CVE-2020-28851 log

Source
Severity Low
Remote No
Type Denial of service
Description
In x/text in Go 1.15.4, an "index out of range" panic occurs in language.ParseAcceptLanguage while parsing the -u- extension. (x/text/language is supposed to be able to parse an HTTP Accept-Language header.)
Group Package Affected Fixed Severity Status Ticket
AVG-1396 golang-golang-x-text 0.3.3-2 Low Vulnerable
References
https://github.com/golang/go/issues/42535
https://play.golang.org/p/FCHj_rCBdiH