Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2025-58185

Опубликовано: 29 окт. 2025
Источник: debian
EPSS Низкий

Описание

Parsing a maliciously crafted DER payload could allocate large amounts of memory, causing memory exhaustion.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
golang-1.25fixed1.25.2-1package
golang-1.24fixed1.24.8-1package
golang-1.24no-dsatrixiepackage
golang-1.23removedpackage
golang-1.19removedpackage
golang-1.19no-dsabookwormpackage
golang-1.15removedpackage
golang-1.15postponedbullseyepackage

Примечания

  • https://groups.google.com/g/golang-announce/c/4Emdl2iQ_bI/m/qZN5nc-mBgAJ

  • https://github.com/golang/go/issues/75671

  • https://github.com/golang/go/commit/e0f655bf3f96410f90756f49532bc6a1851855ca (go1.25.2)

  • https://github.com/golang/go/commit/5c3d61c886f7ecfce9a6d6d3c97e6d5a8afb17d1 (go1.24.8)

EPSS

Процентиль: 5%
0.00025
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2025-58185

CVSS3: 5.3
ubuntu
27 дней назад

[encoding/asn1: pre-allocating memory when parsing DER payload can cause memory exhaustion]

nvd логотип

CVE-2025-58185

CVSS3: 5.3
nvd
7 дней назад

Parsing a maliciously crafted DER payload could allocate large amounts of memory, causing memory exhaustion.

msrc логотип

CVE-2025-58185

msrc
6 дней назад

Parsing DER payload can cause memory exhaustion in encoding/asn1

github логотип

GHSA-jwmf-chvc-rf92

CVSS3: 5.3
github
7 дней назад

Parsing a maliciously crafted DER payload could allocate large amounts of memory, causing memory exhaustion.

suse-cvrf логотип

SUSE-SU-2025:3682-1

suse-cvrf
16 дней назад

Security update for go1.24

EPSS

Процентиль: 5%
0.00025
Низкий