CWE-129

CVE-2020-29242

February 26, 2023 by

dhowden tag before 2020-11-19 allows “panic: runtime error: index out of range” via readPICFrame.

CVE-2020-29243

February 26, 2023 by

dhowden tag before 2020-11-19 allows “panic: runtime error: index out of range” via readAPICFrame.

CVE-2020-29244

February 26, 2023 by

dhowden tag before 2020-11-19 allows “panic: runtime error: slice bounds out of range” via readTextWithDescrFrame.

CVE-2020-29245

February 26, 2023 by

dhowden tag before 2020-11-19 allows “panic: runtime error: slice bounds out of range” via readAtomData.

In x/text in Go 1.15.4, an “index out of range” panic occurs in language.ParseAcceptLanguage while parsing the -u- extension. (x/text/language is supposed to be able to parse an HTTP Accept-Language header.)

CVE-2020-28852

February 26, 2023 by

In x/text in Go before v0.3.5, a “slice bounds out of range” panic occurs in language.ParseAcceptLanguage while processing a BCP 47 tag. (x/text/language is supposed to be able to parse an HTTP Accept-Language header.)