Skip to content

Commit e0ce87f

Browse files
rsoaresdrsoaresd
authored
update .govulncheck.yaml (#497)
1 parent 4066619 commit e0ce87f

File tree

1 file changed

+49
-1
lines changed

1 file changed

+49
-1
lines changed

.govulncheck.yaml

Lines changed: 49 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1 +1,49 @@
1-
ignored-vulnerabilities: []
1+
ignored-vulnerabilities:
2+
# Panic when validating certificates with DSA public keys in crypto/x509
3+
# Found in: crypto/x509@go1.23.12
4+
# Fixed in: crypto/x509@go1.24.8
5+
- id: GO-2025-4013
6+
info: https://pkg.go.dev/vuln/GO-2025-4013
7+
silence-until: 2025-12-03
8+
# Lack of limit when parsing cookies can cause memory exhaustion in net/http
9+
# Found in: net/http@go1.23.12
10+
# Fixed in: net/http@go1.24.8
11+
- id: GO-2025-4012
12+
info: https://pkg.go.dev/vuln/GO-2025-4012
13+
silence-until: 2025-12-03
14+
# Parsing DER payload can cause memory exhaustion in encoding/asn1
15+
# Found in: encoding/asn1@go1.23.12
16+
# Fixed in: encoding/asn1@go1.24.8
17+
- id: GO-2025-4011
18+
info: https://pkg.go.dev/vuln/GO-2025-4011
19+
silence-until: 2025-12-03
20+
# Insufficient validation of bracketed IPv6 hostnames in net/url
21+
# Found in: net/url@go1.23.12
22+
# Fixed in: net/url@go1.24.8
23+
- id: GO-2025-4010
24+
info: https://pkg.go.dev/vuln/GO-2025-4010
25+
silence-until: 2025-12-03
26+
# Quadratic complexity when parsing some invalid inputs in encoding/pem
27+
# Found in: encoding/pem@go1.23.12
28+
# Fixed in: encoding/pem@go1.24.8
29+
- id: GO-2025-4009
30+
info: https://pkg.go.dev/vuln/GO-2025-4009
31+
silence-until: 2025-12-03
32+
# ALPN negotiation error contains attacker controlled information in crypto/tls
33+
# Found in: crypto/tls@go1.23.12
34+
# Fixed in: crypto/tls@go1.24.8
35+
- id: GO-2025-4008
36+
info: https://pkg.go.dev/vuln/GO-2025-4008
37+
silence-until: 2025-12-03
38+
# Quadratic complexity when checking name constraints in crypto/x509
39+
# Found in: crypto/x509@go1.23.12
40+
# Fixed in: crypto/x509@go1.24.9
41+
- id: GO-2025-4007
42+
info: https://pkg.go.dev/vuln/GO-2025-4007
43+
silence-until: 2025-12-03
44+
# Excessive CPU consumption in ParseAddress in net/mail
45+
# Found in: net/mail@go1.23.12
46+
# Fixed in: net/mail@go1.24.8
47+
- id: GO-2025-4006
48+
info: https://pkg.go.dev/vuln/GO-2025-4006
49+
silence-until: 2025-12-03

0 commit comments

Comments
 (0)