data/reports: unexclude 15 reports (12)

  - data/reports/GO-2023-2340.yaml
  - data/reports/GO-2023-2341.yaml
  - data/reports/GO-2023-2344.yaml
  - data/reports/GO-2023-2351.yaml
  - data/reports/GO-2023-2355.yaml
  - data/reports/GO-2023-2376.yaml
  - data/reports/GO-2023-2377.yaml
  - data/reports/GO-2023-2378.yaml
  - data/reports/GO-2023-2381.yaml
  - data/reports/GO-2023-2388.yaml
  - data/reports/GO-2023-2397.yaml
  - data/reports/GO-2023-2398.yaml
  - data/reports/GO-2023-2414.yaml
  - data/reports/GO-2023-2422.yaml
  - data/reports/GO-2023-2426.yaml

Updates #2340
Updates #2341
Updates #2344
Updates #2351
Updates #2355
Updates #2376
Updates #2377
Updates #2378
Updates #2381
Updates #2388
Updates #2397
Updates #2398
Updates #2414
Updates #2422
Updates #2426

Change-Id: I279f769375f27873ced76b136c88665f610ac68c
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/606793
Auto-Submit: Tatiana Bradley <tatianabradley@google.com>
Commit-Queue: Tatiana Bradley <tatianabradley@google.com>
LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com>
Reviewed-by: Damien Neil <dneil@google.com>

data/osv/GO-2023-2340.json

@@ -0,0 +1,52 @@
+{
+  "schema_version": "1.3.1",
+  "id": "GO-2023-2340",
+  "modified": "0001-01-01T00:00:00Z",
+  "published": "0001-01-01T00:00:00Z",
+  "aliases": [
+    "CVE-2023-47630",
+    "GHSA-3hfq-cx9j-923w"
+  ],
+  "summary": "Attacker can cause Kyverno user to unintentionally consume insecure image in github.com/kyverno/kyverno",
+  "details": "Attacker can cause Kyverno user to unintentionally consume insecure image in github.com/kyverno/kyverno",
+  "affected": [
+    {
+      "package": {
+        "name": "github.com/kyverno/kyverno",
+        "ecosystem": "Go"
+      },
+      "ranges": [
+        {
+          "type": "SEMVER",
+          "events": [
+            {
+              "introduced": "0"
+            },
+            {
+              "fixed": "1.10.5"
+            }
+          ]
+        }
+      ],
+      "ecosystem_specific": {}
+    }
+  ],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://github.com/kyverno/kyverno/security/advisories/GHSA-3hfq-cx9j-923w"
+    },
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-47630"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/kyverno/kyverno/releases/tag/v1.11.0"
+    }
+  ],
+  "database_specific": {
+    "url": "https://pkg.go.dev/vuln/GO-2023-2340",
+    "review_status": "UNREVIEWED"
+  }
+}

data/osv/GO-2023-2341.json

@@ -0,0 +1,110 @@
+{
+  "schema_version": "1.3.1",
+  "id": "GO-2023-2341",
+  "modified": "0001-01-01T00:00:00Z",
+  "published": "0001-01-01T00:00:00Z",
+  "aliases": [
+    "CVE-2023-5528",
+    "GHSA-hq6q-c2x6-hmch"
+  ],
+  "summary": "Kubernetes Improper Input Validation vulnerability in k8s.io/kubernetes",
+  "details": "Kubernetes Improper Input Validation vulnerability in k8s.io/kubernetes",
+  "affected": [
+    {
+      "package": {
+        "name": "k8s.io/kubernetes",
+        "ecosystem": "Go"
+      },
+      "ranges": [
+        {
+          "type": "SEMVER",
+          "events": [
+            {
+              "introduced": "0"
+            },
+            {
+              "fixed": "1.25.16"
+            },
+            {
+              "introduced": "1.26.0"
+            },
+            {
+              "fixed": "1.26.11"
+            },
+            {
+              "introduced": "1.27.0"
+            },
+            {
+              "fixed": "1.27.8"
+            },
+            {
+              "introduced": "1.28.0"
+            },
+            {
+              "fixed": "1.28.4"
+            }
+          ]
+        }
+      ],
+      "ecosystem_specific": {}
+    }
+  ],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://github.com/advisories/GHSA-hq6q-c2x6-hmch"
+    },
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-5528"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/kubernetes/kubernetes/issues/121879"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/kubernetes/kubernetes/pull/121881"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/kubernetes/kubernetes/pull/121882"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/kubernetes/kubernetes/pull/121883"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/kubernetes/kubernetes/pull/121884"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/kubernetes/kubernetes/pull/121885"
+    },
+    {
+      "type": "WEB",
+      "url": "https://groups.google.com/g/kubernetes-security-announce/c/SL_d4NR8pzA"
+    },
+    {
+      "type": "WEB",
+      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3JH444PWZBINXLLFV7XLIJIZJHSK6UEZ"
+    },
+    {
+      "type": "WEB",
+      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4XZIX727JIKF5RQW7RVVBLWXBCDIBJA7"
+    },
+    {
+      "type": "WEB",
+      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7MPGMITSZXUCAVO7Q75675SOLXC2XXU4"
+    },
+    {
+      "type": "WEB",
+      "url": "https://security.netapp.com/advisory/ntap-20240119-0009"
+    }
+  ],
+  "database_specific": {
+    "url": "https://pkg.go.dev/vuln/GO-2023-2341",
+    "review_status": "UNREVIEWED"
+  }
+}

data/osv/GO-2023-2344.json

@@ -0,0 +1,81 @@
+{
+  "schema_version": "1.3.1",
+  "id": "GO-2023-2344",
+  "modified": "0001-01-01T00:00:00Z",
+  "published": "0001-01-01T00:00:00Z",
+  "aliases": [
+    "CVE-2023-2980",
+    "GHSA-j327-c69h-4gh8"
+  ],
+  "summary": "Abstrium Pydio Cells Resource Injection vulnerability in github.com/pydio/cells",
+  "details": "Abstrium Pydio Cells Resource Injection vulnerability in github.com/pydio/cells",
+  "affected": [
+    {
+      "package": {
+        "name": "github.com/pydio/cells",
+        "ecosystem": "Go"
+      },
+      "ranges": [
+        {
+          "type": "SEMVER",
+          "events": [
+            {
+              "introduced": "0"
+            }
+          ]
+        }
+      ],
+      "ecosystem_specific": {}
+    },
+    {
+      "package": {
+        "name": "github.com/pydio/cells/v4",
+        "ecosystem": "Go"
+      },
+      "ranges": [
+        {
+          "type": "SEMVER",
+          "events": [
+            {
+              "introduced": "0"
+            },
+            {
+              "fixed": "4.2.1"
+            }
+          ]
+        }
+      ],
+      "ecosystem_specific": {}
+    }
+  ],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://github.com/advisories/GHSA-j327-c69h-4gh8"
+    },
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-2980"
+    },
+    {
+      "type": "WEB",
+      "url": "https://popalltheshells.medium.com/multiple-cves-affecting-pydio-cells-4-2-0-321e7e4712be"
+    },
+    {
+      "type": "WEB",
+      "url": "https://pydio.com/en/community/releases/pydio-cells/pydio-cells-enterprise-421"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?ctiid.230212"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vuldb.com/?id.230212"
+    }
+  ],
+  "database_specific": {
+    "url": "https://pkg.go.dev/vuln/GO-2023-2344",
+    "review_status": "UNREVIEWED"
+  }
+}