[Git][security-tracker-team/security-tracker][master] Add CVE-2026-33762/golang-github-go-git-go-git
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Apr 2 08:03:42 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
d0994659 by Salvatore Bonaccorso at 2026-04-02T09:03:16+02:00
Add CVE-2026-33762/golang-github-go-git-go-git
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -646,7 +646,8 @@ CVE-2026-34155 (RAUC controls the update process on embedded Linux systems. Prio
NOTE: https://github.com/rauc/rauc/security/advisories/GHSA-6hj7-q844-m2hx
NOTE: Fixed by: https://github.com/rauc/rauc/commit/4fb7c798d6ae412344fb8f8d310d773046af3441 (v1.15.2)
CVE-2026-33762 (go-git is an extensible git implementation library written in pure Go. ...)
- TODO: check
+ - golang-github-go-git-go-git <unfixed>
+ NOTE: https://github.com/go-git/go-git/security/advisories/GHSA-gm2x-2g9h-ccm8
CVE-2026-33581 (OpenClaw before 2026.3.24 contains a sandbox bypass vulnerability in t ...)
NOT-FOR-US: OpenClaw
CVE-2026-33580 (OpenClaw before 2026.3.28 contains a missing rate limiting vulnerabili ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d0994659b0fee898ec3854f253f68abf63c2109b
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d0994659b0fee898ec3854f253f68abf63c2109b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260402/2c896da0/attachment.htm>
More information about the debian-security-tracker-commits
mailing list