golang-github-go-viper-mapstructure - Debian Package Tracker

A new upstream version is available: 2.5.0 high

A new upstream version 2.5.0 is available, you should consider packaging it.

Created: 2026-01-13 Last update: 2026-01-29 00:01

1 low-priority security issue in trixie low

1 issue left for the package maintainer to handle:

CVE-2025-11065: (needs triaging) A flaw was found in github.com/go-viper/mapstructure/v2, in the field processing component using mapstructure.WeakDecode. This vulnerability allows information disclosure through detailed error messages that may leak sensitive input values via malformed user-supplied data processed in security-critical contexts.

You can find information about how to handle this issue in the security team's documentation.

Created: 2025-09-28 Last update: 2026-01-27 05:01

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.7.3 instead of 4.7.2).

Created: 2025-12-23 Last update: 2025-12-23 20:00