golang-golang-x-text

Link package | bugs open | bugs closed | Wiki | GitHub | web search
Description Go text processing support
Version 0.3.3-2 [community]

Open

Group Affected Fixed Severity Status Ticket
AVG-1396 0.3.3-2 Medium Vulnerable FS#70320
Issue Group Severity Remote Type Description
CVE-2020-28852 AVG-1396 Medium Yes Denial of service
In golang-golang-x-text before version 0.3.5, a "slice bounds out of range" panic occurs in language.ParseAcceptLanguage while processing a BCP 47 tag....
CVE-2020-28851 AVG-1396 Medium Yes Denial of service
In golang-golang-x-text before version 0.3.6, an "index out of range" panic occurs in language.ParseAcceptLanguage while parsing the -u- extension....