[Git][security-tracker-team/security-tracker][master] Add CVE-2025-47906/go
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Aug 7 18:27:10 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
2a5d4d41 by Salvatore Bonaccorso at 2025-08-07T19:26:43+02:00
Add CVE-2025-47906/go
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,13 @@
+CVE-2025-47906
+ - golang-1.24 <unfixed>
+ - golang-1.23 <unfixed>
+ - golang-1.19 <removed>
+ [bookworm] - golang-1.19 <no-dsa> (Minor issue)
+ - golang-1.15 <removed>
+ NOTE: https://groups.google.com/g/golang-announce/c/x5MKroML2yM/m/5_v-oMjUAgAJ
+ NOTE: https://github.com/golang/go/issues/74466
+ NOTE: https://github.com/golang/go/commit/0f5133b742bf61cda6c98b4cd1d313a330f13f32 (go1.24.6)
+ NOTE: https://github.com/golang/go/commit/8fa31a2d7d9e60c50a3a94080c097b6e65773f4b (go1.23.12)
CVE-2025-8086
REJECTED
CVE-2025-7770 (Tigo Energy's CCA device is vulnerable to insecure session ID generati ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2a5d4d41e0c9be5409fe0692be10978ff9b83c87
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2a5d4d41e0c9be5409fe0692be10978ff9b83c87
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250807/f8e0045a/attachment.htm>
More information about the debian-security-tracker-commits
mailing list