Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
8c53394f by Salvatore Bonaccorso at 2026-02-09T05:37:08+01:00
Track fixed version for two golang-1.24 issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1072,7 +1072,7 @@ CVE-2025-62615 (AutoGPT is a platform that allows users
to create, deploy, and m
NOT-FOR-US: AutoGPT
CVE-2025-61732 (A discrepancy between how Go and C/C++ comments were parsed
allowed fo ...)
- golang-1.25 1.25.7-1
- - golang-1.24 <unfixed> (bug #1127436)
+ - golang-1.24 1.24.13-1 (bug #1127436)
- golang-1.19 <removed>
- golang-1.15 <removed>
[bullseye] - golang-1.15 <postponed> (Limited support, minor issue,
follow bookworm DSAs/point-releases)
@@ -8554,7 +8554,7 @@ CVE-2025-61730 (During the TLS 1.3 handshake if multiple
messages are sent in re
NOTE: Fixed by:
https://github.com/golang/go/commit/ad2cd043db66cd36e1f55359638729d2c8ff3d99
(go1.24.12)
CVE-2025-68119 (Downloading and building modules with malicious version
strings can ca ...)
- golang-1.25 1.25.6-1 (bug #1125916)
- - golang-1.24 <unfixed> (bug #1126770)
+ - golang-1.24 1.24.13-1 (bug #1126770)
- golang-1.19 <removed>
- golang-1.15 <removed>
[bullseye] - golang-1.15 <postponed> (Limited support, minor issue,
follow bookworm DSAs/point-releases)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8c53394f726adde25d31693524690cd91fd93eb9
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8c53394f726adde25d31693524690cd91fd93eb9
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
