2 matches found
CVE-2025-0913
CVE-2025-0913 : The Go standard library change fixes a mismatch in behavior of os.OpenFile with O_CREATE|O_EXCL when the path is a dangling symlink. Previously Unix vs Windows differed; now the operation returns an error if both flags are set and the target is a symlink. This vulnerability is rat...
Updated golang packages fix security vulnerabilities
Proxy-Authorization and Proxy-Authenticate headers persisted on cross-origin redirects potentially leaking sensitive information. CVE-2025-4673. os: inconsistent handling of OCREATE|OEXCL on Unix and Windows os.OpenFilepath, os.OCREATE|OEXCL behaved differently on Unix and Windows systems when th...