GHSA-V4M2-X4RP-HV22 vulnerabilities

Vulnerabilities for packages: go, falco...

GHSA-7QHM-5MXQ-X7VP vulnerabilities

Vulnerabilities for packages: go, falco...

GHSA-FP86-2355-V99R vulnerabilities

Vulnerabilities for packages: go, falco...

GHSA-9F7G-GQWH-JPF5 vulnerabilities

Vulnerabilities for packages: go, falco...

GHSA-F8F7-69V5-W4VX vulnerabilities

Vulnerabilities for packages: go, falco, kind...

GHSA-X2W5-7WP4-5QFF vulnerabilities

Vulnerabilities for packages: go, falco...

GHSA-8V5J-PWR7-W5F8 vulnerabilities

Vulnerabilities for packages: go, falco...

GHSA-9F7G-GQWH-JPF5 vulnerabilities

Vulnerabilities for packages: go, falco...

GHSA-F8F7-69V5-W4VX vulnerabilities

Vulnerabilities for packages: go, kind, falco...

PT-2025-42742

Name of the Vulnerable Software and Affected Versions golang versions 1.15 golang versions 1.19 Description An issue exists in the TLS implementation where errors during ALPN Application-Layer Protocol Negotiation can contain arbitrary text. This could potentially lead to information disclosure o...

PT-2025-42741

Name of the Vulnerable Software and Affected Versions Go versions prior to 1.24.9-alt1 Gobuster version 3.8.2 complyctl affected versions not specified containernetworking-plugins version 1.9.0 OpenTofu affected versions not specified Description The Go programming language contains a flaw in the...

PT-2025-42745

Name of the Vulnerable Software and Affected Versions golang versions 1.15 golang versions 1.19 Description The ParseAddress function in the net/mail package experiences excessive CPU consumption. Recommendations Update to a newer version of golang that contains a fix for this vulnerability...

free5GC udm vulnerable to Invalid Curve Attack

pkg/suci/suci.go in free5GC udm before 1.2.0, when Go before 1.19 is used, allows an Invalid Curve Attack because it may compute a shared secret via an uncompressed public key that has not been validated. An attacker can send arbitrary SUCIs to the UDM, which tries to decrypt them via both its...

CVE-2023-29406 vulnerabilities

Vulnerabilities for packages: go, kind, falco...

PT-2023-36186 · Hashicorp · Terraform-Provider-Helm

Name of the Vulnerable Software and Affected Versions: terraform-provider-helm affected versions not specified Description: The issue is related to a security release in Go 1.19. The estimated number of potentially affected devices worldwide is not available. There is no information about...

PT-2023-36174 · Google +1 · Go +1

Name of the Vulnerable Software and Affected Versions: terraform-provider-aws affected versions not specified Description: The issue is related to a security release in Go 1.19, which is used to rebuild the terraform-provider-aws package. Recommendations: At the moment, there is no information...

SUSE-SU-2023:2326-2 Security update for amazon-ssm-agent

This update of amazon-ssm-agent fixes the following issues: - rebuild the package with the go 1.19 security release bsc1200441...

PT-2023-36191 · Amazon · Amazon-Ssm-Agent

Name of the Vulnerable Software and Affected Versions: amazon-ssm-agent affected versions not specified Description: The issue is related to a security concern addressed by rebuilding the package with the go 1.19 security release. Recommendations: At the moment, there is no information about a...

PT-2023-36193 · Google · Google-Cloud-Sap-Agent

Name of the Vulnerable Software and Affected Versions: google-cloud-sap-agent versions prior to 1.5.1 Description: The issue is related to the google-cloud-sap-agent, which has been updated to fix several problems, including a rebuild with the go 1.19 security release and an update to version...

SUSE-SU-2023:2326-1 Security update for amazon-ssm-agent

This update of amazon-ssm-agent fixes the following issues: - rebuild the package with the go 1.19 security release bsc1200441...