| Release | Version |
|---|---|
| stretch | 1.7.4-2 |
| buster | 1.7.6-1 |
| sid | 1.7.6-2 |
| Bug | stretch | buster | sid | Description |
|---|---|---|---|---|
| CVE-2017-8932 | vulnerable (no DSA, ignored) | fixed | fixed | A bug in the standard library ScalarMult implementation of curve P-256 ... |
| CVE-2017-15042 | vulnerable (no DSA, ignored) | vulnerable | vulnerable | An unintended cleartext issue exists in Go before 1.8.4 and 1.9.x ... |
| CVE-2017-15041 | vulnerable (no DSA, ignored) | vulnerable | vulnerable | Go before 1.8.4 and 1.9.x before 1.9.1 allows "go get" remote command ... |
| Bug | Description |
|---|---|
| CVE-2017-1000098 | The net/http package's Request.ParseMultipartForm method starts ... |
| CVE-2017-1000097 | On Darwin, user's trust preferences for root certificates were not ... |