Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
45e3e761 by Salvatore Bonaccorso at 2023-04-04T21:36:41+02:00
Add CVE-2023-24536/go
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -13854,8 +13854,17 @@ CVE-2023-24537 [go/parser: infinite loop in parsing]
NOTE: https://go.dev/issue/59180
NOTE:
https://github.com/golang/go/commit/e7c4b07ecf6b367f1afc9cc48cde963829dd0aab
(go1.20.3)
NOTE:
https://github.com/golang/go/commit/126a1d02da82f93ede7ce0bd8d3c51ef627f2104
(go1.19.8)
-CVE-2023-24536
+CVE-2023-24536 [net/http, net/textproto, mime/multipart: denial of service
from excessive resource consumption]
RESERVED
+ - golang-1.20 1.20.3-1
+ [experimental] - golang-1.19 1.19.8-1
+ - golang-1.19 <unfixed>
+ - golang-1.15 <removed>
+ - golang-1.11 <removed>
+ NOTE: https://groups.google.com/g/golang-announce/c/Xdv6JL9ENs8
+ NOTE: https://go.dev/issue/59153
+ NOTE:
https://github.com/golang/go/commit/bf8c7c575c8a552d9d79deb29e80854dc88528d0
(go1.20.3)
+ NOTE:
https://github.com/golang/go/commit/7917b5f31204528ea72e0629f0b7d52b35b27538
(go.1.19.8)
CVE-2023-24535
RESERVED
CVE-2023-24534 [net/http, net/textproto: denial of service from excessive
memory allocation]
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/45e3e761dfecbd35b4e538c6148a774318ff56d3
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/45e3e761dfecbd35b4e538c6148a774318ff56d3
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
