Bug#1012763: golang-github-emicklei-go-restful: CVE-2022-1996

Moritz Mühlenhoff Thu, 16 Mar 2023 14:36:16 -0700

Am Mon, Jun 13, 2022 at 06:12:36PM +0200 schrieb Moritz Mühlenhoff:
> Source: golang-github-emicklei-go-restful
> X-Debbugs-CC: t...@security.debian.org
> Severity: important
> Tags: security
> 
> Hi,
> 
> The following vulnerability was published for 
> golang-github-emicklei-go-restful.
> 
> CVE-2022-1996[0]:
> | Authorization Bypass Through User-Controlled Key in GitHub repository
> | emicklei/go-restful prior to v3.8.0.
> 
> https://huntr.dev/bounties/be837427-415c-4d8c-808b-62ce20aa84f1/
> https://github.com/emicklei/go-restful/commit/fd3c327a379ce08c68ef18765bdc925f5d9bad10


Could we get that fixed for Bookworm?

Cheers,
        Moritz

Bug#1012763: golang-github-emicklei-go-restful: CVE-2022-1996

Reply via email to