Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
03bf49ec by Salvatore Bonaccorso at 2023-02-15T14:03:04+01:00
Track new golang issues CVE-2022-4172{2,3,4,5}
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -32948,13 +32948,33 @@ CVE-2022-41726
RESERVED
CVE-2022-41725
RESERVED
+ - golang-1.20 1.20.1-1
+ [experimental] - golang-1.19 1.19.6-1
+ - golang-1.19 <unfixed>
+ - golang-1.15 <removed>
+ - golang-1.11 <removed>
CVE-2022-41724
RESERVED
+ - golang-1.20 1.20.1-1
+ [experimental] - golang-1.19 1.19.6-1
+ - golang-1.19 <unfixed>
+ - golang-1.15 <removed>
+ - golang-1.11 <removed>
CVE-2022-41723 [http2/hpack: avoid quadratic complexity in hpack decoding]
RESERVED
+ - golang-1.20 1.20.1-1
+ [experimental] - golang-1.19 1.19.6-1
+ - golang-1.19 <unfixed>
+ - golang-1.15 <removed>
+ - golang-1.11 <removed>
- golang-golang-x-net 1:0.7.0+dfsg-1
CVE-2022-41722
RESERVED
+ - golang-1.20 1.20.1-1
+ [experimental] - golang-1.19 1.19.6-1
+ - golang-1.19 <unfixed>
+ - golang-1.15 <removed>
+ - golang-1.11 <removed>
CVE-2022-41721 (A request smuggling attack is possible when using
MaxBytesHandler. Whe ...)
- golang-golang-x-net 1:0.4.0+dfsg-1
[bullseye] - golang-golang-x-net <not-affected> (Vulnerable code not
present)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/03bf49ecf10bbab6cb8cf46aa1c0d91b024970e8
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/03bf49ecf10bbab6cb8cf46aa1c0d91b024970e8
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
