Go standard library - CVE CyberSecurity Database News

Dec 6, 2023 Go standard library

CVE-2023-39326: Understanding the Risks and Exploitations of HTTP Chunk Extensions

As the digital landscape evolves, new security vulnerabilities continue emerging. Today, we will discuss a critical vulnerability - CVE-2023-39326 - which affects HTTP communication and

Nov 9, 2023 Windows Exploit Go standard library

CVE-2023-45283: Filepath Package Vulnerability in Windows Root Local Device Paths

Summary: A vulnerability has been discovered in the filepath package which allows access to arbitrary locations on the system by not recognizing paths with a

Sep 8, 2023 Google Go standard library

CVE-2023-39322 - Unbounded Memory Growth in QUIC Connections Resolved with Consistent Message Size Limitation

Recently, a vulnerability has been reported affecting the reliability and performance of QUIC (Quick UDP Internet Connections) by allowing unbounded memory growth. The vulnerability, marked

Sep 8, 2023 Exploit Go standard library

CVE-2023-39321 - QUIC Connection Incomplete Post-Handshake Message Processing Vulnerability

In this blog post, we are going to discuss a newly discovered vulnerability, CVE-2023-39321, that affects the processing of incomplete post-handshake messages in the QUIC

Sep 8, 2023 XSS Exploit Go standard library

CVE-2023-39319 - Critical XSS Vulnerability in the HTML/Template Package Affecting "<script", "<!--“, and "</script" Handling

A security vulnerability (CVE-2023-39319) has been discovered in the html/template package, which may lead to Cross-Site Scripting (XSS) attacks if exploited. This vulnerability affects