Vulnerabilities > Golang > Text > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-12-26 | CVE-2021-38561 | Out-of-bounds Read vulnerability in Golang Text golang.org/x/text/language in golang.org/x/text before 0.3.7 can panic with an out-of-bounds read during BCP 47 language tag parsing. | 7.5 |
| 2022-10-14 | CVE-2022-32149 | Missing Release of Resource after Effective Lifetime vulnerability in Golang Text An attacker may cause a denial of service by crafting an Accept-Language header which ParseAcceptLanguage will take significant time to parse. | 7.5 |
| 2021-01-02 | CVE-2020-28852 | Improper Validation of Array Index vulnerability in Golang Text In x/text in Go before v0.3.5, a "slice bounds out of range" panic occurs in language.ParseAcceptLanguage while processing a BCP 47 tag. | 7.5 |
| 2020-06-17 | CVE-2020-14040 | Infinite Loop vulnerability in multiple products The x/text package before 0.3.3 for Go has a vulnerability in encoding/unicode that could lead to the UTF-16 decoder entering an infinite loop, causing the program to crash or run out of memory. | 7.5 |