Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
8be8be17 by Moritz Muehlenhoff at 2022-09-15T21:01:41+02:00
fix up two golang entries
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -26609,7 +26609,8 @@ CVE-2022-30630 (Uncontrolled recursion in Glob in io/fs
before Go 1.17.12 and Go
- golang-1.19 1.19~rc2-1
- golang-1.18 1.18.4-1
- golang-1.17 1.17.13-1
- - golang-1.15 <removed>
+ - golang-1.15 <not-affected> (Introduced in 1.16)
+ - golang-1.11 <not-affected> (Introduced in 1.16)
NOTE: https://go.dev/issue/53415
NOTE:
https://github.com/golang/go/commit/fa2d41d0ca736f3ad6b200b2a4e134364e9acc59
(go1.19rc2)
NOTE:
https://github.com/golang/go/commit/315e80d293b684ac2902819e58f618f1b5a14d49
(go1.18.4)
@@ -26666,8 +26667,7 @@ CVE-2022-1705 (Acceptance of some invalid
Transfer-Encoding headers in the HTTP/
- golang-1.18 1.18.4-1
- golang-1.17 1.17.13-1
- golang-1.15 <removed>
- - golang-1.11 <not-affected>
- [buster] - golang-1.11 <no-dsa> (Limited support)
+ - golang-1.11 <not-affected> (Introduced in 1.15)
NOTE: https://go.dev/issue/53188
NOTE:
https://github.com/golang/go/commit/e5017a93fcde94f09836200bca55324af037ee5f
(go1.19rc1)
NOTE:
https://github.com/golang/go/commit/222ee24a0046ae61679f4d97967e3b4058a3b90e
(go1.18.4)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8be8be17db531b7be794037cf1d74f2aa77cc947
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8be8be17db531b7be794037cf1d74f2aa77cc947
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
