AVG-2006 log
| Package | go |
| Status | Fixed |
| Severity | Medium |
| Type | multiple issues |
| Affected | 2:1.16.4-1 |
| Fixed | 2:1.16.5-1 |
| Current | 2:1.25.3-1 [extra] |
| Ticket | None |
| Created | Thu May 27 20:15:01 2021 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2021-33198 | Low | Yes | Denial of service | A security issue has been found in Go before version 1.16.5. The SetString and UnmarshalText methods of math/big.Rat may cause a panic or an unrecoverable... |
| CVE-2021-33197 | Medium | Yes | Url request injection | A security issue has been found in Go before version 1.16.5. ReverseProxy in net/http/httputil could be made to forward certain hop-by-hop headers,... |
| CVE-2021-33196 | Low | Yes | Denial of service | A security issue has been found in Go before version 1.16.5. Due to a pre-allocation optimization in zip.NewReader, a malformed archive which indicates it... |
| CVE-2021-33195 | Medium | Yes | Insufficient validation | A security issue has been found in Go before version 1.16.5. The LookupCNAME, LookupSRV, LookupMX, LookupNS, and LookupAddr functions in net, and their... |
| Date | Advisory | Package | Type |
|---|---|---|---|
| 15 Jun 2021 | ASA-202106-42 | go | multiple issues |