[Git][security-tracker-team/security-tracker][master] Add CVE-2024-24791/go

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Jul 4 08:25:11 BST 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
8c514e69 by Salvatore Bonaccorso at 2024-07-04T09:22:38+02:00
Add CVE-2024-24791/go

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -142,7 +142,16 @@ CVE-2024-2231 (The  allows any authenticated user to join a private group due to
 CVE-2024-2040 (The Himer WordPress theme before 2.1.1 does not have CSRF checks in so ...)
 	NOT-FOR-US: WordPress theme
 CVE-2024-24791 (The net/http HTTP/1.1 client mishandled the case where a server respon ...)
-	TODO: check
+	- golang-1.22 1.22.5-1
+	- golang-1.21 1.21.12-1
+	- golang-1.19 <removed>
+	[bookworm] - golang-1.19 <no-dsa> (Minor issue)
+	- golang-1.15 <removed>
+	[bullseye] - golang-1.15 <no-dsa> (Minor issue)
+	NOTE: https://github.com/golang/go/issues/67555
+	NOTE: https://github.com/golang/go/commit/32229514396234a25d910ab26a4e5194671a2c9f (go1.22.5)
+	NOTE: https://github.com/golang/go/commit/c9be6ae748b7679b644a38182d456cb5a6ac06ee (go1.21.12)
+	NOTE: https://groups.google.com/g/golang-dev/c/t0rK-qHBqzY/m/6MMoAZkMAgAJ
 CVE-2024-6452 (A vulnerability classified as critical was found in linlinjava litemal ...)
 	NOT-FOR-US: linlinjava litemall
 CVE-2024-6441 (A vulnerability was found in ORIPA up to 1.72. It has been declared as ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8c514e6946fe3714a3b2565ac132c3f2a4e7612d

-- 
This project does not include diff previews in email notifications.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8c514e6946fe3714a3b2565ac132c3f2a4e7612d
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240704/585bfc5b/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list