[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2025-68119/golang-1.24

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e6764cbc by Salvatore Bonaccorso at 2026-02-01T13:06:19+01:00
Add Debian bug reference for CVE-2025-68119/golang-1.24

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -5760,7 +5760,7 @@ CVE-2025-61730 (During the TLS 1.3 handshake if multiple messages are sent in re
 	NOTE: Fixed by: https://github.com/golang/go/commit/ad2cd043db66cd36e1f55359638729d2c8ff3d99 (go1.24.12)
 CVE-2025-68119 (Downloading and building modules with malicious version strings can ca ...)
 	- golang-1.25 1.25.6-1 (bug #1125916)
-	- golang-1.24 <unfixed>
+	- golang-1.24 <unfixed> (bug #1126770)
 	- golang-1.19 <removed>
 	- golang-1.15 <removed>
 	[bullseye] - golang-1.15 <postponed> (Limited support, minor issue, follow bookworm DSAs/point-releases)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e6764cbcbb383cc17f2c62aa7361b9e81d72a2ac

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e6764cbcbb383cc17f2c62aa7361b9e81d72a2ac
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260201/c7d2d41f/attachment.htm>