GHSA-jr77-8gx4-h5qh

Source

https://github.com/advisories/GHSA-jr77-8gx4-h5qh

Import Source

https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/11/GHSA-jr77-8gx4-h5qh/GHSA-jr77-8gx4-h5qh.json

Aliases

• CVE-2022-41719
• GO-2022-0972

Published

2022-11-11T12:00:33Z

Modified

2023-11-08T04:10:32.235022Z

Details

Unmarshal can panic on some inputs, possibly allowing for denial of service attacks. This issue has been patched in version 2.1.1.

References

• https://nvd.nist.gov/vuln/detail/CVE-2022-41719
• https://github.com/shamaton/msgpack/issues/31
• https://github.com/shamaton/msgpack/pull/32
• https://github.com/shamaton/msgpack
• https://github.com/shamaton/msgpack/releases/tag/v2.1.1
• https://pkg.go.dev/vuln/GO-2022-0972