Количество 35
Количество 35
ELSA-2026-5942
ELSA-2026-5942: golang security update (IMPORTANT)
ELSA-2026-5941
ELSA-2026-5941: golang security update (IMPORTANT)
CVE-2026-25679
url.Parse insufficiently validated the host/authority component and accepted some invalid URLs.
CVE-2026-25679
url.Parse insufficiently validated the host/authority component and accepted some invalid URLs.
CVE-2026-25679
url.Parse insufficiently validated the host/authority component and accepted some invalid URLs.
CVE-2026-25679
Incorrect parsing of IPv6 host literals in net/url
CVE-2026-25679
url.Parse insufficiently validated the host/authority component and ac ...
CVE-2025-61731
Building a malicious file with cmd/go can cause can cause a write to an attacker-controlled file with partial control of the file content. The "#cgo pkg-config:" directive in a Go source file provides command-line arguments to provide to the Go pkg-config command. An attacker can provide a "--log-file" argument to this directive, causing pkg-config to write to an attacker-controlled location.
CVE-2025-61731
Building a malicious file with cmd/go can cause can cause a write to an attacker-controlled file with partial control of the file content. The "#cgo pkg-config:" directive in a Go source file provides command-line arguments to provide to the Go pkg-config command. An attacker can provide a "--log-file" argument to this directive, causing pkg-config to write to an attacker-controlled location.
CVE-2025-61731
Building a malicious file with cmd/go can cause can cause a write to an attacker-controlled file with partial control of the file content. The "#cgo pkg-config:" directive in a Go source file provides command-line arguments to provide to the Go pkg-config command. An attacker can provide a "--log-file" argument to this directive, causing pkg-config to write to an attacker-controlled location.
CVE-2025-61731
Building a malicious file with cmd/go can cause can cause a write to a ...
GHSA-j3gx-2473-5fp8
url.Parse insufficiently validated the host/authority component and accepted some invalid URLs.
BDU:2026-04127
Уязвимость функции url.Parse() компонента host/authority языка программирования Go, позволяющая нарушителю выполнить произвольный код
GHSA-xvqr-69v8-f3gv
Building a malicious file with cmd/go can cause can cause a write to an attacker-controlled file with partial control of the file content. The "#cgo pkg-config:" directive in a Go source file provides command-line arguments to provide to the Go pkg-config command. An attacker can provide a "--log-file" argument to this directive, causing pkg-config to write to an attacker-controlled location.
BDU:2026-03411
Уязвимость языка программирования Golang, связанная с недостаточным контролем ресурса в период его существования, позволяющая нарушителю вызвать отказ в обслуживании
ROS-20260327-73-0016
Уязвимость golang
ROS-20260320-73-0010
Уязвимость etcd
ROS-20260209-73-0046
Уязвимость golang
SUSE-SU-2026:0875-1
Security update for go1.25
openSUSE-SU-2026:20342-1
Security update for go1.26
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
| ELSA-2026-5942 ELSA-2026-5942: golang security update (IMPORTANT) | 13 дней назад | ||
| ELSA-2026-5941 ELSA-2026-5941: golang security update (IMPORTANT) | 13 дней назад | ||
 | CVE-2026-25679 url.Parse insufficiently validated the host/authority component and accepted some invalid URLs. | CVSS3: 7.5 | 0% Низкий | около 1 месяца назад |
 | CVE-2026-25679 url.Parse insufficiently validated the host/authority component and accepted some invalid URLs. | CVSS3: 7.5 | 0% Низкий | около 1 месяца назад |
 | CVE-2026-25679 url.Parse insufficiently validated the host/authority component and accepted some invalid URLs. | CVSS3: 7.5 | 0% Низкий | около 1 месяца назад |
 | CVE-2026-25679 Incorrect parsing of IPv6 host literals in net/url | 0% Низкий | 27 дней назад | |
| CVE-2026-25679 url.Parse insufficiently validated the host/authority component and ac ... | CVSS3: 7.5 | 0% Низкий | около 1 месяца назад |
| CVE-2025-61731 Building a malicious file with cmd/go can cause can cause a write to an attacker-controlled file with partial control of the file content. The "#cgo pkg-config:" directive in a Go source file provides command-line arguments to provide to the Go pkg-config command. An attacker can provide a "--log-file" argument to this directive, causing pkg-config to write to an attacker-controlled location. | CVSS3: 7.8 | 0% Низкий | 2 месяца назад |
| CVE-2025-61731 Building a malicious file with cmd/go can cause can cause a write to an attacker-controlled file with partial control of the file content. The "#cgo pkg-config:" directive in a Go source file provides command-line arguments to provide to the Go pkg-config command. An attacker can provide a "--log-file" argument to this directive, causing pkg-config to write to an attacker-controlled location. | CVSS3: 8.6 | 0% Низкий | 2 месяца назад |
| CVE-2025-61731 Building a malicious file with cmd/go can cause can cause a write to an attacker-controlled file with partial control of the file content. The "#cgo pkg-config:" directive in a Go source file provides command-line arguments to provide to the Go pkg-config command. An attacker can provide a "--log-file" argument to this directive, causing pkg-config to write to an attacker-controlled location. | CVSS3: 7.8 | 0% Низкий | 2 месяца назад |
| CVE-2025-61731 Building a malicious file with cmd/go can cause can cause a write to a ... | CVSS3: 7.8 | 0% Низкий | 2 месяца назад |
| GHSA-j3gx-2473-5fp8 url.Parse insufficiently validated the host/authority component and accepted some invalid URLs. | CVSS3: 7.5 | 0% Низкий | около 1 месяца назад |
 | BDU:2026-04127 Уязвимость функции url.Parse() компонента host/authority языка программирования Go, позволяющая нарушителю выполнить произвольный код | CVSS3: 7.5 | 0% Низкий | около 1 месяца назад |
| GHSA-xvqr-69v8-f3gv Building a malicious file with cmd/go can cause can cause a write to an attacker-controlled file with partial control of the file content. The "#cgo pkg-config:" directive in a Go source file provides command-line arguments to provide to the Go pkg-config command. An attacker can provide a "--log-file" argument to this directive, causing pkg-config to write to an attacker-controlled location. | CVSS3: 7.8 | 0% Низкий | 2 месяца назад |
| BDU:2026-03411 Уязвимость языка программирования Golang, связанная с недостаточным контролем ресурса в период его существования, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 7.8 | 0% Низкий | 2 месяца назад |
 | ROS-20260327-73-0016 Уязвимость golang | CVSS3: 7.5 | 0% Низкий | 12 дней назад |
| ROS-20260320-73-0010 Уязвимость etcd | CVSS3: 7.8 | 0% Низкий | 19 дней назад |
| ROS-20260209-73-0046 Уязвимость golang | CVSS3: 7.8 | 0% Низкий | около 2 месяцев назад |
 | SUSE-SU-2026:0875-1 Security update for go1.25 | 27 дней назад | ||
| openSUSE-SU-2026:20342-1 Security update for go1.26 | 27 дней назад |
Уязвимостей на страницу