VulnerableCode Package Details - pkg:deb/debian/golang-1.24@0?distro=trixie

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-6a6z-bq7m-c3gf	crypto/x509: Panic in name constraint checking for malformed certificates in crypto/x509	CVE-2026-27138
VCID-evq7-jzj3-6bhu	cmd/go: Arbitrary code execution during build on darwin in cmd/go	CVE-2025-22867
VCID-gtys-5r5h-p7ht		CVE-2026-33810
VCID-kjf2-r6zt-zqg9	net/http: CrossOriginProtection bypass in net/http	CVE-2025-47910
VCID-pcez-y67t-8yg3	net/url: Incorrect parsing of IPv6 host literals in net/url	CVE-2026-25679
VCID-x5ub-bfb7-nbbr	crypto/x509: Incorrect enforcement of email constraints in crypto/x509	CVE-2026-27137
VCID-xjm1-yec3-mkc6	os.OpenFile(path, os.O_CREATE\|O_EXCL) behaved differently on Unix and Windows systems when the target path was a dangling symlink. On Unix systems, OpenFile with O_CREATE and O_EXCL flags never follows symlinks. On Windows, when the target path was a symlink to a nonexistent location, OpenFile would create a file in that location. OpenFile now always returns an error when the O_CREATE and O_EXCL flags are both set and the target path is a symlink.	CVE-2025-0913

Vulnerability

Summary

Aliases

VCID-6a6z-bq7m-c3gf

crypto/x509: Panic in name constraint checking for malformed certificates in crypto/x509

CVE-2026-27138

VCID-evq7-jzj3-6bhu

cmd/go: Arbitrary code execution during build on darwin in cmd/go

CVE-2025-22867

VCID-gtys-5r5h-p7ht

CVE-2026-33810

VCID-kjf2-r6zt-zqg9

net/http: CrossOriginProtection bypass in net/http

CVE-2025-47910

VCID-pcez-y67t-8yg3

net/url: Incorrect parsing of IPv6 host literals in net/url

CVE-2026-25679

VCID-x5ub-bfb7-nbbr

crypto/x509: Incorrect enforcement of email constraints in crypto/x509

CVE-2026-27137

VCID-xjm1-yec3-mkc6

os.OpenFile(path, os.O_CREATE|O_EXCL) behaved differently on Unix and Windows systems when the target path was a dangling symlink. On Unix systems, OpenFile with O_CREATE and O_EXCL flags never follows symlinks. On Windows, when the target path was a symlink to a nonexistent location, OpenFile would create a file in that location. OpenFile now always returns an error when the O_CREATE and O_EXCL flags are both set and the target path is a symlink.

CVE-2025-0913

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T10:40:03.993016+00:00	Debian Importer	Fixing	VCID-x5ub-bfb7-nbbr	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:32:04.425833+00:00	Debian Importer	Fixing	VCID-kjf2-r6zt-zqg9	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:20:44.500998+00:00	Debian Importer	Fixing	VCID-6a6z-bq7m-c3gf	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:19:10.467029+00:00	Debian Importer	Fixing	VCID-xjm1-yec3-mkc6	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:07:32.054724+00:00	Debian Importer	Fixing	VCID-pcez-y67t-8yg3	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:01:07.929211+00:00	Debian Importer	Fixing	VCID-gtys-5r5h-p7ht	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:01:02.121905+00:00	Debian Importer	Fixing	VCID-evq7-jzj3-6bhu	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-13T07:12:53.171883+00:00	Debian Importer	Fixing	VCID-x5ub-bfb7-nbbr	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:06:40.444753+00:00	Debian Importer	Fixing	VCID-kjf2-r6zt-zqg9	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T06:57:59.022103+00:00	Debian Importer	Fixing	VCID-6a6z-bq7m-c3gf	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T06:56:46.277595+00:00	Debian Importer	Fixing	VCID-xjm1-yec3-mkc6	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T06:48:00.754806+00:00	Debian Importer	Fixing	VCID-pcez-y67t-8yg3	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T06:43:04.612089+00:00	Debian Importer	Fixing	VCID-gtys-5r5h-p7ht	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T06:43:00.525776+00:00	Debian Importer	Fixing	VCID-evq7-jzj3-6bhu	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-09T17:36:41.869321+00:00	Debian Importer	Fixing	VCID-gtys-5r5h-p7ht	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:25:40.070154+00:00	Debian Importer	Fixing	VCID-6a6z-bq7m-c3gf	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:25:40.043431+00:00	Debian Importer	Fixing	VCID-x5ub-bfb7-nbbr	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:25:40.016608+00:00	Debian Importer	Fixing	VCID-pcez-y67t-8yg3	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:25:39.429444+00:00	Debian Importer	Fixing	VCID-kjf2-r6zt-zqg9	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:25:39.179129+00:00	Debian Importer	Fixing	VCID-evq7-jzj3-6bhu	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:25:39.097162+00:00	Debian Importer	Fixing	VCID-xjm1-yec3-mkc6	https://security-tracker.debian.org/tracker/data/json	38.1.0