Go standard library - CVE CyberSecurity Database News (Page 4)

Apr 6, 2023 Windows Exploit Go standard library

CVE-2023-24534 - Fixing HTTP and MIME Header Parsing to Prevent Memory Exhaustion and Denial of Service Attacks

Recently, a vulnerability has been discovered in a common function used to parse HTTP and MIME headers, affecting multiple HTTP servers. In this article, we

Mar 8, 2023 Exploit Go standard library

CVE-2023-24532: Incorrect Results in P256 Curve ScalarMult and ScalarBaseMult Methods Could Expose Vulnerabilities in Go Cryptography

A recently identified vulnerability, CVE-2023-24532, could pose a potential security risk to developers who use the Go cryptography library crypto/elliptic. This issue affects the

Feb 28, 2023 Go standard library

CVE-2022-41725 - Denial of Service Vulnerability in net/http and mime/multipart Due to Excessive Resource Consumption

A recent vulnerability discovery, identified as CVE-2022-41725, has been found in the popular Go programming language. The vulnerability makes it possible to trigger a denial

CVE-2022-41724: Exploring Large Handshake Records that Cause Panics in crypto/tls

Feb 28, 2023 Exploit Go standard library

CVE-2022-41724: Exploring Large Handshake Records that Cause Panics in crypto/tls

The CVE-2022-41724 vulnerability has been discovered within the crypto/tls library of the Go standard library. This bug causes servers and clients to panic when