VulnerableCode Package Details - pkg:deb/debian/golang-golang-x-net@1:0.0%2Bgit20200226.491c5fc%2Bdfsg-1

Search for packages

Package details: pkg:deb/debian/golang-golang-x-net@1:0.0%2Bgit20200226.491c5fc%2Bdfsg-1

Essentials
History (8)

purl	pkg:deb/debian/golang-golang-x-net@1:0.0%2Bgit20200226.491c5fc%2Bdfsg-1

Next non-vulnerable version	1:0.0+git20211209.491a49a+dfsg-1
Latest non-vulnerable version	1:0.19.0+dfsg-1
Risk	4.0

Vulnerabilities affecting this package (2)

Vulnerability	Summary	Fixed by
VCID-mtfq-ngz6-aaad Aliases: CVE-2021-31525 GHSA-h86h-8ppg-mxmh	net/http in Go before 1.15.12 and 1.16.x before 1.16.4 allows remote attackers to cause a denial of service (panic) via a large header to ReadRequest or ReadResponse. Server, Transport, and Client can each be affected in some configurations.	1:0.0+git20210119.5f4716e+dfsg-4 Affected by 8 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-q1wc-cc97-aaam Aliases: CVE-2021-33194 GHSA-83g2-8m93-v3w7	golang.org/x/net before v0.0.0-20210520170846-37e1c6afe023 allows attackers to cause a denial of service (infinite loop) via crafted ParseFragment input.	1:0.0+git20210119.5f4716e+dfsg-4 Affected by 8 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-06-21T05:25:45.251199+00:00	Debian Oval Importer	Affected by	VCID-mtfq-ngz6-aaad	None	36.1.3
2025-06-21T03:11:53.472050+00:00	Debian Oval Importer	Affected by	VCID-q1wc-cc97-aaam	None	36.1.3
2025-06-07T23:03:30.954822+00:00	Debian Oval Importer	Affected by	VCID-mtfq-ngz6-aaad	None	36.1.0
2025-06-07T20:44:46.981410+00:00	Debian Oval Importer	Affected by	VCID-q1wc-cc97-aaam	None	36.1.0
2025-04-12T22:03:44.261040+00:00	Debian Oval Importer	Affected by	VCID-mtfq-ngz6-aaad	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-12T19:21:40.202100+00:00	Debian Oval Importer	Affected by	VCID-q1wc-cc97-aaam	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-07T21:35:34.590723+00:00	Debian Oval Importer	Affected by	VCID-mtfq-ngz6-aaad	None	36.0.0
2025-04-07T19:15:15.653122+00:00	Debian Oval Importer	Affected by	VCID-q1wc-cc97-aaam	None	36.0.0