2 matches found
BELL-CVE-2020-29509 CVE-2020-29509 does not affect BellSoft software
Bulletin has no description...
AZL-6448 CVE-2020-29509 affecting package golang for versions less than 1.20.10-1
The encoding/xml package in Go all versions does not correctly preserve the semantics of attribute namespace prefixes during tokenization round-trips, which allows an attacker to craft inputs that behave in conflicting ways during different stages of processing in affected downstream applications...