0.002 Low
EPSS
Percentile
53.1%
archive/zip of go is vulnerable to denial of service. The vulnerability exists due to an OOM (Out of Memory) from the lack of sanitization of the preallocation directory size in the archive header.
cert-portal.siemens.com/productcert/pdf/ssa-222547.pdf
github.com/golang/go/issues/47801
groups.google.com/g/golang-announce/c/dx9d7IOseHw
security.netapp.com/advisory/ntap-20220217-0009/