[vulndb] data/reports: fix 2 reports which contains inaccurate information
3 views
Skip to first unread message
Nicholas Husin (Gerrit)
Dec 15, 2025, 4:42:54 PM (22 hours ago) Dec 15
to Markus Kusano, Neal Patel, goph...@pubsubhelper.golang.org, golang-co...@googlegroups.com
Attention needed from Markus Kusano and Neal Patel
Nicholas Husin has uploaded the change for review![]( "Open in Gerrit")
Nicholas Husin would like Markus Kusano and Neal Patel to review this change.
Commit message
data/reports: fix 2 reports which contains inaccurate information
Fixes golang/vulndb#3980
Fixes golang/vulndb#4165
Change-Id: I5a6fd036d6cf9a357b06885341b8722ff3112973
Change diff
diff --git a/data/cve/v5/GO-2025-4116.json b/data/cve/v5/GO-2025-4116.json
index a377eab..2ccd2c2 100644
--- a/data/cve/v5/GO-2025-4116.json
+++ b/data/cve/v5/GO-2025-4116.json
@@ -71,7 +71,7 @@
"url": "https://go.dev/issue/75178"
},
{
- "url": "https://github.com/advisories/GHSA-hcg3-q754-cr77"
+ "url": "https://github.com/advisories/GHSA-56w8-48fp-6mgv"
},
{
"url": "https://pkg.go.dev/vuln/GO-2025-4116"
diff --git a/data/osv/GO-2024-3036.json b/data/osv/GO-2024-3036.json
index 683bbc7..1ae5fce 100644
--- a/data/osv/GO-2024-3036.json
+++ b/data/osv/GO-2024-3036.json
@@ -12,7 +12,7 @@
"affected": [
{
"package": {
- "name": "github.com/cortexproject/cortex",
+ "name": "github.com/cortexlabs/cortex",
"ecosystem": "Go"
},
"ranges": [
diff --git a/data/osv/GO-2025-4116.json b/data/osv/GO-2025-4116.json
index f12fb13..13d2db0 100644
--- a/data/osv/GO-2025-4116.json
+++ b/data/osv/GO-2025-4116.json
@@ -55,7 +55,7 @@
},
{
"type": "WEB",
- "url": "https://github.com/advisories/GHSA-hcg3-q754-cr77"
+ "url": "https://github.com/advisories/GHSA-56w8-48fp-6mgv"
}
],
"credits": [
diff --git a/data/reports/GO-2024-3036.yaml b/data/reports/GO-2024-3036.yaml
index 32e4ffc..68b1197 100644
--- a/data/reports/GO-2024-3036.yaml
+++ b/data/reports/GO-2024-3036.yaml
@@ -1,6 +1,6 @@
id: GO-2024-3036
modules:
- - module: github.com/cortexproject/cortex
+ - module: github.com/cortexlabs/cortex
unsupported_versions:
- last_affected: 0.42.1
vulnerable_at: 1.17.1
diff --git a/data/reports/GO-2025-4116.yaml b/data/reports/GO-2025-4116.yaml
index 1b2e5d8..bc8efec 100644
--- a/data/reports/GO-2025-4116.yaml
+++ b/data/reports/GO-2025-4116.yaml
@@ -24,7 +24,7 @@
references:
- fix: https://go.dev/cl/700295
- report: https://go.dev/issue/75178
- - web: https://github.com/advisories/GHSA-hcg3-q754-cr77
+ - web: https://github.com/advisories/GHSA-56w8-48fp-6mgv
cve_metadata:
id: CVE-2025-47913
cwe: 'CWE-703: Improper Handling of Exceptional Conditions'
Change information
Files:
- M data/cve/v5/GO-2025-4116.json
- M data/osv/GO-2024-3036.json
- M data/osv/GO-2025-4116.json
- M data/reports/GO-2024-3036.yaml
- M data/reports/GO-2025-4116.yaml
Change size: S
Delta: 5 files changed, 5 insertions(+), 5 deletions(-)
Related details
Attention is currently required from:
- Markus Kusano
- Neal Patel
Submit Requirements:
Code-Review
LUCI-Pass
No-Unresolved-Comments
Review-Enforcement
TryBots-Pass
| Inspect html for hidden footers to help with email filtering. To unsubscribe visit settings. |
Nicholas Husin (Gerrit)
Dec 15, 2025, 4:43:36 PM (22 hours ago) Dec 15
to goph...@pubsubhelper.golang.org, golang-co...@googlegroups.com
Attention needed from Markus Kusano and Neal Patel
Nicholas Husin uploaded new patchset![]( "Open in Gerrit")
Nicholas Husin uploaded patch set #2 to this change.
Related details
Attention is currently required from:
- Markus Kusano
- Neal Patel
Submit Requirements:
Code-Review
LUCI-Pass
No-Unresolved-Comments
Review-Enforcement
TryBots-Pass
| Inspect html for hidden footers to help with email filtering. To unsubscribe visit settings. |
Markus Kusano (Gerrit)
10:27 AM (4 hours ago) 10:27 AM
to Nicholas Husin, goph...@pubsubhelper.golang.org, Go LUCI, Neal Patel, golang-co...@googlegroups.com
Attention needed from Neal Patel and Nicholas Husin
Markus Kusano voted Code-Review+2![]( "Open in Gerrit")
Attention is currently required from:
- Neal Patel
- Nicholas Husin
Submit Requirements:
Code-Review
No-Unresolved-Comments
Review-Enforcement
TryBots-Pass
| Inspect html for hidden footers to help with email filtering. To unsubscribe visit settings. |
Neal Patel (Gerrit)
11:13 AM (3 hours ago) 11:13 AM
to Nicholas Husin, goph...@pubsubhelper.golang.org, Markus Kusano, Go LUCI, golang-co...@googlegroups.com
Attention needed from Nicholas Husin
Neal Patel voted Code-Review+2![]( "Open in Gerrit")
| Code-Review | +2 |
Related details
Attention is currently required from:
- Nicholas Husin
Submit Requirements:
Code-Review
No-Unresolved-Comments
Review-Enforcement
TryBots-Pass
| Inspect html for hidden footers to help with email filtering. To unsubscribe visit settings. |
Nicholas Husin (Gerrit)
11:23 AM (3 hours ago) 11:23 AM
to goph...@pubsubhelper.golang.org, golang-...@googlegroups.com, Neal Patel, Markus Kusano, Go LUCI, golang-co...@googlegroups.com
Nicholas Husin submitted the change![]( "Open in Gerrit")
Change information
Commit message:
data/reports: fix 2 reports containing inaccurate information
Fixes golang/vulndb#3980
Fixes golang/vulndb#4165
Change-Id: I5a6fd036d6cf9a357b06885341b8722ff3112973
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/730261
LUCI-TryBot-Result: Go LUCI <golang...@luci-project-accounts.iam.gserviceaccount.com>
Reviewed-by: Neal Patel <neal...@google.com>
Reviewed-by: Markus Kusano <kus...@google.com>
Files:
- M data/cve/v5/GO-2025-4116.json
- M data/osv/GO-2024-3036.json
- M data/osv/GO-2025-4116.json
- M data/reports/GO-2024-3036.yaml
- M data/reports/GO-2025-4116.yaml
Change size: S
Delta: 5 files changed, 5 insertions(+), 5 deletions(-)
Branch: refs/heads/master
Submit Requirements:
Code-Review: +2 by Neal Patel, +2 by Markus Kusano
TryBots-Pass: LUCI-TryBot-Result+1 by Go LUCI
| Inspect html for hidden footers to help with email filtering. To unsubscribe visit settings. |
Reply all
Reply to author
Forward
0 new messages