Vulnerability Report: GO-2022-0521

standard library

Calling Decoder.Skip when parsing a deeply nested XML document can cause a panic due to stack exhaustion.

Affected Packages

Aliases

References

Credits

  • Go Security Team, Juho Nurminen of Mattermost

Feedback

See anything missing or incorrect? Suggest an edit to this report.

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL