Information on source package golang-golang-x-net-dev

Available versions

ReleaseVersion
stretch1:0.0+git20161013.8b4af36+dfsg-3+deb9u1
buster1:0.0+git20181201.351d144+dfsg-3

Open issues

BugstretchbusterDescription
CVE-2023-3978vulnerablevulnerable (no DSA, postponed)Text nodes not in the HTML namespace are incorrectly literally rendere ...
CVE-2022-41717vulnerablevulnerable (no DSA, postponed)An attacker can cause excessive memory growth in a Go server accepting ...
CVE-2022-27664vulnerablevulnerable (no DSA, postponed)In net/http in Go before 1.18.6 and 1.19.x before 1.19.1, attackers ca ...
CVE-2021-44716vulnerable (no DSA, postponed)vulnerable (no DSA, postponed)net/http in Go before 1.16.12 and 1.17.x before 1.17.5 allows uncontro ...
CVE-2021-33194vulnerable (no DSA)vulnerable (no DSA, postponed)golang.org/x/net before v0.0.0-20210520170846-37e1c6afe023 allows atta ...
CVE-2021-31525vulnerable (no DSA)vulnerable (no DSA, postponed)net/http in Go before 1.15.12 and 1.16.x before 1.16.4 allows remote a ...
CVE-2019-9514fixedvulnerable (no DSA)Some HTTP/2 implementations are vulnerable to a reset flood, potential ...
CVE-2019-9512fixedvulnerable (no DSA, postponed)Some HTTP/2 implementations are vulnerable to ping floods, potentially ...

Resolved issues

BugDescription
CVE-2018-17848The html package (aka x/net/html) through 2018-09-25 in Go mishandles ...
CVE-2018-17847The html package (aka x/net/html) through 2018-09-25 in Go mishandles ...
CVE-2018-17846The html package (aka x/net/html) through 2018-09-25 in Go mishandles ...
CVE-2018-17143The html package (aka x/net/html) through 2018-09-17 in Go mishandles ...
CVE-2018-17142The html package (aka x/net/html) through 2018-09-17 in Go mishandles ...
CVE-2018-17075The html package (aka x/net/html) before 2018-07-13 in Go mishandles " ...

Security announcements

DSA / DLADescription
DLA-2485-1golang-golang-x-net-dev - security update
Search for package or bug name: Reporting problems