Описание
This affects all versions of package github.com/russellhaering/goxmldsig. There is a crash on nil-pointer dereference caused by sending malformed XML signatures.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| golang-github-russellhaering-goxmldsig | fixed | 1.1.1-1 | package | |
| golang-github-russellhaering-goxmldsig | fixed | 1.1.0-1+deb11u1 | bullseye | package |
| golang-github-russellhaering-goxmldsig | fixed | 0.0~git20170911.b7efc62-1+deb10u1 | buster | package |
Примечания
https://github.com/russellhaering/goxmldsig/issues/48
https://github.com/russellhaering/goxmldsig/commit/fb23e0af61c023e3a6dae8ad30dbd0f04d8a4d8f
EPSS
Связанные уязвимости
This affects all versions of package github.com/russellhaering/goxmldsig. There is a crash on nil-pointer dereference caused by sending malformed XML signatures.
This affects all versions of package github.com/russellhaering/goxmldsig. There is a crash on nil-pointer dereference caused by sending malformed XML signatures.
This affects all versions of package github.com/russellhaering/goxmldsig. There is a crash on nil-pointer dereference caused by sending malformed XML signatures.
goxmldsig vulnerable to crash on nil-pointer dereference caused by sending malformed XML signatures
EPSS