Search for packages
| purl | pkg:alpm/archlinux/go@2:1.17.4-1 |
| Next non-vulnerable version | 2:1.17.5-1 |
| Latest non-vulnerable version | 2:1.24.3-1 |
| Risk | 4.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-66vz-z7v3-aaar
Aliases: CVE-2021-44717 |
Go before 1.16.12 and 1.17.x before 1.17.5 on UNIX allows write operations to an unintended file or unintended network connection as a consequence of erroneous closing of file descriptor 0 after file-descriptor exhaustion. |
Affected by 0 other vulnerabilities. |
|
VCID-nk3v-tvmw-aaam
Aliases: CVE-2021-44716 GHSA-vc3p-29h2-gpcp |
net/http in Go before 1.16.12 and 1.17.x before 1.17.5 allows uncontrolled memory consumption in the header canonicalization cache via HTTP/2 requests. |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-03-28T07:46:24.147326+00:00 | Arch Linux Importer | Affected by | VCID-nk3v-tvmw-aaam | https://security.archlinux.org/AVG-2617 | 36.0.0 |
| 2025-03-28T07:46:24.128603+00:00 | Arch Linux Importer | Affected by | VCID-66vz-z7v3-aaar | https://security.archlinux.org/AVG-2617 | 36.0.0 |
| 2024-09-18T02:01:39.207845+00:00 | Arch Linux Importer | Affected by | VCID-nk3v-tvmw-aaam | https://security.archlinux.org/AVG-2617 | 34.0.1 |
| 2024-09-18T02:01:39.185285+00:00 | Arch Linux Importer | Affected by | VCID-66vz-z7v3-aaar | https://security.archlinux.org/AVG-2617 | 34.0.1 |
| 2024-01-03T22:27:45.721343+00:00 | Arch Linux Importer | Affected by | VCID-nk3v-tvmw-aaam | https://security.archlinux.org/AVG-2617 | 34.0.0rc1 |
| 2024-01-03T22:27:45.696789+00:00 | Arch Linux Importer | Affected by | VCID-66vz-z7v3-aaar | https://security.archlinux.org/AVG-2617 | 34.0.0rc1 |