Lucene search
GoogleOSV:CVE-2021-27918HistoryMar 11, 2021 - 12:15 a.m.
CVE-2021-27918
2021-03-1100:15:12
Google
osv.dev
5
encoding/xml in Go before 1.15.9 and 1.16.x before 1.16.1 has an infinite loop if a custom TokenReader (for xml.NewTokenDecoder) returns EOF in the middle of an element. This can occur in the Decode, DecodeElement, or Skip method.
| CPE | Name | Operator | Version |
|---|---|---|---|
| go | eq | go1.15 | |
| go | eq | go1.15.1 | |
| go | eq | weekly.2012-01-27 | |
| go | eq | weekly.2012-03-13 | |
| go | eq | weekly.2009-12-22 | |
| go | eq | weekly.2012-01-20 | |
| go | eq | go1.10beta2 | |
| go | eq | go1.12beta2 | |
| go | eq | go1.15beta1 | |
| go | eq | weekly.2010-07-01 |
Related
nessus
nessus
Oracle Linux 7 : olcne (ELSA-2021-9268)
2021-05-29 00:00:00
EulerOS 2.0 SP9 : golang (EulerOS-SA-2021-2061)
2021-07-01 00:00:00
EulerOS 2.0 SP8 : golang (EulerOS-SA-2021-1980)
2021-06-28 00:00:00
prion
prion
Design/Logic Flaw
2021-03-11 00:15:00
Design/Logic Flaw
2022-08-26 16:15:00
suse
suse
Security update for go1.15 (moderate)
2021-03-27 00:00:00
oraclelinux
oraclelinux
olcne security update
2021-05-29 00:00:00
olcne security update
2021-05-29 00:00:00
go-toolset:ol8 security, bug fix, and enhancement update
2021-08-12 00:00:00
ubuntucve
ubuntucve
CVE-2021-27918
2021-03-11 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for golang (EulerOS-SA-2021-2061)
2021-07-01 00:00:00
Huawei EulerOS: Security Advisory for golang (EulerOS-SA-2021-1980)
2021-06-29 00:00:00
Huawei EulerOS: Security Advisory for golang (EulerOS-SA-2021-2050)
2021-07-01 00:00:00
ibm
ibm
Security Bulletin: IBM CICS TX Standard is vulnerable to a denial of service, caused by an infinite loop flaw in Golang Go (CVE-2021-27918).
2023-02-14 21:14:53
veracode
veracode
Denial Of Service (DoS)
2021-03-11 04:13:55
cvelist
cvelist
CVE-2021-27918
2021-03-10 23:54:43
CVE-2021-3703
2022-08-26 15:25:40
osv
osv
Infinite loop when decoding inputs in encoding/xml
2022-02-17 17:34:24
BIT-golang-2021-27918
2024-03-06 11:06:30
Moderate: go-toolset:rhel8 security, bug fix, and enhancement update
2021-08-10 12:00:58
debiancve
debiancve
CVE-2021-27918
2021-03-11 00:15:12
cve
cve
CVE-2021-27918
2021-03-11 00:15:12
CVE-2021-3703
2022-08-26 16:15:09
alpinelinux
alpinelinux
CVE-2021-27918
2021-03-11 00:15:12
nvd
nvd
CVE-2021-27918
2021-03-11 00:15:12
CVE-2021-3703
2022-08-26 16:15:09
cbl_mariner
cbl_mariner
CVE-2021-27918 affecting package golang 1.15.7-1
2021-07-08 21:56:48
redhatcve
redhatcve
photon
photon
Important Photon OS Security Update - PHSA-2021-0013
2021-04-22 00:00:00
Important Photon OS Security Update - PHSA-2021-4.0-0013
2021-04-22 00:00:00
Important Photon OS Security Update - PHSA-2021-0248
2021-06-04 00:00:00
freebsd
freebsd
altlinux
altlinux
Security fix for the ALT Linux 9 package golang version 1.15.9-alt1
2021-03-11 00:00:00
Security fix for the ALT Linux 10 package golang version 1.16.1-alt1
2021-03-11 00:00:00
redhat
redhat
almalinux
almalinux
Moderate: go-toolset:rhel8 security, bug fix, and enhancement update
2021-08-10 12:00:58
rocky
rocky
go-toolset:rhel8 security, bug fix, and enhancement update
2021-08-10 12:00:58
mageia
mageia
Updated golang packages fix security vulnerabilities
2021-07-25 11:34:17
amazon
amazon
Important: golang
2022-07-28 21:55:00
Important: golang
2022-09-15 03:57:00
gentoo
gentoo
Go: Multiple Vulnerabilities
2022-08-04 00:00:00