Search for packages
| purl | pkg:deb/debian/golang-1.7@1.7.3-1 |
| Next non-vulnerable version | 1.7.4-2+deb9u1 |
| Latest non-vulnerable version | 1.7.4-2+deb9u1 |
| Risk | 4.2 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-5jua-1sv6-aaah
Aliases: CVE-2018-7187 |
The "go get" implementation in Go 1.9.4, when the -insecure command-line option is used, does not validate the import path (get/vcs.go only checks for "://" anywhere in the string), which allows remote attackers to execute arbitrary OS commands via a crafted web site. |
Affected by 0 other vulnerabilities. |
|
VCID-u6zq-xy5d-aaam
Aliases: CVE-2019-6486 |
Go before 1.10.8 and 1.11.x before 1.11.5 mishandles P-521 and P-384 elliptic curves, which allows attackers to cause a denial of service (CPU consumption) or possibly conduct ECDH private key recovery attacks. |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-06-21T11:00:29.504474+00:00 | Debian Oval Importer | Affected by | VCID-5jua-1sv6-aaah | https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 | 36.1.3 |
| 2025-06-21T10:35:57.099989+00:00 | Debian Oval Importer | Affected by | VCID-u6zq-xy5d-aaam | https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 | 36.1.3 |
| 2025-06-20T20:02:55.690402+00:00 | Debian Oval Importer | Affected by | VCID-5jua-1sv6-aaah | None | 36.1.3 |
| 2025-06-08T04:32:32.747200+00:00 | Debian Oval Importer | Affected by | VCID-5jua-1sv6-aaah | https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 | 36.1.0 |
| 2025-06-08T04:17:32.461869+00:00 | Debian Oval Importer | Affected by | VCID-u6zq-xy5d-aaam | https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 | 36.1.0 |
| 2025-06-07T13:50:40.208696+00:00 | Debian Oval Importer | Affected by | VCID-5jua-1sv6-aaah | None | 36.1.0 |
| 2025-04-08T03:02:58.266591+00:00 | Debian Oval Importer | Affected by | VCID-5jua-1sv6-aaah | https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 | 36.0.0 |
| 2025-04-08T02:46:52.629494+00:00 | Debian Oval Importer | Affected by | VCID-u6zq-xy5d-aaam | https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 | 36.0.0 |
| 2025-04-07T12:25:36.248704+00:00 | Debian Oval Importer | Affected by | VCID-5jua-1sv6-aaah | None | 36.0.0 |