From f28a263c0b5f0567dba54fac69fca5b32990ae4a Mon Sep 17 00:00:00 2001
From: Ross Tannenbaum <rtannenb@redhat.com>
Date: Wed, 9 Aug 2023 11:16:05 -0700
Subject: [PATCH] CVE-2023-35390, CVE-2023-35391, CVE-2023-38178,
 CVE-2023-38180 (#33)

---
 cves/CVE-2023-35390.yaml | 11 +++++++++++
 cves/CVE-2023-35391.yaml | 11 +++++++++++
 cves/CVE-2023-38178.yaml |  7 +++++++
 cves/CVE-2023-38180.yaml | 11 +++++++++++
 4 files changed, 40 insertions(+)
 create mode 100644 cves/CVE-2023-35390.yaml
 create mode 100644 cves/CVE-2023-35391.yaml
 create mode 100644 cves/CVE-2023-38178.yaml
 create mode 100644 cves/CVE-2023-38180.yaml

diff --git a/cves/CVE-2023-35390.yaml b/cves/CVE-2023-35390.yaml
new file mode 100644
index 0000000..35c5a46
--- /dev/null
+++ b/cves/CVE-2023-35390.yaml
@@ -0,0 +1,11 @@
+affectedPackages:
+  - cpe23Uri: cpe:2.3:a:microsoft:microsoft.netcore.app:*:*:*:*:*:*:*:*
+    versionEndExcluding: 6.0.21
+    versionStartIncluding: 6.0.0
+    vulnerable: true
+  - cpe23Uri: cpe:2.3:a:microsoft:microsoft.netcore.app:*:*:*:*:*:*:*:*
+    versionEndExcluding: 7.0.10
+    versionStartIncluding: 7.0.0
+    vulnerable: true
+id: CVE-2023-35390
+link: https://github.com/dotnet/announcements/issues/266
diff --git a/cves/CVE-2023-35391.yaml b/cves/CVE-2023-35391.yaml
new file mode 100644
index 0000000..6286d22
--- /dev/null
+++ b/cves/CVE-2023-35391.yaml
@@ -0,0 +1,11 @@
+affectedPackages:
+  - cpe23Uri: cpe:2.3:a:microsoft:microsoft.netcore.app:*:*:*:*:*:*:*:*
+    versionEndExcluding: 6.0.21
+    versionStartIncluding: 6.0.0
+    vulnerable: true
+  - cpe23Uri: cpe:2.3:a:microsoft:microsoft.netcore.app:*:*:*:*:*:*:*:*
+    versionEndExcluding: 7.0.10
+    versionStartIncluding: 7.0.0
+    vulnerable: true
+id: CVE-2023-35391
+link: https://github.com/dotnet/announcements/issues/267
diff --git a/cves/CVE-2023-38178.yaml b/cves/CVE-2023-38178.yaml
new file mode 100644
index 0000000..c6f69e0
--- /dev/null
+++ b/cves/CVE-2023-38178.yaml
@@ -0,0 +1,7 @@
+affectedPackages:
+  - cpe23Uri: cpe:2.3:a:microsoft:microsoft.netcore.app:*:*:*:*:*:*:*:*
+    versionEndExcluding: 7.0.10
+    versionStartIncluding: 7.0.0
+    vulnerable: true
+id: CVE-2023-38178
+link: https://github.com/dotnet/announcements/issues/268
diff --git a/cves/CVE-2023-38180.yaml b/cves/CVE-2023-38180.yaml
new file mode 100644
index 0000000..8a3f45b
--- /dev/null
+++ b/cves/CVE-2023-38180.yaml
@@ -0,0 +1,11 @@
+affectedPackages:
+  - cpe23Uri: cpe:2.3:a:microsoft:microsoft.netcore.app:*:*:*:*:*:*:*:*
+    versionEndExcluding: 6.0.21
+    versionStartIncluding: 6.0.0
+    vulnerable: true
+  - cpe23Uri: cpe:2.3:a:microsoft:microsoft.netcore.app:*:*:*:*:*:*:*:*
+    versionEndExcluding: 7.0.10
+    versionStartIncluding: 7.0.0
+    vulnerable: true
+id: CVE-2023-38180
+link: https://github.com/dotnet/announcements/issues/269