Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
8c514e69 by Salvatore Bonaccorso at 2024-07-04T09:22:38+02:00
Add CVE-2024-24791/go
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -142,7 +142,16 @@ CVE-2024-2231 (The allows any authenticated user to join
a private group due to
CVE-2024-2040 (The Himer WordPress theme before 2.1.1 does not have CSRF
checks in so ...)
NOT-FOR-US: WordPress theme
CVE-2024-24791 (The net/http HTTP/1.1 client mishandled the case where a
server respon ...)
- TODO: check
+ - golang-1.22 1.22.5-1
+ - golang-1.21 1.21.12-1
+ - golang-1.19 <removed>
+ [bookworm] - golang-1.19 <no-dsa> (Minor issue)
+ - golang-1.15 <removed>
+ [bullseye] - golang-1.15 <no-dsa> (Minor issue)
+ NOTE: https://github.com/golang/go/issues/67555
+ NOTE:
https://github.com/golang/go/commit/32229514396234a25d910ab26a4e5194671a2c9f
(go1.22.5)
+ NOTE:
https://github.com/golang/go/commit/c9be6ae748b7679b644a38182d456cb5a6ac06ee
(go1.21.12)
+ NOTE:
https://groups.google.com/g/golang-dev/c/t0rK-qHBqzY/m/6MMoAZkMAgAJ
CVE-2024-6452 (A vulnerability classified as critical was found in linlinjava
litemal ...)
NOT-FOR-US: linlinjava litemall
CVE-2024-6441 (A vulnerability was found in ORIPA up to 1.72. It has been
declared as ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8c514e6946fe3714a3b2565ac132c3f2a4e7612d
--
This project does not include diff previews in email notifications.
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8c514e6946fe3714a3b2565ac132c3f2a4e7612d
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
