[vulndb] data/reports: add GO-2025-4249

[Gopher Robot (Gerrit)]

Gopher Robot submitted the change with unreviewed changes

Unreviewed changes

4 is the latest approved patch-set.
The change was submitted with unreviewed changes in the following files:

```
The name of the file: data/cve/v5/GO-2025-4249.json
Insertions: 2, Deletions: 2.

@@ -9,11 +9,11 @@
       "providerMetadata": {
         "orgId": "1bb62c36-49e3-4200-9d77-64a1400537cc"
       },
-      "title": "Accidental untrusted code execution in github.com/golang/vscode-go",
+      "title": "Unexpected untrusted code execution in github.com/golang/vscode-go",
       "descriptions": [
         {
           "lang": "en",
-          "value": "To prevent accidental untrusted code execution, the Visual Studio Code Go extension is now disabled in Restricted Mode."
+          "value": "To prevent unexpected untrusted code execution, the Visual Studio Code Go extension is now disabled in Restricted Mode."
         }
       ],
       "affected": null,
```
```
The name of the file: data/osv/GO-2025-4249.json
Insertions: 2, Deletions: 2.

@@ -7,8 +7,8 @@
     "CVE-2025-68120",
     "CVE-2025-68120"
   ],
-  "summary": "Accidental untrusted code execution in github.com/golang/vscode-go",
-  "details": "To prevent accidental untrusted code execution, the Visual Studio Code Go extension is now disabled in Restricted Mode.",
+  "summary": "Unexpected untrusted code execution in github.com/golang/vscode-go",
+  "details": "To prevent unexpected untrusted code execution, the Visual Studio Code Go extension is now disabled in Restricted Mode.",
   "affected": [
     {
       "package": {
```
```
The name of the file: data/reports/GO-2025-4249.yaml
Insertions: 2, Deletions: 2.

@@ -4,9 +4,9 @@
       versions:
         - fixed: 0.52.1
       vulnerable_at: 0.52.0
-summary: Accidental untrusted code execution in github.com/golang/vscode-go
+summary: Unexpected untrusted code execution in github.com/golang/vscode-go
 description: |-
-    To prevent accidental untrusted code execution, the Visual Studio Code Go
+    To prevent unexpected untrusted code execution, the Visual Studio Code Go
     extension is now disabled in Restricted Mode.
 cves:
     - CVE-2025-68120
```

Change information

Commit message:

data/reports: add GO-2025-4249

  - data/reports/GO-2025-4249.yaml

Updates golang/vulndb#4249

Change-Id: Ib0258378c2300cf9adcea8e17a9989eed16ed8d2

Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/731200

Reviewed-by: Roland Shoemaker <rol...@golang.org>

Auto-Submit: Neal Patel <neal...@google.com>

LUCI-TryBot-Result: Go LUCI <golang...@luci-project-accounts.iam.gserviceaccount.com>

Files:

• A data/cve/v5/GO-2025-4249.json
• A data/osv/GO-2025-4249.json
• A data/reports/GO-2025-4249.yaml

Change size: M

Delta: 3 files changed, 126 insertions(+), 0 deletions(-)

Branch: refs/heads/master

Submit Requirements:

• Code-Review: +2 by Roland Shoemaker
• TryBots-Pass: LUCI-TryBot-Result+1 by Go LUCI

Open in Gerrit

Inspect html for hidden footers to help with email filtering. To unsubscribe visit settings.

Gerrit

Gerrit-MessageType: merged

Gerrit-Project: vulndb

Gerrit-Branch: master

Gerrit-Change-Id: Ib0258378c2300cf9adcea8e17a9989eed16ed8d2

Gerrit-Change-Number: 731200

Gerrit-PatchSet: 6

Gerrit-Owner: Neal Patel <neal...@google.com>

Gerrit-Reviewer: Go LUCI <golang...@luci-project-accounts.iam.gserviceaccount.com>

Gerrit-Reviewer: Gopher Robot <go...@golang.org>

Gerrit-Reviewer: Neal Patel <neal...@google.com>

Gerrit-Reviewer: Roland Shoemaker <rol...@golang.org>