFFECTIVELY_PRIVATE
modules:
- module: github.com/coredns/coredns
cves:
- CVE-2019-19794
- module: github.com/coredns/coredns
ghsas:
- GHSA-gv9j-4w24-q7vx
- GHSA-gv9j-4w24-q7vx

0 comments on commit cf2c79e

Please sign in to comment.