Описание
When verifying a certificate chain which contains a certificate containing multiple email address constraints which share common local portions but different domain portions, these constraints will not be properly applied, and only the last constraint will be considered.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| golang-1.26 | fixed | 1.26.1-1 | package | |
| golang-1.25 | not-affected | package | ||
| golang-1.24 | not-affected | package | ||
| golang-1.19 | not-affected | package | ||
| golang-1.15 | not-affected | package |
Примечания
https://github.com/golang/go/issues/77952
Fixed by: https://github.com/golang/go/commit/a761c9ff70fec8e1089897eebd104a8f31cff2d3 (go1.26.1)
EPSS
Связанные уязвимости
When verifying a certificate chain which contains a certificate containing multiple email address constraints which share common local portions but different domain portions, these constraints will not be properly applied, and only the last constraint will be considered.
When verifying a certificate chain which contains a certificate containing multiple email address constraints which share common local portions but different domain portions, these constraints will not be properly applied, and only the last constraint will be considered.
When verifying a certificate chain which contains a certificate containing multiple email address constraints which share common local portions but different domain portions, these constraints will not be properly applied, and only the last constraint will be considered.
When verifying a certificate chain which contains a certificate containing multiple email address constraints which share common local portions but different domain portions, these constraints will not be properly applied, and only the last constraint will be considered.
EPSS