Lucene search
K

5 matches found

Snyk
Snyk
‱added 2022/07/01 8:11 p.m.‱3 views

Infinite loop

Overview std/encoding/binary is a Go standard library package std/encoding/binary Affected versions of this package are vulnerable to Infinite loop. Go Vulnerability Report: ReadUvarint and ReadVarint can read an unlimited number of bytes from invalid inputs.Certain invalid inputs to ReadUvarint ...

8.7CVSS6.7AI score0.0473EPSS
Exploits0References3
RedHat Linux
RedHat Linux
‱added 2021/06/01 4:12 a.m.‱5 views

golang: ReadUvarint and ReadVarint can read an unlimited number of bytes from invalid inputs

A flaw was found in the Go encoding/binary package. Certain invalid inputs to the ReadUvarint or the ReadVarint causes those functions to read an unlimited number of bytes from the ByteReader argument before returning an error. This flaw possibly leads to processing more input than expected. The...

7.5CVSS7.2AI score0.0473EPSS
Exploits0References5
OSV
OSV
‱added 2021/04/28 7:15 p.m.‱3 views

DEBIAN-CVE-2021-29482

xz is a compression and decompression library focusing on the xz format completely written in Go. The function readUvarint used to read the xz container format may not terminate a loop provide malicous input. The problem has been fixed in release v0.5.8. As a workaround users can limit the size o...

7.5CVSS7.1AI score0.01438EPSS
Exploits0References1
RedHat Linux
RedHat Linux
‱added 2020/12/15 7:37 p.m.‱5 views

golang: ReadUvarint and ReadVarint can read an unlimited number of bytes from invalid inputs

A flaw was found in the Go encoding/binary package. Certain invalid inputs to the ReadUvarint or the ReadVarint causes those functions to read an unlimited number of bytes from the ByteReader argument before returning an error. This flaw possibly leads to processing more input than expected. The...

7.5CVSS7.2AI score0.0473EPSS
Exploits0References5
RedHat Linux
RedHat Linux
‱added 2020/10/27 2:47 p.m.‱5 views

golang: ReadUvarint and ReadVarint can read an unlimited number of bytes from invalid inputs

A flaw was found in the Go encoding/binary package. Certain invalid inputs to the ReadUvarint or the ReadVarint causes those functions to read an unlimited number of bytes from the ByteReader argument before returning an error. This flaw possibly leads to processing more input than expected. The...

7.5CVSS7.2AI score0.0473EPSS
Exploits0References5
Rows per page
Query Builder