{"id":"GO-2026-5665","summary":"GoBGP has an Improper Resource Shutdown or Release in github.com/osrg/gobgp","details":"GoBGP has an Improper Resource Shutdown or Release in github.com/osrg/gobgp","aliases":["CVE-2026-7734","GHSA-vm3g-8xwv-mxfp"],"modified":"2026-07-07T20:30:13.696941710Z","published":"2026-07-07T16:52:19Z","database_specific":{"url":"https://pkg.go.dev/vuln/GO-2026-5665","review_status":"REVIEWED"},"references":[{"type":"ADVISORY","url":"https://github.com/advisories/GHSA-vm3g-8xwv-mxfp"},{"type":"FIX","url":"https://github.com/osrg/gobgp/commit/f9f7b55ec258e514be0264871fa645a2c3edad11"},{"type":"WEB","url":"https://github.com/osrg/gobgp/releases/tag/v4.4.0"},{"type":"WEB","url":"https://vuldb.com/submit/807581"},{"type":"WEB","url":"https://vuldb.com/vuln/360909"},{"type":"WEB","url":"https://vuldb.com/vuln/360909/cti"}],"affected":[{"package":{"name":"github.com/osrg/gobgp/v4","ecosystem":"Go","purl":"pkg:golang/github.com/osrg/gobgp/v4"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0"},{"fixed":"4.4.0"}]}],"ecosystem_specific":{"imports":[{"symbols":["BGPUpdate.DecodeFromBytes","ParseBGPBody","ParseBGPMessage","PathAttributePrefixSID.DecodeFromBytes","SRv6L3ServiceAttribute.DecodeFromBytes","SRv6ServiceTLV.DecodeFromBytes"],"path":"github.com/osrg/gobgp/v4/pkg/packet/bgp"}]},"database_specific":{"source":"https://vuln.go.dev/ID/GO-2026-5665.json"}}],"schema_version":"1.7.5"}