golang-github-openpubkey-openpubkey - Debian Package Tracker

Marked for autoremoval on 01 September due to golang-github-golang-protobuf-1-5: #1109513, #1109514, #1109515, #1109516, #1109517, #1109655 high

Version 0.8.0-1 of golang-github-openpubkey-openpubkey is marked for autoremoval from testing on Mon 01 Sep 2025. It depends (transitively) on golang-github-golang-protobuf-1-5, affected by #1109513, #1109514, #1109515, #1109516, #1109517, #1109655. You should try to prevent the removal by fixing these RC bugs.

Created: 2025-07-26 Last update: 2025-08-01 12:00

A new upstream version is available: 0.17.0 high

A new upstream version 0.17.0 is available, you should consider packaging it.

Created: 2025-04-18 Last update: 2025-08-01 08:00

1 security issue in trixie high

1 important issue:

CVE-2025-3757: Versions of OpenPubkey library prior to 0.10.0 contained a vulnerability that would allow a specially crafted JWS to bypass signature verification.

Created: 2025-05-13 Last update: 2025-05-14 06:30

1 security issue in sid high

1 important issue:

CVE-2025-3757: Versions of OpenPubkey library prior to 0.10.0 contained a vulnerability that would allow a specially crafted JWS to bypass signature verification.

Created: 2025-05-13 Last update: 2025-05-14 06:30