Lucene search
K

4 matches found

OSV
OSV
added 2022/12/09 2:59 p.m.7 views

SUSE-SU-2022:4398-1 Security update for go1.18

This update for go1.18 fixes the following issues: Update to version 1.18.9, includes the following security fixes: - CVE-2022-41717: net/http: limit canonical header cache by bytes, not entries bsc1206135 - CVE-2022-41720: os, net/http: avoid escapes from os.DirFS and http.Dir on Windows bsc1206...

7.5CVSS6.6AI score0.05623EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2022/11/30 12:0 a.m.11 views

PT-2022-7291

Name of the Vulnerable Software and Affected Versions net/http versions prior to the fixed version Description The issue is related to the net/http package in the Go programming language, which is vulnerable to excessive memory growth due to unbounded resource allocation. An attacker can cause th...

9.8CVSS8.5AI score0.91969EPSS
Exploits15References302
OSV
OSV
added 2021/12/26 1:6 p.m.8 views

OPENSUSE-SU-2021:1626-1 Security update for go1.16

This update for go1.16 fixes the following issues: Updated to upstream version 1.16.12 to include security fixes to the compiler, syscall, runtime, the net/http, net/http/httptest, and time packages bsc1182345 - CVE-2021-44717: syscall: don't close fd 0 on ForkExec error bsc1193598. -...

7.5CVSS6.5AI score0.03958EPSS
Exploits0References6
OSV
OSV
added 2021/12/23 11:35 a.m.8 views

OPENSUSE-SU-2021:4186-1 Security update for go1.17

This update for go1.17 fixes the following issues: Updated to upstream version 1.17.5 to include fixes to the compiler, linker, syscall, runtime, the net/http, go/types, and time packages bsc1190649 - CVE-2021-44717: syscall: don't close fd 0 on ForkExec error bsc1193598. - CVE-2021-44716:...

7.5CVSS6.4AI score0.03958EPSS
Exploits0References6
Rows per page
Query Builder