Search for packages
| purl | pkg:alpm/archlinux/go@2:1.17.1-1 |
| Next non-vulnerable version | 2:1.17.2-1 |
| Latest non-vulnerable version | 2:1.24.3-1 |
| Risk | 4.4 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-8ycp-22yk-aaap
Aliases: CVE-2021-38297 |
Go before 1.16.9 and 1.17.x before 1.17.2 has a Buffer Overflow via large arguments in a function invocation from a WASM module, when GOARCH=wasm GOOS=js is used. |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-ac31-1hfd-aaah | In archive/zip in Go before 1.16.8 and 1.17.x before 1.17.1, a crafted archive header (falsely designating that many files are present) can cause a NewReader or OpenReader panic. NOTE: this issue exists because of an incomplete fix for CVE-2021-33196. |
CVE-2021-39293
|
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-03-28T07:47:03.280774+00:00 | Arch Linux Importer | Fixing | VCID-ac31-1hfd-aaah | https://security.archlinux.org/AVG-2370 | 36.0.0 |
| 2025-03-28T07:46:26.716423+00:00 | Arch Linux Importer | Affected by | VCID-8ycp-22yk-aaap | https://security.archlinux.org/AVG-2454 | 36.0.0 |
| 2024-09-18T02:02:26.158790+00:00 | Arch Linux Importer | Fixing | VCID-ac31-1hfd-aaah | https://security.archlinux.org/AVG-2370 | 34.0.1 |
| 2024-09-18T02:01:42.576202+00:00 | Arch Linux Importer | Affected by | VCID-8ycp-22yk-aaap | https://security.archlinux.org/AVG-2454 | 34.0.1 |
| 2024-01-03T22:28:27.326737+00:00 | Arch Linux Importer | Fixing | VCID-ac31-1hfd-aaah | https://security.archlinux.org/AVG-2370 | 34.0.0rc1 |
| 2024-01-03T22:27:48.739347+00:00 | Arch Linux Importer | Affected by | VCID-8ycp-22yk-aaap | https://security.archlinux.org/AVG-2454 | 34.0.0rc1 |