VulnerableCode Package Details - pkg:alpm/archlinux/go@2:1.17-2

Search for packages

Package details: pkg:alpm/archlinux/go@2:1.17-2

Essentials
History (3)

purl	pkg:alpm/archlinux/go@2:1.17-2

Next non-vulnerable version	2:1.17.2-1
Latest non-vulnerable version	2:1.24.3-1
Risk	3.4

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-ac31-1hfd-aaah Aliases: CVE-2021-39293	In archive/zip in Go before 1.16.8 and 1.17.x before 1.17.1, a crafted archive header (falsely designating that many files are present) can cause a NewReader or OpenReader panic. NOTE: this issue exists because of an incomplete fix for CVE-2021-33196.	2:1.17.1-1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-03-28T07:47:03.275803+00:00	Arch Linux Importer	Affected by	VCID-ac31-1hfd-aaah	https://security.archlinux.org/AVG-2370	36.0.0
2024-09-18T02:02:26.153889+00:00	Arch Linux Importer	Affected by	VCID-ac31-1hfd-aaah	https://security.archlinux.org/AVG-2370	34.0.1
2024-01-03T22:28:27.322016+00:00	Arch Linux Importer	Affected by	VCID-ac31-1hfd-aaah	https://security.archlinux.org/AVG-2370	34.0.0rc1