Lucene search
K

17 matches found

Tenable Nessus
Tenable Nessus
added 2026/03/19 12:0 a.m.5 views

MiracleLinux 8 : container-tools:rhel8 (AXSA:2026-338:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2026-338:01 advisory. golang: archive/zip: Excessive CPU consumption when building archive index in archive/zip CVE-2025-61728 golang: net/url: Memory exhaustion in query...

10CVSS7.3AI score0.01945EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2026/03/11 5:24 a.m.11 views

Moderate: Red Hat Security Advisory: OpenShift Container Platform 4.20.16 packages and security update

Red Hat OpenShift Container Platform release 4.20.16 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.20. Red Hat Product Security has rated this update as having a...

6.5CVSS7.1AI score0.00643EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2026/03/05 12:20 p.m.4 views

golang: archive/zip: Excessive CPU consumption when building archive index in archive/zip

A flaw was found in the archive/zip package in the Go standard library. A super-linear file name indexing algorithm is used in the first time a file in an archive is opened. A crafted zip archive containing a specific arrangement of file names can cause an excessive CPU and memory consumption. A ...

6.5CVSS5.7AI score0.00643EPSS
Exploits1References8
RedHat Linux
RedHat Linux
added 2026/03/05 9:1 a.m.5 views

golang: archive/zip: Excessive CPU consumption when building archive index in archive/zip

A flaw was found in the archive/zip package in the Go standard library. A super-linear file name indexing algorithm is used in the first time a file in an archive is opened. A crafted zip archive containing a specific arrangement of file names can cause an excessive CPU and memory consumption. A ...

6.5CVSS5.7AI score0.00643EPSS
Exploits1References8
RedHat Linux
RedHat Linux
added 2026/03/05 8:23 a.m.4 views

golang: archive/zip: Excessive CPU consumption when building archive index in archive/zip

A flaw was found in the archive/zip package in the Go standard library. A super-linear file name indexing algorithm is used in the first time a file in an archive is opened. A crafted zip archive containing a specific arrangement of file names can cause an excessive CPU and memory consumption. A ...

6.5CVSS5.7AI score0.00643EPSS
Exploits1References8
RedHat Linux
RedHat Linux
added 2026/03/05 7:55 a.m.7 views

golang: archive/zip: Excessive CPU consumption when building archive index in archive/zip

A flaw was found in the archive/zip package in the Go standard library. A super-linear file name indexing algorithm is used in the first time a file in an archive is opened. A crafted zip archive containing a specific arrangement of file names can cause an excessive CPU and memory consumption. A ...

6.5CVSS5.7AI score0.00643EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2025/08/18 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2021-39293

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In archive/zip in Go before 1.16.8 and 1.17.x before 1.17.1, a crafted archive header falsely designating that many files are present can cause a NewReader or...

7.5CVSS6.7AI score0.06934EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/18 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2021-27919

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - archive/zip in Go 1.16.x before 1.16.1 allows attackers to cause a denial of service panic upon attempted use of the Reader.Open API for a ZIP archive in which...

5.5CVSS6.4AI score0.01517EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2024/09/11 7:0 a.m.4 views

In archive/zip in Go before 1.15.13 and 1.16.x before 1.16.5 a crafted file count (in an archive's header) can cause a NewReader or OpenReader panic.

...

7.5CVSS7AI score0.03464EPSS
Exploits1
OSV
OSV
added 2024/06/05 4:15 p.m.6 views

AZL-42412 CVE-2024-24789 affecting package golang for versions less than 1.18.8-8

The archive/zip package's handling of certain types of invalid zip files differs from the behavior of most zip implementations. This misalignment could be exploited to create an zip file with contents that vary depending on the implementation reading the file. The archive/zip package now rejects...

5.5CVSS6.8AI score0.00446EPSS
Exploits0References1
OSV
OSV
added 2024/06/05 4:15 p.m.7 views

AZL-79044 CVE-2024-24789 affecting package golang 1.25.7-1

The archive/zip package's handling of certain types of invalid zip files differs from the behavior of most zip implementations. This misalignment could be exploited to create an zip file with contents that vary depending on the implementation reading the file. The archive/zip package now rejects...

5.5CVSS6.7AI score0.00446EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/02/15 3:40 a.m.5 views

SUSE CVE-2021-33196

In archive/zip in Go before 1.15.13 and 1.16.x before 1.16.5, a crafted file count in an archive's header can cause a NewReader or OpenReader panic...

7.5CVSS6.7AI score0.03464EPSS
Exploits1References10
OSV
OSV
added 2021/08/02 7:15 p.m.2 views

DEBIAN-CVE-2021-33196

In archive/zip in Go before 1.15.13 and 1.16.x before 1.16.5, a crafted file count in an archive's header can cause a NewReader or OpenReader panic...

7.5CVSS6.2AI score0.03464EPSS
Exploits1References1
OSV
OSV
added 2021/08/02 7:15 p.m.4 views

UBUNTU-CVE-2021-33196

In archive/zip in Go before 1.15.13 and 1.16.x before 1.16.5, a crafted file count in an archive's header can cause a NewReader or OpenReader panic...

7.5CVSS6.7AI score0.03464EPSS
Exploits1References4
Cvelist
Cvelist
added 2021/08/02 12:0 a.m.24 views

CVE-2021-33196

In archive/zip in Go before 1.15.13 and 1.16.x before 1.16.5, a crafted file count in an archive's header can cause a NewReader or OpenReader panic...

7.8AI score0.03464EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2021/07/13 4:56 p.m.5 views

golang: archive/zip: malformed archive may cause panic or memory exhaustion

A vulnerability was found in archive/zip of the Go standard library. Applications written in Go can panic or potentially exhaust system memory when parsing malformed ZIP files...

7.5CVSS7.1AI score0.03464EPSS
Exploits1References5
OSV
OSV
added 2021/03/11 12:15 a.m.1 views

UBUNTU-CVE-2021-27919

archive/zip in Go 1.16.x before 1.16.1 allows attackers to cause a denial of service panic upon attempted use of the Reader.Open API for a ZIP archive in which ../ occurs at the beginning of any filename...

5.5CVSS7.1AI score0.01517EPSS
Exploits0References3
Rows per page
Query Builder