[Git][security-tracker-team/security-tracker][master] Add CVE-2026-32952/golang-github-azure-go-ntlmssp

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b69c5c6f by Salvatore Bonaccorso at 2026-04-26T21:34:29+02:00
Add CVE-2026-32952/golang-github-azure-go-ntlmssp

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1188,7 +1188,8 @@ CVE-2026-33077 (Roxy-WI is a web interface for managing Haproxy, Nginx, Apache a
 CVE-2026-33076 (Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Kee ...)
 	NOT-FOR-US: Roxy-WI
 CVE-2026-32952 (go-ntlmssp is a Go package that provides NTLM/Negotiate authentication ...)
-	TODO: check
+	- golang-github-azure-go-ntlmssp <unfixed>
+	NOTE: https://github.com/Azure/go-ntlmssp/security/advisories/GHSA-pjcq-xvwq-hhpj
 CVE-2026-32870 (Kirby is an open-source content management system. Kirby's `Xml::value ...)
 	NOT-FOR-US: Kirby CMS
 CVE-2026-32210 (Server-side request forgery (ssrf) in Microsoft Dynamics 365 (Online)  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b69c5c6f95cae2c2196e4eff630946097a6a88a3

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b69c5c6f95cae2c2196e4eff630946097a6a88a3
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260426/0472a76a/attachment.htm>