[Git][security-tracker-team/security-tracker][master] Track fixed version for golang-1.26 issues

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Jun 4 22:14:12 BST 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2ee4a47e by Salvatore Bonaccorso at 2026-06-04T23:13:44+02:00
Track fixed version for golang-1.26 issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1014,7 +1014,7 @@ CVE-2019-25722 (Dr\xe4ger SC Monitoring devices (SC 6002XL, SC 6802XL, SC 7000,
 CVE-2019-25721 (Dr\xe4ger Infinity M300 patient worn monitors with software version VG ...)
 	NOT-FOR-US: Draeger
 CVE-2026-27145 ((*x509.Certificate).VerifyHostname previously called matchHostnames in ...)
-	- golang-1.26 <unfixed>
+	- golang-1.26 1.26.4-1
 	- golang-1.25 1.25.11-1
 	- golang-1.24 <removed>
 	- golang-1.19 <removed>
@@ -1023,7 +1023,7 @@ CVE-2026-27145 ((*x509.Certificate).VerifyHostname previously called matchHostna
 	NOTE: https://github.com/golang/go/commit/ce5a3e718cac440defae617dc6ed72a6e94cd0af (go1.26.4)
 	NOTE: https://github.com/golang/go/commit/c5d18e479475e251c8593b1113fb53836117d5d3 (go1.25.11)
 CVE-2026-42507 (When returning errors, functions in the net/textproto package would in ...)
-	- golang-1.26 <unfixed>
+	- golang-1.26 1.26.4-1
 	- golang-1.25 1.25.11-1
 	- golang-1.24 <removed>
 	- golang-1.19 <removed>
@@ -1032,7 +1032,7 @@ CVE-2026-42507 (When returning errors, functions in the net/textproto package wo
 	NOTE: https://github.com/golang/go/commit/ec1c380418ec6a0da28d4519872e2b81ba9152ba (go1.26.4)
 	NOTE: https://github.com/golang/go/commit/449dafea7264878e73acc58cbd330e0ee6630030 (go1.25.11)
 CVE-2026-42504 (Decoding a maliciously-crafted MIME header containing many invalid enc ...)
-	- golang-1.26 <unfixed>
+	- golang-1.26 1.26.4-1
 	- golang-1.25 1.25.11-1
 	- golang-1.24 <removed>
 	- golang-1.19 <removed>



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2ee4a47ec18e117fae768b012b1aa1262f0a2d64

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2ee4a47ec18e117fae768b012b1aa1262f0a2d64
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260604/11e93be1/attachment.htm>

More information about the debian-security-tracker-commits mailing list