Vulnerability Database
Blog
FAQ
Docs
GO-2022-0888
See a problem?
Source
https://pkg.go.dev/vuln/GO-2022-0888
Import Source
https://vuln.go.dev/ID/GO-2022-0888.json
JSON Data
https://api.osv.dev/v1/vulns/GO-2022-0888
Aliases
BIT-syncthing-2021-21404
CVE-2021-21404
GHSA-x462-89pf-6r5h
Published
2024-08-21T15:29:08Z
Modified
2024-08-21T15:58:40.629285Z
Summary
Crash due to malformed relay protocol message in github.com/syncthing/syncthing
Details
Crash due to malformed relay protocol message in github.com/syncthing/syncthing
References
https://github.com/syncthing/syncthing/security/advisories/GHSA-x462-89pf-6r5h
https://nvd.nist.gov/vuln/detail/CVE-2021-21404
https://github.com/syncthing/syncthing/commit/fb4fdaf4c0a79c22cad000c42ac1394e3ccb6a97
https://github.com/syncthing/syncthing/releases/tag/v1.15.0
https://pkg.go.dev/github.com/syncthing/syncthing
Affected packages
Go
/
github.com/syncthing/syncthing
Package
Name
github.com/syncthing/syncthing
View open source insights on deps.dev
Purl
pkg:golang/github.com/syncthing/syncthing
Affected ranges
Type
SEMVER
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
1.15.0
GO-2022-0888 - OSV