mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-12-30 05:58:39 +00:00
100 lines
3.6 KiB
JSON
100 lines
3.6 KiB
JSON
{
|
|
"data_version": "4.0",
|
|
"data_type": "CVE",
|
|
"data_format": "MITRE",
|
|
"CVE_data_meta": {
|
|
"ID": "CVE-2024-45341",
|
|
"ASSIGNER": "security@golang.org",
|
|
"STATE": "PUBLIC"
|
|
},
|
|
"description": {
|
|
"description_data": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "A certificate with a URI which has a IPv6 address with a zone ID may incorrectly satisfy a URI name constraint that applies to the certificate chain. Certificates containing URIs are not permitted in the web PKI, so this only affects users of private PKIs which make use of URIs."
|
|
}
|
|
]
|
|
},
|
|
"problemtype": {
|
|
"problemtype_data": [
|
|
{
|
|
"description": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "CWE-295: Improper Certificate Validation"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"affects": {
|
|
"vendor": {
|
|
"vendor_data": [
|
|
{
|
|
"vendor_name": "Go standard library",
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"product_name": "crypto/x509",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_affected": "<",
|
|
"version_name": "0",
|
|
"version_value": "1.22.11"
|
|
},
|
|
{
|
|
"version_affected": "<",
|
|
"version_name": "1.23.0-0",
|
|
"version_value": "1.23.5"
|
|
},
|
|
{
|
|
"version_affected": "<",
|
|
"version_name": "1.24.0-0",
|
|
"version_value": "1.24.0-rc2"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"references": {
|
|
"reference_data": [
|
|
{
|
|
"url": "https://go.dev/cl/643099",
|
|
"refsource": "MISC",
|
|
"name": "https://go.dev/cl/643099"
|
|
},
|
|
{
|
|
"url": "https://go.dev/issue/71156",
|
|
"refsource": "MISC",
|
|
"name": "https://go.dev/issue/71156"
|
|
},
|
|
{
|
|
"url": "https://groups.google.com/g/golang-dev/c/bG8cv1muIBM/m/G461hA6lCgAJ",
|
|
"refsource": "MISC",
|
|
"name": "https://groups.google.com/g/golang-dev/c/bG8cv1muIBM/m/G461hA6lCgAJ"
|
|
},
|
|
{
|
|
"url": "https://groups.google.com/g/golang-dev/c/CAWXhan3Jww/m/bk9LAa-lCgAJ",
|
|
"refsource": "MISC",
|
|
"name": "https://groups.google.com/g/golang-dev/c/CAWXhan3Jww/m/bk9LAa-lCgAJ"
|
|
},
|
|
{
|
|
"url": "https://pkg.go.dev/vuln/GO-2025-3373",
|
|
"refsource": "MISC",
|
|
"name": "https://pkg.go.dev/vuln/GO-2025-3373"
|
|
}
|
|
]
|
|
},
|
|
"credits": [
|
|
{
|
|
"lang": "en",
|
|
"value": "Juho Fors\u00e9n of Mattermost"
|
|
}
|
|
]
|
|
} |