[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2026-41889/pgx
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sat May 9 12:38:36 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
38c3d77a by Salvatore Bonaccorso at 2026-05-09T13:38:01+02:00
Add Debian bug reference for CVE-2026-41889/pgx
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -269,7 +269,7 @@ CVE-2026-42030 (MapServer is a system for developing web-based GIS applications.
CVE-2026-42028 (novaGallery is a php image gallery. Prior to version 2.1.1, a path tra ...)
NOT-FOR-US: novaGallery
CVE-2026-41889 (pgx is a PostgreSQL driver and toolkit for Go. Prior to version 5.9.2, ...)
- - golang-github-jackc-pgx-v5 <unfixed>
+ - golang-github-jackc-pgx-v5 <unfixed> (bug #1136084)
NOTE: https://github.com/jackc/pgx/security/advisories/GHSA-j88v-2chj-qfwx
NOTE: Fixed by: https://github.com/jackc/pgx/commit/60644f84918a8af66d14a4b0d865d4edafd955da (v5.9.2)
TODO: check the other golang-github-jackc-pgx* sources
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/38c3d77af9eed51719943a7c5661acf4abf95836
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/38c3d77af9eed51719943a7c5661acf4abf95836
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260509/112a7839/attachment.htm>
More information about the debian-security-tracker-commits
mailing list