Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

145 matches found

Amazon
Amazonadded 2026/04/30 12:0 a.m.9 views

Medium: credentials-fetcher

Issue Overview: Arithmetic over induction variables in loops were not correctly checked for underflow or overflow in the Go compiler cmd/compile. As a result, the compiler would allow for invalid indexing to occur at runtime, potentially leading to memory corruption in programs compiled with...

9.8CVSS5.7AI score0.00536EPSS
Exploits0
Amazon
Amazonadded 2026/04/30 12:0 a.m.16 views

Important: docker

Issue Overview: Arithmetic over induction variables in loops were not correctly checked for underflow or overflow in the Go compiler cmd/compile. As a result, the compiler would allow for invalid indexing to occur at runtime, potentially leading to memory corruption in programs compiled with...

9.8CVSS7.8AI score0.08123EPSS
Exploits1
OSV
OSVadded 2026/04/23 4:39 p.m.3 views

SUSE-SU-2026:1581-1 Security update for go1.25-openssl

This update for go1.25-openssl fixes the following issues: - Update to go1.25.9 bsc1244485. - CVE-2026-27140: cmd/go: trust layer bypass when using cgo and SWIG bsc1261653. - CVE-2026-27143: cmd/compile: possible memory corruption after bound check elimination bsc1261654. - CVE-2026-27144:...

9.8CVSS5.6AI score0.00536EPSS
Exploits0References20
SUSE Linux
SUSE Linuxadded 2026/04/23 4:38 p.m.5 views

Security update for go1.26-openssl

This update for go1.26-openssl fixes the following issues: Update to go1.26.2 bsc1255111. CVE-2026-27140: cmd/go: trust layer bypass when using cgo and SWIG bsc1261653. CVE-2026-27143: cmd/compile: possible memory corruption after bound check elimination bsc1261654. CVE-2026-27144: cmd/compile:...

7.5CVSS5.6AI score0.00449EPSS
Exploits0References44
Tenable Nessus
Tenable Nessusadded 2026/04/22 12:0 a.m.8 views

openSUSE 16 Security Update : go1.26 (openSUSE-SU-2026:20571-1)

The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20571-1 advisory. - Update to version go1.26.2 bsc1255111. - CVE-2026-27140: cmd/go: trust layer bypass when using cgo and SWIG bsc1261653. - CVE-2026-27143:...

9.8CVSS5.9AI score0.00536EPSS
Exploits0References31
OSV
OSVadded 2026/04/20 2:0 p.m.1 views

SUSE-SU-2026:21356-1 Security update for go1.26

This update for go1.26 fixes the following issues: - Update to version go1.26.2 bsc1255111. - CVE-2026-27140: cmd/go: trust layer bypass when using cgo and SWIG bsc1261653. - CVE-2026-27143: cmd/compile: possible memory corruption after bound check elimination bsc1261654. - CVE-2026-27144:...

9.8CVSS5.7AI score0.00536EPSS
Exploits0References22
OSV
OSVadded 2026/04/14 12:39 p.m.3 views

SUSE-SU-2026:1320-1 Security update for go1.26

This update for go1.26 fixes the following issues: - Update to go1.26.2 bsc1255111. - CVE-2026-27140: cmd/go: trust layer bypass when using cgo and SWIG bsc1261653. - CVE-2026-27143: cmd/compile: possible memory corruption after bound check elimination bsc1261654. - CVE-2026-27144: cmd/compile:...

9.8CVSS6AI score0.00536EPSS
Exploits0References22
OSV
OSVadded 2026/04/13 5:43 a.m.1 views

BIT-GOLANG-2026-32288 Unbounded allocation for old GNU sparse in archive/tar

tar.Reader can allocate an unbounded amount of memory when reading a maliciously-crafted archive containing a large number of sparse regions encoded in the "old GNU sparse map" format...

5.5CVSS5.8AI score0.0029EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2026/04/13 12:0 a.m.2 views

PT-2026-32423

tar.Reader can allocate an unbounded amount of memory when reading a maliciously-crafted archive containing a large number of sparse regions encoded in the "old GNU sparse map" format...

5.5CVSS5.8AI score0.0029EPSS
Exploits0References6
SUSE CVE
SUSE CVEadded 2026/04/08 11:25 p.m.3 views

SUSE CVE-2026-32288

tar.Reader can allocate an unbounded amount of memory when reading a maliciously-crafted archive containing a large number of sparse regions encoded in the "old GNU sparse map" format...

4.3CVSS5.8AI score0.0029EPSS
Exploits0References10
EUVD
EUVDadded 2026/04/08 3:32 a.m.2 views

EUVD-2026-20016

tar.Reader can allocate an unbounded amount of memory when reading a maliciously-crafted archive containing a large number of sparse regions encoded in the "old GNU sparse map" format...

5.9AI score0.0029EPSS
Exploits0References5
NVD
NVDadded 2026/04/08 2:16 a.m.3 views

CVE-2026-32288

tar.Reader can allocate an unbounded amount of memory when reading a maliciously-crafted archive containing a large number of sparse regions encoded in the "old GNU sparse map" format...

5.5CVSS0.0029EPSS
Exploits0References4
OSV
OSVadded 2026/04/08 2:16 a.m.2 views

DEBIAN-CVE-2026-32288

tar.Reader can allocate an unbounded amount of memory when reading a maliciously-crafted archive containing a large number of sparse regions encoded in the "old GNU sparse map" format...

5.5CVSS5.2AI score0.0029EPSS
Exploits0References1
OSV
OSVadded 2026/04/08 2:16 a.m.2 views

UBUNTU-CVE-2026-32288

tar.Reader can allocate an unbounded amount of memory when reading a maliciously-crafted archive containing a large number of sparse regions encoded in the "old GNU sparse map" format...

5.5CVSS5.8AI score0.0029EPSS
Exploits0References6
Cvelist
Cvelistadded 2026/04/08 1:6 a.m.21 views

CVE-2026-32288 Unbounded allocation for old GNU sparse in archive/tar

tar.Reader can allocate an unbounded amount of memory when reading a maliciously-crafted archive containing a large number of sparse regions encoded in the "old GNU sparse map" format...

0.0029EPSS
Exploits0References4
CVE
CVEadded 2026/04/08 1:6 a.m.17 views

CVE-2026-32288

CVE-2026-32288 affects Go’s archive/tar parsing of the old GNU sparse map format. A malicious tar with many sparse regions can trigger tar.Reader to allocate unbounded memory, potentially exhausting memory and causing high availability impact. Documented impact metrics show LOCAL attack vector, L...

5.5CVSS5.9AI score0.0029EPSS
Exploits0References4Affected Software1
AlpineLinux
AlpineLinuxadded 2026/04/08 1:6 a.m.2 views

CVE-2026-32288

tar.Reader can allocate an unbounded amount of memory when reading a maliciously-crafted archive containing a large number of sparse regions encoded in the "old GNU sparse map" format...

5.5CVSS5.8AI score0.0029EPSS
Exploits0
Debian CVE
Debian CVEadded 2026/04/08 1:6 a.m.2 views

CVE-2026-32288

tar.Reader can allocate an unbounded amount of memory when reading a maliciously-crafted archive containing a large number of sparse regions encoded in the "old GNU sparse map" format...

5.5CVSS5.2AI score0.0029EPSS
Exploits0
OSV
OSVadded 2026/04/07 10:53 p.m.4 views

GO-2026-4869 Unbounded allocation for old GNU sparse in archive/tar

tar.Reader can allocate an unbounded amount of memory when reading a maliciously-crafted archive containing a large number of sparse regions encoded in the "old GNU sparse map" format...

5.5CVSS5.8AI score0.0029EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2026/04/07 12:0 a.m.4 views

PT-2026-31065

Name of the Vulnerable Software and Affected Versions tar.Reader affected versions not specified Description tar.Reader can allocate an unbounded amount of memory when processing a specially crafted archive containing numerous sparse regions encoded using the "old GNU sparse map" format. This can...

9.1CVSS5.8AI score0.00565EPSS
Exploits0References238
Rows per page
Query Builder