data/reports: update GO-2022-0869

Remove major version /v2 which is not affected. - data/reports/GO-2022-0869.yaml Updates #869 Fixes #3084 Change-Id: Ic36730580cffd3a6e4a615bef70341c676bb7b38 Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/607815 Auto-Submit: Tatiana Bradley <tatianabradley@google.com> Commit-Queue: Tatiana Bradley <tatianabradley@google.com> LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com> Reviewed-by: Ian Cottrell <iancottrell@google.com>
golang · Aug 22, 2024 · aa57681 · aa57681
1 parent 37e2de0
commit aa57681
Show file tree

Hide file tree

Showing 2 changed files with 5 additions and 22 deletions.
diff --git a/data/osv/GO-2022-0869.json b/data/osv/GO-2022-0869.json
@@ -7,8 +7,8 @@
     "CVE-2021-23347",
     "GHSA-qq5v-f4c3-395c"
   ],
-  "summary": "Possible XSS when using SSO with the CLI in github.com/argoproj/argo-cd/v2",
-  "details": "Possible XSS when using SSO with the CLI in github.com/argoproj/argo-cd/v2",
+  "summary": "Possible XSS when using SSO with the CLI in github.com/argoproj/argo-cd",
+  "details": "Possible XSS when using SSO with the CLI in github.com/argoproj/argo-cd",
   "affected": [
     {
       "package": {
@@ -35,23 +35,6 @@
         }
       ],
       "ecosystem_specific": {}
-    },
-    {
-      "package": {
-        "name": "github.com/argoproj/argo-cd/v2",
-        "ecosystem": "Go"
-      },
-      "ranges": [
-        {
-          "type": "SEMVER",
-          "events": [
-            {
-              "introduced": "0"
-            }
-          ]
-        }
-      ],
-      "ecosystem_specific": {}
     }
   ],
   "references": [

diff --git a/data/reports/GO-2022-0869.yaml b/data/reports/GO-2022-0869.yaml
@@ -6,9 +6,7 @@ modules:
         - introduced: 1.8.0
         - fixed: 1.8.6
       vulnerable_at: 1.8.5
-    - module: github.com/argoproj/argo-cd/v2
-      vulnerable_at: 2.12.1
-summary: Possible XSS when using SSO with the CLI in github.com/argoproj/argo-cd/v2
+summary: Possible XSS when using SSO with the CLI in github.com/argoproj/argo-cd
 cves:
     - CVE-2021-23347
 ghsas:
@@ -18,6 +16,8 @@ references:
     - advisory: https://nvd.nist.gov/vuln/detail/CVE-2021-23347
     - fix: https://github.com/argoproj/argo-cd/pull/5563
     - web: https://snyk.io/vuln/SNYK-GOLANG-GITHUBCOMARGOPROJARGOCDCMD-1078291
+notes:
+    - manually removed major version /v2
 source:
     id: GHSA-qq5v-f4c3-395c
     created: 2024-08-20T14:25:38.44588-04:00