[Git][security-tracker-team/security-tracker][master] Track fixes via unstable for golang-github-xenolf-lego issues

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Jun 4 06:10:12 BST 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2c6e0468 by Salvatore Bonaccorso at 2026-06-04T07:09:38+02:00
Track fixes via unstable for golang-github-xenolf-lego issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -28904,7 +28904,7 @@ CVE-2026-40613 (Coturn is a free open source implementation of TURN and STUN Ser
 	NOTE: https://github.com/coturn/coturn/security/advisories/GHSA-j662-9wcj-mf36
 	NOTE: Fixed by: https://github.com/coturn/coturn/commit/eaa9e7920e98cd10d24ade07f474ddb4e05dc1ea (4.10.0)
 CVE-2026-40611 (Let's Encrypt client and ACME library written in Go (Lego). Prior to 4 ...)
-	- golang-github-xenolf-lego <unfixed> (bug #1134643)
+	- golang-github-xenolf-lego 4.35.2-1 (bug #1134643)
 	[trixie] - golang-github-xenolf-lego <no-dsa> (Minor issue)
 	[bookworm] - golang-github-xenolf-lego <no-dsa> (Minor issue)
 	[bullseye] - golang-github-xenolf-lego <no-dsa> (Minor issue)
@@ -134168,7 +134168,7 @@ CVE-2025-54885 (Thinbus Javascript Secure Remote Password is a browser SRP6a imp
 CVE-2025-54882 (Himmelblau is an interoperability suite for Microsoft Azure Entra ID a ...)
 	NOT-FOR-US: Himmelblau
 CVE-2025-54799 (Let's Encrypt client and ACME library written in Go (Lego). In version ...)
-	- golang-github-xenolf-lego <unfixed> (bug #1110531)
+	- golang-github-xenolf-lego 4.35.2-1 (bug #1110531)
 	[trixie] - golang-github-xenolf-lego <no-dsa> (Minor issue)
 	[bookworm] - golang-github-xenolf-lego <no-dsa> (Minor issue)
 	[bullseye] - golang-github-xenolf-lego <ignored> (minor; need both client and server misconfigured unlikely)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2c6e0468f3c8e6a44a5a58b845af6cca954a6a38

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2c6e0468f3c8e6a44a5a58b845af6cca954a6a38
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260604/6742ff5f/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list