Vulnerabilities > Golang > Text
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-10-14 | CVE-2022-32149 | Missing Release of Resource after Effective Lifetime vulnerability in Golang Text An attacker may cause a denial of service by crafting an Accept-Language header which ParseAcceptLanguage will take significant time to parse. | 7.5 |
2021-01-02 | CVE-2020-28852 | Improper Validation of Array Index vulnerability in Golang Text In x/text in Go before v0.3.5, a "slice bounds out of range" panic occurs in language.ParseAcceptLanguage while processing a BCP 47 tag. | 5.0 |
2020-06-17 | CVE-2020-14040 | Infinite Loop vulnerability in multiple products The x/text package before 0.3.3 for Go has a vulnerability in encoding/unicode that could lead to the UTF-16 decoder entering an infinite loop, causing the program to crash or run out of memory. | 7.5 |