[Git][security-tracker-team/security-tracker][master] Track fixed version for golang-1.25 issues via unstable

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Jun 4 22:12:20 BST 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
4d2276d7 by Salvatore Bonaccorso at 2026-06-04T23:11:50+02:00
Track fixed version for golang-1.25 issues via unstable

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1015,7 +1015,7 @@ CVE-2019-25721 (Dr\xe4ger Infinity M300 patient worn monitors with software vers
 	NOT-FOR-US: Draeger
 CVE-2026-27145 ((*x509.Certificate).VerifyHostname previously called matchHostnames in ...)
 	- golang-1.26 <unfixed>
-	- golang-1.25 <unfixed>
+	- golang-1.25 1.25.11-1
 	- golang-1.24 <removed>
 	- golang-1.19 <removed>
 	- golang-1.15 <removed>
@@ -1024,7 +1024,7 @@ CVE-2026-27145 ((*x509.Certificate).VerifyHostname previously called matchHostna
 	NOTE: https://github.com/golang/go/commit/c5d18e479475e251c8593b1113fb53836117d5d3 (go1.25.11)
 CVE-2026-42507 (When returning errors, functions in the net/textproto package would in ...)
 	- golang-1.26 <unfixed>
-	- golang-1.25 <unfixed>
+	- golang-1.25 1.25.11-1
 	- golang-1.24 <removed>
 	- golang-1.19 <removed>
 	- golang-1.15 <removed>
@@ -1033,7 +1033,7 @@ CVE-2026-42507 (When returning errors, functions in the net/textproto package wo
 	NOTE: https://github.com/golang/go/commit/449dafea7264878e73acc58cbd330e0ee6630030 (go1.25.11)
 CVE-2026-42504 (Decoding a maliciously-crafted MIME header containing many invalid enc ...)
 	- golang-1.26 <unfixed>
-	- golang-1.25 <unfixed>
+	- golang-1.25 1.25.11-1
 	- golang-1.24 <removed>
 	- golang-1.19 <removed>
 	- golang-1.15 <removed>



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4d2276d75040f5955de2093f40c5abb46afb573d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4d2276d75040f5955de2093f40c5abb46afb573d
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260604/6059c73a/attachment.htm>

More information about the debian-security-tracker-commits mailing list