[Git][security-tracker-team/security-tracker][master] Track new golang issues CVE-2022-4172{2,3,4,5}
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Feb 15 13:03:45 GMT 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
03bf49ec by Salvatore Bonaccorso at 2023-02-15T14:03:04+01:00
Track new golang issues CVE-2022-4172{2,3,4,5}
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -32948,13 +32948,33 @@ CVE-2022-41726
RESERVED
CVE-2022-41725
RESERVED
+ - golang-1.20 1.20.1-1
+ [experimental] - golang-1.19 1.19.6-1
+ - golang-1.19 <unfixed>
+ - golang-1.15 <removed>
+ - golang-1.11 <removed>
CVE-2022-41724
RESERVED
+ - golang-1.20 1.20.1-1
+ [experimental] - golang-1.19 1.19.6-1
+ - golang-1.19 <unfixed>
+ - golang-1.15 <removed>
+ - golang-1.11 <removed>
CVE-2022-41723 [http2/hpack: avoid quadratic complexity in hpack decoding]
RESERVED
+ - golang-1.20 1.20.1-1
+ [experimental] - golang-1.19 1.19.6-1
+ - golang-1.19 <unfixed>
+ - golang-1.15 <removed>
+ - golang-1.11 <removed>
- golang-golang-x-net 1:0.7.0+dfsg-1
CVE-2022-41722
RESERVED
+ - golang-1.20 1.20.1-1
+ [experimental] - golang-1.19 1.19.6-1
+ - golang-1.19 <unfixed>
+ - golang-1.15 <removed>
+ - golang-1.11 <removed>
CVE-2022-41721 (A request smuggling attack is possible when using MaxBytesHandler. Whe ...)
- golang-golang-x-net 1:0.4.0+dfsg-1
[bullseye] - golang-golang-x-net <not-affected> (Vulnerable code not present)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/03bf49ecf10bbab6cb8cf46aa1c0d91b024970e8
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/03bf49ecf10bbab6cb8cf46aa1c0d91b024970e8
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230215/05d17b0f/attachment.htm>
More information about the debian-security-tracker-commits
mailing list