VulnerableCode Package Details - pkg:alpm/archlinux/go@2:1.17.5-1

Search for packages

Package details: pkg:alpm/archlinux/go@2:1.17.5-1

Essentials
History (6)

purl	pkg:alpm/archlinux/go@2:1.17.5-1

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (2)

Vulnerability	Summary	Aliases
VCID-66vz-z7v3-aaar	Go before 1.16.12 and 1.17.x before 1.17.5 on UNIX allows write operations to an unintended file or unintended network connection as a consequence of erroneous closing of file descriptor 0 after file-descriptor exhaustion.	CVE-2021-44717
VCID-nk3v-tvmw-aaam	net/http in Go before 1.16.12 and 1.17.x before 1.17.5 allows uncontrolled memory consumption in the header canonicalization cache via HTTP/2 requests.	CVE-2021-44716 GHSA-vc3p-29h2-gpcp

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-03-28T07:46:24.152311+00:00	Arch Linux Importer	Fixing	VCID-nk3v-tvmw-aaam	https://security.archlinux.org/AVG-2617	36.0.0
2025-03-28T07:46:24.133545+00:00	Arch Linux Importer	Fixing	VCID-66vz-z7v3-aaar	https://security.archlinux.org/AVG-2617	36.0.0
2024-09-18T02:01:39.212732+00:00	Arch Linux Importer	Fixing	VCID-nk3v-tvmw-aaam	https://security.archlinux.org/AVG-2617	34.0.1
2024-09-18T02:01:39.190155+00:00	Arch Linux Importer	Fixing	VCID-66vz-z7v3-aaar	https://security.archlinux.org/AVG-2617	34.0.1
2024-01-03T22:27:45.725989+00:00	Arch Linux Importer	Fixing	VCID-nk3v-tvmw-aaam	https://security.archlinux.org/AVG-2617	34.0.0rc1
2024-01-03T22:27:45.701643+00:00	Arch Linux Importer	Fixing	VCID-66vz-z7v3-aaar	https://security.archlinux.org/AVG-2617	34.0.0rc1