2 matches found
AZL-66138 CVE-2025-47907 affecting package golang for versions less than 1.22.7-5
Cancelling a query e.g. by cancelling the context passed to one of the query methods during a call to the Scan method of the returned Rows can result in unexpected results if other queries are being made in parallel. This can result in a race condition that may overwrite the expected results with...
AZL-66101 CVE-2025-4674 affecting package golang for versions less than 1.22.7-5
The go command may execute unexpected commands when operating in untrusted VCS repositories. This occurs when possibly dangerous VCS configuration is present in repositories. This can happen when a repository was fetched via one VCS e.g. Git, but contains metadata for another VCS e.g. Mercurial...