Количество 39
Количество 39
ELSA-2026-5942
ELSA-2026-5942: golang security update (IMPORTANT)
ELSA-2026-5941
ELSA-2026-5941: golang security update (IMPORTANT)
CVE-2025-61731
Building a malicious file with cmd/go can cause can cause a write to an attacker-controlled file with partial control of the file content. The "#cgo pkg-config:" directive in a Go source file provides command-line arguments to provide to the Go pkg-config command. An attacker can provide a "--log-file" argument to this directive, causing pkg-config to write to an attacker-controlled location.
CVE-2025-61731
Building a malicious file with cmd/go can cause can cause a write to an attacker-controlled file with partial control of the file content. The "#cgo pkg-config:" directive in a Go source file provides command-line arguments to provide to the Go pkg-config command. An attacker can provide a "--log-file" argument to this directive, causing pkg-config to write to an attacker-controlled location.
CVE-2025-61731
Building a malicious file with cmd/go can cause can cause a write to an attacker-controlled file with partial control of the file content. The "#cgo pkg-config:" directive in a Go source file provides command-line arguments to provide to the Go pkg-config command. An attacker can provide a "--log-file" argument to this directive, causing pkg-config to write to an attacker-controlled location.
CVE-2025-61731
Building a malicious file with cmd/go can cause can cause a write to a ...
CVE-2026-25679
url.Parse insufficiently validated the host/authority component and accepted some invalid URLs.
CVE-2026-25679
url.Parse insufficiently validated the host/authority component and accepted some invalid URLs.
CVE-2026-25679
url.Parse insufficiently validated the host/authority component and accepted some invalid URLs.
CVE-2026-25679
Incorrect parsing of IPv6 host literals in net/url
CVE-2026-25679
url.Parse insufficiently validated the host/authority component and ac ...
GHSA-xvqr-69v8-f3gv
Building a malicious file with cmd/go can cause can cause a write to an attacker-controlled file with partial control of the file content. The "#cgo pkg-config:" directive in a Go source file provides command-line arguments to provide to the Go pkg-config command. An attacker can provide a "--log-file" argument to this directive, causing pkg-config to write to an attacker-controlled location.
BDU:2026-03411
Уязвимость языка программирования Golang, связанная с недостаточным контролем ресурса в период его существования, позволяющая нарушителю вызвать отказ в обслуживании
GHSA-j3gx-2473-5fp8
url.Parse insufficiently validated the host/authority component and accepted some invalid URLs.
ELSA-2026-6388
ELSA-2026-6388: grafana-pcp security update (IMPORTANT)
ELSA-2026-6383
ELSA-2026-6383: grafana-pcp security update (IMPORTANT)
ELSA-2026-6382
ELSA-2026-6382: grafana security update (IMPORTANT)
ELSA-2026-6344
ELSA-2026-6344: grafana security update (IMPORTANT)
BDU:2026-04127
Уязвимость функции url.Parse() компонента host/authority языка программирования Go, позволяющая нарушителю выполнить произвольный код
ROS-20260320-73-0010
Уязвимость etcd
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
| ELSA-2026-5942 ELSA-2026-5942: golang security update (IMPORTANT) | 13 дней назад | ||
| ELSA-2026-5941 ELSA-2026-5941: golang security update (IMPORTANT) | 13 дней назад | ||
 | CVE-2025-61731 Building a malicious file with cmd/go can cause can cause a write to an attacker-controlled file with partial control of the file content. The "#cgo pkg-config:" directive in a Go source file provides command-line arguments to provide to the Go pkg-config command. An attacker can provide a "--log-file" argument to this directive, causing pkg-config to write to an attacker-controlled location. | CVSS3: 7.8 | 0% Низкий | 2 месяца назад |
 | CVE-2025-61731 Building a malicious file with cmd/go can cause can cause a write to an attacker-controlled file with partial control of the file content. The "#cgo pkg-config:" directive in a Go source file provides command-line arguments to provide to the Go pkg-config command. An attacker can provide a "--log-file" argument to this directive, causing pkg-config to write to an attacker-controlled location. | CVSS3: 8.6 | 0% Низкий | 2 месяца назад |
 | CVE-2025-61731 Building a malicious file with cmd/go can cause can cause a write to an attacker-controlled file with partial control of the file content. The "#cgo pkg-config:" directive in a Go source file provides command-line arguments to provide to the Go pkg-config command. An attacker can provide a "--log-file" argument to this directive, causing pkg-config to write to an attacker-controlled location. | CVSS3: 7.8 | 0% Низкий | 2 месяца назад |
| CVE-2025-61731 Building a malicious file with cmd/go can cause can cause a write to a ... | CVSS3: 7.8 | 0% Низкий | 2 месяца назад |
| CVE-2026-25679 url.Parse insufficiently validated the host/authority component and accepted some invalid URLs. | CVSS3: 7.5 | 0% Низкий | около 1 месяца назад |
| CVE-2026-25679 url.Parse insufficiently validated the host/authority component and accepted some invalid URLs. | CVSS3: 7.5 | 0% Низкий | около 1 месяца назад |
| CVE-2026-25679 url.Parse insufficiently validated the host/authority component and accepted some invalid URLs. | CVSS3: 7.5 | 0% Низкий | около 1 месяца назад |
 | CVE-2026-25679 Incorrect parsing of IPv6 host literals in net/url | 0% Низкий | 27 дней назад | |
| CVE-2026-25679 url.Parse insufficiently validated the host/authority component and ac ... | CVSS3: 7.5 | 0% Низкий | около 1 месяца назад |
| GHSA-xvqr-69v8-f3gv Building a malicious file with cmd/go can cause can cause a write to an attacker-controlled file with partial control of the file content. The "#cgo pkg-config:" directive in a Go source file provides command-line arguments to provide to the Go pkg-config command. An attacker can provide a "--log-file" argument to this directive, causing pkg-config to write to an attacker-controlled location. | CVSS3: 7.8 | 0% Низкий | 2 месяца назад |
 | BDU:2026-03411 Уязвимость языка программирования Golang, связанная с недостаточным контролем ресурса в период его существования, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 7.8 | 0% Низкий | 2 месяца назад |
| GHSA-j3gx-2473-5fp8 url.Parse insufficiently validated the host/authority component and accepted some invalid URLs. | CVSS3: 7.5 | 0% Низкий | около 1 месяца назад |
| ELSA-2026-6388 ELSA-2026-6388: grafana-pcp security update (IMPORTANT) | 7 дней назад | ||
| ELSA-2026-6383 ELSA-2026-6383: grafana-pcp security update (IMPORTANT) | 7 дней назад | ||
| ELSA-2026-6382 ELSA-2026-6382: grafana security update (IMPORTANT) | 7 дней назад | ||
| ELSA-2026-6344 ELSA-2026-6344: grafana security update (IMPORTANT) | 7 дней назад | ||
| BDU:2026-04127 Уязвимость функции url.Parse() компонента host/authority языка программирования Go, позволяющая нарушителю выполнить произвольный код | CVSS3: 7.5 | 0% Низкий | около 1 месяца назад |
 | ROS-20260320-73-0010 Уязвимость etcd | CVSS3: 7.8 | 0% Низкий | 19 дней назад |
Уязвимостей на страницу