Net Security Vulnerabilities and Issues — Net CVE List

Lucene search

GolangNet

6 matches found

CVE•added 2018/10/01 8:29 a.m.•354 views

CVE-2018-17847

The html package (aka x/net/html) through 2018-09-25 in Go mishandles , leading to a "panic: runtime error" (index out of range) in (*nodeStack).pop in node.go, called from (*parser).clearActiveFormattingElements, during an html.Parse call.

7.5CVSS7.2AI score0.00906EPSS

CVE•added 2018/10/01 8:29 a.m.•343 views

CVE-2018-17848

The html package (aka x/net/html) through 2018-09-25 in Go mishandles , leading to a "panic: runtime error" (index out of range) in (*insertionModeStack).pop in node.go, called from inHeadIM, during an html.Parse call.

7.5CVSS7.2AI score0.01025EPSS

CVE•added 2018/09/17 2:29 p.m.•73 views

CVE-2018-17143

The html package (aka x/net/html) through 2018-09-17 in Go mishandles , leading to a "panic: runtime error" in inBodyIM in parse.go during an html.Parse call.

7.5CVSS7.3AI score0.00633EPSS

CVE•added 2018/09/17 2:29 p.m.•66 views

CVE-2018-17142

The html package (aka x/net/html) through 2018-09-17 in Go mishandles , leading to a "panic: runtime error" in parseCurrentToken in parse.go during an html.Parse call.

7.5CVSS7.2AI score0.00747EPSS

CVE•added 2018/10/01 8:29 a.m.•60 views

CVE-2018-17846

The html package (aka x/net/html) through 2018-09-25 in Go mishandles , leading to an infinite loop during an html.Parse call because inSelectIM and inSelectInTableIM do not comply with a specification.

7.5CVSS7.3AI score0.00735EPSS

CVE•added 2018/09/16 2:29 a.m.•57 views

CVE-2018-17075

The html package (aka x/net/html) before 2018-07-13 in Go mishandles "in frameset" insertion mode, leading to a "panic: runtime error" for html.Parse of , , or . This is related to HTMLTreeBuilder.cpp in WebKit.

7.5CVSS7.2AI score0.00745EPSS