[Git][security-tracker-team/security-tracker][master] mark some CVEs of golang-1.15 as no-dsa

Thorsten Alteholz (@alteholz) alteholz at debian.org
Wed Sep 11 23:42:12 BST 2024



Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2de8b5d8 by Thorsten Alteholz at 2024-09-12T00:41:12+02:00
mark some CVEs of golang-1.15 as no-dsa

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1159,6 +1159,7 @@ CVE-2024-34158 (Calling Parse on a "// +build" build tag line with deeply nested
 	- golang-1.19 <removed>
 	[bookworm] - golang-1.19 <no-dsa> (Minor issue)
 	- golang-1.15 <removed>
+	[bullseye] - golang-1.15 <no-dsa> (Minor issue)
 	NOTE: https://groups.google.com/g/golang-announce/c/K-cEzDeCtpc
 	NOTE: https://go.dev/issue/69141
 	NOTE: https://github.com/golang/go/commit/032ac075c20c01c6c35a672d1542d3e98eab84ea (go1.23.1)
@@ -1170,6 +1171,7 @@ CVE-2024-34156 (Calling Decoder.Decode on a message which contains deeply nested
 	- golang-1.19 <removed>
 	[bookworm] - golang-1.19 <no-dsa> (Minor issue)
 	- golang-1.15 <removed>
+	[bullseye] - golang-1.15 <no-dsa> (Minor issue)
 	NOTE: https://groups.google.com/g/golang-announce/c/K-cEzDeCtpc
 	NOTE: https://go.dev/issue/69139
 	NOTE: https://github.com/golang/go/commit/fa8ff1a46deb6c816304441ec6740ec112e19012 (go1.23.1)
@@ -1181,6 +1183,7 @@ CVE-2024-34155 (Calling any of the Parse functions on Go source code which conta
 	- golang-1.19 <removed>
 	[bookworm] - golang-1.19 <no-dsa> (Minor issue)
 	- golang-1.15 <removed>
+	[bullseye] - golang-1.15 <no-dsa> (Minor issue)
 	NOTE: https://groups.google.com/g/golang-announce/c/K-cEzDeCtpc
 	NOTE: https://go.dev/issue/69138
 	NOTE: https://github.com/golang/go/commit/53487e5477151ed75da50e50a0ba8f1ca64c00a3 (go1.23.1)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2de8b5d8ba8703ca94881cbb6bf6e531a3ddfe38

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2de8b5d8ba8703ca94881cbb6bf6e531a3ddfe38
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240911/2dcbfd83/attachment.htm>


More information about the debian-security-tracker-commits mailing list