[Git][security-tracker-team/security-tracker][master] Add new go issues

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Jun 3 07:48:36 BST 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
50d66ed4 by Salvatore Bonaccorso at 2026-06-03T08:48:02+02:00
Add new go issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,30 @@
+CVE-2026-27145
+	- golang-1.26 <unfixed>
+	- golang-1.25 <unfixed>
+	- golang-1.24 <removed>
+	- golang-1.19 <removed>
+	- golang-1.15 <removed>
+	NOTE: https://github.com/golang/go/issues/79694
+	NOTE: https://github.com/golang/go/commit/ce5a3e718cac440defae617dc6ed72a6e94cd0af (go1.26.4)
+	NOTE: https://github.com/golang/go/commit/c5d18e479475e251c8593b1113fb53836117d5d3 (go1.25.11)
+CVE-2026-42507
+	- golang-1.26 <unfixed>
+	- golang-1.25 <unfixed>
+	- golang-1.24 <removed>
+	- golang-1.19 <removed>
+	- golang-1.15 <removed>
+	NOTE: https://github.com/golang/go/issues/79346
+	NOTE: https://github.com/golang/go/commit/ec1c380418ec6a0da28d4519872e2b81ba9152ba (go1.26.4)
+	NOTE: https://github.com/golang/go/commit/449dafea7264878e73acc58cbd330e0ee6630030 (go1.25.11)
+CVE-2026-42504
+	- golang-1.26 <unfixed>
+	- golang-1.25 <unfixed>
+	- golang-1.24 <removed>
+	- golang-1.19 <removed>
+	- golang-1.15 <removed>
+	NOTE: https://github.com/golang/go/issues/79217
+	NOTE: https://github.com/golang/go/commit/7f24db453a60faf6a3546d60bb02917a0a7aace0 (go1.26.4)
+	NOTE: https://github.com/golang/go/commit/b79e0339290e14b3b2de1dc4942b8a88701ddb02 (go1.25.11)
 CVE-2026-49975
 	- apache2 <unfixed> (bug #1138750)
 	NOTE: https://blog.calif.io/p/codex-discovered-a-hidden-http2-bomb



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/50d66ed4c3d21c90a47b01a9a62254217e91c1a8

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/50d66ed4c3d21c90a47b01a9a62254217e91c1a8
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260603/7fc01e07/attachment.htm>

More information about the debian-security-tracker-commits mailing list