data/reports: review GO-2022-0470

thatnealpatel · thatnealpatel · commit fe7963032b55 · 2025-06-11T10:45:53.000-07:00
- data/reports/GO-2022-0470.yaml Fixes #470 Change-Id: I60ce943312513afc407e7f44f40b6b5d03472028 Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/680956 Reviewed-by: Damien Neil <dneil@google.com> LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com>
diff --git a/data/osv/GO-2022-0470.json b/data/osv/GO-2022-0470.json
@@ -57,6 +57,9 @@
           "events": [
             {
               "introduced": "0"
+            },
+            {
+              "fixed": "2.5.0"
             }
           ]
         }
diff --git a/data/reports/GO-2022-0470.yaml b/data/reports/GO-2022-0470.yaml
@@ -17,7 +17,9 @@ modules:
             - ListFieldsHandler.ServeHTTP
             - SearchHandler.ServeHTTP
     - module: github.com/blevesearch/bleve/v2
-      vulnerable_at: 2.3.2
+      versions:
+        - fixed: 2.5.0
+      vulnerable_at: 2.4.4
       packages:
         - package: github.com/blevesearch/bleve/v2/http
           symbols:

Original file line number	Diff line number	Diff line change
`@@ -57,6 +57,9 @@`
`57`	`57`	`"events": [`
`58`	`58`	`{`
`59`	`59`	`"introduced": "0"`
	`60`	`+ },`
	`61`	`+ {`
	`62`	`+ "fixed": "2.5.0"`
`60`	`63`	`}`
`61`	`64`	`]`
`62`	`65`	`}`