AVG-2006 log

Package go
Status Fixed
Severity Medium
Type multiple issues
Affected 2:1.16.4-1
Fixed 2:1.16.5-1
Current 2:1.23.4-1 [extra]
Ticket None
Created Thu May 27 20:15:01 2021
Issue Severity Remote Type Description
CVE-2021-33198 Low Yes Denial of service
A security issue has been found in Go before version 1.16.5. The SetString and UnmarshalText methods of math/big.Rat may cause a panic or an unrecoverable...
CVE-2021-33197 Medium Yes Url request injection
A security issue has been found in Go before version 1.16.5. ReverseProxy in net/http/httputil could be made to forward certain hop-by-hop headers,...
CVE-2021-33196 Low Yes Denial of service
A security issue has been found in Go before version 1.16.5. Due to a pre-allocation optimization in zip.NewReader, a malformed archive which indicates it...
CVE-2021-33195 Medium Yes Insufficient validation
A security issue has been found in Go before version 1.16.5. The LookupCNAME, LookupSRV, LookupMX, LookupNS, and LookupAddr functions in net, and their...
Date Advisory Package Type
15 Jun 2021 ASA-202106-42 go multiple issues