ROOT-APP-GOBINARY-CVE-2025-22872 CVE-2025-22872 in rootio-golang.org/x/net - Patched by Root

Root has patched CVE-2025-22872 in the rootio-golang.org/x/net package for Root:Go. Multiple fixed versions available...

BIT-GOLANG-2026-39836 Panic in Dial and LookupPort when handling NUL byte on Windows in net

The Dial and LookupPort functions panic on Windows when provided with an input containing a NUL 0...

CVE-2025-58190 Infinite parsing loop in golang.org/x/net

The html.Parse function in golang.org/x/net/html has an infinite parsing loop when processing certain inputs, which can lead to denial of service DoS if an attacker provides specially crafted HTML content...

HTTP/2 CONTINUATION flood in net/http

...

golang: data race in certain net/http servers including ReverseProxy can lead to DoS

A flaw was found Go's net/http package. Servers using ReverseProxy from net/http in the Go standard library are vulnerable to a data race that results in a denial of service. The highest threat from this vulnerability is to system availability...