golang-golang-x-text

Link	package \| bugs open \| bugs closed \| Wiki \| GitHub \| web search
Description	Go text processing support
Version	0.3.3-2 [community]

Open

Group	Affected	Fixed	Severity	Status	Ticket
AVG-1396	0.3.3-2		Medium	Vulnerable	FS#70320

Issue	Group	Severity	Remote	Type	Description
CVE-2020-28852	AVG-1396	Medium	Yes	Denial of service	In golang-golang-x-text before version 0.3.5, a "slice bounds out of range" panic occurs in language.ParseAcceptLanguage while processing a BCP 47 tag....
CVE-2020-28851	AVG-1396	Medium	Yes	Denial of service	In golang-golang-x-text before version 0.3.6, an "index out of range" panic occurs in language.ParseAcceptLanguage while parsing the -u- extension....

Issue

Group

Severity

Remote

Type

Description

CVE-2020-28852

AVG-1396

Medium

Yes

Denial of service

In golang-golang-x-text before version 0.3.5, a "slice bounds out of range" panic occurs in language.ParseAcceptLanguage while processing a BCP 47 tag....

CVE-2020-28851

AVG-1396

Medium

Yes

Denial of service

In golang-golang-x-text before version 0.3.6, an "index out of range" panic occurs in language.ParseAcceptLanguage while parsing the -u- extension....