Search for packages
| purl | pkg:deb/debian/golang-1.15@1.15.9-6 |
| Next non-vulnerable version | 1.15.15-1~deb11u4 |
| Latest non-vulnerable version | 1.15.15-1~deb11u4 |
| Risk | 4.5 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-66vz-z7v3-aaar
Aliases: CVE-2021-44717 |
Go before 1.16.12 and 1.17.x before 1.17.5 on UNIX allows write operations to an unintended file or unintended network connection as a consequence of erroneous closing of file descriptor 0 after file-descriptor exhaustion. |
Affected by 4 other vulnerabilities. |
|
VCID-8ycp-22yk-aaap
Aliases: CVE-2021-38297 |
Go before 1.16.9 and 1.17.x before 1.17.2 has a Buffer Overflow via large arguments in a function invocation from a WASM module, when GOARCH=wasm GOOS=js is used. |
Affected by 4 other vulnerabilities. |
|
VCID-ac31-1hfd-aaah
Aliases: CVE-2021-39293 |
In archive/zip in Go before 1.16.8 and 1.17.x before 1.17.1, a crafted archive header (falsely designating that many files are present) can cause a NewReader or OpenReader panic. NOTE: this issue exists because of an incomplete fix for CVE-2021-33196. |
Affected by 4 other vulnerabilities. |
|
VCID-ftng-xjpg-aaag
Aliases: CVE-2022-23806 |
Curve.IsOnCurve in crypto/elliptic in Go before 1.16.14 and 1.17.x before 1.17.7 can incorrectly return true in situations with a big.Int value that is not a valid field element. |
Affected by 0 other vulnerabilities. |
|
VCID-hgur-mt73-aaah
Aliases: CVE-2022-23772 |
Rat.SetString in math/big in Go before 1.16.14 and 1.17.x before 1.17.7 has an overflow that can lead to Uncontrolled Memory Consumption. |
Affected by 0 other vulnerabilities. |
|
VCID-nk3v-tvmw-aaam
Aliases: CVE-2021-44716 GHSA-vc3p-29h2-gpcp |
net/http in Go before 1.16.12 and 1.17.x before 1.17.5 allows uncontrolled memory consumption in the header canonicalization cache via HTTP/2 requests. |
Affected by 4 other vulnerabilities. |
|
VCID-nphv-er38-aaae
Aliases: CVE-2021-41771 |
ImportedSymbols in debug/macho (for Open or OpenFat) in Go before 1.16.10 and 1.17.x before 1.17.3 Accesses a Memory Location After the End of a Buffer, aka an out-of-bounds slice situation. |
Affected by 4 other vulnerabilities. |
|
VCID-q8fq-1yrc-aaag
Aliases: CVE-2022-24921 |
regexp.Compile in Go before 1.16.15 and 1.17.x before 1.17.8 allows stack exhaustion via a deeply nested expression. |
Affected by 0 other vulnerabilities. |
|
VCID-v537-bky8-aaak
Aliases: CVE-2021-36221 |
Go before 1.15.15 and 1.16.x before 1.16.7 has a race condition that can lead to a net/http/httputil ReverseProxy panic upon an ErrAbortHandler abort. |
Affected by 4 other vulnerabilities. |
|
VCID-xn43-hdj8-aaad
Aliases: CVE-2022-23773 |
cmd/go in Go before 1.16.14 and 1.17.x before 1.17.7 can misinterpret branch names that falsely appear to be version tags. This can lead to incorrect access control if an actor is supposed to be able to create branches but not tags. |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-06-21T19:19:35.544739+00:00 | Debian Oval Importer | Affected by | VCID-ac31-1hfd-aaah | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.3 |
| 2025-06-21T18:37:56.049548+00:00 | Debian Oval Importer | Affected by | VCID-66vz-z7v3-aaar | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.3 |
| 2025-06-21T05:59:11.940686+00:00 | Debian Oval Importer | Affected by | VCID-66vz-z7v3-aaar | None | 36.1.3 |
| 2025-06-21T05:52:42.276308+00:00 | Debian Oval Importer | Affected by | VCID-hgur-mt73-aaah | None | 36.1.3 |
| 2025-06-21T05:51:15.538302+00:00 | Debian Oval Importer | Affected by | VCID-q8fq-1yrc-aaag | None | 36.1.3 |
| 2025-06-21T05:43:57.376442+00:00 | Debian Oval Importer | Affected by | VCID-nk3v-tvmw-aaam | None | 36.1.3 |
| 2025-06-21T05:42:55.595000+00:00 | Debian Oval Importer | Affected by | VCID-nphv-er38-aaae | None | 36.1.3 |
| 2025-06-21T05:38:06.754224+00:00 | Debian Oval Importer | Affected by | VCID-8ycp-22yk-aaap | None | 36.1.3 |
| 2025-06-21T04:29:23.314558+00:00 | Debian Oval Importer | Affected by | VCID-ac31-1hfd-aaah | None | 36.1.3 |
| 2025-06-21T02:14:47.127170+00:00 | Debian Oval Importer | Affected by | VCID-xn43-hdj8-aaad | None | 36.1.3 |
| 2025-06-21T02:09:53.764928+00:00 | Debian Oval Importer | Affected by | VCID-v537-bky8-aaak | None | 36.1.3 |
| 2025-06-21T02:07:39.912536+00:00 | Debian Oval Importer | Affected by | VCID-ftng-xjpg-aaag | None | 36.1.3 |
| 2025-06-08T13:05:29.163080+00:00 | Debian Oval Importer | Affected by | VCID-xn43-hdj8-aaad | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T12:48:39.095791+00:00 | Debian Oval Importer | Affected by | VCID-q8fq-1yrc-aaag | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T12:10:41.056184+00:00 | Debian Oval Importer | Affected by | VCID-v537-bky8-aaak | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T11:48:19.376587+00:00 | Debian Oval Importer | Affected by | VCID-ac31-1hfd-aaah | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T11:08:08.129811+00:00 | Debian Oval Importer | Affected by | VCID-66vz-z7v3-aaar | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-07T23:37:48.950251+00:00 | Debian Oval Importer | Affected by | VCID-66vz-z7v3-aaar | None | 36.1.0 |
| 2025-06-07T23:31:16.559369+00:00 | Debian Oval Importer | Affected by | VCID-hgur-mt73-aaah | None | 36.1.0 |
| 2025-06-07T23:29:50.735185+00:00 | Debian Oval Importer | Affected by | VCID-q8fq-1yrc-aaag | None | 36.1.0 |
| 2025-06-07T23:22:13.531181+00:00 | Debian Oval Importer | Affected by | VCID-nk3v-tvmw-aaam | None | 36.1.0 |
| 2025-06-07T23:21:09.518540+00:00 | Debian Oval Importer | Affected by | VCID-nphv-er38-aaae | None | 36.1.0 |
| 2025-06-07T23:16:12.451821+00:00 | Debian Oval Importer | Affected by | VCID-8ycp-22yk-aaap | None | 36.1.0 |
| 2025-06-07T22:05:45.837364+00:00 | Debian Oval Importer | Affected by | VCID-ac31-1hfd-aaah | None | 36.1.0 |
| 2025-06-07T19:38:34.127933+00:00 | Debian Oval Importer | Affected by | VCID-xn43-hdj8-aaad | None | 36.1.0 |
| 2025-06-07T19:33:38.051497+00:00 | Debian Oval Importer | Affected by | VCID-v537-bky8-aaak | None | 36.1.0 |
| 2025-06-07T19:31:23.104359+00:00 | Debian Oval Importer | Affected by | VCID-ftng-xjpg-aaag | None | 36.1.0 |
| 2025-04-12T22:34:14.968058+00:00 | Debian Oval Importer | Affected by | VCID-ftng-xjpg-aaag | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T22:13:00.918168+00:00 | Debian Oval Importer | Affected by | VCID-hgur-mt73-aaah | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T21:18:20.201215+00:00 | Debian Oval Importer | Affected by | VCID-8ycp-22yk-aaap | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T20:50:40.088307+00:00 | Debian Oval Importer | Affected by | VCID-nphv-er38-aaae | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T19:47:12.039256+00:00 | Debian Oval Importer | Affected by | VCID-nk3v-tvmw-aaam | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T18:53:00.817681+00:00 | Debian Oval Importer | Affected by | VCID-xn43-hdj8-aaad | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T18:35:35.326453+00:00 | Debian Oval Importer | Affected by | VCID-q8fq-1yrc-aaag | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T17:56:19.176580+00:00 | Debian Oval Importer | Affected by | VCID-v537-bky8-aaak | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T17:33:18.083778+00:00 | Debian Oval Importer | Affected by | VCID-ac31-1hfd-aaah | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T16:51:33.043757+00:00 | Debian Oval Importer | Affected by | VCID-66vz-z7v3-aaar | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-07T22:09:55.479978+00:00 | Debian Oval Importer | Affected by | VCID-66vz-z7v3-aaar | None | 36.0.0 |
| 2025-04-07T22:03:15.319637+00:00 | Debian Oval Importer | Affected by | VCID-hgur-mt73-aaah | None | 36.0.0 |
| 2025-04-07T22:01:46.444477+00:00 | Debian Oval Importer | Affected by | VCID-q8fq-1yrc-aaag | None | 36.0.0 |
| 2025-04-07T21:54:13.440780+00:00 | Debian Oval Importer | Affected by | VCID-nk3v-tvmw-aaam | None | 36.0.0 |
| 2025-04-07T21:53:06.486530+00:00 | Debian Oval Importer | Affected by | VCID-nphv-er38-aaae | None | 36.0.0 |
| 2025-04-07T21:48:10.011935+00:00 | Debian Oval Importer | Affected by | VCID-8ycp-22yk-aaap | None | 36.0.0 |
| 2025-04-07T20:37:01.719914+00:00 | Debian Oval Importer | Affected by | VCID-ac31-1hfd-aaah | None | 36.0.0 |
| 2025-04-07T18:16:17.601048+00:00 | Debian Oval Importer | Affected by | VCID-xn43-hdj8-aaad | None | 36.0.0 |
| 2025-04-07T18:11:18.897973+00:00 | Debian Oval Importer | Affected by | VCID-v537-bky8-aaak | None | 36.0.0 |
| 2025-04-07T18:09:03.431428+00:00 | Debian Oval Importer | Affected by | VCID-ftng-xjpg-aaag | None | 36.0.0 |