Search for packages
| purl | pkg:alpm/archlinux/go@2:1.16.6-1 |
| Next non-vulnerable version | 2:1.17-1 |
| Latest non-vulnerable version | 2:1.24.3-1 |
| Risk | 4.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-v537-bky8-aaak
Aliases: CVE-2021-36221 |
Go before 1.15.15 and 1.16.x before 1.16.7 has a race condition that can lead to a net/http/httputil ReverseProxy panic upon an ErrAbortHandler abort. |
Affected by 4 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-gfdc-2q2q-aaak | The crypto/tls package of Go through 1.16.5 does not properly assert that the type of public key in an X.509 certificate matches the expected type when doing a RSA based key exchange, allowing a malicious TLS server to cause a TLS client to panic. |
CVE-2021-34558
|
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-03-28T07:47:03.582752+00:00 | Arch Linux Importer | Fixing | VCID-gfdc-2q2q-aaak | https://security.archlinux.org/AVG-2147 | 36.0.0 |
| 2025-03-28T07:47:03.421890+00:00 | Arch Linux Importer | Affected by | VCID-v537-bky8-aaak | https://security.archlinux.org/AVG-2259 | 36.0.0 |
| 2024-09-18T02:02:26.577862+00:00 | Arch Linux Importer | Fixing | VCID-gfdc-2q2q-aaak | https://security.archlinux.org/AVG-2147 | 34.0.1 |
| 2024-09-18T02:02:26.367253+00:00 | Arch Linux Importer | Affected by | VCID-v537-bky8-aaak | https://security.archlinux.org/AVG-2259 | 34.0.1 |
| 2024-01-03T22:28:27.663322+00:00 | Arch Linux Importer | Fixing | VCID-gfdc-2q2q-aaak | https://security.archlinux.org/AVG-2147 | 34.0.0rc1 |
| 2024-01-03T22:28:27.473886+00:00 | Arch Linux Importer | Affected by | VCID-v537-bky8-aaak | https://security.archlinux.org/AVG-2259 | 34.0.0rc1 |