Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
e6764cbc by Salvatore Bonaccorso at 2026-02-01T13:06:19+01:00
Add Debian bug reference for CVE-2025-68119/golang-1.24
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -5760,7 +5760,7 @@ CVE-2025-61730 (During the TLS 1.3 handshake if multiple
messages are sent in re
NOTE: Fixed by:
https://github.com/golang/go/commit/ad2cd043db66cd36e1f55359638729d2c8ff3d99
(go1.24.12)
CVE-2025-68119 (Downloading and building modules with malicious version
strings can ca ...)
- golang-1.25 1.25.6-1 (bug #1125916)
- - golang-1.24 <unfixed>
+ - golang-1.24 <unfixed> (bug #1126770)
- golang-1.19 <removed>
- golang-1.15 <removed>
[bullseye] - golang-1.15 <postponed> (Limited support, minor issue,
follow bookworm DSAs/point-releases)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e6764cbcbb383cc17f2c62aa7361b9e81d72a2ac
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e6764cbcbb383cc17f2c62aa7361b9e81d72a2ac
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
