45 matches found
GHSA-7QHM-5MXQ-X7VP vulnerabilities
Vulnerabilities for packages: go, falco...
GHSA-V4M2-X4RP-HV22 vulnerabilities
Vulnerabilities for packages: go, falco...
GHSA-FP86-2355-V99R vulnerabilities
Vulnerabilities for packages: go, falco...
GHSA-9F7G-GQWH-JPF5 vulnerabilities
Vulnerabilities for packages: go, falco...
GHSA-F8F7-69V5-W4VX vulnerabilities
Vulnerabilities for packages: go, kind, falco...
GHSA-X2W5-7WP4-5QFF vulnerabilities
Vulnerabilities for packages: go, falco...
GHSA-8V5J-PWR7-W5F8 vulnerabilities
Vulnerabilities for packages: go, falco...
GHSA-9F7G-GQWH-JPF5 vulnerabilities
Vulnerabilities for packages: falco, go...
GHSA-F8F7-69V5-W4VX vulnerabilities
Vulnerabilities for packages: falco, kind, go...
PT-2025-42742
Name of the Vulnerable Software and Affected Versions golang versions 1.15 golang versions 1.19 Description An issue exists in the TLS implementation where errors during ALPN Application-Layer Protocol Negotiation can contain arbitrary text. This could potentially lead to information disclosure o...
PT-2025-42741
Name of the Vulnerable Software and Affected Versions Go versions prior to 1.24.9-alt1 Gobuster version 3.8.2 complyctl affected versions not specified containernetworking-plugins version 1.9.0 OpenTofu affected versions not specified Description The Go programming language contains a flaw in the...
PT-2025-42745
Name of the Vulnerable Software and Affected Versions golang versions 1.15 golang versions 1.19 Description The ParseAddress function in the net/mail package experiences excessive CPU consumption. Recommendations Update to a newer version of golang that contains a fix for this vulnerability...
free5GC udm vulnerable to Invalid Curve Attack
pkg/suci/suci.go in free5GC udm before 1.2.0, when Go before 1.19 is used, allows an Invalid Curve Attack because it may compute a shared secret via an uncompressed public key that has not been validated. An attacker can send arbitrary SUCIs to the UDM, which tries to decrypt them via both its...
CVE-2023-29406 vulnerabilities
Vulnerabilities for packages: falco, kind, go...
PT-2023-36186 · Hashicorp · Terraform-Provider-Helm
Name of the Vulnerable Software and Affected Versions: terraform-provider-helm affected versions not specified Description: The issue is related to a security release in Go 1.19. The estimated number of potentially affected devices worldwide is not available. There is no information about...
PT-2023-36174 · Google +1 · Go +1
Name of the Vulnerable Software and Affected Versions: terraform-provider-aws affected versions not specified Description: The issue is related to a security release in Go 1.19, which is used to rebuild the terraform-provider-aws package. Recommendations: At the moment, there is no information...
SUSE-SU-2023:2326-2 Security update for amazon-ssm-agent
This update of amazon-ssm-agent fixes the following issues: - rebuild the package with the go 1.19 security release bsc1200441...
PT-2023-36191 · Amazon · Amazon-Ssm-Agent
Name of the Vulnerable Software and Affected Versions: amazon-ssm-agent affected versions not specified Description: The issue is related to a security concern addressed by rebuilding the package with the go 1.19 security release. Recommendations: At the moment, there is no information about a...
PT-2023-36193 · Google · Google-Cloud-Sap-Agent
Name of the Vulnerable Software and Affected Versions: google-cloud-sap-agent versions prior to 1.5.1 Description: The issue is related to the google-cloud-sap-agent, which has been updated to fix several problems, including a rebuild with the go 1.19 security release and an update to version...
SUSE-SU-2023:2326-1 Security update for amazon-ssm-agent
This update of amazon-ssm-agent fixes the following issues: - rebuild the package with the go 1.19 security release bsc1200441...