AZL-41422 CVE-2020-28851 affecting package multus for versions less than 4.0.2-1
In x/text in Go 1.15.4, an "index out of range" panic occurs in language.ParseAcceptLanguage while parsing the -u- extension. x/text/language is supposed to be able to parse an HTTP Accept-Language header...