ROS-20250630-09

Vulnerability of net/http, x/net/proxy and x/net/http/httpproxy packages of Go programming language is related to incorrect mapping of hosts to proxy server templates. Exploitation of the vulnerability could allow an intruder to affect confidentiality and availability of protected information A vulnerability in the implementation of JSON Web Tokens on Go golang-jwt is related to the application not controlling the properly consume internal resources in the parse.ParseUnverified function when parsing an authorization. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of denial of service A vulnerability in the DecodeConfig component of the Golang programming language is related to insufficient tag validation attribute values that end with a slash character (/). Exploitation of the vulnerability could Allow a remote attacker to execute arbitrary…Read More