Approved changes feed: RSS · Atom
cpe:2.3:a:golang:net:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Golang (670356c5-bd1b-5c66-9eee-f755f5cec4c7) |
|---|---|
| Product | Net (6c419f95-1537-5683-b27b-56c4b4911e66) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from purl2cpe mapping |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:github/golang/net |
purl2cpe | 2026-06-01 10:12:04.325038 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2018-17848 |
vulnerable | 2026-06-03 14:38:22.114950 |
Details available
The html package (aka x/net/html) through 2018-09-25 in Go mishandles <math><template><mn><b></template>, leading to a "panic: runtime error" (index out of range) in (*insertionModeStack).pop in node.go, called from inHeadIM, during an html.Parse call.
Published: 2018-10-01T08:00:00.000Z
Updated: 2024-08-05T10:54:10.748Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2018-17847 |
vulnerable | 2026-06-03 14:38:22.114591 |
Details available
The html package (aka x/net/html) through 2018-09-25 in Go mishandles <svg><template><desc><t><svg></template>, leading to a "panic: runtime error" (index out of range) in (*nodeStack).pop in node.go, called from (*parser).clearActiveFormattingElements, during an html.Parse call.
Published: 2018-10-01T08:00:00.000Z
Updated: 2024-08-05T10:54:10.807Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2018-17846 |
vulnerable | 2026-06-03 14:38:22.114195 |
Details available
The html package (aka x/net/html) through 2018-09-25 in Go mishandles <table><math><select><mi><select></table>, leading to an infinite loop during an html.Parse call because inSelectIM and inSelectInTableIM do not comply with a specification.
Published: 2018-10-01T08:00:00.000Z
Updated: 2024-08-05T10:54:10.681Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2018-17143 |
vulnerable | 2026-06-03 14:38:21.435810 |
Details available
The html package (aka x/net/html) through 2018-09-17 in Go mishandles <template><tBody><isindex/action=0>, leading to a "panic: runtime error" in inBodyIM in parse.go during an html.Parse call.
Published: 2018-09-17T14:00:00.000Z
Updated: 2024-08-05T10:39:59.586Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2018-17142 |
vulnerable | 2026-06-03 14:38:21.435398 |
Details available
The html package (aka x/net/html) through 2018-09-17 in Go mishandles <math><template><mo><template>, leading to a "panic: runtime error" in parseCurrentToken in parse.go during an html.Parse call.
Published: 2018-09-17T14:00:00.000Z
Updated: 2024-08-05T10:39:59.563Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2018-17075 |
vulnerable | 2026-06-03 14:38:21.380949 |
Details available
The html package (aka x/net/html) before 2018-07-13 in Go mishandles "in frameset" insertion mode, leading to a "panic: runtime error" for html.Parse of <template><object>, <template><applet>, or <template><marquee>. This is related to HTMLTreeBuilder.cpp in WebKit.
Published: 2018-09-16T02:00:00.000Z
Updated: 2024-08-05T10:39:59.557Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.