[Git][security-tracker-team/security-tracker][master] Mark golang-1.23 as removed from unstable
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Oct 16 19:39:14 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
660f72d7 by Salvatore Bonaccorso at 2025-10-16T20:37:29+02:00
Mark golang-1.23 as removed from unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -2285,7 +2285,7 @@ CVE-2025-61724 [net/textproto: excessive CPU consumption in Reader.ReadResponse]
- golang-1.25 1.25.2-1
- golang-1.24 1.24.8-1
[trixie] - golang-1.24 <no-dsa> (Minor issue)
- - golang-1.23 <unfixed>
+ - golang-1.23 <removed>
- golang-1.19 <removed>
[bookworm] - golang-1.19 <no-dsa> (Minor issue)
- golang-1.15 <removed>
@@ -2297,7 +2297,7 @@ CVE-2025-58183 [archive/tar: unbounded allocation when parsing GNU sparse map]
- golang-1.25 1.25.2-1
- golang-1.24 1.24.8-1
[trixie] - golang-1.24 <no-dsa> (Minor issue)
- - golang-1.23 <unfixed>
+ - golang-1.23 <removed>
- golang-1.19 <removed>
[bookworm] - golang-1.19 <no-dsa> (Minor issue)
- golang-1.15 <removed>
@@ -2309,7 +2309,7 @@ CVE-2025-58188 [crypto/x509: panic when validating certificates with DSA public
- golang-1.25 1.25.2-1
- golang-1.24 1.24.8-1
[trixie] - golang-1.24 <no-dsa> (Minor issue)
- - golang-1.23 <unfixed>
+ - golang-1.23 <removed>
- golang-1.19 <removed>
[bookworm] - golang-1.19 <no-dsa> (Minor issue)
- golang-1.15 <removed>
@@ -2321,7 +2321,7 @@ CVE-2025-58186 [net/http: lack of limit when parsing cookies can cause memory ex
- golang-1.25 1.25.2-1
- golang-1.24 1.24.8-1
[trixie] - golang-1.24 <no-dsa> (Minor issue)
- - golang-1.23 <unfixed>
+ - golang-1.23 <removed>
- golang-1.19 <removed>
[bookworm] - golang-1.19 <no-dsa> (Minor issue)
- golang-1.15 <removed>
@@ -2333,7 +2333,7 @@ CVE-2025-58185 [encoding/asn1: pre-allocating memory when parsing DER payload ca
- golang-1.25 1.25.2-1
- golang-1.24 1.24.8-1
[trixie] - golang-1.24 <no-dsa> (Minor issue)
- - golang-1.23 <unfixed>
+ - golang-1.23 <removed>
- golang-1.19 <removed>
[bookworm] - golang-1.19 <no-dsa> (Minor issue)
- golang-1.15 <removed>
@@ -2345,7 +2345,7 @@ CVE-2025-47912 [net/url: insufficient validation of bracketed IPv6 hostnames]
- golang-1.25 1.25.2-1
- golang-1.24 1.24.8-1
[trixie] - golang-1.24 <no-dsa> (Minor issue)
- - golang-1.23 <unfixed>
+ - golang-1.23 <removed>
- golang-1.19 <removed>
[bookworm] - golang-1.19 <no-dsa> (Minor issue)
- golang-1.15 <removed>
@@ -2357,7 +2357,7 @@ CVE-2025-61723 [encoding/pem: quadratic complexity when parsing some invalid inp
- golang-1.25 1.25.2-1
- golang-1.24 1.24.8-1
[trixie] - golang-1.24 <no-dsa> (Minor issue)
- - golang-1.23 <unfixed>
+ - golang-1.23 <removed>
- golang-1.19 <removed>
[bookworm] - golang-1.19 <no-dsa> (Minor issue)
- golang-1.15 <removed>
@@ -2369,7 +2369,7 @@ CVE-2025-58189 [crypto/tls: ALPN negotiation errors can contain arbitrary text]
- golang-1.25 1.25.2-1
- golang-1.24 1.24.8-1
[trixie] - golang-1.24 <no-dsa> (Minor issue)
- - golang-1.23 <unfixed>
+ - golang-1.23 <removed>
- golang-1.19 <removed>
[bookworm] - golang-1.19 <no-dsa> (Minor issue)
- golang-1.15 <removed>
@@ -2381,7 +2381,7 @@ CVE-2025-58187 [crypto/x509: quadratic complexity when checking name constraints
- golang-1.25 1.25.2-1
- golang-1.24 1.24.8-1
[trixie] - golang-1.24 <no-dsa> (Minor issue)
- - golang-1.23 <unfixed>
+ - golang-1.23 <removed>
- golang-1.19 <removed>
[bookworm] - golang-1.19 <no-dsa> (Minor issue)
- golang-1.15 <removed>
@@ -2393,7 +2393,7 @@ CVE-2025-61725 [net/mail: excessive CPU consumption in ParseAddress]
- golang-1.25 1.25.2-1
- golang-1.24 1.24.8-1
[trixie] - golang-1.24 <no-dsa> (Minor issue)
- - golang-1.23 <unfixed>
+ - golang-1.23 <removed>
- golang-1.19 <removed>
[bookworm] - golang-1.19 <no-dsa> (Minor issue)
- golang-1.15 <removed>
@@ -25545,7 +25545,7 @@ CVE-2023-40992 (Hospital Management System 4 is vulnerable to a SQL injection in
CVE-2025-47907 (Cancelling a query (e.g. by cancelling the context passed to one of th ...)
- golang-1.24 1.24.7-1 (bug #1110949)
[trixie] - golang-1.24 <no-dsa> (Minor issue)
- - golang-1.23 <unfixed> (bug #1110950)
+ - golang-1.23 <removed> (bug #1110950)
- golang-1.19 <removed>
[bookworm] - golang-1.19 <no-dsa> (Minor issue)
- golang-1.15 <removed>
@@ -25557,7 +25557,7 @@ CVE-2025-47907 (Cancelling a query (e.g. by cancelling the context passed to one
CVE-2025-47906 (If the PATH environment variable contains paths which are executables ...)
- golang-1.24 1.24.7-1 (bug #1110947)
[trixie] - golang-1.24 <no-dsa> (Minor issue)
- - golang-1.23 <unfixed> (bug #1110948)
+ - golang-1.23 <removed> (bug #1110948)
- golang-1.19 <removed>
[bookworm] - golang-1.19 <no-dsa> (Minor issue)
- golang-1.15 <removed>
@@ -25782,7 +25782,7 @@ CVE-2025-20215 (A vulnerability in the meeting-join functionality of Cisco Webex
CVE-2024-8244 (The filepath.Walk and filepath.WalkDir functions are documented as not ...)
- golang-1.24 <unfixed> (bug #1110945)
[trixie] - golang-1.24 <no-dsa> (Minor issue)
- - golang-1.23 <unfixed> (bug #1110946)
+ - golang-1.23 <removed> (bug #1110946)
- golang-1.19 <removed>
[bookworm] - golang-1.19 <no-dsa> (Minor issue)
- golang-1.15 <removed>
@@ -33815,7 +33815,7 @@ CVE-2024-56468 (IBM InfoSphere Data Replication VSAM for z/OS Remote Source 11.4
CVE-2025-4674 (The go command may execute unexpected commands when operating in untru ...)
- golang-1.24 1.24.7-1 (bug #1109109)
[trixie] - golang-1.24 <no-dsa> (Minor issue)
- - golang-1.23 <unfixed> (bug #1109110)
+ - golang-1.23 <removed> (bug #1109110)
- golang-1.19 <removed>
[bookworm] - golang-1.19 <no-dsa> (Minor issue)
- golang-1.15 <removed>
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/660f72d716616ef64998af706b7123b03f29408f
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/660f72d716616ef64998af706b7123b03f29408f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251016/7199a339/attachment.htm>
More information about the debian-security-tracker-commits
mailing list