[Git][security-tracker-team/security-tracker][master] Track fixed version for two golang-github-jackc-pgx issues fixed via unstable
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Apr 23 10:53:37 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
ac90ba95 by Salvatore Bonaccorso at 2025-04-23T11:52:58+02:00
Track fixed version for two golang-github-jackc-pgx issues fixed via unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -123700,7 +123700,7 @@ CVE-2024-27915 (Sulu is a PHP content management system. Starting in verson 2.2.
CVE-2024-27307 (JSONata is a JSON query and transformation language. Starting in versi ...)
NOT-FOR-US: jsonata-js
CVE-2024-27304 (pgx is a PostgreSQL driver and toolkit for Go. SQL injection can occur ...)
- - golang-github-jackc-pgx <unfixed> (bug #1065687)
+ - golang-github-jackc-pgx 4.18.1-2 (bug #1065687)
[bookworm] - golang-github-jackc-pgx <no-dsa> (Minor issue)
[bullseye] - golang-github-jackc-pgx <no-dsa> (Minor issue)
NOTE: https://github.com/jackc/pgx/security/advisories/GHSA-mrww-27vc-gghv
@@ -123712,7 +123712,7 @@ CVE-2024-27303 (electron-builder is a solution to package and build a ready for
CVE-2024-27302 (go-zero is a web and rpc framework. Go-zero allows user to specify a C ...)
NOT-FOR-US: go-zero
CVE-2024-27289 (pgx is a PostgreSQL driver and toolkit for Go. Prior to version 4.18.2 ...)
- - golang-github-jackc-pgx <unfixed> (bug #1065686)
+ - golang-github-jackc-pgx 4.18.1-2 (bug #1065686)
[bookworm] - golang-github-jackc-pgx <no-dsa> (Minor issue)
[bullseye] - golang-github-jackc-pgx <no-dsa> (Minor issue)
NOTE: https://github.com/jackc/pgx/security/advisories/GHSA-m7wr-2xf7-cm9p
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ac90ba95c9e97fe11804f8f980e3e26d3d2e4a71
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ac90ba95c9e97fe11804f8f980e3e26d3d2e4a71
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250423/488d953b/attachment.htm>
More information about the debian-security-tracker-commits
mailing list