[Git][security-tracker-team/security-tracker][master] Add Debian bug references for golang issues
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Dec 3 16:37:44 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
5270954c by Salvatore Bonaccorso at 2025-12-03T17:36:58+01:00
Add Debian bug references for golang issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -105,8 +105,8 @@ CVE-2025-64070 (Sourcecodester Student Grades Management System v1.0 is vulnerab
CVE-2025-63872 (DeepSeek V3.2 has a Cross Site Scripting (XSS) vulnerability, which al ...)
NOT-FOR-US: DeepSeek
CVE-2025-61727 [crypto/x509: excluded subdomain constraint doesn't preclude wildcard SAN]
- - golang-1.25 <unfixed>
- - golang-1.24 <unfixed>
+ - golang-1.25 <unfixed> (bug #1121847)
+ - golang-1.24 <unfixed> (bug #1121848)
- golang-1.19 <removed>
- golang-1.15 <removed>
NOTE: https://groups.google.com/g/golang-announce/c/8FJoBkPddm4
@@ -114,8 +114,8 @@ CVE-2025-61727 [crypto/x509: excluded subdomain constraint doesn't preclude wild
NOTE: Fixed by: https://github.com/golang/go/commit/287017acebd27203aa3218abbd11ed65c2280cf8 (go1.25.5)
NOTE: Fixed by: https://github.com/golang/go/commit/04db77a423cac75bb82cc9a6859991ae9c016344 (go1.24.11)
CVE-2025-61729 (Within HostnameError.Error(), when constructing an error string, there ...)
- - golang-1.25 <unfixed>
- - golang-1.24 <unfixed>
+ - golang-1.25 <unfixed> (bug #1121847)
+ - golang-1.24 <unfixed> (bug #1121848)
- golang-1.19 <removed>
- golang-1.15 <removed>
NOTE: https://groups.google.com/g/golang-announce/c/8FJoBkPddm4
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5270954cdd2c8a5a31babaffc3daaac11aa85afb
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5270954cdd2c8a5a31babaffc3daaac11aa85afb
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251203/4edeae06/attachment.htm>
More information about the debian-security-tracker-commits
mailing list