Количество 49
Количество 49
SUSE-SU-2021:0937-1
Security update for go1.16
CVE-2021-33196
In archive/zip in Go before 1.15.13 and 1.16.x before 1.16.5, a crafted file count (in an archive's header) can cause a NewReader or OpenReader panic.
CVE-2021-33196
In archive/zip in Go before 1.15.13 and 1.16.x before 1.16.5, a crafted file count (in an archive's header) can cause a NewReader or OpenReader panic.
CVE-2021-33196
In archive/zip in Go before 1.15.13 and 1.16.x before 1.16.5, a crafted file count (in an archive's header) can cause a NewReader or OpenReader panic.
CVE-2021-33196
CVE-2021-33196
In archive/zip in Go before 1.15.13 and 1.16.x before 1.16.5, a crafte ...
CVE-2021-34558
The crypto/tls package of Go through 1.16.5 does not properly assert that the type of public key in an X.509 certificate matches the expected type when doing a RSA based key exchange, allowing a malicious TLS server to cause a TLS client to panic.
CVE-2021-34558
The crypto/tls package of Go through 1.16.5 does not properly assert that the type of public key in an X.509 certificate matches the expected type when doing a RSA based key exchange, allowing a malicious TLS server to cause a TLS client to panic.
CVE-2021-34558
The crypto/tls package of Go through 1.16.5 does not properly assert that the type of public key in an X.509 certificate matches the expected type when doing a RSA based key exchange, allowing a malicious TLS server to cause a TLS client to panic.
CVE-2021-34558
CVE-2021-34558
The crypto/tls package of Go through 1.16.5 does not properly assert t ...
GHSA-6r28-26q2-vxwj
Go before 1.15.12 and 1.16.x before 1.16.5 attempts to allocate excessive memory (issue 1 of 2).
BDU:2022-01685
Уязвимость компонента archive/zip языка программирования Golang, позволяющая нарушителю вызвать отказ в обслуживании
openSUSE-SU-2021:2398-1
Security update for go1.15
openSUSE-SU-2021:2392-1
Security update for go1.16
openSUSE-SU-2021:1079-1
Security update for go1.15
openSUSE-SU-2021:1078-1
Security update for go1.16
SUSE-SU-2021:2398-1
Security update for go1.15
SUSE-SU-2021:2392-1
Security update for go1.16
GHSA-hqrm-74p3-w275
The crypto/tls package of Go through 1.16.5 does not properly assert that the type of public key in an X.509 certificate matches the expected type when doing a RSA based key exchange, allowing a malicious TLS server to cause a TLS client to panic.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | SUSE-SU-2021:0937-1 Security update for go1.16 | около 4 лет назад | ||
 | CVE-2021-33196 In archive/zip in Go before 1.15.13 and 1.16.x before 1.16.5, a crafted file count (in an archive's header) can cause a NewReader or OpenReader panic. | CVSS3: 7.5 | 0% Низкий | почти 4 года назад |
 | CVE-2021-33196 In archive/zip in Go before 1.15.13 and 1.16.x before 1.16.5, a crafted file count (in an archive's header) can cause a NewReader or OpenReader panic. | CVSS3: 7.5 | 0% Низкий | около 4 лет назад |
 | CVE-2021-33196 In archive/zip in Go before 1.15.13 and 1.16.x before 1.16.5, a crafted file count (in an archive's header) can cause a NewReader or OpenReader panic. | CVSS3: 7.5 | 0% Низкий | почти 4 года назад |
 | CVSS3: 7.5 | 0% Низкий | 9 месяцев назад | |
| CVE-2021-33196 In archive/zip in Go before 1.15.13 and 1.16.x before 1.16.5, a crafte ... | CVSS3: 7.5 | 0% Низкий | почти 4 года назад |
| CVE-2021-34558 The crypto/tls package of Go through 1.16.5 does not properly assert that the type of public key in an X.509 certificate matches the expected type when doing a RSA based key exchange, allowing a malicious TLS server to cause a TLS client to panic. | CVSS3: 6.5 | 1% Низкий | почти 4 года назад |
| CVE-2021-34558 The crypto/tls package of Go through 1.16.5 does not properly assert that the type of public key in an X.509 certificate matches the expected type when doing a RSA based key exchange, allowing a malicious TLS server to cause a TLS client to panic. | CVSS3: 6.5 | 1% Низкий | почти 4 года назад |
| CVE-2021-34558 The crypto/tls package of Go through 1.16.5 does not properly assert that the type of public key in an X.509 certificate matches the expected type when doing a RSA based key exchange, allowing a malicious TLS server to cause a TLS client to panic. | CVSS3: 6.5 | 1% Низкий | почти 4 года назад |
| CVSS3: 6.5 | 1% Низкий | почти 4 года назад | |
| CVE-2021-34558 The crypto/tls package of Go through 1.16.5 does not properly assert t ... | CVSS3: 6.5 | 1% Низкий | почти 4 года назад |
| GHSA-6r28-26q2-vxwj Go before 1.15.12 and 1.16.x before 1.16.5 attempts to allocate excessive memory (issue 1 of 2). | CVSS3: 7.5 | 0% Низкий | около 3 лет назад |
 | BDU:2022-01685 Уязвимость компонента archive/zip языка программирования Golang, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 7.5 | 0% Низкий | около 4 лет назад |
| openSUSE-SU-2021:2398-1 Security update for go1.15 | 1% Низкий | почти 4 года назад | |
| openSUSE-SU-2021:2392-1 Security update for go1.16 | 1% Низкий | почти 4 года назад | |
| openSUSE-SU-2021:1079-1 Security update for go1.15 | 1% Низкий | почти 4 года назад | |
| openSUSE-SU-2021:1078-1 Security update for go1.16 | 1% Низкий | почти 4 года назад | |
| SUSE-SU-2021:2398-1 Security update for go1.15 | 1% Низкий | почти 4 года назад | |
| SUSE-SU-2021:2392-1 Security update for go1.16 | 1% Низкий | почти 4 года назад | |
| GHSA-hqrm-74p3-w275 The crypto/tls package of Go through 1.16.5 does not properly assert that the type of public key in an X.509 certificate matches the expected type when doing a RSA based key exchange, allowing a malicious TLS server to cause a TLS client to panic. | CVSS3: 6.5 | 1% Низкий | около 3 лет назад |
Уязвимостей на страницу