Lucene search
K

58 matches found

Rockylinux
Rockylinux
added 2026/06/26 12:5 p.m.21 views

golang security, bug fix, and enhancement update

An update is available for golang. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The golang packages provide the Go programming language compiler. Security...

5.3CVSS5.8AI score0.0037EPSS
Exploits0
OSV
OSV
added 2026/06/26 12:3 p.m.6 views

RLSA-2026:29981 Moderate: golang security, bug fix, and enhancement update

The golang packages provide the Go programming language compiler. Security Fixes: net/textproto: golang: Golang net/textproto: Misleading error messages via input injection CVE-2026-42507 Bug Fixes and Enhancements: Update Go to version 1.26.4+1 rhel-9.8.z JIRA:Rocky Linux-183350 For more details...

5.3CVSS5.8AI score0.0037EPSS
Exploits0References2
Rockylinux
Rockylinux
added 2026/06/26 12:3 p.m.6 views

golang security, bug fix, and enhancement update

An update is available for golang. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The golang packages provide the Go programming language compiler. Security...

7.5CVSS5.8AI score0.00939EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2026/06/25 5:32 p.m.8 views

net/textproto: golang: Golang net/textproto: Misleading error messages via input injection

A flaw was found in the net/textproto package in Golang. When functions in this package return errors, they include their input as part of the error message. An attacker could exploit this by injecting misleading content into these error messages, which are then printed or logged. This could lead...

5.3CVSS5.8AI score0.0037EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2026/06/25 5:32 p.m.11 views

Moderate: Red Hat Security Advisory: golang security, bug fix, and enhancement update

An update for golang is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

7.5CVSS5.8AI score0.00939EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2026/06/25 4:14 p.m.10 views

Moderate: Red Hat Security Advisory: golang security, bug fix, and enhancement update

An update for golang is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

5.3CVSS5.9AI score0.0037EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2026/06/25 4:14 p.m.9 views

net/textproto: golang: Golang net/textproto: Misleading error messages via input injection

A flaw was found in the net/textproto package in Golang. When functions in this package return errors, they include their input as part of the error message. An attacker could exploit this by injecting misleading content into these error messages, which are then printed or logged. This could lead...

5.3CVSS5.8AI score0.0037EPSS
Exploits0References8
OSV
OSV
added 2026/06/25 12:0 a.m.3 views

ALSA-2026:29980 Moderate: golang security, bug fix, and enhancement update

The golang packages provide the Go programming language compiler. Security Fixes: net/textproto: golang: Golang net/textproto: Misleading error messages via input injection CVE-2026-42507 Bug Fixes and Enhancements: Update Go to version 1.26.4+1 almalinux-10.2.z JIRA:AlmaLinux-183347 For more...

5.3CVSS5.8AI score0.0037EPSS
Exploits0References4
OSV
OSV
added 2026/06/25 12:0 a.m.5 views

ALSA-2026:29981 Moderate: golang security, bug fix, and enhancement update

The golang packages provide the Go programming language compiler. Security Fixes: net/textproto: golang: Golang net/textproto: Misleading error messages via input injection CVE-2026-42507 Bug Fixes and Enhancements: Update Go to version 1.26.4+1 almalinux-9.8.z JIRA:AlmaLinux-183350 For more...

5.3CVSS5.8AI score0.0037EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/18 8:50 a.m.20 views

CVE-2026-42507

A flaw was found in the net/textproto package in Golang. When functions in this package return errors, they include their input as part of the error message. An attacker could exploit this by injecting misleading content into these error messages, which are then printed or logged. This could lead...

5.3CVSS5.1AI score0.0037EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2026/06/09 12:0 a.m.10 views

Azure Linux 3.0 Security Update: CBL-Mariner Releases (CVE-2026-42507)

The version of CBL-Mariner Releases installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2026-42507 advisory. - When returning errors, functions in the net/textproto package would include its input as part ...

5.3CVSS5.6AI score0.0037EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2026/06/05 8:2 a.m.10 views

Arbitrary inputs are included in errors without any escaping in net/textproto

...

5.3CVSS5.4AI score0.0037EPSS
Exploits0
OSV
OSV
added 2026/06/05 5:45 a.m.10 views

BIT-GOLANG-2026-42507 Arbitrary inputs are included in errors without any escaping in net/textproto

When returning errors, functions in the net/textproto package would include its input as part of the error. This might allow an attacker to inject misleading content to errors that are printed or logged...

5.3CVSS5.5AI score0.0037EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/06/04 12:43 p.m.2 views

net/textproto: golang: Golang net/textproto: Misleading error messages via input injection

A flaw was found in the net/textproto package in Golang. When functions in this package return errors, they include their input as part of the error message. An attacker could exploit this by injecting misleading content into these error messages, which are then printed or logged. This could lead...

5.3CVSS6.1AI score0.0037EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2026/06/04 12:39 p.m.3 views

net/textproto: golang: Golang net/textproto: Misleading error messages via input injection

A flaw was found in the net/textproto package in Golang. When functions in this package return errors, they include their input as part of the error message. An attacker could exploit this by injecting misleading content into these error messages, which are then printed or logged. This could lead...

5.3CVSS6.1AI score0.0037EPSS
Exploits0References8
SUSE CVE
SUSE CVE
added 2026/06/04 2:24 a.m.9 views

SUSE CVE-2026-42507

When returning errors, functions in the net/textproto package would include its input as part of the error. This might allow an attacker to inject misleading content to errors that are printed or logged...

5.3CVSS5.8AI score0.0037EPSS
Exploits0References9
OSV
OSV
added 2026/06/02 11:16 p.m.7 views

DEBIAN-CVE-2026-42507

When returning errors, functions in the net/textproto package would include its input as part of the error. This might allow an attacker to inject misleading content to errors that are printed or logged...

5.3CVSS5.8AI score0.0037EPSS
Exploits0References1
NVD
NVD
added 2026/06/02 11:16 p.m.22 views

CVE-2026-42507

When returning errors, functions in the net/textproto package would include its input as part of the error. This might allow an attacker to inject misleading content to errors that are printed or logged...

5.3CVSS0.0037EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/06/02 10:1 p.m.7 views

CVE-2026-42507 Arbitrary inputs are included in errors without any escaping in net/textproto

When returning errors, functions in the net/textproto package would include its input as part of the error. This might allow an attacker to inject misleading content to errors that are printed or logged...

5.8AI score0.0037EPSS
Exploits0References4
AlpineLinux
AlpineLinux
added 2026/06/02 10:1 p.m.6 views

CVE-2026-42507

When returning errors, functions in the net/textproto package would include its input as part of the error. This might allow an attacker to inject misleading content to errors that are printed or logged...

5.3CVSS5.8AI score0.0037EPSS
Exploits0
Rows per page
Query Builder