Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
e93fac36 by Salvatore Bonaccorso at 2026-06-06T21:04:28+02:00
Update status for CVE-2026-39821/golang-golang-x-net
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -10935,10 +10935,11 @@ CVE-2026-39965 (TypeBot is a chatbot builder tool.
Versions 3.15.2 and prior con
CVE-2026-39964 (TypeBot is a chatbot builder tool. In versions prior to
3.16.0, the Ty ...)
NOT-FOR-US: TypeBot
CVE-2026-39821 (The ToASCII and ToUnicode functions incorrectly accept
Punycode-encode ...)
- - golang-golang-x-net <unfixed>
+ - golang-golang-x-net 1:0.55.0-1
[bullseye] - golang-golang-x-net <postponed> (Limited support, minor
issue)
NOTE: https://groups.google.com/g/golang-announce/c/iI-mYSI0lu8
NOTE: https://github.com/golang/go/issues/78760
+ NOTE:
https://github.com/golang/net/commit/8c4c965e028475082408749b50ed7a686df0d265
(v0.54.0)
CVE-2026-37470 (An issue in ClipBucket v5 v.5.5.2 allows an attacker to
execute arbitr ...)
NOT-FOR-US: ClipBucket
CVE-2026-36228 (Buffer Overflow vulnerability in Easy Chat Server 3.1 allows a
remote ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e93fac36a9b3e751ec6d74426a7250642b8b2529
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e93fac36a9b3e751ec6d74426a7250642b8b2529
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
