Bug | stretch | buster | bullseye | bookworm | sid | Description |
---|
CVE-2024-6257 | vulnerable | vulnerable | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | HashiCorp\u2019s go-getter library can be coerced into executing Git u ... |
CVE-2024-3817 | vulnerable | fixed | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | HashiCorp\u2019s go-getter library is vulnerable to argument injection ... |
CVE-2023-0475 | vulnerable | vulnerable (no DSA, postponed) | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | HashiCorp go-getter up to 1.6.2 and 2.1.1 is vulnerable to decompressi ... |
CVE-2022-30323 | vulnerable | vulnerable (no DSA, postponed) | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | go-getter up to 1.5.11 and 2.0.2 panicked when processing password-pro ... |
CVE-2022-30322 | vulnerable | vulnerable (no DSA, postponed) | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | go-getter up to 1.5.11 and 2.0.2 allowed asymmetric resource exhaustio ... |
CVE-2022-30321 | vulnerable | vulnerable (no DSA, postponed) | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | go-getter up to 1.5.11 and 2.0.2 allowed arbitrary host access via go- ... |
CVE-2022-26945 | vulnerable | vulnerable (no DSA, postponed) | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | go-getter up to 1.5.11 and 2.0.2 allowed protocol switching, endless r ... |