Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
Security Advisories: GSA_kwCzR0hTQS13cjhoLXc5NjktMzZtOM4AAxwt
GoPistolet vulnerable to Improper Resource Shutdown or Release
A vulnerability was found in GoPistolet. It has been declared as problematic. This vulnerability affects unknown code of the component MTA. The manipulation leads to denial of service. Continious delivery with rolling releases is used by this product. Therefore, no version details of affected nor updated releases are available. The name of the patch is b91aa4674d460993765884e8463c70e6d886bc90. It is recommended to apply a patch to fix this issue. VDB-221506 is the identifier assigned to this vulnerability.
Permalink: https://github.com/advisories/GHSA-wr8h-w969-36m8JSON: https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS13cjhoLXc5NjktMzZtOM4AAxwt
Source: GitHub Advisory Database
Origin: Unspecified
Severity: High
Classification: General
Published: about 1 year ago
Updated: 7 months ago
CVSS Score: 7.5
CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Identifiers: GHSA-wr8h-w969-36m8, CVE-2015-10085
References:
- https://nvd.nist.gov/vuln/detail/CVE-2015-10085
- https://github.com/gopistolet/gopistolet/pull/27
- https://github.com/gopistolet/gopistolet/commit/b91aa4674d460993765884e8463c70e6d886bc90
- https://vuldb.com/?ctiid.221506
- https://vuldb.com/?id.221506
- https://github.com/advisories/GHSA-wr8h-w969-36m8
Blast Radius: 2.3
Affected Packages
go:github.com/gopistolet/gopistolet
Dependent packages: 1Dependent repositories: 2
Downloads:
Affected Version Ranges: < 0.0.0-20210418093520-a5395f728f8d
Fixed in: 0.0.0-20210418093520-a5395f728f8d
All affected versions:
All unaffected versions: