data/reports: update GO-2023-2409

  - data/reports/GO-2023-2409.yaml

Updates #2409

Change-Id: I0066c6917e945645d3164787d29900e36659c25c
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/596176
LUCI-TryBot-Result: Go LUCI <[email protected]>
Reviewed-by: Tim King <[email protected]>

Author: tatianab

data/osv/GO-2023-2409.json

@@ -4,9 +4,11 @@
   "modified": "0001-01-01T00:00:00Z",
   "published": "0001-01-01T00:00:00Z",
   "aliases": [
-    "GHSA-mhpq-9638-x6pw"
+    "CVE-2023-50658",
+    "GHSA-mhpq-9638-x6pw",
+    "GHSA-6294-6rgp-fr7r"
   ],
-  "summary": "Denial of service when decrypting attack controlled input in github.com/dvsekhvalnov/jose2go",
+  "summary": "Denial of service when decrypting attacker controlled input in github.com/dvsekhvalnov/jose2go",
   "details": "An attacker controlled input of a PBES2 encrypted JWE blob can have a very large p2c value that, when decrypted, produces a denial-of-service.",
   "affected": [
     {

data/reports/GO-2023-2409.yaml

@@ -18,13 +18,16 @@ modules:
             - Encrypt
             - EncryptBytes
 summary: |-
-    Denial of service when decrypting attack controlled input in
+    Denial of service when decrypting attacker controlled input in
     github.com/dvsekhvalnov/jose2go
 description: |-
     An attacker controlled input of a PBES2 encrypted JWE blob can have a very large
     p2c value that, when decrypted, produces a denial-of-service.
+cves:
+    - CVE-2023-50658
 ghsas:
     - GHSA-mhpq-9638-x6pw
+    - GHSA-6294-6rgp-fr7r
 credits:
     - '@mschwager'
 references: