[Git][security-tracker-team/security-tracker][master] Track golang-github-tidwall-gjson fixes via experimental

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sun Mar 5 09:26:23 GMT 2023



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f9012022 by Salvatore Bonaccorso at 2023-03-05T10:25:50+01:00
Track golang-github-tidwall-gjson fixes via experimental

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -107618,6 +107618,7 @@ CVE-2021-42838 (Grand Vice info Co. webopac7 book search field parameter does no
 CVE-2021-42837 (An issue was discovered in Talend Data Catalog before 7.3-20210930. Af ...)
 	NOT-FOR-US: Talend Data Catalog
 CVE-2021-42836 (GJSON before 1.9.3 allows a ReDoS (regular expression denial of servic ...)
+	[experimental] - golang-github-tidwall-gjson 1.14.4-1
 	- golang-github-tidwall-gjson <unfixed> (bug #1000225)
 	[bullseye] - golang-github-tidwall-gjson <no-dsa> (Minor issue)
 	[buster] - golang-github-tidwall-gjson <postponed> (Limited support, minor issue, follow bullseye DSAs/point-releases)
@@ -110444,6 +110445,7 @@ CVE-2021-42250 (Improper output neutralization for Logs. A specific Apache Super
 CVE-2021-42249
 	RESERVED
 CVE-2021-42248 (GJSON <= 1.9.2 allows attackers to cause a redos via crafted JSON i ...)
+	[experimental] - golang-github-tidwall-gjson 1.14.4-1
 	- golang-github-tidwall-gjson <unfixed> (bug #1011616)
 	[bullseye] - golang-github-tidwall-gjson <no-dsa> (Minor issue)
 	[buster] - golang-github-tidwall-gjson <postponed> (Limited support, minor issue, follow bullseye DSAs/point-releases)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f9012022af19f6c7b7cced0b30f5e5f13d5b5222

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f9012022af19f6c7b7cced0b30f5e5f13d5b5222
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230305/0e2f0bca/attachment.htm>


More information about the debian-security-tracker-commits mailing list