Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
d49a3b98 by Salvatore Bonaccorso at 2021-11-07T21:00:27+01:00
Update information on CVE-2021-4177{1,2}/go
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -5974,13 +5974,25 @@ CVE-2021-41772
- golang-1.17 1.17.3-1
- golang-1.16 <unfixed>
- golang-1.15 <unfixed>
+ - golang-1.11 <removed>
+ - golang-1.8 <removed>
+ - golang-1.7 <removed>
NOTE: https://github.com/golang/go/issues/48085
+ NOTE: https://groups.google.com/g/golang-announce/c/0fM21h43arc
+ NOTE:
https://github.com/golang/go/commit/b212ba68296b503b395e7d1838ca72a19030a6bf
(go1.17.3)
+ NOTE:
https://github.com/golang/go/commit/88407a8dd98411f1730907dc8a69b99488af0052
(go1.16.10)
CVE-2021-41771
RESERVED
- golang-1.17 1.17.3-1
- golang-1.16 <unfixed>
- golang-1.15 <unfixed>
+ - golang-1.11 <removed>
+ - golang-1.8 <removed>
+ - golang-1.7 <removed>
NOTE: https://github.com/golang/go/issues/48990
+ NOTE: https://groups.google.com/g/golang-announce/c/0fM21h43arc
+ NOTE:
https://github.com/golang/go/commit/4a842985bf3f71d93a2b1340d9d6685bebc12b6b
(go1.17.3)
+ NOTE:
https://github.com/golang/go/commit/d19c5bdb24e093a2d5097b7623284eb02726cede
(go1.16.10)
CVE-2021-41770 (Ping Identity PingFederate before 10.3.1 mishandles
pre-parsing valida ...)
NOT-FOR-US: Ping Identity PingFederate
CVE-2021-3838
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d49a3b981d9b150ce05d2cdd25a7232d35183df9
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d49a3b981d9b150ce05d2cdd25a7232d35183df9
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
