{"id":"BIT-golang-2020-28362","details":"Go before 1.14.12 and 1.15.x before 1.15.4 allows Denial of Service.","aliases":["CVE-2020-28362","GO-2021-0069"],"modified":"2025-04-03T14:40:37.652Z","published":"2024-03-06T11:07:49.873Z","database_specific":{"cpes":["cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*"],"severity":"High"},"references":[{"type":"WEB","url":"https://groups.google.com/g/golang-nuts/c/c-ssaaS7RMI"},{"type":"WEB","url":"https://lists.apache.org/thread.html/rd02e75766cd333a0df417588460f5e4477060633000bfe94955851fd%40%3Cissues.trafficcontrol.apache.org%3E"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2W4COUPL3YVTZ6RTEIT6LPBDJUFF3VSP/"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F3ZSHGNTJWCWYAKY5OLZS2XQQYHSXSUO/"},{"type":"WEB","url":"https://security.netapp.com/advisory/ntap-20201202-0004/"},{"type":"WEB","url":"https://www.arista.com/en/support/advisories-notices/security-advisories/12166-security-advisory-62"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-28362"}],"affected":[{"package":{"name":"golang","ecosystem":"Bitnami","purl":"pkg:bitnami/golang"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0"},{"fixed":"1.14.12"},{"introduced":"1.15.0"},{"fixed":"1.15.5"}]}],"database_specific":{"source":"https://github.com/bitnami/vulndb/tree/main/data/golang/BIT-golang-2020-28362.json"},"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}],"schema_version":"1.7.3"}