Lucene search
+L

40 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:44 p.m.15 views

CVE-2026-39820

Well-crafted inputs reaching ParseAddress, ParseAddressList, and ParseDate were able to trigger excessive CPU exhaustion and memory allocations...

7.5CVSS5.4AI score0.00784EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2026/06/04 12:39 p.m.3 views

net/mail: golang: Go net/mail: Denial of Service via crafted email inputs

A flaw was found in the net/mail package of the Go programming language. An attacker could provide specially crafted inputs to the ParseAddress, ParseAddressList, or ParseDate functions. This could lead to excessive consumption of CPU and memory resources, resulting in a Denial of Service DoS for...

7.5CVSS6.9AI score0.00784EPSS
Exploits0References8
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerability in Golang-1.19

The ParseAddressList function improperly handles comments text within parentheses within display names. Since this contradicts conforming address parsers, it can lead to different trust decisions being made by programs that use different parsers...

7.5CVSS6.8AI score0.01042EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/07 9:30 p.m.23 views

EUVD-2026-28423

Well-crafted inputs reaching ParseAddress, ParseAddressList, and ParseDate were able to trigger excessive CPU exhaustion and memory allocations...

5.8AI score0.00784EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2026/05/07 8:16 p.m.18 views

CVE-2026-39820

Well-crafted inputs reaching ParseAddress, ParseAddressList, and ParseDate were able to trigger excessive CPU exhaustion and memory allocations...

7.5CVSS5.8AI score0.00784EPSS
Exploits0References7
OSV
OSV
added 2026/05/07 8:16 p.m.7 views

UBUNTU-CVE-2026-39820

Well-crafted inputs reaching ParseAddress, ParseAddressList, and ParseDate were able to trigger excessive CPU exhaustion and memory allocations...

7.5CVSS5.8AI score0.00784EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2026/05/07 7:41 p.m.14 views

CVE-2026-39820

Well-crafted inputs reaching ParseAddress, ParseAddressList, and ParseDate were able to trigger excessive CPU exhaustion and memory allocations...

5.8AI score0.00784EPSS
Exploits0References5Affected Software1
Debian CVE
Debian CVE
added 2026/05/07 7:41 p.m.7 views

CVE-2026-39820

Well-crafted inputs reaching ParseAddress, ParseAddressList, and ParseDate were able to trigger excessive CPU exhaustion and memory allocations...

7.5CVSS5.8AI score0.00784EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/05/07 7:41 p.m.8 views

CVE-2026-39820

Well-crafted inputs reaching ParseAddress, ParseAddressList, and ParseDate were able to trigger excessive CPU exhaustion and memory allocations...

7.5CVSS5.8AI score0.00784EPSS
Exploits0
Snyk
Snyk
added 2026/05/07 7:21 p.m.11 views

Allocation of Resources Without Limits or Throttling

Overview std/net/mail is a Go standard library package std/net/mail Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling. Go Vulnerability Report: Well-crafted inputs reaching ParseAddress, ParseAddressList, and ParseDate were able to trigger...

8.7CVSS5.8AI score0.00784EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/04/08 12:0 a.m.13 views

PT-2026-38564

Name of the Vulnerable Software and Affected Versions The product name cannot be determined affected versions not specified Description Well-crafted inputs reaching the functions ParseAddress, ParseAddressList, and ParseDate can trigger excessive CPU exhaustion and memory allocations, leading to ...

9.8CVSS5.8AI score0.00784EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2024/09/24 3:30 a.m.4 views

golang: net/mail: comments in display names are incorrectly handled

A flaw was found in Go's net/mail standard library package. The ParseAddressList function incorrectly handles comments text within parentheses within display names. Since this is a misalignment with conforming address parsers, it can result in different trust decisions made by programs using...

7.5CVSS7.3AI score0.01042EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/08/20 12:0 a.m.19 views

EulerOS 2.0 SP12 : golang (EulerOS-SA-2024-2214)

According to the versions of the golang packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : An attacker may cause an HTTP/2 endpoint to read arbitrary amounts of header data by sending an excessive number of CONTINUATION frames. Maintaini...

7.5CVSS7.8AI score0.91969EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2024/08/20 12:0 a.m.19 views

EulerOS 2.0 SP12 : golang (EulerOS-SA-2024-2238)

According to the versions of the golang packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : An attacker may cause an HTTP/2 endpoint to read arbitrary amounts of header data by sending an excessive number of CONTINUATION frames. Maintaini...

7.5CVSS7.8AI score0.91969EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2024/07/16 12:0 a.m.14 views

Huawei EulerOS: Security Advisory for golang (EulerOS-SA-2024-1909)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.2AI score0.91969EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2024/07/16 12:0 a.m.12 views

Huawei EulerOS: Security Advisory for golang (EulerOS-SA-2024-1934)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.2AI score0.91969EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2024/07/16 12:0 a.m.15 views

Huawei EulerOS: Security Advisory for golang (EulerOS-SA-2024-1885)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.2AI score0.91969EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/07/16 12:0 a.m.17 views

EulerOS 2.0 SP9 : golang (EulerOS-SA-2024-1961)

According to the versions of the golang packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : When following an HTTP redirect to a domain which is not a subdomain match or exact match of the initial domain, an http.Client does not forward...

7.5CVSS7.7AI score0.91969EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2024/07/16 12:0 a.m.19 views

EulerOS 2.0 SP9 : golang (EulerOS-SA-2024-1934)

According to the versions of the golang packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : When following an HTTP redirect to a domain which is not a subdomain match or exact match of the initial domain, an http.Client does not forward...

7.5CVSS7.7AI score0.91969EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2024/07/15 12:0 a.m.18 views

EulerOS 2.0 SP10 : golang (EulerOS-SA-2024-1909)

According to the versions of the golang packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : An attacker may cause an HTTP/2 endpoint to read arbitrary amounts of header data by sending an excessive number of CONTINUATION frames. Maintaini...

7.5CVSS7.8AI score0.91969EPSS
Exploits1References3
Rows per page
Query Builder