[Git][security-tracker-team/security-tracker][master] Add CVE-2021-29923/go

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sun Aug 8 19:57:36 BST 2021



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
59de86ac by Salvatore Bonaccorso at 2021-08-08T20:57:15+02:00
Add CVE-2021-29923/go

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -19778,7 +19778,15 @@ CVE-2021-29925
 CVE-2021-29924
 	RESERVED
 CVE-2021-29923 (Go before 1.17 does not properly consider extraneous zero characters a ...)
-	TODO: check
+	- golang-1.16 <unfixed>
+	- golang-1.15 <unfixed>
+	- golang-1.11 <removed>
+	- golang-1.8 <removed>
+	- golang-1.7 <removed>
+	NOTE: https://github.com/golang/go/issues/30999
+	NOTE: https://github.com/golang/go/issues/43389
+	NOTE: https://github.com/sickcodes/security/blob/master/advisories/SICK-2021-016.md
+	NOTE: https://go-review.googlesource.com/c/go/+/325829/
 CVE-2021-29922 (library/std/src/net/parser.rs in Rust before 1.53.0 does not properly  ...)
 	- rustc <unfixed>
 	[bullseye] - rustc <no-dsa> (Minor issue)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/59de86ac8cbdc03dacfa8450a29f73bec26a5426

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/59de86ac8cbdc03dacfa8450a29f73bec26a5426
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210808/40bd72b0/attachment.htm>


More information about the debian-security-tracker-commits mailing list