[Git][security-tracker-team/security-tracker][master] Add CVE-2025-61732/go

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
aa814457 by Salvatore Bonaccorso at 2026-02-06T20:41:48+01:00
Add CVE-2025-61732/go

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -409,7 +409,14 @@ CVE-2025-62616 (AutoGPT is a platform that allows users to create, deploy, and m
 CVE-2025-62615 (AutoGPT is a platform that allows users to create, deploy, and manage  ...)
 	NOT-FOR-US: AutoGPT
 CVE-2025-61732 (A discrepancy between how Go and C/C++ comments were parsed allowed fo ...)
-	TODO: check
+	- golang-1.25 <unfixed>
+	- golang-1.24 <unfixed>
+	- golang-1.19 <removed>
+	- golang-1.15 <removed>
+	NOTE: https://groups.google.com/g/golang-announce/c/K09ubi9FQFk
+	NOTE: https://github.com/golang/go/issues/76697
+	NOTE: Fixed by: https://github.com/golang/go/commit/b19100991ac6d096e67cead47392049c178fd5ab (go1.25.7)
+	NOTE: Fixed by: https://github.com/golang/go/commit/14d0bb39c1c4093bd02740d14b1a2ca720ced97c (go1.24.13)
 CVE-2025-2134 (IBM Jazz Reporting Service could allow an authenticated user on the ne ...)
 	NOT-FOR-US: IBM
 CVE-2025-27550 (IBM Jazz Reporting Service could allow an authenticated user on the ho ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/aa814457ccd7677ebe645d3f65345aba35634831

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/aa814457ccd7677ebe645d3f65345aba35634831
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260206/eedde132/attachment.htm>