Vulnerability Report: GO-2024-3106

standard library

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

Affected Packages

Aliases

References

Credits

  • Md Sakib Anwar of The Ohio State University (anwar.40@osu.edu)

Feedback

See anything missing or incorrect? Suggest an edit to this report.

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL