[Git][security-tracker-team/security-tracker][master] 2 commits: Add CVE-2019-9741/golang*

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
576bfbaf by Salvatore Bonaccorso at 2019-03-15T07:08:29Z
Add CVE-2019-9741/golang*

- - - - -
c0b7bb54 by Salvatore Bonaccorso at 2019-03-15T07:08:49Z
Merge remote-tracking branch 'origin/master'

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -181,7 +181,14 @@ CVE-2019-9743
 CVE-2019-9742 (gdwfpcd.sys in G Data Total Security before 2019-02-22 allows an ...)
 	NOT-FOR-US: G Data Total Security
 CVE-2019-9741 (An issue was discovered in net/http in Go 1.11.5. CRLF injection is ...)
-	TODO: check
+	- golang-1.12 1.12-1
+	- golang-1.11 <unfixed>
+	- golang-1.8 <removed>
+	- golang-1.7 <removed>
+	- golang <removed>
+	NOTE: https://github.com/golang/go/issues/30794
+	NOTE: https://github.com/golang/go/commit/829c5df58694b3345cb5ea41206783c8ccf5c3ca#diff-b97af51863ce82bf2a13003b52034aa9
+	NOTE: https://github.com/golang/go/commit/f1d662f34788f4a5f087581d0951cdf4e0f6e708#diff-b97af51863ce82bf2a13003b52034aa9
 CVE-2019-9740 (An issue was discovered in urllib2 in Python 2.x through 2.7.16 and ...)
 	- python3.7 <unfixed>
 	- python3.6 <unfixed>



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/ed21bb0c20a2272745fb959f4c1da58a44ce32e7...c0b7bb548198e2d93887737f31d3a66bb80f7105

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/ed21bb0c20a2272745fb959f4c1da58a44ce32e7...c0b7bb548198e2d93887737f31d3a66bb80f7105
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190315/5a9fc14d/attachment-0001.html>