Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The x/text package before 0.3.3 for Go has a vulnerability in encoding/unicode that could lead to the UTF-16 decoder entering an infinite loop, causing the program to crash or run out of memory. An attacker could provide a single byte to a UTF16 decoder instantiated with UseBOM or ExpectBOM to trigger an infinite loop if the String function on the Decoder is called, or the Decoder is passed to golang.org/x/text/transform.String.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Golang Go crypto 安全漏洞
Vulnerability Description
Golang Go crypto是Golang社区的一款基于 Go 语言的加密代码库。 Golang Go x/text package 0.3.3之前版本存在安全漏洞。攻击者可利用该漏洞导致UTF-16解码器进入无限循环,进而导致程序崩溃或内存不足。
CVSS Information
N/A
Vulnerability Type
N/A