CVE-2020-7919

Note

Packages built using golang need to be rebuilt once the
vulnerability has been fixed. This CVE entry does not
list packages that need rebuilding outside of the main
repository or the Ubuntu variants with PPA overlays.

Package	Release	Status
golang Launchpad, Ubuntu, Debian	bionic	Does not exist
	disco	Does not exist
	eoan	Does not exist
	focal	Does not exist
	groovy	Does not exist
	hirsute	Does not exist
	impish	Does not exist
	jammy	Does not exist
	kinetic	Does not exist
	precise	Does not exist
	trusty	Does not exist
	upstream	Needs triage
	xenial	Does not exist
golang-1.10 Launchpad, Ubuntu, Debian	bionic	Needed
	disco	Ignored (reached end-of-life)
	eoan	Does not exist
	focal	Does not exist
	groovy	Does not exist
	hirsute	Does not exist
	impish	Does not exist
	jammy	Does not exist
	kinetic	Does not exist
	precise	Does not exist
	trusty	Needs triage
	upstream	Needs triage
	xenial	Needs triage
golang-1.11 Launchpad, Ubuntu, Debian	bionic	Does not exist
	eoan	Does not exist
	focal	Does not exist
	groovy	Does not exist
	hirsute	Does not exist
	impish	Does not exist
	jammy	Does not exist
	kinetic	Does not exist
	precise	Does not exist
	trusty	Does not exist
	upstream	Needs triage
	xenial	Does not exist
golang-1.12 Launchpad, Ubuntu, Debian	bionic	Does not exist
	disco	Ignored (reached end-of-life)
	eoan	Ignored (reached end-of-life)
	focal	Does not exist
	groovy	Does not exist
	hirsute	Does not exist
	impish	Does not exist
	jammy	Does not exist
	kinetic	Does not exist
	precise	Does not exist
	trusty	Does not exist
	upstream	Needs triage
	xenial	Does not exist
golang-1.13 Launchpad, Ubuntu, Debian	bionic	Needed
	eoan	Ignored (reached end-of-life)
	focal	Not vulnerable (1.13.7-1ubuntu1)
	groovy	Not vulnerable (1.13.7-1ubuntu1)
	hirsute	Not vulnerable (1.13.7-1ubuntu1)
	impish	Not vulnerable (1.13.7-1ubuntu1)
	jammy	Not vulnerable (1.13.7-1ubuntu1)
	kinetic	Not vulnerable (1.13.7-1ubuntu1)
	precise	Does not exist
	trusty	Does not exist
	upstream	Released (1.13.7-1)
	xenial	Ignored (end of standard support, was needed)
	Patches: upstream: https://github.com/golang/go/commit/f938e06d0623d0e1de202575d16f1e126741f6e0 (go1.13.7)
golang-1.14 Launchpad, Ubuntu, Debian	bionic	Does not exist
	eoan	Does not exist
	focal	Released (1.14~rc1-1)
	groovy	Released (1.14~rc1-1)
	hirsute	Released (1.14~rc1-1)
	impish	Does not exist
	jammy	Does not exist
	kinetic	Does not exist
	precise	Does not exist
	trusty	Does not exist
	upstream	Needs triage
	xenial	Does not exist
	Patches: upstream: https://github.com/golang/go/commit/b13ce14c4a6aa59b7b041ad2b6eed2d23e15b574 (master)
golang-1.6 Launchpad, Ubuntu, Debian	bionic	Does not exist
	disco	Does not exist
	eoan	Does not exist
	focal	Does not exist
	groovy	Does not exist
	hirsute	Does not exist
	impish	Does not exist
	jammy	Does not exist
	kinetic	Does not exist
	precise	Does not exist
	trusty	Does not exist
	upstream	Needs triage
	xenial	Not vulnerable (code not present)
golang-1.8 Launchpad, Ubuntu, Debian	bionic	Not vulnerable (code not present)
	disco	Does not exist
	eoan	Does not exist
	focal	Does not exist
	groovy	Does not exist
	hirsute	Does not exist
	impish	Does not exist
	jammy	Does not exist
	kinetic	Does not exist
	precise	Does not exist
	trusty	Does not exist
	upstream	Needs triage
	xenial	Does not exist
golang-1.9 Launchpad, Ubuntu, Debian	bionic	Not vulnerable (code not present)
	disco	Does not exist
	eoan	Does not exist
	focal	Does not exist
	groovy	Does not exist
	hirsute	Does not exist
	impish	Does not exist
	jammy	Does not exist
	kinetic	Does not exist
	precise	Does not exist
	trusty	Does not exist
	upstream	Needs triage
	xenial	Does not exist

Security

CVE-2020-7919

Notes

Medium

Status

References

Bugs

Join the discussion

Canonical is offering Expanded Security Maintenance

Further reading