[Git][security-tracker-team/security-tracker][master] Add two new issues for golang-golang-x-image

Sat, 30 May 2026 00:55:49 -0700 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
7c835322 by Salvatore Bonaccorso at 2026-05-30T09:52:34+02:00
Add two new issues for golang-golang-x-image

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -18,7 +18,9 @@ CVE-2026-47266 (Formie is a Craft CMS plugin for creating 
forms. Prior to 2.2.21
 CVE-2026-47123 (FreeScout is a free help desk and shared inbox built with 
PHP's Larave ...)
        NOT-FOR-US: FreeScout
 CVE-2026-46599 (The TIFF decoder does not place a limit on the size of 
PackBits-compre ...)
-       TODO: check
+       - golang-golang-x-image <unfixed>
+       NOTE: https://github.com/golang/go/issues/79577
+       NOTE: https://go-review.googlesource.com/c/image/+/759960
 CVE-2026-46527 (cpp-httplib is a C++11 single-file header-only cross platform 
HTTP/HTT ...)
        TODO: check
 CVE-2026-46385 (iskorotkov/avro is a fast Go Avro codec. Prior to 2.33.0, the 
Avro arr ...)
@@ -56,7 +58,9 @@ CVE-2026-44287 (FastGPT is an AI Agent building platform. 
Prior to 4.15.0-beta1,
 CVE-2026-44285 (FastGPT is an AI Agent building platform. Prior to 
4.15.0-beta1, a Ser ...)
        NOT-FOR-US: FastGPT
 CVE-2026-42500 (Decoding a paletted BMP file with an out-of-range palette 
index result ...)
-       TODO: check
+       - golang-golang-x-image <unfixed>
+       NOTE: https://github.com/golang/go/issues/79576
+       NOTE: https://go-review.googlesource.com/c/image/+/781500
 CVE-2026-34127 (A stored cross-site scripting (XSS) vulnerability has been 
identified  ...)
        NOT-FOR-US: TPLink
 CVE-2026-10110 (A vulnerability was detected in code-projects Student Details 
Manageme ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7c8353224a67ba7a2e0dbfd5bda5481809b3dfef

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7c8353224a67ba7a2e0dbfd5bda5481809b3dfef
You're receiving this email because of your account on salsa.debian.org. Manage 
all notifications: https://salsa.debian.org/-/profile/notifications | Help: 
https://salsa.debian.org/help



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to