[Git][security-tracker-team/security-tracker][master] Triage CVE-2025-29785 as no-dsa for bullseye
Emilio Pozuelo Monfort (@pochu)
pochu at debian.org
Wed Jun 18 08:22:17 BST 2025
Emilio Pozuelo Monfort pushed to branch master at Debian Security Tracker / security-tracker
Commits:
45aa6812 by Emilio Pozuelo Monfort at 2025-06-18T09:22:05+02:00
Triage CVE-2025-29785 as no-dsa for bullseye
- - - - -
2 changed files:
- data/CVE/list
- data/dla-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -4426,6 +4426,7 @@ CVE-2025-37089 (A command injection remote code execution vulnerability exists i
CVE-2025-29785 (quic-go is an implementation of the QUIC protocol in Go. The loss reco ...)
- golang-github-lucas-clemente-quic-go 0.50.1-1
[bookworm] - golang-github-lucas-clemente-quic-go <no-dsa> (Minor issue)
+ [bullseye] - golang-github-lucas-clemente-quic-go <no-dsa> (Minor issue)
NOTE: https://github.com/quic-go/quic-go/security/advisories/GHSA-j972-j939-p2v3
NOTE: https://github.com/quic-go/quic-go/issues/4981
NOTE: Fixed by: https://github.com/quic-go/quic-go/commit/b90058aba5f65f48e0e150c89bbaa21a72dda4de (v0.50.1)
=====================================
data/dla-needed.txt
=====================================
@@ -127,9 +127,6 @@ gimp (Adrian Bunk)
glewlwyd
NOTE: 20250312: Added by Front-Desk; CVE-2024-25715 to be fixed (lamby)
--
-golang-github-lucas-clemente-quic-go
- NOTE: 20250609: Added by Front-Desk (rouca)
---
golang-golang-x-net
NOTE: 20250502: Added by Front-Desk (lamby)
NOTE: 20250502: NB. golang - will need to check and schedule binNMUs. (lamby)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/45aa6812a777c0f64ff9325ca1a908d727556303
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/45aa6812a777c0f64ff9325ca1a908d727556303
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250618/d320b334/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list