Cleartext Message Spoofing
github.com/golang/crypto is vulnerable to cleartext message spoofing. A remote attacker is able to spoof parts of the message via malicious messages containing control or unicode characters, to trick a user into performing an undesired action...