Описание
Incorrect conversion of certain invalid paths to valid, absolute paths in Clean in path/filepath before Go 1.17.11 and Go 1.18.3 on Windows allows potential directory traversal attack.
| Релиз | Статус | Примечание |
|---|---|---|
| upstream | not-affected | debian: Only affects Go on Windows |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| impish | ignored | end of life |
| upstream | not-affected | debian: Only affects Go on Windows |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| impish | not-affected | windows only |
| jammy | not-affected | windows only |
| kinetic | DNE | |
| lunar | DNE | |
| upstream | not-affected | debian: Only affects Go on Windows |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | not-affected | windows only |
| devel | DNE | |
| esm-infra/focal | DNE | focal was not-affected [windows only] |
| focal | not-affected | windows only |
| jammy | not-affected | windows only |
| kinetic | DNE | |
| lunar | DNE | |
| upstream | not-affected | debian: Only affects Go on Windows |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| upstream | not-affected | debian: Only affects Go on Windows |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | not-affected | windows only |
| esm-apps/bionic | not-affected | windows only |
| upstream | not-affected | debian: Only affects Go on Windows |
Показывать по
Ссылки на источники
7.5 High
CVSS3
Связанные уязвимости
Incorrect conversion of certain invalid paths to valid, absolute paths in Clean in path/filepath before Go 1.17.11 and Go 1.18.3 on Windows allows potential directory traversal attack.
Incorrect conversion of certain invalid paths to valid, absolute paths ...
Incorrect conversion of certain invalid paths to valid, absolute paths in Clean in path/filepath before Go 1.17.11 and Go 1.18.3 on Windows allows potential directory traversal attack.
7.5 High
CVSS3