[Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2020-14039: Add golang-1.15 as well to source package listing

Wed Jul 15 19:47:10 BST 2020


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
34442043 by Salvatore Bonaccorso at 2020-07-15T20:45:37+02:00
CVE-2020-14039: Add golang-1.15 as well to source package listing

Leaving out the older ones as the issue is Windows specific anyway.

- - - - -
07f7a67d by Salvatore Bonaccorso at 2020-07-15T20:46:46+02:00
Add upstream issue reference for CVE-2020-14039

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -4262,8 +4262,10 @@ CVE-2020-14040 (The x/text package before 0.3.3 for Go has a vulnerability in en
 	NOTE: https://groups.google.com/forum/#!topic/golang-announce/bXVeAmGOqz0
 CVE-2020-14039
 	RESERVED
+	- golang-1.15 <not-affected> (Windows-specific)
 	- golang-1.14 <not-affected> (Windows-specific)
 	- golang-1.11 <not-affected> (Windows-specific)
+	NOTE: https://golang.org/issue/39360
 	NOTE: https://groups.google.com/g/golang-announce/c/XZNfaiwgt2w/m/E6gHDs32AQAJ
 CVE-2020-XXXX [Editor: Ensure latest comments can only be viewed from public posts]
 	- wordpress 5.4.2+dfsg1-1 (bug #962685)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/7c2528be5edeb12e74a0328127c7f3b7dd3a232f...07f7a67dd02cb4976eb2e4fd25220ac301154cbc

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/7c2528be5edeb12e74a0328127c7f3b7dd3a232f...07f7a67dd02cb4976eb2e4fd25220ac301154cbc
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200715/ac572452/attachment-0001.html>
